nextcloud helm release

nextcloud helm

No introduction found. Create it?

Install

Install with:

helm repo add nextcloud oci://ghcr.io/bjw-s-labs/charts/
helm install nextcloud nextcloud/nextcloud -f values.yaml

Examples

See examples from other people.

Major version:

Filter repos who also have:

Top Repositories (3 out of 18)

Name	Repo	Stars	Version	Timestamp
nextcloud	haraldkoch/kochhaus-home	166	8.9.1	2 days ago
nextcloud	drag0n141/home-ops	52	8.9.1	a month ago
nextcloud	budimanjojo/home-cluster	243	8.7.0	3 months ago

Name

Repo

Stars

Version

Timestamp

nextcloud

haraldkoch/kochhaus-home

166

8.9.1

2 days ago

nextcloud

drag0n141/home-ops

8.9.1

a month ago

nextcloud

budimanjojo/home-cluster

243

8.7.0

3 months ago

Values

See the most popular values for this chart:

Key	Types
externalDatabase.enabled (16) `true`	boolean
externalDatabase.existingSecret.enabled (16) `true`	boolean
externalDatabase.existingSecret.passwordKey (16) `INIT_POSTGRES_PASS`	string
externalDatabase.existingSecret.secretName (16) `nextcloud-secret`	string
externalDatabase.existingSecret.usernameKey (16) `INIT_POSTGRES_USER`	string
externalDatabase.existingSecret.databaseKey (4) `POSTGRES_DB`	string
externalDatabase.existingSecret.hostKey (2) `POSTGRES_HOST`	string
externalDatabase.type (16) `postgresql`	string
externalDatabase.database (14) `nextcloud`	string
externalDatabase.host (14) `postgres-nextcloud-rw.databases.svc.cluster.local.`	string
internalDatabase.enabled (16) `false`	boolean
nextcloud.existingSecret.enabled (16) `true`	boolean
nextcloud.existingSecret.secretName (16) `nextcloud-secret`	string
nextcloud.existingSecret.smtpHostKey (10) `SMTP_HOST`	string
nextcloud.existingSecret.smtpPasswordKey (10) `smtp-password`	string
nextcloud.existingSecret.smtpUsernameKey (10) `smtp-username`	string
nextcloud.existingSecret.passwordKey (8) `NEXTCLOUD_PASSWORD`	string
nextcloud.existingSecret.usernameKey (8) `NEXTCLOUD_USERNAME`	string
nextcloud.host (16) `cloud.${SECRET_DOMAIN}`	string
nextcloud.extraEnv[].name (15) `REDIS_HOST REDIS_HOST_PORT`	string
nextcloud.extraEnv[].value (14) `dragonfly.databases.svc.cluster.local. 6379`	string
nextcloud.extraEnv[].valueFrom.secretKeyRef.key (6) `redis-password oidc-client-secret`	string
nextcloud.extraEnv[].valueFrom.secretKeyRef.name (6) `nextcloud-secret nextcloud-secret nextcloud-secret`	string
nextcloud.mail.domain (14) `${SECRET_DOMAIN}`	string
nextcloud.mail.enabled (14) `true`	boolean
nextcloud.mail.fromAddress (14) `admin`	string
nextcloud.mail.smtp.port (13) `465`	number, string
nextcloud.mail.smtp.authtype (9) `LOGIN`	string
nextcloud.mail.smtp.secure (9) `ssl`	string
nextcloud.mail.smtp.host (8) `smtp-relay.${SECRET_DOMAIN}`	string
nextcloud.mail.smtp.name (3)	string
nextcloud.mail.smtp.password (3)	string
nextcloud.extraInitContainers[].envFrom[].secretRef.name (13) `nextcloud-secret`	string
nextcloud.extraInitContainers[].image (13) `ghcr.io/home-operations/postgres-init:18`	string
nextcloud.extraInitContainers[].name (13) `init-db`	string
nextcloud.extraInitContainers[].command[] (3) `- sh - -c - touch /usr/local/etc/php/conf.d/redis-session.ini`	string
nextcloud.extraInitContainers[].volumeMounts[].mountPath (3) `/usr/local/etc/php/conf.d/`	string
nextcloud.extraInitContainers[].volumeMounts[].name (3) `php-confd`	string
nextcloud.configs."misc.config.php" (9) `<?php $CONFIG = array ( 'default_phone_region' => 'PL', 'maintenance_window_start' => 2, ); ?>`	string
nextcloud.configs."proxy.config.php" (9) `<?php $CONFIG = array ( 'trusted_proxies' => array( 0 => '127.0.0.1', 1 => '10.43.0.0/16', 1 => '10.0.0.0/16', ), 'forwarded_for_headers' => array('HTTP_X_FORWARDED_FOR'), ); ?>`	string
nextcloud.configs."local.config.php" (6) `<?php $CONFIG = array ( 'trusted_proxies' => array ( 0 => 'cloud.thesteamedcrab.com', 1 => '127.0.0.1', 2 => '192.168.1.0/24', ), 'overwriteprotocol' => 'https', 'allow_local_remote_servers' => true, 'forwarded_for_headers' => array ( 0 => 'HTTP_X_FORWARDED_FOR', ), 'default_phone_region' => 'CL', 'trashbin_retention_obligation' => 'auto, 30', 'auth.bruteforce.protection.enabled' => true, 'check_data_directory_permissions' => false, 'overwrite.cli.url' => 'https://cloud.thesteamedcrab.com', );`	string
nextcloud.configs."logging.config.php" (6) `<?php $CONFIG = array ( 'log_type' => 'file', 'logfile' => 'nextcloud.log', 'loglevel' => 0, 'logdateformat' => 'F d, Y H:i:s' );`	string
nextcloud.configs."ingress.config.php" (4) `<?php $CONFIG = array ( 'overwrite.cli.url' => 'https://cloud.${SECRET_DOMAIN}', 'overwriteprotocol' => 'https', );`	string
nextcloud.configs."oidc.config.php" (3) <?php $CONFIG = array ( 'allow_user_to_change_display_name' => false, 'lost_password_link' => 'disabled', 'oidc_login_provider_url' => 'https://auth.${SECRET_DOMAIN_0}', 'oidc_login_client_id' => 'nextcloud', 'oidc_login_client_secret' => getenv('OIDC_CLIENT_SECRET'), 'oidc_login_auto_redirect' => false, 'oidc_login_button_text' => 'Log in with Authelia', 'oidc_login_hide_password_form' => false, 'oidc_login_use_id_token' => false, 'oidc_login_attributes' => array( 'id' => 'preferred_username', 'name' => 'name', 'mail' => 'email', 'groups' => 'groups', 'is_admin' => 'is_nextcloud_admin', ), 'oidc_login_default_group' => 'oidc', 'oidc_login_use_external_storage' => false, 'oidc_login_scope' => 'openid profile email groups nextcloud_userinfo', 'oidc_login_proxy_ldap' => false, 'oidc_login_disable_registration' => true, 'oidc_login_redir_fallback' => false, 'oidc_login_tls_verify' => true, 'oidc_create_groups' => false, 'oidc_login_webdav_enabled' => false, 'oidc_login_password_authentication' => false, 'oidc_login_public_key_caching_time' => 86400, 'oidc_login_min_time_between_jwks_requests' => 10, 'oidc_login_well_known_caching_time' => 86400, 'oidc_login_update_avatar' => false, 'oidc_login_code_challenge_method' => 'S256', );	string
