First commit - working nextcloud 24 install via docker containers with collabra server and passman app
commit
a03f3469b8
|
|
@ -0,0 +1,48 @@
|
|||
:80 {
|
||||
redir /.well-known/webfinger /public.php?service=webfinger 301
|
||||
redir /.well-known/carddav /remote.php/dav 301
|
||||
redir /.well-known/caldav /remote.php/dav 301
|
||||
|
||||
header {
|
||||
# enable HSTS
|
||||
Strict-Transport-Security max-age=31536000;
|
||||
}
|
||||
|
||||
# .htaccess / data / config / ... shouldn't be accessible from outside
|
||||
@forbidden {
|
||||
path /.htaccess
|
||||
path /data/*
|
||||
path /config/*
|
||||
path /db_structure
|
||||
path /.xml
|
||||
path /README
|
||||
path /3rdparty/*
|
||||
path /lib/*
|
||||
path /templates/*
|
||||
path /occ
|
||||
path /console.php
|
||||
}
|
||||
respond @forbidden 404
|
||||
|
||||
|
||||
@collabora {
|
||||
path /browser/* # Browser is the client part of LibreOffice Online
|
||||
path /hosting/discovery # WOPI discovery URL
|
||||
path /hosting/capabilities # Show capabilities as json
|
||||
path /cool/* # Main websocket, uploads/downloads, presentations
|
||||
}
|
||||
|
||||
reverse_proxy @collabora collabora:9980 {
|
||||
header_up Host "newcloud.kebler.net"
|
||||
transport http {
|
||||
tls_insecure_skip_verify
|
||||
}
|
||||
}
|
||||
|
||||
root * /var/www/html
|
||||
php_fastcgi nextcloud-app:9000 {
|
||||
env front_controller_active true # Remove index.php form url
|
||||
root /var/www/html
|
||||
}
|
||||
file_server
|
||||
}
|
||||
|
|
@ -0,0 +1,41 @@
|
|||
# copy this file to just .env and edit for your instance
|
||||
# GENERAL
|
||||
# https://timezonedb.com/time-zones
|
||||
TZ=America/Los_Angles
|
||||
|
||||
# NEXTCLOUD-MARIADB
|
||||
MYSQL_ROOT_PASSWORD=<pw>
|
||||
MYSQL_PASSWORD=<pw can be same>
|
||||
MYSQL_DATABASE=nextcloud
|
||||
MYSQL_USER=nextcloud
|
||||
|
||||
# NEXTCLOUD
|
||||
TRUSTED_PROXIES=<ip where your reverse proxy runs>
|
||||
NEXTCLOUD_DOMAIN=<domain of reverse proxy>
|
||||
TRUSTED_DOMAINS=<same as NEXTCLOUD_DOMAIN>,<machine domain running docker>,<IP of machine running docker>
|
||||
# default set at onboarding, also can change password after onboarding
|
||||
# IMPORTANT! if not set here then source backup script will use 'admin' as user by default
|
||||
NEXTCLOUD_ADMIN_USER=admin
|
||||
NEXTCLOUD_ADMIN_PASSWORD=admin
|
||||
|
||||
|
||||
# USING SENDGRID FOR SENDING EMAILS (gmail example)
|
||||
MAIL_DOMAIN=gmail.com
|
||||
MAIL_FROM_ADDRESS=<gmail address>
|
||||
SMTP_SECURE=ssl
|
||||
SMTP_HOST=smtp.gmail.com
|
||||
SMTP_PORT=465
|
||||
SMTP_NAME=<just your google account name (no @gmail.com)>
|
||||
SMTP_PASSWORD=<a 16 character app password generated from your google account>
|
||||
|
||||
# volumes can be found at /var/lib/docker/volumes but can be bound else via below
|
||||
# DOCKER HOST Volume Bindings Parent Directory
|
||||
# use only if you need/want to bind the three <db,src,user-files> volumes elsewhere for easier access
|
