nixos-conf/services/nextcloud.nix

{ config, pkgs, ... }:
{
  imports = [ ./cert-store-client.nix ];

  networking.firewall.allowedTCPPorts = [ 443 ];
  networking.firewall.allowedUDPPorts = [ 443 ];

  services = {
    nextcloud = {
      package = pkgs.nextcloud31;
      enable = true;
      hostName = "nextcloud.vsinerva.fi";
      autoUpdateApps.enable = true;
      https = true;
      maxUploadSize = "10G";
      config = {
        adminpassFile = "/var/lib/nextcloud/adminpass";
      };
      settings = {
        overwriteprotocol = "https";
        maintenancce_window_start = 1;
        opcache.interned_strings_buffer = 32;
      };
    };

    nginx = {
      recommendedGzipSettings = true;
      recommendedOptimisation = true;
      recommendedTlsSettings = true;
      recommendedProxySettings = true;

      virtualHosts.${config.services.nextcloud.hostName} = {
        forceSSL = true;
        kTLS = true;
        sslCertificate = "/mnt/acme/fullchain.pem";
        sslCertificateKey = "/mnt/acme/key.pem";
      };
    };
  };
}
Init 2024-05-23 13:39:48 +03:00			`{ config, pkgs, ... }:`
			`{`
Test cert-store with nextcloud 2025-01-20 22:30:30 +02:00			`imports = [ ./cert-store-client.nix ];`
Add acme-dns to vaultwarden. Refactor conf 2025-01-08 13:10:43 +02:00
Gitea to cert-store 2025-01-20 23:11:21 +02:00			`networking.firewall.allowedTCPPorts = [ 443 ];`
Auto-indent every file 2024-06-02 05:53:39 +03:00			`networking.firewall.allowedUDPPorts = [ 443 ];`
Init 2024-05-23 13:39:48 +03:00
Clean Nextcloud config 2024-12-03 23:46:24 +02:00			`services = {`
			`nextcloud = {`
Nextcloud version bump 2025-03-31 15:09:27 +03:00			`package = pkgs.nextcloud31;`
Clean Nextcloud config 2024-12-03 23:46:24 +02:00			`enable = true;`
			`hostName = "nextcloud.vsinerva.fi";`
			`autoUpdateApps.enable = true;`
			`https = true;`
			`maxUploadSize = "10G";`
			`config = {`
			`adminpassFile = "/var/lib/nextcloud/adminpass";`
			`};`
			`settings = {`
			`overwriteprotocol = "https";`
			`maintenancce_window_start = 1;`
			`opcache.interned_strings_buffer = 32;`
			`};`
Auto-indent every file 2024-06-02 05:53:39 +03:00			`};`
Init 2024-05-23 13:39:48 +03:00
Clean Nextcloud config 2024-12-03 23:46:24 +02:00			`nginx = {`
			`recommendedGzipSettings = true;`
Adjust nginx settings 2025-01-15 00:29:25 +02:00			`recommendedOptimisation = true;`
			`recommendedTlsSettings = true;`
			`recommendedProxySettings = true;`
Clean Nextcloud config 2024-12-03 23:46:24 +02:00
			`virtualHosts.${config.services.nextcloud.hostName} = {`
			`forceSSL = true;`
			`kTLS = true;`
Test cert-store with nextcloud 2025-01-20 22:30:30 +02:00			`sslCertificate = "/mnt/acme/fullchain.pem";`
			`sslCertificateKey = "/mnt/acme/key.pem";`
Auto-indent every file 2024-06-02 05:53:39 +03:00			`};`
			`};`
Format every file 2024-06-02 16:18:19 +03:00			`};`
			`}`