nextcloud.configs."sso.config.php" (3) <?php $CONFIG = array ( 'allow_user_to_change_display_name' => false, 'lost_password_link' => 'disabled', 'oidc_login_client_id' => getenv('OIDC_CLIENT_ID'), 'oidc_login_client_secret' => getenv('OIDC_CLIENT_SECRET'), 'oidc_login_provider_url' => 'https://id.${SECRET_DOMAIN}', 'oidc_login_auto_redirect' => true, //login?noredir=1 'oidc_login_end_session_redirect' => true, 'oidc_login_button_text' => 'Log in with Pocket ID', 'oidc_login_hide_password_form' => true, 'oidc_login_use_id_token' => false, 'oidc_login_attributes' => array ( 'id' => 'preferred_username', 'name' => 'name', 'mail' => 'email', 'groups' => 'groups', 'login_filter' => 'groups', 'photoURL' => 'picture', 'is_admin' => 'groups_ID-Admin', ), 'oidc_login_filter_allowed_values' => array('ID-Nextcloud'), 'oidc_login_use_external_storage' => false, 'oidc_login_scope' => 'openid profile email groups', 'oidc_login_proxy_ldap' => false, 'oidc_login_disable_registration' => false, 'oidc_login_redir_fallback' => false, 'oidc_login_tls_verify' => true, 'oidc_create_groups' => false, 'oidc_login_webdav_enabled' => false, 'oidc_login_password_authentication' => false, 'oidc_login_public_key_caching_time' => 86400, 'oidc_login_min_time_between_jwks_requests' => 10, 'oidc_login_well_known_caching_time' => 86400, 'oidc_login_update_avatar' => false, );	string
nextcloud.configs."caching.config.php" (2) `<?php $CONFIG = array ( 'memcache.local' => '\\OC\\Memcache\\APCu', 'memcache.distributed' => '\\OC\\Memcache\\Redis', 'memcache.locking' => '\\OC\\Memcache\\Redis', 'filelocking.enabled' => true, 'redis' => array( 'host' => 'dragonfly.database.svc.cluster.local', 'port' => 6379, 'timeout' => 0.0, 'password' => '', ), );`	string
nextcloud.configs."redis.config.php" (2) `<?php $CONFIG = array ( 'memcache.distributed' => '\OC\Memcache\Redis', 'memcache.locking' => '\OC\Memcache\Redis', 'redis' => array ( 'host' => getenv('REDIS_HOST'), 'port' => 6379, 'dbindex' => 4, 'password' => '', ), );`	string
nextcloud.configs."timezone.config.php" (2) `<?php $CONFIG = array ( 'default_timezone' => 'America/Los_Angeles', );`	string
nextcloud.configs."bulkupload.config.php" (1) `<?php $CONFIG = array ( 'bulkupload.enabled' => false, );`	string
nextcloud.configs."collabora.config.php" (1) `<?php $CONFIG = array ( 'richdocuments' => array( 'wopi_url' => 'https://collabora.vzkn.eu', ), );`	string
nextcloud.configs."custom.config.php" (1) `<?php $CONFIG = array ( 'overwriteprotocol' => 'https', 'overwrite.cli.url' => 'https://cloud.${SECRET_DOMAIN}', 'overewritehost' => 'cloud.${SECRET_DOMAIN}', 'filelocking.enabled' => 'true', 'default_phone_region' => 'DE', 'loglevel' => '2', 'enable_previews' => true, 'log_type' => 'syslog', 'maintenance_window_start' => 1, 'trusted_proxies' => array ( 0 => '127.0.0.1', 1 => '10.42.0.0/16', 2 => '10.43.0.0/16', ), );`	string
nextcloud.configs."gitops.config.php" (1) `<?php $CONFIG = array ( 'appstoreenabled' => true, 'mail_domain' => '${SECRET_DOMAIN}', );`	string
nextcloud.configs."minio.config.php" (1) `<?php $CONFIG = array ( 'objectstore' => array( 'class' => '\\OC\\Files\\ObjectStore\\S3', 'arguments' => array( 'hostname' => 's3.hoohoot.org', 'port' => 443, 'use_path_style' => true, 'bucket' => 'nextcloud-data', 'autocreate' => false, 'key' => getenv('S3_ACCESS_KEY'), 'secret' => getenv('S3_SECRET_KEY'), 'use_ssl' => true, ), ), );`	string
nextcloud.configs."notify_push.config.php" (1) `<?php $CONFIG = array ( 'notify_push' => array( 'base_endpoint' => 'https://cloud.vzkn.eu/push', ), );`	string
nextcloud.configs."performance.config.php" (1) <?php $CONFIG = array ( 'enable_previews' => true, 'enabledPreviewProviders' => array( 'OC\Preview\PNG', 'OC\Preview\JPEG', 'OC\Preview\GIF', 'OC\Preview\BMP', 'OC\Preview\XBitmap', 'OC\Preview\MP3', 'OC\Preview\TXT', 'OC\Preview\MarkDown', 'OC\Preview\OpenDocument', 'OC\Preview\Krita', 'OC\Preview\HEIC', 'OC\Preview\PDF', 'OC\Preview\TIFF', 'OC\Preview\SVG', 'OC\Preview\MP4', 'OC\Preview\Movie', ), 'preview_max_x' => 2048, 'preview_max_y' => 2048, 'preview_max_scale_factor' => 1, 'preview_concurrency_new' => 4, 'preview_concurrency_all' => 4, 'jpeg_quality' => 60, );	string
nextcloud.configs."preview.config.php" (1) `<?php $CONFIG = array ( 'enabledPreviewProviders' => array( 'OC\Preview\PNG', 'OC\Preview\JPEG', 'OC\Preview\GIF', 'OC\Preview\BMP', 'OC\Preview\XBitmap', 'OC\Preview\MP3', 'OC\Preview\TXT', 'OC\Preview\MarkDown', 'OC\Preview\OpenDocument', 'OC\Preview\Krita', 'OC\Preview\HEIC', ), );`	string
nextcloud.configs."talk.config.php" (1) `<?php $CONFIG = array ( 'spreed' => array( 'external_signaling' => array( 'signaling_servers' => array( array( 'url' => 'https://talk.vzkn.eu/', 'verify' => true, ), ), ), 'stun_servers' => array( 'turn.vzkn.eu:3478', 'turn.vzkn.eu:5349', ), 'turn_servers' => array( array( 'server' => 'turn.vzkn.eu', 'secret' => '', # Managed by signaling server 'protocols' => 'udp,tcp', ), ), ), );`	string
nextcloud.datadir (9) `/var/www/data`	string
nextcloud.extraVolumeMounts[].mountPath (9) `/usr/local/etc/php/conf.d/redis-session.ini /tmp`	string
nextcloud.extraVolumeMounts[].name (9) `php-confd tmpfs`	string
nextcloud.extraVolumeMounts[].subPath (4) `redis-session.ini`	string
nextcloud.extraVolumeMounts[].readOnly (1) `true true`	boolean
nextcloud.extraVolumes[].name (9) `php-confd tmpfs`	string
nextcloud.extraVolumes[].configMap.defaultMode (2) `755`	number
nextcloud.extraVolumes[].configMap.name (2) `nextcloud-scripts`	string
nextcloud.extraVolumes[].nfs.path (2) `/mnt/data/home`	string
nextcloud.extraVolumes[].nfs.server (2) `nas01.${SECRET_DOMAIN_INT}`	string
nextcloud.extraVolumes[].persistentVolumeClaim.claimName (2) `nextcloud-media-nfs`	string
nextcloud.extraVolumes[].secret.items[].key (1) `replica.config.php`	string
nextcloud.extraVolumes[].secret.items[].path (1) `replica.config.php`	string
nextcloud.extraVolumes[].secret.secretName (1) `nextcloud-secret`	string
nextcloud.securityContext.runAsGroup (7) `1022`	number
nextcloud.securityContext.runAsUser (7) `1022`	number
nextcloud.securityContext.runAsNonRoot (6) `true`	boolean
nextcloud.securityContext.fsGroup (4) `33`	number
nextcloud.securityContext.fsGroupChangePolicy (2) `OnRootMismatch`	string
nextcloud.securityContext.readOnlyRootFilesystem (1) `false`	boolean
nextcloud.phpConfigs."uploadLimit.ini" (6) `upload_max_filesize = 16G post_max_size = 16G max_input_time = 3600 max_execution_time = 3600`	string
nextcloud.phpConfigs."www.conf" (6) `[www] user = www-data group = www-data listen = 127.0.0.1:9000 pm = dynamic pm.max_children = 57 pm.start_servers = 14 pm.min_spare_servers = 14 pm.max_spare_servers = 42 pm.max_requests = 500 pm.process_idle_timeout = 10s`	string
nextcloud.phpConfigs."php.ini" (1) `max_execution_time = 600 default_socket_timeout = 300 curl.cainfo = /etc/ssl/certs/ca-certificates.crt extension=imagick extension=exif extension=intl extension=gd memory_limit = 8G opcache.memory_consumption = 512 opcache.max_accelerated_files = 20000 opcache.revalidate_freq = 60`	string
nextcloud.lifecycle.postStartCommand[] (4) `- /bin/sh - -c - cd /var/www/html; ./occ maintenance:repair --include-expensive; ./occ db:add-missing-indices; /bin/true`	string
