nextcloud setup (thank you notashelf)
This commit is contained in:
parent
02e2fa576b
commit
55e22c7c76
modules/server
|
@ -8,7 +8,7 @@ in {
|
||||||
services.postgresql = {
|
services.postgresql = {
|
||||||
enable = true;
|
enable = true;
|
||||||
package = pkgs.postgresql_17_jit;
|
package = pkgs.postgresql_17_jit;
|
||||||
ensureDatabases = [ "forgejo" "akkoma" ];
|
ensureDatabases = [ "forgejo" "akkoma" "nextcloud" ];
|
||||||
ensureUsers = [
|
ensureUsers = [
|
||||||
{
|
{
|
||||||
name = "postgres";
|
name = "postgres";
|
||||||
|
@ -28,6 +28,10 @@ in {
|
||||||
name = "akkoma";
|
name = "akkoma";
|
||||||
ensureDBOwnership = true;
|
ensureDBOwnership = true;
|
||||||
}
|
}
|
||||||
|
{
|
||||||
|
name = "nextcloud";
|
||||||
|
ensureDBOwnership = true;
|
||||||
|
}
|
||||||
];
|
];
|
||||||
# Thank you NotAShelf
|
# Thank you NotAShelf
|
||||||
# https://github.com/NotAShelf/nyx/blob/d407b4d6e5ab7f60350af61a3d73a62a5e9ac660/modules/core/roles/server/system/services/databases/postgresql.nix#L74
|
# https://github.com/NotAShelf/nyx/blob/d407b4d6e5ab7f60350af61a3d73a62a5e9ac660/modules/core/roles/server/system/services/databases/postgresql.nix#L74
|
||||||
|
|
|
@ -11,8 +11,8 @@ in {
|
||||||
services.redis = {
|
services.redis = {
|
||||||
enable = true;
|
enable = true;
|
||||||
vmOverCommit = true;
|
vmOverCommit = true;
|
||||||
servers = mkIf srv.services.forgejo.enable {
|
servers = {
|
||||||
forgejo = {
|
forgejo = mkIf srv.services.forgejo.enable {
|
||||||
enable = true;
|
enable = true;
|
||||||
user = "forgejo";
|
user = "forgejo";
|
||||||
port = 6371;
|
port = 6371;
|
||||||
|
@ -20,6 +20,14 @@ in {
|
||||||
logLevel = "debug";
|
logLevel = "debug";
|
||||||
requirePass = "forgejo";
|
requirePass = "forgejo";
|
||||||
};
|
};
|
||||||
|
nextcloud = mkIf srv.services.local.nextcloud.enable {
|
||||||
|
enable = true;
|
||||||
|
user = "nextcloud";
|
||||||
|
prot = 6372;
|
||||||
|
databases = 16;
|
||||||
|
logLevel = "debug";
|
||||||
|
requirePass = "nextcloud";
|
||||||
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
|
@ -1 +1 @@
|
||||||
{ imports = [ ./forgejo.nix ./headscale.nix ]; }
|
{ imports = [ ./forgejo.nix ./headscale.nix ./local ]; }
|
||||||
|
|
1
modules/server/services/local/default.nix
Normal file
1
modules/server/services/local/default.nix
Normal file
|
@ -0,0 +1 @@
|
||||||
|
{ imports = [ ./nextcloud ]; }
|
90
modules/server/services/local/nextcloud/default.nix
Normal file
90
modules/server/services/local/nextcloud/default.nix
Normal file
|
@ -0,0 +1,90 @@
|
||||||
|
{ config, lib, ... }:
|
||||||
|
with lib;
|
||||||
|
let cfg = config.void.server.local.nextcloud;
|
||||||
|
in {
|
||||||
|
options.void.server.services.local.nextcloud = {
|
||||||
|
enable = mkEnableOption false;
|
||||||
|
};
|
||||||
|
|
||||||
|
config = mkIf cfg.enable {
|
||||||
|
# thank you again notashelf lmao
|
||||||
|
services = {
|
||||||
|
nextcloud = {
|
||||||
|
enable = true;
|
||||||
|
package = pkgs.nextcloud30;
|
||||||
|
|
||||||
|
https = true;
|
||||||
|
hostName = "nextcloud.sako.box";
|
||||||
|
nginx = { recommendedHttpHeaders = true; };
|
||||||
|
|
||||||
|
autoUpdateApps = {
|
||||||
|
enable = true;
|
||||||
|
startAt = "03:00";
|
||||||
|
};
|
||||||
|
|
||||||
|
caching = {
|
||||||
|
apcu = true;
|
||||||
|
memcached = true;
|
||||||
|
redis = true;
|
||||||
|
};
|
||||||
|
|
||||||
|
config = {
|
||||||
|
dbtype = "pgsql";
|
||||||
|
dbhost = "/run/postgresql";
|
||||||
|
dbname = "nextcloud";
|
||||||
|
dbuser = "nextcloud";
|
||||||
|
};
|
||||||
|
settings = {
|
||||||
|
maintenance_window_start = 1;
|
||||||
|
trusted_domains = [ "https://nextcloud.sako.box" ];
|
||||||
|
trusted_proxies = [ "https://nextcloud.sako.box" ];
|
||||||
|
|
||||||
|
redis = {
|
||||||
|
host = "/run/redis-nextcloud";
|
||||||
|
dbindex = 0;
|
||||||
|
timeout = 3;
|
||||||
|
};
|
||||||
|
default_phone_region = "AE";
|
||||||
|
lost_password_link = "disabled";
|
||||||
|
};
|
||||||
|
phpOptions = {
|
||||||
|
"opcache.enable" = "1";
|
||||||
|
"opcache.enable_cli" = "1";
|
||||||
|
"opcache.validate_timestamps" = "0";
|
||||||
|
"opcache.save_comments" = "1";
|
||||||
|
|
||||||
|
# <https://docs.nextcloud.com/server/latest/admin_manual/installation/server_tuning.html>
|
||||||
|
"opcache.jit" = "1255";
|
||||||
|
"opcache.jit_buffer_size" = "256M";
|
||||||
|
|
||||||
|
# fix the opcache "buffer is almost full" error in admin overview
|
||||||
|
"opcache.interned_strings_buffer" = "16";
|
||||||
|
# try to resolve delays in displaying content or incomplete page rendering
|
||||||
|
"output_buffering" = "off";
|
||||||
|
|
||||||
|
"pm" = "dynamic";
|
||||||
|
"pm.max_children" = "50";
|
||||||
|
"pm.start_servers" = "15";
|
||||||
|
"pm.min_spare_servers" = "15";
|
||||||
|
"pm.max_spare_servers" = "25";
|
||||||
|
"pm.max_requests" = "500";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
nginx.virtualHosts."nextcloud.sako.box" = {
|
||||||
|
sslCertificate = "/srv/secrets/certs/sako.box.pem";
|
||||||
|
sslCertificateKey = "/srv/secrets/certs/sako.box-key.pem";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
systemd.services = {
|
||||||
|
phpfpm-nextcloud.aliases = [ "nextcloud.service" ];
|
||||||
|
"nextcloud-setup" = {
|
||||||
|
requires = [ "postgresql.service" "redis-nextcloud.service" ];
|
||||||
|
after = [ "postgresql.service" "redis-nextcloud.service" ];
|
||||||
|
serviceConfig = {
|
||||||
|
Restart = "on-failure";
|
||||||
|
RestartSec = "10s";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
}
|
Loading…
Reference in a new issue