4.6 KiB
Implement a server compatible with NextCloud desktop and mobile apps
Here are some random docs and thoughts on implementing a NextCloud-compatible WebDAV server.
See also:
Two different login flows
- v1 is for mobile and is quite simple to implement
- v2 is for desktop and requires two endpoints
The first login API requires you to simply generate an app password and redirect to a special URL after login:
- Client will call the
/index.php/login/flowURL - You redirect or display a login form for the user (it is recommended that you ask the user to confirm that he wants to allow the app after login)
- After login you redirect to this special URL:
nc://login/server:https://...&user:bohwaz&password:supersecret.
Because why reuse standard URL query parameters when you can invent weird stuff, you have to use a colon instead of an equal sign. Also it seems that parameters cannot be URL-encoded, so not sure what happens if your server URL, username or password contain a special character. But aside from that it is quite straightforward.
The second API is different but is explained in the documentation, it involves extra steps. When the process finishes, the user is left to close the opened browser window, so you got to have a specific waiting page for that. The desktop app will try to request (poll) the username and password every time it receives focus again, or every 30 seconds.
JSON/XML API endpoints required
Those endpoints are requested by the clients and one or the other client will fail if they don't return something that looks valid.
Mobile app
getcontentlengthmust be present and be a number, even for collections
Desktop client
Direct download endpoint cannot return anything if it failed
See https://github.com/nextcloud/desktop/issues/5170
Requests performed
This is when you are adding a new server to the client:
GET /status.phpGET /remote.php/webdav/(without aAuthorizationheader, to see if the server supports Basic auth)PROPFIND /remote.php/webdav/(not sure why)GET /ocs/v2.php/cloud/capabilities?format=jsonPOST /index.php/login/v2POST /index.php/login/v2/poll(at this point you are logged-in)PROPFIND /remote.php/webdav/requesting only thed:getlastmodifiedproperty for the root directory (depth = 0).PROPFIND /remote.php/webdav/only foroc:sizeon the root directory and depth = 0. This could have been in previous request to make things faster.PROPFIND /remote.php/webdav/only foroc:sizeandd:getlastmodifiedon the root directory and depth = 1 when you are clicking the button to select the folders to sync.
After you have set up the sync you get a bunch of requests:
GET /status.phpPROPFIND /remote.php/webdav/requesting only thed:getlastmodifiedproperty for the root directory (depth = 0)GET /ocs/v1.php/cloud/capabilities?format=jsonwhich is now returning more stuff as you are logged-in (also note thev1, before it wasv2)GET /ocs/v1.php/config?format=jsonGET /ocs/v1.php/cloud/user?format=json- (other requests for internal Nextcloud features)
PROPFIND /remote.php/dav/files/toto/(where toto is the username)
Etags are mandatory
If you don't provide an etag, eg. for a directory, the app will fail to sync with a message about missing data.
Don't use text/xml
PROPFIND reply is not XML formatted
https://github.com/nextcloud/desktop/issues/4873
Custom WebDAV properties
// from lib/private/Files/Storage/DAV.php in NextCloud
// and apps/dav/lib/Connector/Sabre/Node.php
// R = Shareable
// S = Shared
// M = Mounted
// D = Delete
// G = Readable
// NV = Renameable/moveable
// Files only:
// W = Write (Update)
// CK = Create/Update
<oc:id>%s</oc:id>
<oc:size>0</oc:size>
<oc:downloadURL></oc:downloadURL>
<oc:permissions>%s</oc:permissions>
<oc:share-types/>
Use a proxy with desktop client
- start mitmweb
- run
export http_proxy=http://localhost:8080 && nextcloud -l --logdebug