migrate nextcloud from crocus to verbena

2025-10-18 18:50:42 +02:00
parent 53c5cd6705
commit 838ff7ed6b
5 changed files with 16 additions and 17 deletions
--- a/machines/crocus/configuration.nix
+++ b/machines/crocus/configuration.nix
@@ -7,7 +7,6 @@
    ./radicle.nix
    self.nixosModules.nix-defaults
    ../../modules/remote-builder.nix
-    ./nextcloud.nix
    ../../modules/unbound.nix
    ../../modules/unbound-auth.nix
    self.nixosModules.gitea
--- a/machines/crocus/nextcloud.nix
+++ b/machines/crocus/nextcloud.nix
@@ -1,91 +0,0 @@
-{ config, pkgs, ... }:
-let
-  fqdn = "cloud.rpqt.fr";
-in
-{
-  imports = [
-    ../../modules/acme-home.nix
-  ];
-
-  services.nextcloud = {
-    enable = true;
-    hostName = fqdn;
-    https = true;
-    config = {
-      dbtype = "pgsql";
-      dbuser = "nextcloud";
-      dbhost = "/run/postgresql";
-      dbname = "nextcloud";
-      # admin user is only for the initial setup
-      adminuser = "root";
-      adminpassFile = config.clan.core.vars.generators.nextcloud.files.admin-password.path;
-      objectstore.s3 = {
-        enable = true;
-        bucket = "nextcloud";
-        key = config.clan.core.vars.generators.nextcloud-s3-storage.files.access-key-id.value;
-        secretFile = config.clan.core.vars.generators.nextcloud-s3-storage.files.access-key-secret.path;
-        hostname = "127.0.0.1";
-        port = 3900;
-        useSsl = false;
-        region = "garage";
-        usePathStyle = true;
-      };
-    };
-    extraAppsEnable = true;
-    extraApps = {
-      inherit (pkgs.nextcloud31Packages.apps) tasks;
-    };
-  };
-
-  services.postgresql = {
-    enable = true;
-    ensureDatabases = [ "nextcloud" ];
-    ensureUsers = [
-      {
-        name = "nextcloud";
-        ensureDBOwnership = true;
-      }
-    ];
-  };
-
-  systemd.services."nextcloud-setup" = {
-    requires = [ "postgresql.service" ];
-    after = [ "postgresql.service" ];
-  };
-
-  services.nginx.virtualHosts.${config.services.nextcloud.hostName} = {
-    forceSSL = true;
-    enableACME = true;
-  };
-
-  # Redirect internal domain to the public one
-  services.nginx.virtualHosts."cloud.home.rpqt.fr" = {
-    forceSSL = true;
-    useACMEHost = "home.rpqt.fr";
-    locations."/".return = "301 http://${fqdn}$request_uri";
-  };
-
-  clan.core.vars.generators.nextcloud = {
-    prompts.admin-password = {
-      description = "nextcloud admin password";
-      type = "hidden";
-      persist = true;
-    };
-    files.admin-password.owner = "nextcloud";
-  };
-
-  clan.core.vars.generators.nextcloud-s3-storage = {
-    prompts.access-key-id = {
-      description = "s3 access key id";
-      type = "line";
-      persist = true;
-    };
-    prompts.access-key-secret = {
-      description = "s3 access key secret";
-      type = "hidden";
-      persist = true;
-    };
-    files.access-key-id.secret = false;
-    files.access-key-secret.owner = "nextcloud";
-  };
-}
--- a/machines/verbena/configuration.nix
+++ b/machines/verbena/configuration.nix
@@ -4,6 +4,7 @@
    self.nixosModules.nix-defaults
    ../../modules/unbound.nix
    ../../modules/unbound-auth.nix
+    self.nixosModules.nextcloud

    self.inputs.srvos.nixosModules.server
  ];