Setup Collabora / Nextcloud Office

2026-03-27 01:17:42 -04:00 · 2025-05-21 14:47:38 -04:00 · 2025-05-21 14:47:38 -04:00 · 9f0d50d0e8
commit 9f0d50d0e8
parent a4a41b4d48
2 changed files with 72 additions and 7 deletions
--- a/modules/hosts/nixos/hetznix01/post-install/default.nix
+++ b/modules/hosts/nixos/hetznix01/post-install/default.nix
@ -1,4 +1,4 @@
-{ config, pkgs, username, ... }: let
+{ config, lib, pkgs, username, ... }: let
  domain = "technicalissues.us";
 in {
  imports = [
@ -31,6 +31,32 @@ in {
  };

  services = {
+    collabora-online = {
+      enable = true;
+      port = 9980; # default
+      settings = {
+        # Rely on reverse proxy for SSL
+        ssl = {
+          enable = false;
+          termination = true;
+        };
+
+        # Listen on loopback interface only, and accept requests from ::1
+        net = {
+          listen = "loopback";
+          post_allow.host = ["::1"];
+        };
+
+        # Restrict loading documents from WOPI Host nextcloud.example.com
+        storage.wopi = {
+          "@allow" = true;
+          host = [ "https://cloud.pack1828.org" ];
+        };
+
+        # Set FQDN of server
+        server_name = "collabora.pack1828.org";
+      };
+    };
    nextcloud = {
      enable = true;
      hostName = "cloud.pack1828.org";
@ -44,12 +70,14 @@ in {
      };
      configureRedis = true;
      database.createLocally = true;
-      #extraApps = with config.services.nextcloud.package.packages.apps; {
-      #  # List of apps we want to install and are already packaged in
-      #  # https://github.com/NixOS/nixpkgs/blob/master/pkgs/servers/nextcloud/packages/nextcloud-apps.json
-      #  inherit calendar contacts cookbook maps notes tasks;
-      #};
-      #extraAppsEnable = true;
+      extraApps = with config.services.nextcloud.package.packages.apps; {
+        # List of apps we want to install and are already packaged in
+        # https://github.com/NixOS/nixpkgs/blob/master/pkgs/servers/nextcloud/packages/nextcloud-apps.json
+        inherit 
+          richdocuments # Collabora Online for Nextcloud - https://apps.nextcloud.com/apps/richdocuments
+          ;
+      };
+      extraAppsEnable = true;
      home = "/pack1828/nextcloud";
      https = true;
      maxUploadSize = "3G"; # Increase the PHP maximum file upload size
@ -153,6 +181,34 @@ in {
    };
  };

+  systemd.services = {
+    nextcloud-config-collabora = let
+      inherit (config.services.nextcloud) occ;
+
+      wopi_url = "http://[::1]:${toString config.services.collabora-online.port}";
+      public_wopi_url = "https://collabora.pack1828.org";
+      wopi_allowlist = lib.concatStringsSep "," [
+        "127.0.0.1"
+        "::1"
+        "5.161.244.95"
+        "2a01:4ff:f0:977c::1"
+      ];
+    in {
+      wantedBy = ["multi-user.target"];
+      after = ["nextcloud-setup.service" "coolwsd.service"];
+      requires = ["coolwsd.service"];
+      script = ''
+        ${occ}/bin/nextcloud-occ config:app:set richdocuments wopi_url --value ${lib.escapeShellArg wopi_url}
+        ${occ}/bin/nextcloud-occ config:app:set richdocuments public_wopi_url --value ${lib.escapeShellArg public_wopi_url}
+        ${occ}/bin/nextcloud-occ config:app:set richdocuments wopi_allowlist --value ${lib.escapeShellArg wopi_allowlist}
+        ${occ}/bin/nextcloud-occ richdocuments:setup
+      '';
+      serviceConfig = {
+        Type = "oneshot";
+      };
+    };
+  };
+
  # Enable common container config files in /etc/containers
  virtualisation.containers.enable = true;
  virtualisation = {