||||
# will create up to three directories parent/nextcloud/<volume>
|
||||
# must pre make all the directories <parent>/nextcloud/<volume> == db,src,user-files
|
||||
# must uncomment driver and driver opts in docker-compose.yml in the volumes stanza
|
||||
# HOST_NEXTCLOUD_PARENT_DIR=/data
|
||||
|
||||
|
||||
|
||||
|
||||
|
|
@ -0,0 +1,2 @@
|
|||
/archive/
|
||||
/.env
|
||||
|
|
@ -0,0 +1,3 @@
|
|||
#!/bin/bash
|
||||
docker exec -it -u 82 nextcloud-app rm ./data/nextcloud.log
|
||||
docker exec -it -u 82 nextcloud-app touch ./data/nextcloud.log
|
||||
|
|
@ -0,0 +1,8 @@
|
|||
#!/bin/bash
|
||||
# docker exec --env-file .env -w /var/lib/mysql nextcloud-db /bin/bash -c 'env | grep MYSQL && ls -la && mysql -p${MYSQL_ROOT_PASSWORD}'
|
||||
# docker exec -w /var/lib/mysql nextcloud-db /bin/bash -c 'env | grep MYSQL && ls -la'
|
||||
# docker exec -w /var/lib/mysql -e args=$1 nextcloud-db /bin/bash -c 'mysql -p${MYSQL_ROOT_PASSWORD} $args'
|
||||
docker exec -w /var/lib/mysql -e args=$1 nextcloud-db /bin/bash -c 'mysqldump -p${MYSQL_ROOT_PASSWORD} $args > nextcloud.sql'
|
||||
docker exec -w /var/lib/mysql nextcloud-db /bin/bash -c 'ls -la | grep .sql'
|
||||
|
||||
|
||||
|
|
@ -0,0 +1,118 @@
|
|||
version: '3'
|
||||
|
||||
networks:
|
||||
default:
|
||||
external:
|
||||
name: nextcloud_net
|
||||
|
||||
services:
|
||||
nextcloud-db:
|
||||
image: mariadb:latest
|
||||
container_name: nextcloud-db
|
||||
hostname: nextcloud-db
|
||||
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb_read_only_compressed=OFF
|
||||
restart: unless-stopped
|
||||
env_file: .env
|
||||
volumes:
|
||||
- db:/var/lib/mysql
|
||||
|
||||
phpmyadmin:
|
||||
image: phpmyadmin:latest
|
||||
container_name: nextcloud-db-web
|
||||
links:
|
||||
- nextcloud-db:db
|
||||
environment:
|
||||
PMA_HOST: db
|
||||
PMA_PORT: 3306
|
||||
PMA_ARBITRARY: 1
|
||||
restart: unless-stopped
|
||||
ports:
|
||||
- 8081:80
|
||||
|
||||
nextcloud-redis:
|
||||
image: redis:alpine
|
||||
container_name: nextcloud-redis
|
||||
hostname: nextcloud-redis
|
||||
restart: unless-stopped
|
||||
|
||||
nextcloud-app:
|
||||
image: nextcloud:fpm-alpine
|
||||
container_name: nextcloud-app
|
||||
hostname: nextcloud-app
|
||||
restart: unless-stopped
|
||||
env_file: .env
|
||||
environment:
|
||||
- MYSQL_HOST=nextcloud-db
|
||||
- REDIS_HOST=nextcloud-redis
|
||||
- NEXTCLOUD_DATA_DIR=/var/www/data
|
||||
- OVERWRITEPROTOCOL=https
|
||||
- OVERWRITECLIURL=${NEXTCLOUD_DOMAIN}
|
||||
depends_on:
|
||||
- nextcloud-db
|
||||
- nextcloud-redis
|
||||
volumes:
|
||||
- src:/var/www/html
|
||||
- data:/var/www/data
|
||||
|
||||
nextcloud-web:
|
||||
image: caddy:latest
|
||||
container_name: nextcloud-web
|
||||
hostname: nextcloud-web
|
||||
restart: unless-stopped
|
||||
ports:
|
||||
- 8080:80
|
||||
volumes:
|
||||
- ./.Caddyfile:/etc/caddy/Caddyfile
|
||||
- src:/var/www/html:ro
|
||||
