asmir/nixos_flake_config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

magpie/nextcloud: add admin account/pass

Browse Source
This commit is contained in:
Asmir A 2023-10-20 21:35:43 +02:00
parent 93c6ae5f9c
commit 8a40c727e0
2 changed files with 44 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

42
magpie/configuration.nix
View File

@ -89,22 +89,27 @@
services.nextcloud = { services.nextcloud = {
enable = true; enable = true;
hostName = "project-cloud.net";
package = pkgs.nextcloud27; package = pkgs.nextcloud27;
config.adminpassFile = "${pkgs.writeText "adminpass" "test123"}"; config.adminpassFile = config.sops.secrets."nextcloud_admin".path;
configureRedis = true;
hostName = "project-cloud.net";
https = true; https = true;
caching = {
redis = true;
apcu = false;
};
extraOptions = { extraOptions = {
redis = { mail_smtpmode = "sendmail";
host = "/run/redis-nextcloud/redis.sock"; mail_sendmailmode = "pipe";
port = 0; enabledPreviewProviders = [
}; "OC\\Preview\\BMP"
"memcache.local" = "\\OC\\Memcache\\Redis"; "OC\\Preview\\GIF"
"memcache.distributed" = "\\OC\\Memcache\\Redis"; "OC\\Preview\\HEIC"
"memcache.locking" = "\\OC\\Memcache\\Redis"; "OC\\Preview\\JPEG"
"OC\\Preview\\Krita"
"OC\\Preview\\MarkDown"
"OC\\Preview\\MP3"
"OC\\Preview\\OpenDocument"
"OC\\Preview\\PNG"
"OC\\Preview\\TXT"
"OC\\Preview\\XBitmap"
];
}; };
}; };
@ -150,12 +155,6 @@
}; };
}; };
services.redis.servers.nextcloud = {
enable = true;
user = "nextcloud";
port = 0;
};
services.gitea = { services.gitea = {
enable = true; enable = true;
appName = "Project Cloud Gitea server"; appName = "Project Cloud Gitea server";
@ -221,6 +220,11 @@
owner = config.users.users.gitea.name; owner = config.users.users.gitea.name;
}; };
sops.secrets."nextcloud_admin" = {
sopsFile = ./secrets/nextcloud_admin.yaml;
owner = config.users.users.nextcloud.name;
};
networking.hostName = "magpie"; networking.hostName = "magpie";
networking.wireless.enable = false; networking.wireless.enable = false;
networking.firewall.enable = true; networking.firewall.enable = true;

21
magpie/secrets/nextcloud_admin.yaml Normal file
View File

@ -0,0 +1,21 @@
nextcloud_admin: ENC[AES256_GCM,data:txb5JSKxFeTS3M9LSk7m5M1XAvg=,iv:Rf6VNFmK+f0pjL7wH0dlcPL4CqQDRq/qQyliTdn2c4I=,tag:wDQqDZCK2p5aG+g8eE4weA==,type:str]
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age153y8mz6gqy5t54q4fnrdvjj4v5ls9cgp3hhpd2hzf5tvkcnncf6q4xns0j
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBrUnQ3SDAyRTUxUDF0dDhY
K3JmQWlYRVJtdEFac0J4U0RGKzZGNXJmUEg4CmtBSW9yNGZScXhKdnhZWkxIamFW
YXEzbGhwR2F3dDJGdzljZUZBeERhU1kKLS0tIGlXZUhsdnI4ell5R3ZZbjZ0NCtO
TUpkZmxBNzZ1UUY1dGRud2hycGUyZW8KFUGikaFQjFfmn068qex2tpGbRHIbmS3l
27lqo8+eRFnq0nw8H/1yRMi8IghR0+XK68T49hlt0VLS9LZJG1aPag==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2023-10-17T23:08:24Z"
mac: ENC[AES256_GCM,data:fb9cOL4Q+q5uarmXtXNlpRmWgv/Ao1MqwwH2V2CQxEiP8zFyFBZs2435vdcLzrQrnBXz0JLVu4g10SH2T4dpYFP42teIkrgmneecjjcM+UOsBsGsrxlpHMha1t/ERRhBA7uJze5/kwHqry6eruWehRTu65QF1qBTql3m6ipjCeY=,iv:a7aFuTCcRCIDERlrj/9dFCF7VgCDDakfPteQimHV3lc=,tag:4mwrDHaQWA4EU0AgtgZaMg==,type:str]
pgp: []
unencrypted_suffix: _unencrypted
version: 3.7.3