[Bug]: SQLSTATE[23000]: Integrity constraint violation: 1062 Duplicate entry 'NextCloud-da0f4174-c707-103c-89a4-dfb392a94239' for key 'user_ldap_membership_unique'

[kcastner]

⚠️ This issue respects the following points: ⚠️

• This is a bug, not a question or a configuration/webserver/proxy issue.
• This issue is not already reported on Github OR Nextcloud Community Forum (I've searched it).
• Nextcloud Server is up to date. See Maintenance and Release Schedule for supported versions.
• I agree to follow Nextcloud's Code of Conduct.

Bug description

After login via a LDAP based user, i get this error:
SQLSTATE[23000]: Integrity constraint violation: 1062 Duplicate entry 'NextCloud-da0f4174-c707-103c-89a4-dfb392a94239' for key 'user_ldap_membership_unique'

Steps to reproduce

1. Login to a NC with LDAP user
2. Login as admin and check server logs.

Expected behavior

Error message should not appear after successful login

Installation method

None

Nextcloud Server version

26

Operating system

None

PHP engine version

None

Web server

None

Database engine version

None

Is this bug present after an update or on a fresh install?

None

Are you using the Nextcloud Server Encryption module?

None

What user-backends are you using?

• Default user-backend (database)
• LDAP/ Active Directory
• SSO - SAML
• Other

Configuration report

{
    "system": {
        "htaccess.RewriteBase": "\/",
        "memcache.local": "\\OC\\Memcache\\APCu",
        "apps_paths": [
            {
                "path": "\/var\/www\/html\/apps",
                "url": "\/apps",
                "writable": false
            },
            {
                "path": "\/var\/www\/html\/custom_apps",
                "url": "\/custom_apps",
                "writable": true
            }
        ],
        "mail_smtpmode": "smtp",
        "mail_smtphost": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpport": "465",
        "mail_smtpsecure": "ssl",
        "mail_smtpauth": true,
        "mail_smtpauthtype": "LOGIN",
        "mail_smtpname": "***REMOVED SENSITIVE VALUE***",
        "mail_from_address": "***REMOVED SENSITIVE VALUE***",
        "mail_domain": "***REMOVED SENSITIVE VALUE***",
        "mail_smtppassword": "***REMOVED SENSITIVE VALUE***",
        "passwordsalt": "***REMOVED SENSITIVE VALUE***",
        "secret": "***REMOVED SENSITIVE VALUE***",
        "trusted_domains": [
            "localhost",
            "*"
        ],
        "overwriteprotocol": "https",
        "datadirectory": "***REMOVED SENSITIVE VALUE***",
        "dbtype": "mysql",
        "version": "28.0.1.1",
        "overwrite.cli.url": "http:\/\/localhost",
        "dbname": "***REMOVED SENSITIVE VALUE***",
        "dbhost": "***REMOVED SENSITIVE VALUE***",
        "dbport": "",
        "dbtableprefix": "oc_",
        "mysql.utf8mb4": true,
        "dbuser": "***REMOVED SENSITIVE VALUE***",
        "dbpassword": "***REMOVED SENSITIVE VALUE***",
        "installed": true,
        "instanceid": "***REMOVED SENSITIVE VALUE***",
        "ldapProviderFactory": "OCA\\User_LDAP\\LDAPProviderFactory",
        "loglevel": 2,
        "maintenance": false,
        "default_language": "de",
        "default_locale": "de_DE",
        "default_phone_region": "DE",
        "updater.release.channel": "stable"
    }
}