links:
|
||||
- nextcloud-app
|
||||
|
||||
collabora:
|
||||
image: collabora/code:latest
|
||||
container_name: nextcloud-collabora
|
||||
restart: unless-stopped
|
||||
volumes:
|
||||
# make sure these exist on your host
|
||||
- /etc/localtime:/etc/localtime
|
||||
- /etc/timezone:/etc/timezone
|
||||
ports:
|
||||
- "9980:9980"
|
||||
environment:
|
||||
- 'server_name=${NEXTCLOUD_DOMAIN}'
|
||||
- 'dictionaries=${COLLABRA_DICTIONARIES:-en_US}'
|
||||
- extra_params=--o:ssl.enable=true --o:ssl.termination=false
|
||||
cap_add:
|
||||
- MKNOD
|
||||
tty: true
|
||||
# nextcloud-cron:
|
||||
# image: nextcloud:fpm-alpine
|
||||
# container_name: nextcloud-cron
|
||||
# hostname: nextcloud-cron
|
||||
# restart: unless-stopped
|
||||
# volumes:
|
||||
# - ./nextcloud-data/:/var/www/html
|
||||
# entrypoint: /cron.sh
|
||||
# depends_on:
|
||||
# - nextcloud-db
|
||||
# - nextcloud-redis
|
||||
|
||||
# if bindings are not desired then comment out (or remove) driver and driveropts for a volume
|
||||
volumes:
|
||||
db:
|
||||
driver: local
|
||||
driver_opts:
|
||||
o: bind
|
||||
type: none
|
||||
device: ${HOST_NEXTCLOUD_PARENT_DIR}/nextcloud/db
|
||||
src:
|
||||
driver: local
|
||||
driver_opts:
|
||||
o: bind
|
||||
type: none
|
||||
device: ${HOST_NEXTCLOUD_PARENT_DIR}/nextcloud/src
|
||||
data:
|
||||
driver: local
|
||||
driver_opts:
|
||||
o: bind
|
||||
type: none
|
||||
device: ${HOST_NEXTCLOUD_PARENT_DIR}/nextcloud/user-files
|
||||
|
|
@ -0,0 +1,2 @@
|
|||
#!/bin/bash
|
||||
docker exec -it -u 82 nextcloud-app cat ./data/nextcloud.log
|
||||
|
|
@ -0,0 +1,2 @@
|
|||
#!/bin/bash
|
||||
docker exec -it -u 82 nextcloud-app ./occ $@
|
||||
|
|
@ -0,0 +1,2 @@
|
|||
#!/bin/bash
|
||||
docker exec -it -u 82 nextcloud-app ./occ config:system:set default_phone_region --value="${1:-US}"
|
||||
|
|
@ -0,0 +1 @@
|
|||
<?php phpinfo(); ?>
|
||||
|
|
@ -0,0 +1,3 @@
|
|||
#!/bin/bash
|
||||
docker-compose down
|
||||
docker-compose up -d
|
||||
|
|
@ -0,0 +1,9 @@
|
|||
#!/bin/bash
|
||||
user=${1:---all}
|
||||
echo scanning files for $user
|
||||
read -p "continue? (y) : " ans
|
||||
if [ $ans == "y" ]; then
|
||||
docker exec -it -u 82 nextcloud-app ./occ files:scan $user
|
||||
else
|
||||
echo command aborted
|
||||
fi
|
||||
|
|
@ -0,0 +1,7 @@
|
|||
#!/bin/bash
|
||||
docker exec -w /var/www/html -e admin=$1 nextcloud-app /bin/sh -c 'env'
|
||||
# docker exec -w /var/www/html -e admin=$1 nextcloud-app /bin/sh -c 'env | grep NEXTCLOUD_ADMIN && tar -czvf /var/www/data/${admin:-admin}/files/backups/nextcloud-src_$(date '+%y-%m-%d_%T'
|
||||
|
||||
|
||||
|
||||
|
||||
|
|
@ -0,0 +1,2 @@
|
|||
#!/bin/bash
|
||||
docker exec -it -u 82 nextcloud-app /bin/sh
|
||||
|
|
@ -0,0 +1,2 @@
|
|||
#!/bin/bash
|
||||
docker exec -it -u root -w / nextcloud-app /bin/sh
|
||||
|
|
@ -0,0 +1,2 @@
|
|||
#!/bin/bash
|
||||
docker exec -it nextcloud-web /bin/sh
|
||||
Loading…
Reference in New Issue