nixos/modules/services/nextcloud/default.nix

# self-hosted cloud
{ config, lib, pkgs, ... }:
let
  cfg = config.my.services.nextcloud;
  domain = config.networking.domain;
in
{
  options.my.services.nextcloud = with lib; {
    enable = mkEnableOption "Nextcloud";
    maxSize = mkOption {
      type = types.str;
      default = "10G";
      example = "512M";
      description = "Maximum file upload size";
    };
    admin = mkOption {
      type = types.str;
      default = "felix";
      example = "admin";
      description = "Name of the admin user";
    };
    defaultPhoneRegion = mkOption {
      type = types.str;
      default = "DE";
      example = "US";
      description = "country codes for automatic phone-number ";
    };
    passwordFile = mkOption {
      type = types.path;
      example = "/var/lib/nextcloud/password.txt";
      description = ''
        Path to a file containing the admin's password, must be readable by
        'nextcloud' user.
      '';
    };
  };

  config = lib.mkIf cfg.enable {
    services.nextcloud = {
      enable = true;
      package = pkgs.nextcloud25;
      hostName = "cloud.${domain}";
      maxUploadSize = cfg.maxSize;
      autoUpdateApps.enable = true;
      config = {
        adminuser = cfg.admin;
        adminpassFile = cfg.passwordFile;
        defaultPhoneRegion = cfg.defaultPhoneRegion;

        overwriteProtocol = "https"; # Nginx only allows SSL

        #dbtype = "pgsql";
        #dbhost = "/run/postgresql";
      };

      extraApps = {
        calendar = let version = "4.1.0"; in pkgs.fetchNextcloudApp {
          url = "https://github.com/nextcloud-releases/calendar/releases/download/v${version}/calendar-v${version}.tar.gz";
          sha256 = "sha256-KALFhCNjofFQMntv3vyL0TJxqD/mBkeDpxt8JV4CPAM=";
        };
        contacts = let version = "5.0.1"; in pkgs.fetchNextcloudApp {
          url = "https://github.com/nextcloud-releases/contacts/releases/download/v${version}/contacts-v${version}.tar.gz";
          sha256 = "sha256-aygqBo4T/13Sz38yGA95Su85woDPt98Bui9LhyQJ59U=";
        };
        tasks = let version = "0.14.5"; in pkgs.fetchNextcloudApp {
          url = "https://github.com/nextcloud/tasks/releases/download/v${version}/tasks.tar.gz";
          sha256 = "sha256-pbcw6bHv1Za+F351hDMGkMqeaAw4On8E146dak0boUo=";
        };
        deck = let version = "1.8.2"; in pkgs.fetchNextcloudApp {
          url = "https://github.com/nextcloud/deck/releases/download/v${version}/deck.tar.gz";
          sha256 = "sha256-aH0yzqUUAgdtJfwWoKsWV7BeplUqVkNCTyHfyQSvbro=";
        };
      };
    };

    #services.postgresql = {
    #  enable = true;
    #  ensureDatabases = [ "nextcloud" ];
    #  ensureUsers = [
    #    {
    #      name = "nextcloud";
    #      ensurePermissions."DATABASE nextcloud" = "ALL PRIVILEGES";
    #    }
    #  ];
    #};

    #systemd.services."nextcloud-setup" = {
    #  requires = [ "postgresql.service" ];
    #  after = [ "postgresql.service" ];
    #};

    # The service above configures the domain, no need for my wrapper
    services.nginx.virtualHosts."cloud.${domain}" = {
      forceSSL = true;
      useACMEHost = domain;

      # so homer can get the online status
      extraConfig = lib.optionalString config.my.services.homer.enable ''
        add_header Access-Control-Allow-Origin https://${domain};
      '';
    };

    my.services.backup = {
      exclude = [
        # image previews can take up a lot of space
        "${config.services.nextcloud.home}/data/appdata_*/preview"
      ];
    };