List of activated Apps

Enabled:
  - activity: 2.20.0
  - circles: 28.0.0-dev
  - cloud_federation_api: 1.11.0
  - comments: 1.18.0
  - contactsinteraction: 1.9.0
  - dashboard: 7.8.0
  - dav: 1.29.1
  - federatedfilesharing: 1.18.0
  - federation: 1.18.0
  - files: 2.0.0
  - files_pdfviewer: 2.9.0
  - files_reminders: 1.1.0
  - files_sharing: 1.20.0
  - files_trashbin: 1.18.0
  - files_versions: 1.21.0
  - firstrunwizard: 2.17.0
  - logreader: 2.13.0
  - lookup_server_connector: 1.16.0
  - nextcloud_announcements: 1.17.0
  - notifications: 2.16.0
  - oauth2: 1.16.3
  - password_policy: 1.18.0
  - photos: 2.4.0
  - privacy: 1.12.0
  - provisioning_api: 1.18.0
  - recommendations: 2.0.0
  - related_resources: 1.3.0
  - richdocuments: 8.3.0
  - serverinfo: 1.18.0
  - settings: 1.10.1
  - sharebymail: 1.18.0
  - spreed: 18.0.1
  - support: 1.11.0
  - survey_client: 1.16.0
  - systemtags: 1.18.0
  - text: 3.9.1
  - theming: 2.3.0
  - twofactor_backupcodes: 1.17.0
  - twofactor_totp: 10.0.0-beta.2
  - twofactor_webauthn: 1.3.2
  - updatenotification: 1.18.0
  - user_ldap: 1.19.0
  - user_status: 1.8.1
  - viewer: 2.2.0
  - weather_status: 1.8.0
  - workflowengine: 2.10.0
Disabled:
  - admin_audit: 1.18.0
  - bruteforcesettings: 2.8.0
  - encryption: 2.16.0 (installed 2.13.0)
  - files_external: 1.20.0
  - files_rightclick: 0.15.1 (installed 1.6.0)
  - richdocumentscode: 23.5.604 (installed 23.5.604)
  - suspicious_login: 6.0.0
  - user_saml: 6.0.1 (installed 6.0.1)

Nextcloud Signing status

No errors have been found.

Nextcloud Logs

Due to error "[...] body is too long [...]" - file will be attached

Additional info

nextcloud (1).log

[joshtrichards]

Duplicate of #42232

[jangatzke]

I am not sure if this is really a duplicate of #42232. I have deleted the duplicates from the database and was able to enable the LDAP app. But now this error occurs every time a user logs in for the first time. The users see an error 500 after successful login. After reloading the page, Nextcloud works fine and the users can access their files.

nextcloud.log:

,"message":"An exception occurred while executing a query: SQLSTATE[23505]: Unique violation: 7 ERROR:  duplicate key value violates unique constraint \"user_ldap_membership_unique\"\nDETAIL:  Key (groupid, userid)=(SQL-SPS_Error_Test-Read, FA67CEC4-4834-40B4-B440-2111B006933C) already exists.","exception":{},"CustomMessage":"An exception occurred while executing a query: SQLSTATE[23505]: Unique violation: 7 ERROR:  duplicate key value violates unique constraint \"user_ldap_membership_unique\"\nDETAIL:  Key (groupid, userid)=(username, FA67CEC4-4834-40B4-B440-2111B006933C) already exists."}}

PSQL log:

2024-01-04 13:42:40.656 CET [2891499] ncadmin@nextcloud_db DETAIL:  Key (groupid, userid)=(username, FA67CEC4-4834-40B4-B440-2111B006933C) already exists.
2024-01-04 13:42:40.656 CET [2891499] ncadmin@nextcloud_db STATEMENT:  INSERT INTO "oc_ldap_group_membership" ("groupid", "userid") VALUES($1, $2)

The user in the log is not the user who logged in!

[kcastner]

@jangatzke i wrote in the issue @joshtrichards mentioned - i did a recheck, there are other tables related to it.
till now there is no solution. the workaround is as you sayed to relog :D

my current error log looks like this - im not sure if this will help out; the collabora errors are related due to update checks.
due to the 25MB file limit at github, the log is uploaded to my nextcloud.

[come-nc]

Reopening as this one is not from the migration but at login.
According to #42232 (comment) the migration went fine and the new table exists.

Have to figure out why login tries to insert a duplicated groupmembership.

[come-nc]

@kcastner So you only get the problem once for each user?

Can you reproduce it easily so that you would be able to provide information from both before and after the problem about the LDAP and DB content?