daenamnu/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/all-in-one.git synced 2026-05-21 02:40:09 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,159 Commits 83 Branches 270 Tags
50643afd6a74ff4892226a35ff5c0f5655bb08fc
Commit Graph

260 Commits

Author SHA1 Message Date
Simon L.
4f4ef8f1d6 add our own entrypoint to fts and collabora 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-28 15:39:57 +02:00
Simon L.
74ec1b6baa allow to adjust the log level globally 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-24 10:34:43 +02:00
Simon L.
7e628b1200 perf(nextcloud): tune OPcache, APCu, realpath_cache, output_buffering, and Redis session settings (#7946) 2026-04-20 14:21:36 +02:00
Simon L.
ff86c6d066 perf(fulltextsearch): improve elasticsearch healthcheck and add performance tuning (#7947) 2026-04-20 14:11:20 +02:00
copilot-swe-agent[bot]
310429c5fd fix: add shm_size=128M to nextcloud container to match apc.shm_size 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/0b44e4a1-dccc-4541-b4cb-07fceaa046ca

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-19 22:03:09 +00:00
copilot-swe-agent[bot]
b5dad7927a perf(fulltextsearch): improve elasticsearch healthcheck and add performance tuning settings 
- Replace TCP-only nc healthcheck with HTTP cluster health API check via curl,
  so the container is only marked healthy when ES is actually ready (not just
  when the TCP port is open during startup)
- Add indices.fielddata.cache.size=20% to cap field-data cache and prevent
  unbounded heap growth / OOM kills on large datasets
- Add indices.memory.index_buffer_size=20% to improve bulk indexing throughput
  by buffering more data in memory before flushing to disk
- Add thread_pool.write.queue_size=1000 to avoid rejected indexing requests
  when Nextcloud's background jobs submit many files simultaneously

Changes applied to: Containers/fulltextsearch/healthcheck.sh,
php/containers.json, manual-install/latest.yml

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/a036678d-a9f5-4db3-8cc6-3e3d52f4e97f

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 15:35:13 +00:00
copilot-swe-agent[bot]
8dea787518 Add shm_size and tmpfs to collabora container for performance improvement 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/352eb94e-be98-422a-96d9-39da7e4443cd

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-17 15:04:58 +00:00
Alan Savage
46b325f2bd Workaround #7757 with nextcloud-aio-apache FQDN 
CollaboraOnline/online/pull/13869 prevents http://nextcloud-aio-apache:23973 from
being correctly recognized as a valid URI and thus breaks matching as an
authorized WOPI host.

This uses http://nextcloud-aio-apache.nextcloud-aio:23973 which is correctly
recognized as a valid URI.

Signed-off-by: Alan Savage <3028205+asavageiv@users.noreply.github.com>
 2026-03-20 15:42:49 +01:00
Francesco Saltori
8bac8f029f Remove unused MKNOD capability from Collabora container 
Signed-off-by: Francesco Saltori <francescosaltori@gmail.com>
 2026-03-16 22:01:14 +01:00
Francesco Saltori
828b7784f7 Disable Collabora update checks and notifications 
Signed-off-by: Francesco Saltori <francescosaltori@gmail.com>
 2026-03-16 22:00:01 +01:00
Pablo Zmdl
d86eee5847 Give all containers a display_name, hide from list by dedicated attribute 
We want a display-name for all containers in the overlay-log, but still want
to exclude some containers from the list on top of the web UI.

Signed-off-by: Pablo Zmdl <pablo@nextcloud.com>
 2026-03-12 15:44:19 +01:00
michnovka
7cd2ac1bbd feat(talk): trust custom CA certificates via NEXTCLOUD_TRUSTED_CACERTS_DIR 
When NEXTCLOUD_TRUSTED_CACERTS_DIR is set on the mastercontainer,
the custom CA certificates are now also mounted into the Talk container.

Since the Talk container runs with a read-only root filesystem,
update-ca-certificates cannot be used. Instead, the startup script
copies the system CA bundle to /tmp (tmpfs), appends any custom
certificates from /usr/local/share/ca-certificates/, and sets
SSL_CERT_FILE to point Go's TLS stack at the extended bundle.

This allows the signaling server to verify TLS connections to
Nextcloud instances that use private/internal CA certificates,
without requiring skipverify=true.