nextcloud.containerPort (3) `80`	number
nextcloud.defaultConfigs."imaginary.config.php" (2) `true`	boolean
nextcloud.defaultConfigs."redis.config.php" (2) `false`	boolean
nextcloud.defaultConfigs."s3.config.php" (1) `false`	boolean
nextcloud.extraSidecarContainers[].args[] (1) `- --port - "7867"`	string
nextcloud.extraSidecarContainers[].command[] (1) `- /var/www/html/custom_apps/notify_push/bin/x86_64/notify_push - /var/www/html/config/config.php`	string
nextcloud.extraSidecarContainers[].env[].name (1) `NEXTCLOUD_URL PORT`	string
nextcloud.extraSidecarContainers[].env[].value (1) `http://localhost:8080 7867`	string
nextcloud.extraSidecarContainers[].image (1) `nextcloud:33.0.0-fpm-alpine`	string
nextcloud.extraSidecarContainers[].name (1) `notify-push`	string
nextcloud.extraSidecarContainers[].ports[].containerPort (1) `7867`	number
nextcloud.extraSidecarContainers[].ports[].name (1) `push`	string
nextcloud.extraSidecarContainers[].ports[].protocol (1) `TCP`	string
nextcloud.extraSidecarContainers[].resources.limits.memory (1) `192Mi`	string
nextcloud.extraSidecarContainers[].resources.requests.cpu (1) `10m`	string
nextcloud.extraSidecarContainers[].resources.requests.memory (1) `96Mi`	string
nextcloud.extraSidecarContainers[].volumeMounts[].mountPath (1) `/var/www/html /var/www/data`	string
nextcloud.extraSidecarContainers[].volumeMounts[].name (1) `nextcloud-main nextcloud-data`	string
nextcloud.extraSidecarContainers[].volumeMounts[].readOnly (1) `true true`	boolean
nextcloud.hooks.before-starting (1) `# disable unneceserry apps for appname in activity circles systemtags federation privacy \ nextcloud_announcements announcementcenter support survey_client \ user_status weather_status dashboard do php occ app:disable "$appname" done`	string
nextcloud.hooks.post-installation (1) `printf "Add missing DB indices\n" php occ db:add-missing-indices`	string
nextcloud.hooks.post-upgrade (1) `# based on https://github.com/nextcloud/all-in-one/blob/25c580bca370eaead5f1fad9d3842a9c49562dff/Containers/nextcloud/entrypoint.sh#L451-L457 php occ maintenance:repair --include-expensive php occ db:add-missing-indices php occ db:add-missing-columns php occ db:add-missing-primary-keys`	string
nextcloud.objectStorage.s3.autoCreate (1) `true`	boolean
nextcloud.objectStorage.s3.bucket (1) `nextcloud`	string
nextcloud.objectStorage.s3.enabled (1) `true`	boolean
nextcloud.objectStorage.s3.existingSecret (1) `nextcloud-secrets`	string
nextcloud.objectStorage.s3.host (1) `minio.storage.svc.cluster.local`	string
nextcloud.objectStorage.s3.port (1) `9000`	number
nextcloud.objectStorage.s3.secretKeys.accessKey (1) `MINIO_ACCESS_KEY`	string
nextcloud.objectStorage.s3.secretKeys.secretKey (1) `MINIO_SECRET_KEY`	string
nextcloud.objectStorage.s3.ssl (1) `false`	boolean
nextcloud.objectstore.s3.autocreate (1) `true`	boolean
nextcloud.objectstore.s3.bucket (1) `nextcloud-data`	string
nextcloud.objectstore.s3.enabled (1) `true`	boolean
nextcloud.objectstore.s3.existingSecret (1) `nextcloud-secret`	string
nextcloud.objectstore.s3.host (1) `192.168.20.5:3900`	string
nextcloud.objectstore.s3.region (1) `us-east-1`	string
nextcloud.objectstore.s3.secretKeys.accessKey (1) `S3_ACCESS_KEY`	string
nextcloud.objectstore.s3.secretKeys.secretKey (1) `S3_SECRET_KEY`	string
nextcloud.objectstore.s3.ssl (1) `false`	boolean
nextcloud.objectstore.s3.usePathStyle (1) `false`	boolean
nextcloud.podSecurityContext.capabilities.add[] (1) `- NET_BIND_SERVICE`	string
nextcloud.podSecurityContext.capabilities.drop[] (1) `- ALL`	string
nextcloud.podSecurityContext.fsGroup (1) `${PGID}`	string
nextcloud.podSecurityContext.readOnlyRootFilesystem (1) `false`	boolean
nextcloud.podSecurityContext.runAsGroup (1) `${PGID}`	string
nextcloud.podSecurityContext.runAsNonRoot (1) `true`	boolean
nextcloud.podSecurityContext.runAsUser (1) `${PUID}`	string
nextcloud.strategy.type (1) `Recreate`	string
persistence.enabled (16) `true`	boolean
persistence.existingClaim (16) `nextcloud`	string
persistence.nextcloudData.enabled (7) `true`	boolean
persistence.nextcloudData.existingClaim (7) `nextcloud-nfs`	string
persistence.nextcloudData.accessMode (6) `ReadWriteMany`	string
persistence.data.globalMounts[].path (2) `/var/www/html/data`	string
persistence.data.globalMounts[].readOnly (1) `false`	boolean
persistence.data.existingClaim (1) `{{ .Release.Name }}`	string
persistence.data.path (1) `/mnt/apps/kubernetes/nextcloud`	string
persistence.data.server (1) `${SECRET_NFS_SERVER:=temp}`	string
persistence.data.type (1) `nfs`	string
persistence.alex-nfs.globalMounts[].path (1) `/var/www/html/data/alex/files`	string
persistence.alex-nfs.path (1) `/mnt/Fast/Alex`	string
persistence.alex-nfs.server (1) `192.168.42.20`	string
persistence.alex-nfs.type (1) `nfs`	string
persistence.config-file.globalMounts[].path (1) `/var/www/html/config/custom.config.php /usr/local/etc/php/conf.d/php.ini /usr/local/etc/php-fpm.d/www.conf /etc/apache2/conf-available/remoteip.conf`	string
persistence.config-file.globalMounts[].subPath (1) `custom.config.php php.ini www.conf remoteip.conf`	string
persistence.config-file.identifier (1) `config`	string
persistence.config-file.type (1) `configMap`	string
persistence.config.existingClaim (1) `nextcloud`	string
persistence.config.globalMounts[].path (1) `/var/www/html`	string
persistence.tmpfs.globalMounts[].path (1) `/tmp /cache /var/run`	string
persistence.tmpfs.globalMounts[].subPath (1) `tmp cache run`	string
persistence.tmpfs.type (1) `emptyDir`	string
startupProbe.enabled (16) `true`	boolean
startupProbe.failureThreshold (13) `30`	number
startupProbe.initialDelaySeconds (13) `10`	number
startupProbe.periodSeconds (13) `20`	number
startupProbe.successThreshold (13) `1`	number
startupProbe.timeoutSeconds (13) `5`	number
nginx.enabled (14) `true`	boolean
nginx.resources.requests.cpu (4) `10m`	string
nginx.resources.requests.memory (4) `64Mi`	string
nginx.resources.limits.memory (3) `128Mi`	string
nginx.resources.limits.cpu (1) `200m`	string
nginx.config.headers.Strict-Transport-Security (2) `max-age=15552000; includeSubDomains`	string
nginx.config.default (1) `true`	boolean
nginx.config.serverBlockCustom (1) `client_max_body_size 10G; client_body_timeout 300s; fastcgi_buffers 64 4K; fastcgi_read_timeout 3600s; # Handle forwarded headers for proper protocol detection real_ip_header X-Forwarded-For; set_real_ip_from 10.0.0.0/8; set_real_ip_from 172.16.0.0/12; set_real_ip_from 192.168.0.0/16;`	string
nginx.image.repository (1) `nginx`	string
nginx.image.tag (1) `1.29.5`	string
ingress.enabled (13) `false`	boolean
ingress.annotations."nginx.ingress.kubernetes.io/proxy-body-size" (3) `10G`	string
ingress.annotations."nginx.ingress.kubernetes.io/server-snippet" (3) server_tokens off; proxy_hide_header X-Powered-By; more_set_headers "Strict-Transport-Security: max-age=31536000; includeSubDomains; preload"; rewrite ^/.well-known/webfinger /public.php?service=webfinger last; rewrite ^/.well-known/host-meta /public.php?service=host-meta last; rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json; location = /.well-known/carddav { return 301 $scheme://$host/remote.php/dav; } location = /.well-known/caldav { return 301 $scheme://$host/remote.php/dav; } location = /robots.txt { allow all; log_not_found off; access_log off; } location ~ ^/(?:build\|tests\|config\|lib\|3rdparty\|templates\|data)/ { deny all; } location ~ ^/(?:autotest\|occ\|issue\|indie\|db_\|console) { deny all; }	string
ingress.annotations."nginx.ingress.kubernetes.io/proxy-buffering" (2) `off`	string
ingress.annotations."nginx.ingress.kubernetes.io/proxy-request-buffering" (2) `off`	string
ingress.annotations."cert-manager.io/cluster-issuer" (1) `letsencrypt-production`	string
ingress.annotations."external-dns.alpha.kubernetes.io/cloudflare-proxied" (1) `false`	string
ingress.annotations."external-dns.home.arpa/enabled" (1) `true`	string
ingress.annotations."hajimari.io/enable" (1) `true`	string
ingress.annotations."hajimari.io/group" (1) `Family`	string
ingress.annotations."hajimari.io/icon" (1) `simple-icons:nextcloud`	string
ingress.annotations."hajimari.io/info" (1) `File and Calendar server`	string
ingress.annotations."nginx.ingress.kubernetes.io/backend-protocol" (1) `HTTP`	string
ingress.annotations."nginx.ingress.kubernetes.io/cors-allow-headers" (1) `X-Forwarded-For, X-Real-IP, X-Frame-Options, X-Content-Type-Options, X-Forwarded-Proto`	string
ingress.annotations."nginx.org/proxy-hide-headers" (1) `X-Powered-By`	string
ingress.annotations."nginx.org/rewrites" (1) `/.well-known/webfinger /index.php/.well-known/webfinger; /.well-known/nodeinfo /index.php/.well-known/nodeinfo; /.well-known/host-meta /public.php?service=host-meta; /.well-known/host-meta.json /public.php?service=host-meta-json; /.well-known/carddav $scheme://$host/remote.php/dav redirect=301; /.well-known/caldav $scheme://$host/remote.php/dav redirect=301;`	string
ingress.annotations."nginx.org/server-tokens" (1) `off`	string
ingress.className (3) `external`	string
ingress.path (2) `/`	string
ingress.pathType (2) `Prefix`	string
ingress.tls[].hosts[] (1) `- nc.${SECRET_DOMAIN}`	string
ingress.tls[].secretName (1) `tls.nextcloud`	string
cronjob.enabled (12) `true`	boolean
cronjob.curlInsecure (3) `true`	boolean
cronjob.failedJobsHistoryLimit (2) `5`	number
cronjob.successfulJobsHistoryLimit (2) `2`	number
cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].labelSelector.matchLabels."app.kubernetes.io/component" (1) `app`	string
cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].labelSelector.matchLabels."app.kubernetes.io/instance" (1) `nextcloud`	string
cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].labelSelector.matchLabels."app.kubernetes.io/name" (1) `nextcloud`	string
cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].topologyKey (1) `kubernetes.io/hostname`	string
cronjob.cronjob.command[] (1) `- /bin/sh - /scripts/cron.sh`	string
cronjob.cronjob.env[].name (1) `MAIL_FROM_ADDRESS PHP_MEMORY_LIMIT`	string
cronjob.cronjob.env[].value (1) `${FROM_ADDRESS} 8G`	string
cronjob.cronjob.extraVolumeMounts[].mountPath (1) `/scripts`	string
cronjob.cronjob.extraVolumeMounts[].name (1) `scripts`	string
cronjob.cronjob.extraVolumeMounts[].readOnly (1) `true`	boolean
cronjob.cronjob.extraVolumes[].configMap.defaultMode (1) `755`	number
cronjob.cronjob.extraVolumes[].configMap.name (1) `nextcloud-scripts`	string
cronjob.cronjob.extraVolumes[].name (1) `scripts`	string
cronjob.cronjob.failedJobsHistoryLimit (1) `1`	number
cronjob.cronjob.schedule (1) `/5 * * *`	string
cronjob.cronjob.securityContext.runAsGroup (1) `33`	number
cronjob.cronjob.securityContext.runAsNonRoot (1) `true`	boolean
cronjob.cronjob.securityContext.runAsUser (1) `33`	number
cronjob.cronjob.successfulJobsHistoryLimit (1) `2`	number
cronjob.cronjob.ttlSecondsAfterFinished (1) `3600`	number
cronjob.resources.limits.memory (1) `192Mi`	string
cronjob.resources.requests.cpu (1) `10m`	string
cronjob.resources.requests.memory (1) `96Mi`	string
cronjob.securityContext.fsGroup (1) `${PGID}`	string
cronjob.securityContext.readOnlyRootFilesystem (1) `true`	boolean
cronjob.securityContext.runAsGroup (1) `${PGID}`	string
cronjob.securityContext.runAsNonRoot (1) `true`	boolean
cronjob.securityContext.runAsUser (1) `${PUID}`	string
cronjob.type (1) `cronjob`	string
image.flavor (12) `fpm-alpine`	string
image.tag (5) `33.0.0-fpm-alpine`	string
image.repository (2) `nextcloud`	string
image.pullPolicy (1) `IfNotPresent`	string
resources.requests.cpu (9) `100m`	string
resources.requests.memory (9) `363Mi`	string
resources.limits.memory (8) `8Gi`	string
resources.limits.cpu (3) `4`	number
deploymentAnnotations."reloader.stakater.com/auto" (7) `true`	string
deploymentAnnotations."secret.reloader.stakater.com/reload" (2) `nextcloud-secret`	string
livenessProbe.enabled (4) `false`	boolean
livenessProbe.failureThreshold (2) `3`	number
livenessProbe.initialDelaySeconds (2) `7200`	number
livenessProbe.periodSeconds (2) `10`	number
livenessProbe.successThreshold (2) `1`	number
livenessProbe.timeoutSeconds (2) `5`	number
readinessProbe.enabled (4) `false`	boolean
readinessProbe.failureThreshold (2) `3`	number
readinessProbe.initialDelaySeconds (2) `7200`	number
readinessProbe.periodSeconds (2) `10`	number
readinessProbe.successThreshold (2) `1`	number
readinessProbe.timeoutSeconds (2) `5`	number
phpClientHttpsFix.enabled (3) `true`	boolean
phpClientHttpsFix.protocol (3) `https`	string
redis.enabled (3) `false`	boolean
redis.auth.enabled (1) `true`	boolean
redis.auth.existingSecret (1) `nextcloud-secret`	string
redis.auth.existingSecretPasswordKey (1) `REDIS_PASSWORD`	string
redis.host (1) `nextcloud-valkey.selfhosted.svc.cluster.local`	string
redis.port (1) `6379`	number
controllers.nextcloud.annotations."reloader.stakater.com/auto" (2) `true`	string
controllers.nextcloud.containers.app.env.NEXTCLOUD_TRUSTED_DOMAINS (2) `nextcloud.${SECRET_DOMAIN}`	string
controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_PASSWORD.valueFrom.secretKeyRef.key (1) `NEXTCLOUD_ADMIN_PASSWORD`	string
controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_PASSWORD.valueFrom.secretKeyRef.name (1) `nextcloud-secret`	string
controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_USER.valueFrom.secretKeyRef.key (1) `NEXTCLOUD_ADMIN_USER`	string
controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_USER.valueFrom.secretKeyRef.name (1) `nextcloud-secret`	string
controllers.nextcloud.containers.app.env.NEXTCLOUD_DATA_DIR (1) `/var/www/html/data`	string
controllers.nextcloud.containers.app.env.OVERWRITECLIURL (1) `https://nextcloud.${SECRET_DOMAIN}`	string
controllers.nextcloud.containers.app.env.OVERWRITEPROTOCOL (1) `https`	string
controllers.nextcloud.containers.app.env.POSTGRES_DB.valueFrom.secretKeyRef.key (1) `POSTGRES_DB`	string
controllers.nextcloud.containers.app.env.POSTGRES_DB.valueFrom.secretKeyRef.name (1) `nextcloud-secret`	string
controllers.nextcloud.containers.app.env.POSTGRES_HOST.valueFrom.secretKeyRef.key (1) `POSTGRES_HOST`	string
controllers.nextcloud.containers.app.env.POSTGRES_HOST.valueFrom.secretKeyRef.name (1) `nextcloud-secret`	string
controllers.nextcloud.containers.app.env.POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1) `POSTGRES_PASSWORD`	string
controllers.nextcloud.containers.app.env.POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1) `nextcloud-secret`	string
controllers.nextcloud.containers.app.env.POSTGRES_USER.valueFrom.secretKeyRef.key (1) `POSTGRES_USER`	string
controllers.nextcloud.containers.app.env.POSTGRES_USER.valueFrom.secretKeyRef.name (1) `nextcloud-secret`	string
controllers.nextcloud.containers.app.env.REDIS_HOST (1) `dragonfly.database.svc.cluster.local`	string
controllers.nextcloud.containers.app.env.TZ (1) `${TIMEZONE}`	string
controllers.nextcloud.containers.app.image.repository (2) `nextcloud`	string
controllers.nextcloud.containers.app.image.tag (2) `32.0.6-apache`	string
controllers.nextcloud.containers.app.probes.liveness.custom (2) `true`	boolean
controllers.nextcloud.containers.app.probes.liveness.enabled (2) `true`	boolean
controllers.nextcloud.containers.app.probes.liveness.spec.failureThreshold (2) `10`	number
controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.path (2) `/status.php`	string
controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.port (2) `80`	number
controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.httpHeaders[].name (1) `Host`	string
controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.httpHeaders[].value (1) `storage.hyde.services`	string
controllers.nextcloud.containers.app.probes.liveness.spec.initialDelaySeconds (2) `120`	number
controllers.nextcloud.containers.app.probes.liveness.spec.periodSeconds (2) `30`	number
controllers.nextcloud.containers.app.probes.liveness.spec.timeoutSeconds (2) `10`	number
controllers.nextcloud.containers.app.probes.readiness.custom (2) `true`	boolean
controllers.nextcloud.containers.app.probes.readiness.enabled (2) `true`	boolean
controllers.nextcloud.containers.app.probes.readiness.spec.failureThreshold (2) `20`	number
controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.path (2) `/status.php`	string
controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.port (2) `80`	number
controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.httpHeaders[].name (1) `Host`	string
controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.httpHeaders[].value (1) `storage.hyde.services`	string
controllers.nextcloud.containers.app.probes.readiness.spec.initialDelaySeconds (2) `60`	number
controllers.nextcloud.containers.app.probes.readiness.spec.periodSeconds (2) `15`	number
controllers.nextcloud.containers.app.probes.readiness.spec.timeoutSeconds (2) `10`	number
controllers.nextcloud.containers.app.probes.startup.enabled (2) `true`	boolean
controllers.nextcloud.containers.app.probes.startup.spec.failureThreshold (2) `120`	number
controllers.nextcloud.containers.app.probes.startup.spec.periodSeconds (2) `15`	number
controllers.nextcloud.containers.app.probes.startup.spec.httpGet.path (1) `/status.php`	string
controllers.nextcloud.containers.app.probes.startup.spec.httpGet.port (1) `80`	number
controllers.nextcloud.containers.app.probes.startup.spec.initialDelaySeconds (1) `60`	number
controllers.nextcloud.containers.app.probes.startup.spec.timeoutSeconds (1) `10`	number
controllers.nextcloud.containers.app.probes.startup.custom (1) `true`	boolean
controllers.nextcloud.containers.app.resources.limits.memory (2) `2Gi`	string
controllers.nextcloud.containers.app.resources.requests.cpu (2) `100m`	string
controllers.nextcloud.containers.app.resources.requests.memory (2) `512Mi`	string
controllers.nextcloud.containers.app.securityContext.allowPrivilegeEscalation (2) `false`	boolean
controllers.nextcloud.containers.app.securityContext.capabilities.drop[] (2) `- ALL`	string
controllers.nextcloud.containers.app.securityContext.readOnlyRootFilesystem (2) `false`	boolean
controllers.nextcloud.containers.app.envFrom[].secretRef.name (1) `{{ .Release.Name }}-secret`	string
controllers.nextcloud.initContainers.copy-config.command[] (1) `- sh - -c - cp -r /usr/src/nextcloud/config/*.php /var/www/html/config/`	string
controllers.nextcloud.initContainers.copy-config.image.repository (1) `docker.io/library/nextcloud`	string
controllers.nextcloud.initContainers.copy-config.image.tag (1) `33.0.0@sha256:ff2cbaab14c85e587b5541e3aff4216a8a484e06424ebae661581937c0c8da0c`	string
controllers.nextcloud.initContainers.copy-config.securityContext.allowPrivilegeEscalation (1) `false`	boolean
controllers.nextcloud.initContainers.copy-config.securityContext.capabilities.drop[] (1) `- ALL`	string
controllers.nextcloud.initContainers.copy-config.securityContext.readOnlyRootFilesystem (1) `true`	boolean
controllers.nextcloud.initContainers.init-db.envFrom[].secretRef.name (1) `nextcloud-secret`	string
controllers.nextcloud.initContainers.init-db.image.repository (1) `ghcr.io/home-operations/postgres-init`	string
controllers.nextcloud.initContainers.init-db.image.tag (1) `rolling`	string
controllers.nextcloud.type (1) `deployment`	string
defaultPodOptions.securityContext.fsGroup (2) `33`	number
defaultPodOptions.securityContext.fsGroupChangePolicy (2) `OnRootMismatch`	string
defaultPodOptions.securityContext.runAsGroup (1) `1000`	number
defaultPodOptions.securityContext.runAsNonRoot (1) `true`	boolean
defaultPodOptions.securityContext.runAsUser (1) `1000`	number
imaginary.enabled (2) `true`	boolean
postgresql.enabled (2) `false`	boolean
route.app.annotations."gatus.home-operations.com/endpoint" (2) `group: productivity`	string
route.app.annotations."external-dns.alpha.kubernetes.io/cloudflare-proxied" (1) `false`	string
route.app.annotations."gethomepage.dev/description" (1) `File Sync & Collaboration`	string
route.app.annotations."gethomepage.dev/enabled" (1) `true`	string
route.app.annotations."gethomepage.dev/group" (1) `Productivity`	string
route.app.annotations."gethomepage.dev/icon" (1) `nextcloud.png`	string
route.app.annotations."gethomepage.dev/name" (1) `Nextcloud`	string
route.app.annotations."gethomepage.dev/widget.password" (1) {{`{{HOMEPAGE_VAR_NEXTCLOUD_PASSWORD}}`}}	string
route.app.annotations."gethomepage.dev/widget.type" (1) `nextcloud`	string
route.app.annotations."gethomepage.dev/widget.url" (1) `http://nextcloud.productivity.svc.cluster.local:80`	string
route.app.annotations."gethomepage.dev/widget.username" (1) {{`{{HOMEPAGE_VAR_NEXTCLOUD_USERNAME}}`}}	string
route.app.hostnames[] (2) `- nextcloud.${SECRET_DOMAIN}`	string
route.app.parentRefs[].name (2) `internal`	string
route.app.parentRefs[].namespace (2) `network`	string
route.app.parentRefs[].sectionName (1) `https`	string
route.app.rules[].backendRefs[].identifier (1) `app`	string
route.app.rules[].backendRefs[].port (1) `80`	number
route.app.rules[].filters[].responseHeaderModifier.add[].name (1) `Strict-Transport-Security`	string
route.app.rules[].filters[].responseHeaderModifier.add[].value (1) `max-age=31536000; includeSubDomains; preload`	string
route.app.rules[].filters[].type (1) `ResponseHeaderModifier`	string
securityContext.fsGroupChangePolicy (2) `OnRootMismatch`	string
service.app.ports.http.port (2) `80`	number
service.app.controller (1) `nextcloud`	string
affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].preference.matchExpressions[].key (1) `kubernetes.io/hostname`	string
affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].preference.matchExpressions[].operator (1) `In`	string
affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].preference.matchExpressions[].values[] (1) `- control-1`	string
affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].weight (1) `100`	number
configMaps.config.data."custom.config.php" (1) <?php $CONFIG = array( 'overwriteprotocol' => 'https', 'overwrite.cli.url' => 'https://storage.hyde.services', 'overwritehost' => 'storage.hyde.services', 'check_data_directory_permissions' => false, 'default_phone_region' => 'AU', 'trusted_proxies' => array( 0 => '127.0.0.1', 1 => '10.42.0.0/16', ), 'trusted_domains' => array( 0 => '127.0.0.1', 1 => 'storage.hyde.services', ), 'simpleSignUpLink.shown' => false, 'cache_path' => '/cache', 'forwarded_for_headers' => array('X-Forwarded-For'), 'maintenance_window_start' => 100, 'memcache.distributed' => '\OC\Memcache\Redis', 'memcache.locking' => '\OC\Memcache\Redis', 'redis' => array( 'host' => 'dragonfly.databases.svc.cluster.local', 'port' => 6379, 'dbindex' => 1, ), );	string
configMaps.config.data."php.ini" (1) `session.save_handler = redis session.save_path = "tcp://dragonfly.databases.svc.cluster.local:6379/1" redis.session.locking_enabled = 1 redis.session.lock_retries = -1 redis.session.lock_wait_time = 10000 upload_max_filesize = 16G post_max_size = 16G memory_limit = 512M max_execution_time = 3600`	string
configMaps.config.data."remoteip.conf" (1) `RemoteIPHeader X-Forwarded-For RemoteIPInternalProxy 10.42.0.0/16`	string
configMaps.config.data."www.conf" (1) `[www] listen = 127.0.0.1:9000 pm = dynamic pm.max_children = 50 pm.start_servers = 12 pm.min_spare_servers = 6 pm.max_spare_servers = 18`	string
deploymentLabels.nfsMount (1) `true`	string
deploymentLabels.postgres (1) `true`	string
extraManifests[] (1) - apiVersion: v1 kind: Service metadata: name: nextcloud-push labels: app.kubernetes.io/name: {{ include "nextcloud.name" . }} app.kubernetes.io/instance: {{ .Release.Name }} spec: type: ClusterIP ports: - name: push port: 7867 targetPort: 7867 protocol: TCP selector: app.kubernetes.io/name: {{ include "nextcloud.name" . }} app.kubernetes.io/instance: {{ .Release.Name }} - apiVersion: v1 kind: ConfigMap metadata: name: nextcloud-hooks data: sync-db-password.sh: \| #!/bin/sh set -e CONFIG_FILE="/var/www/html/config/config.php" if [ -f "$CONFIG_FILE" ] && [ -n "$POSTGRES_PASSWORD" ]; then echo "=> Syncing database password from secret to config.php" # Use PHP to safely update the password php -r " \$config = file_get_contents('$CONFIG_FILE'); \$config = preg_replace( \"/'dbpassword'\\s=>\\s'[^']*'/\", \"'dbpassword' => '\" . getenv('POSTGRES_PASSWORD') . \"'\", \$config ); file_put_contents('$CONFIG_FILE', \$config); " echo "=> Database password synced successfully" fi	string
fullnameOverride (1) `nextcloud`	string
hpa.enabled (1) `false`	boolean
httpRoute.annotations."gatus.home-operations.com/enabled" (1) `false`	string
httpRoute.apiVersion (1) `gateway.networking.k8s.io/v1`	string
httpRoute.enabled (1) `true`	boolean
httpRoute.hostnames[] (1) `- nextcloud.${SECRET_DOMAIN}`	string
httpRoute.kind (1) `HTTPRoute`	string
httpRoute.parentRefs[].name (1) `envoy-external`	string
httpRoute.parentRefs[].namespace (1) `network`	string
httpRoute.rules[].backendRefs[].name (1) `notify-push nextcloud nextcloud nextcloud nextcloud nextcloud nextcloud nextcloud`	string
httpRoute.rules[].backendRefs[].port (1) `7867 8080 8080 8080 8080 8080 8080 8080`	number
httpRoute.rules[].filters[].type (1) `URLRewrite URLRewrite URLRewrite URLRewrite URLRewrite URLRewrite`	string
httpRoute.rules[].filters[].urlRewrite.path.replaceFullPath (1) `/public.php?service=host-meta /public.php?service=host-meta-json`	string
httpRoute.rules[].filters[].urlRewrite.path.replacePrefixMatch (1) `/index.php/.well-known/webfinger /index.php/.well-known/nodeinfo /remote.php/dav /remote.php/dav`	string
httpRoute.rules[].filters[].urlRewrite.path.type (1) `ReplacePrefixMatch ReplacePrefixMatch ReplaceFullPath ReplaceFullPath ReplacePrefixMatch ReplacePrefixMatch`	string
httpRoute.rules[].matches[].path.type (1) `PathPrefix PathPrefix PathPrefix PathPrefix Exact Exact PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix PathPrefix`	string
httpRoute.rules[].matches[].path.value (1) `/push/ / /.well-known/webfinger /.well-known/nodeinfo /.well-known/host-meta /.well-known/host-meta.json /.well-known/caldav /.well-known/carddav /build /tests /config /lib /3rdparty /templates /data /autotest /occ /issue /indie /db_ /console`	string
lifecycle.postStartCommand[] (1) `- /bin/bash - /scripts/post-start.sh`	string
podAnnotations."reloader.stakater.com/search" (1) `true`	string

