nix-infra/config/hosts/nextcloud/nextcloud.nix

{ pkgs, config, ... }:
{
  services.nextcloud = {
    enable = true;
    package = pkgs.nextcloud29;
    hostName = "cloud.nekover.se";
    https = true;
    config = {
      dbtype = "pgsql";
      adminpassFile = "/secrets/nextcloud-adminpass.secret";
    };
    database.createLocally = true;
    configureRedis = true;
    extraAppsEnable = true;
    extraApps = with config.services.nextcloud.package.packages.apps; {
      inherit bookmarks contacts calendar tasks twofactor_webauthn user_oidc;
    };
    maxUploadSize = "16G";
    settings = {
      mail_smtpmode = "smtp";
      mail_sendmailmode = "smtp";
      mail_smtpsecure = "ssl";
      mail_from_address = "cloud";
      mail_domain = "nekover.se";
      mail_smtpauthtype = "LOGIN";
      mail_smtpauth = 1;
      mail_smtphost = "mail-1.grzb.de";
      mail_smtpport = 465;
      mail_smtpname = "cloud@nekover.se";
      default_phone_region = "DE";
    };
    # Only contains mail_smtppassword
    secretFile = "/secrets/nextcloud-secretfile.secret";
    phpOptions = {
      # The amount of memory for interned strings in Mbytes
      "opcache.interned_strings_buffer" = "64";
    };
  };

  services.nginx = {
    virtualHosts.${config.services.nextcloud.hostName} = {
      forceSSL = true;
      enableACME = true;
      extraConfig = ''
        listen 0.0.0.0:8443 http2 ssl proxy_protocol;

        set_real_ip_from 10.202.41.100;
        real_ip_header proxy_protocol;
      '';
    };
  };
}
Add nextcloud host 2023-08-03 15:51:21 +02:00			`{ pkgs, config, ... }:`
			`{`
			`services.nextcloud = {`
			`enable = true;`
Update/fix keycloak, matrix, nextcloud, wireguard-nat-nftables 2024-07-04 17:21:02 +02:00			`package = pkgs.nextcloud29;`
Add nextcloud host 2023-08-03 15:51:21 +02:00			`hostName = "cloud.nekover.se";`
			`https = true;`
			`config = {`
			`dbtype = "pgsql";`
			`adminpassFile = "/secrets/nextcloud-adminpass.secret";`
			`};`
			`database.createLocally = true;`
			`configureRedis = true;`
			`extraAppsEnable = true;`
			`extraApps = with config.services.nextcloud.package.packages.apps; {`
Add user_oidc app to nextcloud 2024-01-19 12:16:03 +01:00			`inherit bookmarks contacts calendar tasks twofactor_webauthn user_oidc;`
Add nextcloud host 2023-08-03 15:51:21 +02:00			`};`
			`maxUploadSize = "16G";`
Update/fix keycloak, matrix, nextcloud, wireguard-nat-nftables 2024-07-04 17:21:02 +02:00			`settings = {`
Add SMTP configuration to nextcloud and use an additional disk for the data 2023-08-04 03:32:06 +02:00			`mail_smtpmode = "smtp";`
			`mail_sendmailmode = "smtp";`
			`mail_smtpsecure = "ssl";`
			`mail_from_address = "cloud";`
			`mail_domain = "nekover.se";`
			`mail_smtpauthtype = "LOGIN";`
			`mail_smtpauth = 1;`
Use only snake case for element-web config since camel case is deprecated 2023-09-19 17:56:36 +02:00			`mail_smtphost = "mail-1.grzb.de";`
Add SMTP configuration to nextcloud and use an additional disk for the data 2023-08-04 03:32:06 +02:00			`mail_smtpport = 465;`
Use only snake case for element-web config since camel case is deprecated 2023-09-19 17:56:36 +02:00			`mail_smtpname = "cloud@nekover.se";`
Update/fix keycloak, matrix, nextcloud, wireguard-nat-nftables 2024-07-04 17:21:02 +02:00			`default_phone_region = "DE";`
Add SMTP configuration to nextcloud and use an additional disk for the data 2023-08-04 03:32:06 +02:00			`};`
Increase opcache.interned_strings_buffer PHP option 2023-08-05 20:36:14 +02:00			`# Only contains mail_smtppassword`
Add SMTP configuration to nextcloud and use an additional disk for the data 2023-08-04 03:32:06 +02:00			`secretFile = "/secrets/nextcloud-secretfile.secret";`
Increase opcache.interned_strings_buffer PHP option 2023-08-05 20:36:14 +02:00			`phpOptions = {`
			`# The amount of memory for interned strings in Mbytes`
			`"opcache.interned_strings_buffer" = "64";`
			`};`
Add nextcloud host 2023-08-03 15:51:21 +02:00			`};`

Add SMTP configuration to nextcloud and use an additional disk for the data 2023-08-04 03:32:06 +02:00			`services.nginx = {`
			`virtualHosts.${config.services.nextcloud.hostName} = {`
			`forceSSL = true;`
			`enableACME = true;`
			`extraConfig = ''`
Just do the nginx proxy_protocol listen in extraConfig and use stable packages 2023-09-03 17:43:41 +02:00			`listen 0.0.0.0:8443 http2 ssl proxy_protocol;`

Add SMTP configuration to nextcloud and use an additional disk for the data 2023-08-04 03:32:06 +02:00			`set_real_ip_from 10.202.41.100;`
			`real_ip_header proxy_protocol;`
			`'';`
			`};`
Add nextcloud host 2023-08-03 15:51:21 +02:00			`};`
			`}`