Signed-off-by: Tomas <16553087+michnovka@users.noreply.github.com>
 2026-03-03 00:11:27 +01:00
Simon L.
1c0222774b Merge pull request #7402 from nextcloud/enh/noid/allow-configure-redis-cluster 
allow to configure redis cluster
 2026-02-18 18:34:25 +01:00
Simon L.
f8f34c0558 Merge pull request #7591 from nextcloud/enh/noid/rename-components 
rename the display-name of some containers
 2026-02-18 13:46:05 +01:00
Oleksandr Piskun
987191ac14 feat(app-api): add HaRP container (#7493) 
Signed-off-by: Oleksander Piskun <oleksandr2088@icloud.com>
Signed-off-by: bigcat88 <bigcat88@icloud.com>
Signed-off-by: Oleksandr Piskun <oleksandr2088@icloud.com>
Signed-off-by: Simon L. <szaimen@e.mail.de>
Co-authored-by: Simon L. <szaimen@e.mail.de>
 2026-02-18 13:45:44 +01:00
Simon L.
e0d82965a2 rename the display-name of some containers 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-02-17 12:13:10 +01:00
Simon L.
9871a3eb9a insert the AIO version into Nextcloud's system config 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-01-28 15:17:15 +01:00
Simon L.
63bb5845de notify-push: refactor to use Nextcloud's config.php directly 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-01-26 11:04:09 +01:00
Simon L.
748857a495 onlyoffice: disable background check for editors 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-12-17 15:11:24 +01:00
Simon L.
a66445d443 nextcloud: allow to configure FULLTEXTSEARCH_PROTOCOL 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-12-16 10:40:45 +01:00
Simon L.
1691a19036 make redis port configurable 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-12-08 15:47:28 +01:00
Simon L.
4a8288a527 fulltextsearch: disable memory locking 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-11-26 20:44:09 +01:00
Simon L.
32ab3aa296 collabora: adjust some additional things 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-11-24 14:34:37 +01:00
Simon L.
2d4d9d76d6 aio-caddy: change to v3 and further adjustments 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-11-11 11:21:55 +01:00
Simon L.
8627366a39 clamav: hardcode StreamMaxLength to 2G 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-11-11 09:48:17 +01:00
Simon L.
767e0d4b9f fix some remaining issues with collabora 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-11-10 15:52:35 +01:00
Simon L.
0a42584238 collabora: allow to use enterprise container image with support key 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-11-06 11:21:46 +01:00
Simon L.
4ba7f1ed64 collabora: load seccomp profile on the fly 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-11-05 12:08:47 +01:00
Alan Savage
d2e944f7dc Use a fixed port for internal WOPI requests and callbacks 
This fixes the issue where Caddy fails to start when APACHE_PORT
was 443.

Signed-off-by: Alan Savage <3028205+asavageiv@users.noreply.github.com>
 2025-09-05 06:18:18 -07:00
Simon L.
0521a87999 Merge pull request #6676 from asavageiv/alan/internal-wopi-requests 
Configure WOPI requests to remain within the Docker network
 2025-09-05 12:49:24 +02:00
Alan Savage
b26b2b4400 Use nextcloud-aio-apache for the wopi-url 
This makes all the WOPI requests go through a single point
making debugging easier.

Signed-off-by: Alan Savage <3028205+asavageiv@users.noreply.github.com>
 2025-08-30 10:24:45 -07:00
Alan Savage
1f7ccba5c8 Configure WOPI requests to remain within the Docker network 
Signed-off-by: Alan Savage <3028205+asavageiv@users.noreply.github.com>
 2025-08-29 08:27:32 -07:00
Simon L.
1e750fdcf6 collabora: add further caps 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-08-21 15:05:59 +02:00
Simon L.
adeee71982 PerformRecursiveContainerStop: Fix the stop order 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-07-25 09:26:09 +02:00
Simon L.
c8f76e067a fulltextsearch: adjust default log level to Warn 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-07-17 15:04:57 +02:00
Simon L.
d2c0176e11 Merge pull request #6606 from thegcat/configurable_fulltextsearch_connection 
Make elasticsearch connection configurable
 2025-07-17 14:11:00 +02:00
Simon L.
4cf1a3839b collabora: change startup logs from trace to warning 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-07-03 15:17:12 +02:00
Felix Schäfer
90b1a64572 Make elasticsearch connection configurable 
Signed-off-by: Felix Schäfer <felix@thegcat.net>
 2025-07-03 12:20:43 +02:00
Simon L.
c306ec7351 containers.json: always add chown cap to collabora 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-05-08 13:29:35 +02:00
Simon L.
5d090018f9 move images to ghcr.io 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-03-25 10:36:25 +01:00
Zoey
9e95d96656 Merge pull request #6094 from nextcloud/clamav-alpine-aarch64 
clamav: build the container also for aarch64/arm64 by using the alpine package
 2025-03-06 16:00:53 +01:00
Simon L.
dd4031c761 Merge pull request #6005 from nextcloud/enh/5311/allow-adjust-es-java-options 
FTS: allow to adjust the ES_JAVA_OPTS
 2025-02-17 11:20:35 +01:00
Simon L.
cca7eef06b FTS: allow to adjust the ES_JAVA_OPTS 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-02-17 11:19:10 +01:00
Simon L.
abec1ef102 notify-push: add timezone to container 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-02-11 10:11:38 +01:00
Simon L.
f039901993 fix whiteboard 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-01-28 13:03:43 +01:00
Simon L.
92f0f2bc44 try to fix whiteboard 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-01-28 12:36:47 +01:00
Simon L.
365e8f6f79 whiteboard: add tmpfs in app as this seems to be required now 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-01-28 12:16:51 +01:00
Simon L.
ec3895beef apache: add docs to aio interface 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-01-20 13:37:43 +01:00
Simon L.
b046294801 containers-schema and containers.json: remove networks from definition 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2025-01-10 23:12:12 +01:00
Simon L.
4906ee4ca4 actually fix collabora 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2024-12-20 12:18:50 +01:00