RTM/sootie-config
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: RTM:main
Branches Tags
RTM:main
RTM:loomio
RTM:authentik
RTM:shlink
RTM:traefik
RTM:install-docs
..
compare: RTM:authentik
Branches Tags
RTM:main
RTM:loomio
RTM:authentik
RTM:shlink
RTM:traefik
RTM:install-docs

No commits in common. "main" and "authentik" have entirely different histories.
main ... authentik

5 changed files with 3 additions and 116 deletions
Show Stats Expand all files Collapse all files

1
.gitignore vendored
View File

@ -1 +0,0 @@
*~

2
auth.resisttechmonopolies.online.env
View File

@ -1,4 +1,4 @@
TYPE=authentik:6.11.0+2024.10.5 TYPE=authentik
TIMEOUT=900 TIMEOUT=900
ENABLE_AUTO_UPDATE=true ENABLE_AUTO_UPDATE=true
POST_DEPLOY_CMDS="worker set_admin_pass" POST_DEPLOY_CMDS="worker set_admin_pass"

93
loomio.resisttechmonopolies.online.env
View File

@ -1,93 +0,0 @@
TYPE=loomio:4.0.2+v2.25.4
COMPOSE_FILE="compose.yml"
DOMAIN=loomio.resisttechmonopolies.online
## Domain aliases
#EXTRA_DOMAINS=', `www.loomio.resisttechmonopolies.online`'
LETS_ENCRYPT_ENV=production
# mail setup
COMPOSE_FILE="$COMPOSE_FILE:compose.smtp.yml"
SUPPORT_EMAIL=besties@resisttechmonopolies.online
SMTP_AUTH=plain
SMTP_DOMAIN=smtp.protonmail.ch
SMTP_SERVER=smtp.protonmail.ch
SMTP_PORT=587
SMTP_USERNAME=besties@resisttechmonopolies.online
# SMTP_USE_SSL=1
# to disable SSL comment out line rather than changing to 0
SECRET_SMTP_PASSWORD_VERSION=v2
# From field for notification e-mails
NOTIFICATIONS_EMAIL_ADDRESS=besties@resisttechmonopolies.online
# reply-to in email notifications
REPLY_HOSTNAME=$DOMAIN
RAILS_ENV=production
# Number of webserver processes and threads
# threads are per worker. See https://github.com/puma/puma
PUMA_WORKERS=2
MIN_THREADS=12
MAX_THREADS=12
# Force all connections to be https
FORCE_SSL=1
# Enable rate limiting on group creation, other POST actions
USE_RACK_ATTACK=1
SECRET_DEVISE_SECRET_VERSION=v1 #length=64
SECRET_SECRET_COOKIE_TOKEN_VERSION=v1 #length=64
SECRET_DB_PASSWORD_VERSION=v1
# Send catch up email (missed yesterday) weekly
# EMAIL_CATCH_UP_WEEKLY=1
# TODO 3wc: settings from here on aren't yet included in compose.yml
# subscribe on participation default for new users
# uncomment this to change "subscribe on participation" to be false for new users
# EMAIL_ON_PARTICIPATION_DEFAULT_FALSE=1
# Uncomment these to disable features
# FEATURES_DISABLE_CREATE_USER=1 # users must be invited
# FEATURES_DISABLE_CREATE_GROUP=1 # users cannot create groups
# FEATURES_DISABLE_PUBLIC_GROUPS=1 # disable /explore
# FEATURES_DISABLE_HELP_LINK=1 # disable the help link
# MAX_PENDING_INVITATIONS=100 # maximum unaccepted invitations a group have have
# Enable search engines to index public content
# ALLOW_ROBOTS=1
# Uncomment to enable SAML SSO
# SAML_APP_KEY=1 # just a flag, keep value as 1
# SAML_IDP_METADATA_URL=https://saml-metadata-url-provided-by-your-SSO-provider.com/12356
#
# Disable login via email (usually when you have enabled SSO of some kind)
# FEATURES_DISABLE_EMAIL_LOGIN=1
# oauth providers, to let your users login using external accounts
# FACEBOOK_APP_KEY=REPLACE
# FACEBOOK_APP_SECRET=REPLACE
# TWITTER_APP_KEY=REPLACE
# TWITTER_APP_SECRET=REPLACE
# GOOGLE_APP_KEY=REPLACE
# GOOGLE_APP_SECRET=REPLACE
# SLACK_APP_KEY
# SLACK_APP_SECRET
# Theme images
# images should be a multiple of 32px tall.
# THEME_ICON_SRC=/files/icon.png
# THEME_APP_LOGO_SRC=/files/logo.svg
# THEME_EMAIL_HEADER_LOGO_SRC=/files/logo_128h.png
# THEME_EMAIL_FOOTER_LOGO_SRC=/files/logo_64h.png
# used in emails. use rgb or hsl values, not hex
# THEME_PRIMARY_COLOR=rgb(255,167,38)
# THEME_ACCENT_COLOR=rgb(0,188,212)
# THEME_TEXT_ON_PRIMARY_COLOR=rgb(255,255,255)
# THEME_TEXT_ON_ACCENT_COLOR=rgb(255,255,255)

7
nextcloud.resisttechmonopolies.online.env
View File

@ -1,4 +1,4 @@
TYPE=nextcloud:11.4.0+30.0.6-fpm TYPE=nextcloud
TIMEOUT=900 TIMEOUT=900
ENABLE_AUTO_UPDATE=true ENABLE_AUTO_UPDATE=true
ENABLE_BACKUPS=true ENABLE_BACKUPS=true
@ -77,8 +77,3 @@ OCC_CMDS="$OCC_CMDS|config:app:set sociallogin hide_default_login --value 1"
#COMPOSE_FILE="$COMPOSE_FILE:compose.fulltextsearch.yml" #COMPOSE_FILE="$COMPOSE_FILE:compose.fulltextsearch.yml"
#SECRET_ELASTICSEARCH_PASSWORD_VERSION=v1 #SECRET_ELASTICSEARCH_PASSWORD_VERSION=v1
# This will change the nginx configuration to add the header Strict-Transport-Security.
# You can read more about it here: https://docs.nextcloud.com/server/30/admin_manual/installation/harden_server.html#enable-http-strict-transport-security
# And you can check out the changes made to the recipe to allow for this here: https://git.coopcloud.tech/coop-cloud/nextcloud/pulls/48
HSTS_ENABLED=1

14
nextcloud.resisttechmonopolies.online.occ
View File

@ -1,14 +0,0 @@
#!/bin/bash
# This is a script to run after a clean installation to restore all settings done over time.
# The script is not supposed to be needed since a fresh installation is unlikely (even if migrating,
# a backup will be used and should maintain it's configs).
# This script is more of a living documentation of configuration and what commands has been used to set them.
# See: https://docs.nextcloud.com/server/30/admin_manual/configuration_server/background_jobs_configuration.html
abra app command nextcloud.resisttechmonopolies.online app run_occ "'config:system:set maintenance_window_start --type=integer --value=1'"
# The paragraph below shows as a warning to an admin user sometimes.
# "One or more mimetype migrations are available. Occasionally new mimetypes are added to better handle certain file types.
# Migrating the mimetypes take a long time on larger instances so this is not done automatically during upgrades.
# Use the command `occ maintenance:repair --include-expensive` to perform the migrations."
abra app command nextcloud.resisttechmonopolies.online app run_occ "'maintenance:repair --include-expensive'"