41 lines
1.2 KiB
Nix
41 lines
1.2 KiB
Nix
{ pkgs, config, ... }:
|
|
{
|
|
sops.secrets.nextcloud-adminpass = {
|
|
owner = "nextcloud";
|
|
sopsFile = ./secrets.yaml;
|
|
};
|
|
|
|
services.nextcloud = {
|
|
enable = true;
|
|
hostName = "nextcloud.cloonar.com";
|
|
https = true;
|
|
package = pkgs.nextcloud27;
|
|
# Instead of using pkgs.nextcloud27Packages.apps,
|
|
# we'll reference the package version specified above
|
|
extraApps = with config.services.nextcloud.package.packages.apps; {
|
|
inherit contacts calendar tasks deck;
|
|
oidc_login = pkgs.fetchNextcloudApp rec {
|
|
url = "https://github.com/pulsejet/nextcloud-oidc-login/releases/download/v2.6.0/oidc_login.tar.gz";
|
|
sha256 = "sha256-MZ/Pgqrb8Y9aH1vd3BfuPhfLOmYyZQO2xVasdj+rCo4=";
|
|
};
|
|
};
|
|
extraAppsEnable = true;
|
|
|
|
database.createLocally = true;
|
|
enableBrokenCiphersForSSE = false;
|
|
|
|
config = {
|
|
adminpassFile = config.sops.secrets.nextcloud-adminpass.path;
|
|
dbtype = "mysql";
|
|
};
|
|
};
|
|
|
|
services.nginx.virtualHosts.${config.services.nextcloud.hostName} = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
acmeRoot = null;
|
|
};
|
|
|
|
services.mysqlBackup.databases = [ "nextcloud" ];
|
|
}
|