Skip to content

feat: Add documentation about e2ee #12821

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

feat: Add documentation about e2ee #12821

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
fcaa99a
feat: Add documentation about e2ee
artonge Apr 1, 2025
16f1019
add android images
alperozturk96 Apr 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 2 additions & 1 deletion user_manual/files/index.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,11 +10,12 @@ Files & synchronization
deleted_file_management
desktop_mobile_sync
encrypting_files
using_e2ee
sharing
file_drop
large_file_upload
quota
version_control
projects
transfer_ownership
federated_cloud_sharing
federated_cloud_sharing
295 changes: 295 additions & 0 deletions user_manual/files/using_e2ee.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,295 @@
=============================================
Using end-to-end encryption
=============================================

If enabled server side, Nextcloud provides the possibility to encrypt your files on your devices.
This is called end-to-end encryption, or E2EE, because the files are encrypted on your device and only decrypted on your device.
The server never sees the unencrypted files, further protecting user privacy and data security.

Enabling E2EE
-------------

If your administrator enabled the [End-to-End Encryption app](https://apps.nextcloud.com/apps/end_to_end_encryption), you can start using it from one of your devices.
Open the settings of the Nextcloud client and look for the EE2E encryption settings.

.. raw:: html

<details>
<summary>Desktop</summary>

.. image:: ../images/e2ee-desktop-setup.png
:width: 750px
:alt: Setup E2EE on the desktop client

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Android</summary>

.. image:: ../images/e2ee-android-setup.png
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • replace re French Android UI (known already)

:width: 400px
:alt: Setup E2EE on Android

.. raw:: html

</details>


.. raw:: html

<details>
<summary>iOS</summary>

.. image:: ../images/e2ee-ios-setup-1.png
:width: 400px
:alt: Setup E2EE on iOS step 1

.. image:: ../images/e2ee-ios-setup-2.png
:width: 400px
:alt: Setup E2EE on iOS step 2

.. image:: ../images/e2ee-ios-setup-3.png
:width: 400px
:alt: Setup E2EE on iOS step 3

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Web</summary>

.. warning::
It is not possible to enable encryption on a folder in the browser. This must be done on a client app, either a desktop or mobile client.

.. raw:: html

</details>


.. raw:: html

<br />

Encrypting a folder
-----------------------

.. warning::

You can only enable encryption on empty folders.


.. raw:: html

<details>
<summary>Desktop</summary>

.. image:: ../images/e2ee-desktop-encrypt-1.png
:width: 750px
:alt: Encrypting a folder on the desktop client step 1

.. image:: ../images/e2ee-desktop-encrypt-2.png
:width: 750px
:alt: Encrypting a folder on the desktop client step 2

.. image:: ../images/e2ee-desktop-encrypt-3.png
:width: 750px
:alt: Encrypting a folder on the desktop client step 3

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Android</summary>

.. image:: ../images/e2ee-android-encrypt.png
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • Add Android screenshot (missing? 404..)

:width: 400px
:alt: Encrypting a folder on an Android device

.. raw:: html

</details>


.. raw:: html

<details>
<summary>iOS</summary>

.. image:: ../images/e2ee-ios-encrypt.png
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • Add iOS screenshot (missing? 404..)

:width: 400px
:alt: Encrypting a folder on an iOS device

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Web</summary>

.. warning::

It is not possible to enable encryption on a folder in the browser. This must be done on a client app, either a desktop or mobile client.

.. raw:: html

</details>


.. raw:: html

<br />

Adding an E2EE device
---------------------

.. raw:: html

<details>
<summary>Desktop</summary>

.. image:: ../images/e2ee-desktop-add.png
:width: 750px
:alt: Setup a new desktop client

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Android</summary>

.. image:: ../images/e2ee-android-add.png
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • replace re French Android UI (known already)

:width: 400px
:alt: Setup a new Android device

.. raw:: html

</details>


.. raw:: html

<details>
<summary>iOS</summary>

.. image:: ../images/e2ee-ios-add.png
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • Add iOS screenshot (missing? 404..)

:width: 400px
:alt: Setup a new iOS device

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Web</summary>

In the browser, first enable E2EE in the personal settings. This is needed, as E2EE is less secure in the browser, requiring you to fully trust the administrator to not alter the source code the browser will execute.
E2EE folders are currently read-only. Therefore, it is not possible to add, remove, edit, or share an E2EE file from the browser.

.. image:: ../images/e2ee-web-add-1.png
:width: 750px
:alt: Setup a new browser session step 1

.. image:: ../images/e2ee-web-add-2.png
:width: 750px
:alt: Setup a new browser session step 2

.. image:: ../images/e2ee-web-add-3.png
:width: 750px
:alt: Setup a new browser session step 3

.. raw:: html

</details>


.. raw:: html

<br />


Displaying the mnemonic
-----------------------

The mnemonic is a list of words that is used to encrypt and decrypt your files. It is important to keep this mnemonic safe, as it is the only way to access your files if you lose access to your device. If you lose access to your mnemonic, you will lose access to your files.

.. raw:: html

<details>
<summary>Desktop</summary>

.. image:: ../images/e2ee-desktop-mnemonic.png
:width: 750px
:alt: Displaying the mnemonic on the desktop client

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Android</summary>

.. image:: ../images/e2ee-android-mnemonic.png
:width: 400px
:alt: Displaying the mnemonic on an Android device

.. raw:: html

</details>


.. raw:: html

<details>
<summary>iOS</summary>

.. image:: ../images/e2ee-ios-mnemonic.png
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • Add iOS screenshot (missing? 404..)

:width: 400px
:alt: Displaying the mnemonic on an iOS device

.. raw:: html

</details>


.. raw:: html

<details>
<summary>Web</summary>

.. warning::

It is not possible to display the mnemonic in the browser.

.. raw:: html

</details>

.. raw:: html

<br />
Binary file added user_manual/images/e2ee-android-add.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-android-encrypt.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-android-mnemonic.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-android-setup.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-desktop-add.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-desktop-done.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-desktop-encrypt-1.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-desktop-encrypt-2.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-desktop-encrypt-3.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-desktop-mnemonic.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-desktop-setup.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-ios-mnemonic.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-ios-setup-1.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-ios-setup-2.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-ios-setup-3.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-web-add-1.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-web-add-2.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added user_manual/images/e2ee-web-add-3.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading