daenamnu/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/all-in-one.git synced 2026-05-28 06:20:14 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,069 Commits 90 Branches 272 Tags
copilot/cache-config-in-configurationmanager
Commit Graph

3321 Commits

Author SHA1 Message Date
Simon L.
f91d26115b Revert "nextcloud: switch PHP-FPM to dynamic mode and add max_requests to recycle stale workers" 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-21 13:42:47 +02:00
dependabot[bot]
ce2b4c6b87 build(deps): bump docker in /Containers/mastercontainer 
Bumps docker from 29.4.0-cli to 29.4.1-cli.

---
updated-dependencies:
- dependency-name: docker
  dependency-version: 29.4.1-cli
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-21 04:17:11 +00:00
copilot-swe-agent[bot]
7031310257 feat(clamav): reduce RAM usage via ConcurrentDatabaseReload no and MaxThreads 2 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/4a5841ac-069e-4d40-8bd1-e557b685802c

docs(clamav): add comments explaining ConcurrentDatabaseReload and MaxThreads changes

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/3b943282-bf8e-469a-acee-2a0b0d699112
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-20 17:22:48 +02:00
Simon L.
5fe6adc62a imaginary: revert the change to the healthcheck 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-20 16:53:00 +02:00
Simon L.
5c016d5d35 mastercontainer: fix enabling opcache 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-20 16:28:57 +02:00
Simon L.
d7030396cb mastercontianer: fix installation of opcache 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-20 16:07:52 +02:00
Simon L.
8a9c3c4512 perf(apache): improve Apache container performance and correctness (#7959) 2026-04-20 15:58:35 +02:00
copilot-swe-agent[bot]
49a24272f6 perf(apache): improve performance of the Apache container 
- nextcloud.conf: increase BrotliCompressionQuality from 0 to 4
- nextcloud.conf: add mod_deflate fallback for non-Brotli clients
- nextcloud.conf: enable HTTP/2 cleartext (h2c) via mod_http2 IfModule block
- nextcloud.conf: remove Options Indexes and duplicate Options line
- nextcloud.conf: remove deprecated Satisfy Any directive
- nextcloud.conf: add KeepAlive On / KeepAliveTimeout 5 / MaxKeepAliveRequests 100
- nextcloud.conf: add EnableSendfile On / EnableMMAP Off
- Dockerfile: enable mod_http2 LoadModule via sed
- Dockerfile: tune mpm_event (MaxRequestWorkers 400, ServerLimit 16,
  ThreadsPerChild 25, StartServers 2, MinSpareThreads 25, MaxSpareThreads 75)
- Caddyfile: add encode gzip zstd for response compression
- supervisord.conf: remove duplicate nodaemon=true

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/a79198ed-cd31-4e15-9074-b3d3f3f92069

fix(apache): disable HTTP/2, disable Caddy gzip, restore MaxRequestWorkers 5000

- Caddyfile: remove `encode gzip zstd` (disable gzip/zstd compression in Caddy)
- nextcloud.conf: remove HTTP/2 `<IfModule mod_http2.c>` block (disable h2c in Apache)
- Dockerfile: remove mod_http2.so LoadModule sed line
- Dockerfile: restore MaxRequestWorkers 5000, ServerLimit 200, and original comments

Kept from previous commit:
- BrotliCompressionQuality raised from 0 to 4
- mod_deflate fallback for non-Brotli clients
- KeepAlive On / KeepAliveTimeout 5 / MaxKeepAliveRequests 100
- EnableSendfile On / EnableMMAP Off
- ThreadsPerChild 25, StartServers 2, MinSpareThreads 25, MaxSpareThreads 75
- supervisord.conf: remove duplicate nodaemon=true

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/66a07d0e-2276-4b0e-b17d-53c733530d07

fix(apache): prevent double-encoding, add explanatory comments

- Add SetEnvIfNoCase Accept-Encoding \bbr\b no-gzip inside mod_brotli block
  so mod_deflate is skipped for clients that already get Brotli-compressed
  responses, preventing double-encoding.
- Expand all comments to explain the purpose/benefit of each added directive.

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/98098727-e2c1-4504-b0d5-47c8b06b794d

docs(apache/Dockerfile): add explanatory comments to all new directives

- Add comment block before the sed/LoadModule block explaining why mpm_event
  is chosen and why mod_brotli is enabled alongside the deflate fallback.
- Add per-line comments for ThreadsPerChild, StartServers, MinSpareThreads,
  and MaxSpareThreads explaining the rationale for each value.

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/2dc7afc9-b8a1-4b0a-ba13-0ad89e5c2d37

fix(apache): disable EnableSendfile to allow output filters (Brotli/deflate) on static files

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/54995b4a-7b5d-4e8e-a92a-684d32b42bd4

docs(apache/nextcloud.conf): add per-directive comments to KeepAlive block

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/329da0e6-b5dd-4cdd-8c05-9ae0bf25ebfd

reduce MaxSpareThreads from 75 to 50

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/f253e0c7-a192-4bda-96c2-c12a7e1cb81b

raise MaxKeepAliveRequests from 100 to 500 for Nextcloud sync clients

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/89da74d6-b0d3-4d19-909d-dee06cbad060

remove deflate fallback — all Nextcloud-supported browsers have Brotli

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/def9ae64-6793-4c8f-ba0c-e36ef6f8f28f

Apply suggestion from @szaimen

Signed-off-by: Simon L. <szaimen@e.mail.de>
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-20 15:57:02 +02:00
copilot-swe-agent[bot]
66236c1a2e nextcloud: switch PHP-FPM to dynamic mode and add max_requests to recycle stale workers 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/29135c39-9a45-49bd-85fe-8d3eea344450

Signed-off-by: Simon L. <szaimen@e.mail.de>

docs: add per-setting inline comments to PHP-FPM sed block in Dockerfile

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/398bb2f7-e5be-4ffc-942a-7ab10dbaa1be
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-20 15:37:39 +02:00
Simon L.
ac38ea38b7 talk container update (#7968) 2026-04-20 14:29:21 +02:00
Simon L.
845d08ba09 perf(postgresql): tune PostgreSQL settings for improved Nextcloud performance (#7944) 2026-04-20 14:26:11 +02:00
szaimen
65a3244a2f talk-update automated change 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-04-20 12:22:52 +00:00
Simon L.
7c8433d07a feat: improve Redis container performance (#7948) 2026-04-20 14:22:45 +02:00
Simon L.
7e628b1200 perf(nextcloud): tune OPcache, APCu, realpath_cache, output_buffering, and Redis session settings (#7946) 2026-04-20 14:21:36 +02:00
copilot-swe-agent[bot]
fceec6f23e feat: improve Redis container performance 
- Disable RDB persistence (--save "") since Redis is used as a pure
  cache and lock store; snapshotting causes fork/CoW pressure and I/O spikes
- Set --maxmemory-policy allkeys-lru to enable LRU eviction and prevent
  unbounded memory growth
- Enable lazyfree background deletions (--lazyfree-lazy-*) to move key
  eviction, expiry, and DEL operations off the main event loop thread
- Enable active memory defragmentation (--activedefrag yes) for long-running
  instances
- Increase background task frequency to --hz 15 for faster key expiry
- Add Transparent Huge Pages (THP) startup warning, consistent with the
  existing vm.overcommit_memory check
- Refactor start.sh to build arguments via a bash array, avoiding eval
  and safely handling the empty-string --save "" and the password argument
- Remove the pre-existing unreachable exec "$@" at the end of start.sh
- Add timeout and read_timeout (1.5s) to standalone Redis config in
  redis.config.php to prevent PHP workers from hanging indefinitely

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/e68c1986-419f-49b4-9cd0-c1f0efda0351
Co-Authored-By: Simon L. <szaimen@e.mail.de>
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-20 14:20:27 +02:00
Simon L.
ff86c6d066 perf(fulltextsearch): improve elasticsearch healthcheck and add performance tuning (#7947) 2026-04-20 14:11:20 +02:00
Simon L.
ed672fb99c ContainerDefinitionFetcher: cache the containers.json in apcu (#7951) 2026-04-20 14:09:04 +02:00
Simon L.
ef87e82f13 talk: improve startup ordering, NATS tuning, signaling timeouts, and healthcheck depth (#7945) 2026-04-20 14:01:49 +02:00
copilot-swe-agent[bot]
144c91ae02 ContainerDefinitionFetcher: cache the containers.json in apcu 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/b8bc4ea2-eee0-4e3f-bd71-d1c5a38c93e9

perf: set apc.shm_size=32M explicitly in mastercontainer Dockerfile

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/4af50c77-4ac1-4947-9b35-dc66d0d0cc8b

perf: revert all previous changes; cache containers.json in APCu

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/59281e92-7e5d-40ef-a152-78e0620eb949

perf: address review comments - clarify cache comment, restore readonly constructors

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/b8bc4ea2-eee0-4e3f-bd71-d1c5a38c93e9
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-20 13:59:51 +02:00
copilot-swe-agent[bot]
5ead361c04 talk: improve startup ordering, NATS tuning, signaling timeouts, and healthcheck depth 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/7fd39619-0f63-494c-902c-746f00d17d02
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-20 13:58:56 +02:00
Simon L.
2b5998e57d aio-interface: enable PHP OPcache and Twig template cache (#7950) 2026-04-20 13:55:33 +02:00
copilot-swe-agent[bot]
3c17a6af36 aio-interface: enable PHP OPcache and Twig template cache 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/2d974f3d-5f37-47e9-aa1f-00a43bcd9838
Signed-off-by: Simon L. <szaimen@e.mail.de>
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-20 13:47:59 +02:00
Simon L.
a465baa259 aio-interface: Complete Permissions-Policy header with all MDN-listed directives (#7953) 2026-04-20 13:40:31 +02:00
Simon L.
457f7bfee9 imaginary: improve healthcheck and start.sh (#7949) 2026-04-20 13:40:19 +02:00
copilot-swe-agent[bot]
aade77437c imaginary: improve healthcheck and start.sh 
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-20 13:30:53 +02:00
Simon L.
5624dde376 alpine: fix labels 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-20 11:32:33 +02:00
copilot-swe-agent[bot]
98a8861690 Add missing Permissions-Policy directives to headers.Caddyfile 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/5735ef2f-5264-43ad-a107-433f2770d05f

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-18 10:53:10 +00:00
copilot-swe-agent[bot]
29bac9dbf9 fix(fulltextsearch): clarify healthcheck to explicitly accept green/yellow cluster status 
Use filter_path=status to get a minimal JSON response and explicitly match
only green or yellow status (single-node clusters run yellow by design).
This is clearer and more robust than the inverted grep approach.

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/a036678d-a9f5-4db3-8cc6-3e3d52f4e97f

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 15:36:26 +00:00
copilot-swe-agent[bot]
7cd0450dae perf(nextcloud): tune OPcache, APCu, realpath_cache, output_buffering, and Redis session settings 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/623eef77-7b4e-428b-b06f-e0c7403f8cf6

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 15:36:12 +00:00
copilot-swe-agent[bot]
b5dad7927a perf(fulltextsearch): improve elasticsearch healthcheck and add performance tuning settings 
- Replace TCP-only nc healthcheck with HTTP cluster health API check via curl,
  so the container is only marked healthy when ES is actually ready (not just
  when the TCP port is open during startup)
- Add indices.fielddata.cache.size=20% to cap field-data cache and prevent
  unbounded heap growth / OOM kills on large datasets
- Add indices.memory.index_buffer_size=20% to improve bulk indexing throughput
  by buffering more data in memory before flushing to disk
- Add thread_pool.write.queue_size=1000 to avoid rejected indexing requests
  when Nextcloud's background jobs submit many files simultaneously

Changes applied to: Containers/fulltextsearch/healthcheck.sh,
php/containers.json, manual-install/latest.yml

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/a036678d-a9f5-4db3-8cc6-3e3d52f4e97f

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 15:35:13 +00:00
copilot-swe-agent[bot]
fcc4d9502d docs(postgresql): clarify work_mem memory allocation semantics in comment 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/0456b491-e148-4d26-9dc9-e1df9bfbf5d0

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 15:34:43 +00:00
copilot-swe-agent[bot]
80ea0c1151 perf(postgresql): tune postgres settings for improved Nextcloud performance 
- shared_buffers: 128MB → 256MB (better hot-data caching)
- effective_cache_size: set to 1GB (planner hint, no memory allocated)
- work_mem: 4MB → 16MB (reduces disk spills in file listing / share queries)
- maintenance_work_mem: 64MB → 256MB (faster VACUUM and index builds)
- wal_buffers: auto → 16MB (reduces WAL write latency)
- checkpoint_timeout: 5min → 15min (spreads checkpoint I/O, reduces spikes)
- random_page_cost: 4.0 → 1.1 (SSD-appropriate; favours index scans)
- effective_io_concurrency: 1 → 200 (SSD-appropriate I/O prefetching)
- autovacuum_vacuum_scale_factor: 0.2 → 0.05 (vacuum sooner on large tables)
- autovacuum_analyze_scale_factor: 0.1 → 0.02 (keep planner stats fresh)

All changes are applied via sed in the existing postgresql.conf modification
block and are idempotent across container restarts (handles both commented
defaults on fresh installs and already-set values on restart).

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/0456b491-e148-4d26-9dc9-e1df9bfbf5d0

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 15:33:46 +00:00
copilot-swe-agent[bot]
fed426b635 Add Permissions-Policy header to headers.Caddyfile 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/8ef03112-cdc4-46d1-b1f1-96c2a85e92c0

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 14:45:12 +00:00
Simon L.
558b53b2de Merge pull request #7928 from nextcloud/copilot/add-hardware-transcoding-talk-recording 
talk-recording: allow to enable hardware transcoding for the container
 2026-04-17 14:08:59 +02:00
copilot-swe-agent[bot]
1da363ea8c feat: add hardware transcoding support to talk-recording container 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/eaea217b-2995-4e47-a4ec-f7be19f98a18

Auto-detect /dev/dri in start.sh and export NEXTCLOUD_ENABLE_DRI_DEVICE automatically

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/751d0b0c-e529-4ea6-a316-5a53169a9ab6

fix: address code review feedback (nvidia check, file_exists, group_add comment)

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/eaea217b-2995-4e47-a4ec-f7be19f98a18

Use --device=/dev/dri instead of -v bind-mount in docs and compose

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/4fa5e70a-b786-445e-946f-a0610751d855
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 13:49:00 +02:00
Erwan Hervé
52c3192f26 chore: add OCI standard labels to all Dockerfiles (#7899) 
Signed-off-by: Erwan Hervé <erwan.herve@outlook.fr>
Signed-off-by: Erwan Hervé <62173453+Erwan-loot@users.noreply.github.com>
Co-authored-by: Simon L. <szaimen@e.mail.de>
 2026-04-17 10:42:55 +02:00
copilot-swe-agent[bot]
1a22272441 talk: configure janus to use local TURN server for relay candidates 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/43a0bf9c-28e1-4cd4-ab0e-08999fafe3bf

Use NC_DOMAIN as janus TURN server address instead of 127.0.0.1

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/43a0bf9c-28e1-4cd4-ab0e-08999fafe3bf

Simplify janus TURN config: static creds, single file copy, sed+cat nat block

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/aadf3820-dfeb-462a-9ff9-145d0bf92cfc

talk: use ephemeral TURN credentials with random username and 3-month TTL for Janus

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/7626994e-6a81-44e5-8205-73ba9ebfd91f

adjust some paths

Signed-off-by: Simon L. <szaimen@e.mail.de>

talk: increase TURN username entropy from 64-bit to 128-bit (rand -hex 16)

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/d6de0472-9f63-416e-9003-8e224e25aaec
Signed-off-by: Simon L. <szaimen@e.mail.de>
Signed-off-by: Simon L. <szaimen@e.mail.de>
Signed-off-by: Simon L. <szaimen@e.mail.de>
Co-Authored-By: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 10:16:14 +02:00
Zoey
61024ddf9d set hsts header in the acme.Caddyfile 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-04-16 18:02:29 +02:00
Zoey
24bc70fce6 apply hsts header to all nextcloud routes 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-04-16 18:01:25 +02:00
Zoey
6f28dfc5e3 also set Origin-Agent-Cluster header 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-04-16 17:40:56 +02:00
Zoey
12e129f1f6 aio-interface: improve headers (#7690) 
Signed-off-by: Zoey <zoey@z0ey.de>
Signed-off-by: Simon L. <szaimen@e.mail.de>
Signed-off-by: Pablo Zmdl <pablo@nextcloud.com>
Co-authored-by: Simon L. <szaimen@e.mail.de>
Co-authored-by: Pablo Zmdl <pablo@nextcloud.com>
 2026-04-16 17:20:50 +02:00
Simon L.
5e92b7d743 nextcloud-entrypoint: rewrite turn and stun logic to always add turn and stun server 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-16 16:18:27 +02:00
Simon L.
8722cc83f4 Merge pull request #7910 from nextcloud/enh/noid/add-server-id 
nextcloud: add `server.config.php` that adds the serverid by using the hostname as key
 2026-04-16 11:07:02 +02:00
Simon L.
1e5eb87582 nextcloud: add server.config.php that adds the serverid by using the hostname as key 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-16 10:51:31 +02:00
Simon L.
489fc3e761 Merge pull request #7916 from nextcloud/dependabot/docker/Containers/clamav/alpine-3.23.4 
build(deps): bump alpine from 3.23.3 to 3.23.4 in /Containers/clamav
 2026-04-16 10:50:29 +02:00
Simon L.
f5b125aba5 Merge pull request #7921 from nextcloud/dependabot/docker/Containers/watchtower/alpine-3.23.4 
build(deps): bump alpine from 3.23.3 to 3.23.4 in /Containers/watchtower
 2026-04-16 10:50:13 +02:00
Simon L.
27bcf3494f Merge pull request #7920 from nextcloud/dependabot/docker/Containers/talk/alpine-3.23.4 
build(deps): bump alpine from 3.23.3 to 3.23.4 in /Containers/talk
 2026-04-16 10:50:04 +02:00
Simon L.
201e2f303d Merge pull request #7919 from nextcloud/dependabot/docker/Containers/notify-push/alpine-3.23.4 
build(deps): bump alpine from 3.23.3 to 3.23.4 in /Containers/notify-push
 2026-04-16 10:50:01 +02:00
Simon L.
4f68cb5fb4 Merge pull request #7918 from nextcloud/dependabot/docker/Containers/imaginary/alpine-3.23.4 
build(deps): bump alpine from 3.23.3 to 3.23.4 in /Containers/imaginary
 2026-04-16 10:49:50 +02:00
Simon L.
c976683a9e Merge pull request #7917 from nextcloud/dependabot/docker/Containers/domaincheck/alpine-3.23.4 
build(deps): bump alpine from 3.23.3 to 3.23.4 in /Containers/domaincheck
 2026-04-16 10:49:47 +02:00