Skip to content

https://rair.dev/nextcloud-backup-pt-1/

nextcloud

install

docker volume create nextcloud_aio_mastercontainer

mail

icloud

send mode: smtp
encryption: none/starttls
from address: <>
server address: smtp.mail.me.com
port: 587
authentication: enabled (bc we are loggin with appleid and app pw)
credentials: appleid and generated app pw through ...

timetione

setting timezone through aio interface: europe/zurich

default locale

sudo docker exec --user www-data nextcloud-aio-nextcloud php occ config:system:set default_phone_region --value="CH"

adding files through terminal

sudo docker exec nextcloud-aio-nextcloud chown -R 33:33 /mnt/ncdata/
sudo docker exec nextcloud-aio-nextcloud chmod -R 755 /mnt/ncdata/
sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ files:scan --all
sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ maintenance:repair --include-expensive

https://forums.truenas.com/t/logging-into-nextcloud-app-for-the-first-time-cannot-log-in-as-specified-user/22853/8

configuration

plugin

memories

https://github.com/platelminto/icloud-to-nextcloud sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ files:scan --all sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ memories:index

sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ memories:places-setup

preview generator

after first installation 

sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ preview:generate-all

run it every 10minutes with cron

Tip

use ' -vv' for verbose

sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ preview:pre-generate

avoid PHP Fatal Error when run occ preview:generate-all

add PHP_MEMORY_LIMIT: 1024M to avoid PHP Fatal Error

  nextcloud-aio-mastercontainer:
    image: nextcloud/all-in-one:latest
    environment:
      PHP_MEMORY_LIMIT: 1024M ## bc 'sudo docker exec --user www-data -it nextcloud-aio-nextcloud php occ preview:generate-all' gives PHP Fatal Error

fail2ban

nano /etc/fail2ban/filter.d/nextcloud.conf

[Definition]
_groupsre = (?:(?:,?\s*"\w+":(?:"[^"]+"|\w+))*)
failregex = ^\{%(_groupsre)s,?\s*"remoteAddr":"<HOST>"%(_groupsre)s,?\s*"message":"Login failed:
            ^\{%(_groupsre)s,?\s*"remoteAddr":"<HOST>"%(_groupsre)s,?\s*"message":"Trusted domain error.
datepattern = ,?\s*"time"\s*:\s*"%%Y-%%m-%%d[T ]%%H:%%M:%%S(%%z)?"

nano /etc/fail2ban/jail.d/nextcloud.local

[nextcloud]
enabled = true
port = 80,443,8080,8443,3478
protocol = tcp
filter = nextcloud
chain = DOCKER-USER
maxretry = 5
bantime = 3600
findtime = 600
logpath = /var/lib/docker/volumes/nextcloud_aio_nextcloud/_data/data/nextcloud.log

systemctl restart fail2ban.serviced

clear webui logging

rename .log to .log.old 

~/docker/volumes/nextcloud_aio_nextcloud/_data/data/{nextcloud.log;nextcloud.log.1}

Note

when .log is full, .log.1 will be generated

source

  • https://docs.nextcloud.com/server/stable/admin_manual/installation/harden_server.html#setup-fail2ban
  • https://github.com/nextcloud/all-in-one?tab=readme-ov-file#fail2ban

source

https://memories.gallery/install/

https://github.com/nextcloud/previewgenerator https://github.com/nextcloud/recognize https://github.com/nextcloud/photos