    webapps.apps.nextcloud = {
      dashboard = {
        name = "Cloud";
        category = "media";
        icon = "cloud";
        link = "https://cloud.${domain}/login";
      };
    };
  };
}
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`# self-hosted cloud`
			`{ config, lib, pkgs, ... }:`
			`let`
			`cfg = config.my.services.nextcloud;`
			`domain = config.networking.domain;`
			`in`
			`{`
			`options.my.services.nextcloud = with lib; {`
			`enable = mkEnableOption "Nextcloud";`
			`maxSize = mkOption {`
			`type = types.str;`
service/nextcloud: increase upload limit 2023-04-02 12:16:21 +02:00			`default = "10G";`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`example = "512M";`
			`description = "Maximum file upload size";`
			`};`
			`admin = mkOption {`
			`type = types.str;`
			`default = "felix";`
			`example = "admin";`
			`description = "Name of the admin user";`
			`};`
			`defaultPhoneRegion = mkOption {`
			`type = types.str;`
			`default = "DE";`
			`example = "US";`
			`description = "country codes for automatic phone-number ";`
			`};`
			`passwordFile = mkOption {`
service/nextcloud: exclude thumbnails from backup 2022-12-04 18:07:21 +01:00			`type = types.path;`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`example = "/var/lib/nextcloud/password.txt";`
			`description = ''`
			`Path to a file containing the admin's password, must be readable by`
			`'nextcloud' user.`
			`'';`
			`};`
			`};`

			`config = lib.mkIf cfg.enable {`
			`services.nextcloud = {`
			`enable = true;`
			`package = pkgs.nextcloud25;`
			`hostName = "cloud.${domain}";`
			`maxUploadSize = cfg.maxSize;`
			`autoUpdateApps.enable = true;`
			`config = {`
			`adminuser = cfg.admin;`
			`adminpassFile = cfg.passwordFile;`
			`defaultPhoneRegion = cfg.defaultPhoneRegion;`

			`overwriteProtocol = "https"; # Nginx only allows SSL`

			`#dbtype = "pgsql";`
			`#dbhost = "/run/postgresql";`
			`};`

			`extraApps = {`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`calendar = let version = "4.1.0"; in pkgs.fetchNextcloudApp {`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`url = "https://github.com/nextcloud-releases/calendar/releases/download/v${version}/calendar-v${version}.tar.gz";`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`sha256 = "sha256-KALFhCNjofFQMntv3vyL0TJxqD/mBkeDpxt8JV4CPAM=";`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`};`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`contacts = let version = "5.0.1"; in pkgs.fetchNextcloudApp {`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`url = "https://github.com/nextcloud-releases/contacts/releases/download/v${version}/contacts-v${version}.tar.gz";`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`sha256 = "sha256-aygqBo4T/13Sz38yGA95Su85woDPt98Bui9LhyQJ59U=";`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`};`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`tasks = let version = "0.14.5"; in pkgs.fetchNextcloudApp {`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`url = "https://github.com/nextcloud/tasks/releases/download/v${version}/tasks.tar.gz";`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`sha256 = "sha256-pbcw6bHv1Za+F351hDMGkMqeaAw4On8E146dak0boUo=";`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`};`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`deck = let version = "1.8.2"; in pkgs.fetchNextcloudApp {`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`url = "https://github.com/nextcloud/deck/releases/download/v${version}/deck.tar.gz";`
service/nextcloud: update extraApps 2022-12-25 12:22:23 +01:00			`sha256 = "sha256-aH0yzqUUAgdtJfwWoKsWV7BeplUqVkNCTyHfyQSvbro=";`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`};`
			`};`
			`};`

			`#services.postgresql = {`
			`# enable = true;`
			`# ensureDatabases = [ "nextcloud" ];`
			`# ensureUsers = [`
			`# {`
			`# name = "nextcloud";`
			`# ensurePermissions."DATABASE nextcloud" = "ALL PRIVILEGES";`
			`# }`
			`# ];`
			`#};`

			`#systemd.services."nextcloud-setup" = {`
			`# requires = [ "postgresql.service" ];`
			`# after = [ "postgresql.service" ];`
			`#};`

			`# The service above configures the domain, no need for my wrapper`
			`services.nginx.virtualHosts."cloud.${domain}" = {`
			`forceSSL = true;`
			`useACMEHost = domain;`

			`# so homer can get the online status`
			`extraConfig = lib.optionalString config.my.services.homer.enable ''`
			`add_header Access-Control-Allow-Origin https://${domain};`
			`'';`
			`};`

service/nextcloud: exclude thumbnails from backup 2022-12-04 18:07:21 +01:00			`my.services.backup = {`
			`exclude = [`
			`# image previews can take up a lot of space`
			`"${config.services.nextcloud.home}/data/appdata_*/preview"`
			`];`
			`};`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00
			`webapps.apps.nextcloud = {`
			`dashboard = {`
services: update homer config 2022-12-25 12:20:20 +01:00			`name = "Cloud";`
serivce/nextcloud: set category to media 2023-01-29 20:16:25 +01:00			`category = "media";`
add nextcloud my-service with sqlite 2022-11-29 19:02:01 +01:00			`icon = "cloud";`
			`link = "https://cloud.${domain}/login";`
			`};`
			`};`
			`};`
			`}`