nextcloud setup (thank you notashelf)
This commit is contained in:
parent
02e2fa576b
commit
55e22c7c76
modules/server
|
@ -8,7 +8,7 @@ in {
|
|||
services.postgresql = {
|
||||
enable = true;
|
||||
package = pkgs.postgresql_17_jit;
|
||||
ensureDatabases = [ "forgejo" "akkoma" ];
|
||||
ensureDatabases = [ "forgejo" "akkoma" "nextcloud" ];
|
||||
ensureUsers = [
|
||||
{
|
||||
name = "postgres";
|
||||
|
@ -28,6 +28,10 @@ in {
|
|||
name = "akkoma";
|
||||
ensureDBOwnership = true;
|
||||
}
|
||||
{
|
||||
name = "nextcloud";
|
||||
ensureDBOwnership = true;
|
||||
}
|
||||
];
|
||||
# Thank you NotAShelf
|
||||
# https://github.com/NotAShelf/nyx/blob/d407b4d6e5ab7f60350af61a3d73a62a5e9ac660/modules/core/roles/server/system/services/databases/postgresql.nix#L74
|
||||
|
|
|
@ -11,8 +11,8 @@ in {
|
|||
services.redis = {
|
||||
enable = true;
|
||||
vmOverCommit = true;
|
||||
servers = mkIf srv.services.forgejo.enable {
|
||||
forgejo = {
|
||||
servers = {
|
||||
forgejo = mkIf srv.services.forgejo.enable {
|
||||
enable = true;
|
||||
user = "forgejo";
|
||||
port = 6371;
|
||||
|
@ -20,6 +20,14 @@ in {
|
|||
logLevel = "debug";
|
||||
requirePass = "forgejo";
|
||||
};
|
||||
nextcloud = mkIf srv.services.local.nextcloud.enable {
|
||||
enable = true;
|
||||
user = "nextcloud";
|
||||
prot = 6372;
|
||||
databases = 16;
|
||||
logLevel = "debug";
|
||||
requirePass = "nextcloud";
|
||||
};
|
||||
};
|
||||
};
|
||||
};
|
||||
|
|
|
@ -1 +1 @@
|
|||
{ imports = [ ./forgejo.nix ./headscale.nix ]; }
|
||||
{ imports = [ ./forgejo.nix ./headscale.nix ./local ]; }
|
||||
|
|
1
modules/server/services/local/default.nix
Normal file
1
modules/server/services/local/default.nix
Normal file
|
@ -0,0 +1 @@
|
|||
{ imports = [ ./nextcloud ]; }
|
90
modules/server/services/local/nextcloud/default.nix
Normal file
90
modules/server/services/local/nextcloud/default.nix
Normal file
|
@ -0,0 +1,90 @@
|
|||
{ config, lib, ... }:
|
||||
with lib;
|
||||
let cfg = config.void.server.local.nextcloud;
|
||||
in {
|
||||
options.void.server.services.local.nextcloud = {
|
||||
enable = mkEnableOption false;
|
||||
};
|
||||
|
||||
config = mkIf cfg.enable {
|
||||
# thank you again notashelf lmao
|
||||
services = {
|
||||
nextcloud = {
|
||||
enable = true;
|
||||
package = pkgs.nextcloud30;
|
||||
|
||||
https = true;
|
||||
hostName = "nextcloud.sako.box";
|
||||
nginx = { recommendedHttpHeaders = true; };
|
||||
|
||||
autoUpdateApps = {
|
||||
enable = true;
|
||||
startAt = "03:00";
|
||||
};
|
||||
|
||||
caching = {
|
||||
apcu = true;
|
||||
memcached = true;
|
||||
redis = true;
|
||||
};
|
||||
|
||||
config = {
|
||||
dbtype = "pgsql";
|
||||
dbhost = "/run/postgresql";
|
||||
dbname = "nextcloud";
|
||||
dbuser = "nextcloud";
|
||||
};
|
||||
settings = {
|
||||
maintenance_window_start = 1;
|
||||
trusted_domains = [ "https://nextcloud.sako.box" ];
|
||||
trusted_proxies = [ "https://nextcloud.sako.box" ];
|
||||
|
||||
redis = {
|
||||
host = "/run/redis-nextcloud";
|
||||
dbindex = 0;
|
||||
timeout = 3;
|
||||
};
|
||||
default_phone_region = "AE";
|
||||
lost_password_link = "disabled";
|
||||
};
|
||||
phpOptions = {
|
||||
"opcache.enable" = "1";
|
||||
"opcache.enable_cli" = "1";
|
||||
"opcache.validate_timestamps" = "0";
|
||||
"opcache.save_comments" = "1";
|
||||
|
||||
# <https://docs.nextcloud.com/server/latest/admin_manual/installation/server_tuning.html>
|
||||
"opcache.jit" = "1255";
|
||||
"opcache.jit_buffer_size" = "256M";
|
||||
|
||||
# fix the opcache "buffer is almost full" error in admin overview
|
||||
"opcache.interned_strings_buffer" = "16";
|
||||
# try to resolve delays in displaying content or incomplete page rendering
|
||||
"output_buffering" = "off";
|
||||
|
||||
"pm" = "dynamic";
|
||||
"pm.max_children" = "50";
|
||||
"pm.start_servers" = "15";
|
||||
"pm.min_spare_servers" = "15";
|
||||
"pm.max_spare_servers" = "25";
|
||||
"pm.max_requests" = "500";
|
||||
};
|
||||
};
|
||||
nginx.virtualHosts."nextcloud.sako.box" = {
|
||||
sslCertificate = "/srv/secrets/certs/sako.box.pem";
|
||||
sslCertificateKey = "/srv/secrets/certs/sako.box-key.pem";
|
||||
};
|
||||
};
|
||||
};
|
||||
systemd.services = {
|
||||
phpfpm-nextcloud.aliases = [ "nextcloud.service" ];
|
||||
"nextcloud-setup" = {
|
||||
requires = [ "postgresql.service" "redis-nextcloud.service" ];
|
||||
after = [ "postgresql.service" "redis-nextcloud.service" ];
|
||||
serviceConfig = {
|
||||
Restart = "on-failure";
|
||||
RestartSec = "10s";
|
||||
};
|
||||
};
|
||||
};
|
||||
}
|
Loading…
Reference in a new issue