Key

Types

externalDatabase.enabled (16)

true

boolean

externalDatabase.existingSecret.enabled (16)

true

boolean

externalDatabase.existingSecret.passwordKey (16)

INIT_POSTGRES_PASS

string

externalDatabase.existingSecret.secretName (16)

nextcloud-secret

string

externalDatabase.existingSecret.usernameKey (16)

INIT_POSTGRES_USER

string

externalDatabase.existingSecret.databaseKey (4)

POSTGRES_DB

string

externalDatabase.existingSecret.hostKey (2)

POSTGRES_HOST

string

externalDatabase.type (16)

postgresql

string

externalDatabase.database (14)

nextcloud

string

externalDatabase.host (14)

postgres-nextcloud-rw.databases.svc.cluster.local.

string

internalDatabase.enabled (16)

false

boolean

nextcloud.existingSecret.enabled (16)

true

boolean

nextcloud.existingSecret.secretName (16)

nextcloud-secret

string

nextcloud.existingSecret.smtpHostKey (10)

SMTP_HOST

string

nextcloud.existingSecret.smtpPasswordKey (10)

smtp-password

string

nextcloud.existingSecret.smtpUsernameKey (10)

smtp-username

string

nextcloud.existingSecret.passwordKey (8)

NEXTCLOUD_PASSWORD

string

nextcloud.existingSecret.usernameKey (8)

NEXTCLOUD_USERNAME

string

nextcloud.host (16)

cloud.${SECRET_DOMAIN}

string

nextcloud.extraEnv[].name (15)

REDIS_HOST
REDIS_HOST_PORT

string

nextcloud.extraEnv[].value (14)

dragonfly.databases.svc.cluster.local.
6379

string

nextcloud.extraEnv[].valueFrom.secretKeyRef.key (6)

redis-password
oidc-client-secret

string

nextcloud.extraEnv[].valueFrom.secretKeyRef.name (6)

nextcloud-secret
nextcloud-secret
nextcloud-secret

string

nextcloud.mail.domain (14)

${SECRET_DOMAIN}

string

nextcloud.mail.enabled (14)

true

boolean

nextcloud.mail.fromAddress (14)

admin

string

nextcloud.mail.smtp.port (13)

number, string

nextcloud.mail.smtp.authtype (9)

LOGIN

string

nextcloud.mail.smtp.secure (9)

ssl

string

nextcloud.mail.smtp.host (8)

smtp-relay.${SECRET_DOMAIN}

string

nextcloud.mail.smtp.name (3)

string

nextcloud.mail.smtp.password (3)

string

nextcloud.extraInitContainers[].envFrom[].secretRef.name (13)

nextcloud-secret

string

nextcloud.extraInitContainers[].image (13)

ghcr.io/home-operations/postgres-init:18

string

nextcloud.extraInitContainers[].name (13)

init-db

string

nextcloud.extraInitContainers[].command[] (3)

- sh
- -c
- touch /usr/local/etc/php/conf.d/redis-session.ini

string

nextcloud.extraInitContainers[].volumeMounts[].mountPath (3)

/usr/local/etc/php/conf.d/

string

nextcloud.extraInitContainers[].volumeMounts[].name (3)

php-confd

string

nextcloud.configs."misc.config.php" (9)

<?php
$CONFIG = array (
  'default_phone_region' => 'PL',
  'maintenance_window_start' => 2,
); ?>

string

nextcloud.configs."proxy.config.php" (9)

<?php
$CONFIG = array (
  'trusted_proxies' => array(
    0 => '127.0.0.1',
    1 => '10.43.0.0/16',
    1 => '10.0.0.0/16',
  ),
  'forwarded_for_headers' => array('HTTP_X_FORWARDED_FOR'),
); ?>

string

nextcloud.configs."local.config.php" (6)

<?php
$CONFIG = array (
  'trusted_proxies' =>
  array (
    0 => 'cloud.thesteamedcrab.com',
    1 => '127.0.0.1',
    2 => '192.168.1.0/24',
  ),
  'overwriteprotocol' => 'https',
  'allow_local_remote_servers' => true,
  'forwarded_for_headers' =>
  array (
    0 => 'HTTP_X_FORWARDED_FOR',
  ),
  'default_phone_region' => 'CL',
  'trashbin_retention_obligation' => 'auto, 30',
  'auth.bruteforce.protection.enabled' => true,
  'check_data_directory_permissions' => false,
  'overwrite.cli.url' => 'https://cloud.thesteamedcrab.com',
);

string

nextcloud.configs."logging.config.php" (6)

<?php
$CONFIG = array (
  'log_type' => 'file',
  'logfile' => 'nextcloud.log',
  'loglevel' => 0,
  'logdateformat' => 'F d, Y H:i:s'
  );

string

nextcloud.configs."ingress.config.php" (4)

<?php
$CONFIG = array (
  'overwrite.cli.url' => 'https://cloud.${SECRET_DOMAIN}',
  'overwriteprotocol' => 'https',
);

string

nextcloud.configs."oidc.config.php" (3)

<?php
$CONFIG = array (
  'allow_user_to_change_display_name' => false,
  'lost_password_link' => 'disabled',
  'oidc_login_provider_url' => 'https://auth.${SECRET_DOMAIN_0}',
  'oidc_login_client_id' => 'nextcloud',
  'oidc_login_client_secret' => getenv('OIDC_CLIENT_SECRET'),
  'oidc_login_auto_redirect' => false,
  'oidc_login_button_text' => 'Log in with Authelia',
  'oidc_login_hide_password_form' => false,
  'oidc_login_use_id_token' => false,
  'oidc_login_attributes' => array(
    'id' => 'preferred_username',
    'name' => 'name',
    'mail' => 'email',
    'groups' => 'groups',
    'is_admin' => 'is_nextcloud_admin',
  ),
  'oidc_login_default_group' => 'oidc',
  'oidc_login_use_external_storage' => false,
  'oidc_login_scope' => 'openid profile email groups nextcloud_userinfo',
  'oidc_login_proxy_ldap' => false,
  'oidc_login_disable_registration' => true,
  'oidc_login_redir_fallback' => false,
  'oidc_login_tls_verify' => true,
  'oidc_create_groups' => false,
  'oidc_login_webdav_enabled' => false,
  'oidc_login_password_authentication' => false,
  'oidc_login_public_key_caching_time' => 86400,
  'oidc_login_min_time_between_jwks_requests' => 10,
  'oidc_login_well_known_caching_time' => 86400,
  'oidc_login_update_avatar' => false,
  'oidc_login_code_challenge_method' => 'S256',
);

string

nextcloud.configs."sso.config.php" (3)

<?php
$CONFIG = array (
  'allow_user_to_change_display_name' => false,
  'lost_password_link' => 'disabled',
  'oidc_login_client_id' => getenv('OIDC_CLIENT_ID'),
  'oidc_login_client_secret' => getenv('OIDC_CLIENT_SECRET'),
  'oidc_login_provider_url' => 'https://id.${SECRET_DOMAIN}',
  'oidc_login_auto_redirect' => true, //login?noredir=1
  'oidc_login_end_session_redirect' => true,
  'oidc_login_button_text' => 'Log in with Pocket ID',
  'oidc_login_hide_password_form' => true,
  'oidc_login_use_id_token' => false,
  'oidc_login_attributes' => array (
        'id' => 'preferred_username',
        'name' => 'name',
        'mail' => 'email',
        'groups' => 'groups',
        'login_filter' => 'groups',
        'photoURL' => 'picture',
        'is_admin' => 'groups_ID-Admin',
    ),
  'oidc_login_filter_allowed_values' => array('ID-Nextcloud'),
  'oidc_login_use_external_storage' => false,
  'oidc_login_scope' => 'openid profile email groups',
  'oidc_login_proxy_ldap' => false,
  'oidc_login_disable_registration' => false,
  'oidc_login_redir_fallback' => false,
  'oidc_login_tls_verify' => true,
  'oidc_create_groups' => false,
  'oidc_login_webdav_enabled' => false,
  'oidc_login_password_authentication' => false,
  'oidc_login_public_key_caching_time' => 86400,
  'oidc_login_min_time_between_jwks_requests' => 10,
  'oidc_login_well_known_caching_time' => 86400,
  'oidc_login_update_avatar' => false,
);

string

nextcloud.configs."caching.config.php" (2)

<?php
$CONFIG = array (
  'memcache.local' => '\\OC\\Memcache\\APCu',
  'memcache.distributed' => '\\OC\\Memcache\\Redis',
  'memcache.locking' => '\\OC\\Memcache\\Redis',
  'filelocking.enabled' => true,
  'redis' => array(
    'host' => 'dragonfly.database.svc.cluster.local',
    'port' => 6379,
    'timeout' => 0.0,
    'password' => '',
  ),
);

string

nextcloud.configs."redis.config.php" (2)

<?php
$CONFIG = array (
  'memcache.distributed' => '\OC\Memcache\Redis',
  'memcache.locking' => '\OC\Memcache\Redis',
  'redis' => array (
    'host' => getenv('REDIS_HOST'),
    'port' => 6379,
    'dbindex' => 4,
    'password' => '',
  ),
);

string

nextcloud.configs."timezone.config.php" (2)

<?php
$CONFIG = array (
  'default_timezone' => 'America/Los_Angeles',
);

string

nextcloud.configs."bulkupload.config.php" (1)

<?php
$CONFIG = array (
  'bulkupload.enabled' => false,
);

string

nextcloud.configs."collabora.config.php" (1)

<?php
$CONFIG = array (
  'richdocuments' => array(
    'wopi_url' => 'https://collabora.vzkn.eu',
  ),
);

string

nextcloud.configs."custom.config.php" (1)

<?php
$CONFIG = array (
  'overwriteprotocol' => 'https',
  'overwrite.cli.url' => 'https://cloud.${SECRET_DOMAIN}',
  'overewritehost' => 'cloud.${SECRET_DOMAIN}',
  'filelocking.enabled' => 'true',
  'default_phone_region' => 'DE',
  'loglevel' => '2',
  'enable_previews' => true,
  'log_type' => 'syslog',
  'maintenance_window_start' => 1,
  'trusted_proxies' =>
    array (
      0 => '127.0.0.1',
      1 => '10.42.0.0/16',
      2 => '10.43.0.0/16',
    ),
);

string

nextcloud.configs."gitops.config.php" (1)

<?php
$CONFIG = array (
  'appstoreenabled' => true,
  'mail_domain' => '${SECRET_DOMAIN}',
);

string

nextcloud.configs."minio.config.php" (1)

<?php
$CONFIG = array (
  'objectstore' => array(
    'class' => '\\OC\\Files\\ObjectStore\\S3',
    'arguments' => array(
      'hostname'       => 's3.hoohoot.org',
      'port'           => 443,
      'use_path_style' => true,
      'bucket'         => 'nextcloud-data',
      'autocreate'     => false,
      'key'            => getenv('S3_ACCESS_KEY'),
      'secret'         => getenv('S3_SECRET_KEY'),
      'use_ssl'        => true,
    ),
  ),
);

string

nextcloud.configs."notify_push.config.php" (1)

<?php
$CONFIG = array (
  'notify_push' => array(
    'base_endpoint' => 'https://cloud.vzkn.eu/push',
  ),
);

string

nextcloud.configs."performance.config.php" (1)

<?php
$CONFIG = array (
  'enable_previews' => true,
  'enabledPreviewProviders' => array(
    'OC\Preview\PNG',
    'OC\Preview\JPEG',
    'OC\Preview\GIF',
    'OC\Preview\BMP',
    'OC\Preview\XBitmap',
    'OC\Preview\MP3',
    'OC\Preview\TXT',
    'OC\Preview\MarkDown',
    'OC\Preview\OpenDocument',
    'OC\Preview\Krita',
    'OC\Preview\HEIC',
    'OC\Preview\PDF',
    'OC\Preview\TIFF',
    'OC\Preview\SVG',
    'OC\Preview\MP4',
    'OC\Preview\Movie',
  ),
  'preview_max_x' => 2048,
  'preview_max_y' => 2048,
  'preview_max_scale_factor' => 1,
  'preview_concurrency_new' => 4,
  'preview_concurrency_all' => 4,
  'jpeg_quality' => 60,
);

string

nextcloud.configs."preview.config.php" (1)

<?php
$CONFIG = array (
  'enabledPreviewProviders' => array(
    'OC\Preview\PNG',
    'OC\Preview\JPEG',
    'OC\Preview\GIF',
    'OC\Preview\BMP',
    'OC\Preview\XBitmap',
    'OC\Preview\MP3',
    'OC\Preview\TXT',
    'OC\Preview\MarkDown',
    'OC\Preview\OpenDocument',
    'OC\Preview\Krita',
    'OC\Preview\HEIC',
  ),
);

string

nextcloud.configs."talk.config.php" (1)

<?php
$CONFIG = array (
  'spreed' => array(
    'external_signaling' => array(
      'signaling_servers' => array(
        array(
          'url' => 'https://talk.vzkn.eu/',
          'verify' => true,
        ),
      ),
    ),
    'stun_servers' => array(
      'turn.vzkn.eu:3478',
      'turn.vzkn.eu:5349',
    ),
    'turn_servers' => array(
      array(
        'server' => 'turn.vzkn.eu',
        'secret' => '',  # Managed by signaling server
        'protocols' => 'udp,tcp',
      ),
    ),
  ),
);

string

nextcloud.datadir (9)

/var/www/data

string

nextcloud.extraVolumeMounts[].mountPath (9)

/usr/local/etc/php/conf.d/redis-session.ini
/tmp

string

nextcloud.extraVolumeMounts[].name (9)

php-confd
tmpfs

string

nextcloud.extraVolumeMounts[].subPath (4)

redis-session.ini

string

nextcloud.extraVolumeMounts[].readOnly (1)

true
true

boolean

nextcloud.extraVolumes[].name (9)

php-confd
tmpfs

string

nextcloud.extraVolumes[].configMap.defaultMode (2)

number

nextcloud.extraVolumes[].configMap.name (2)

nextcloud-scripts

string

nextcloud.extraVolumes[].nfs.path (2)

/mnt/data/home

string

nextcloud.extraVolumes[].nfs.server (2)

nas01.${SECRET_DOMAIN_INT}

string

nextcloud.extraVolumes[].persistentVolumeClaim.claimName (2)

nextcloud-media-nfs

string

nextcloud.extraVolumes[].secret.items[].key (1)

replica.config.php

string

nextcloud.extraVolumes[].secret.items[].path (1)

replica.config.php

string

nextcloud.extraVolumes[].secret.secretName (1)

nextcloud-secret

string

nextcloud.securityContext.runAsGroup (7)

number

nextcloud.securityContext.runAsUser (7)

number

nextcloud.securityContext.runAsNonRoot (6)

true

boolean

nextcloud.securityContext.fsGroup (4)

number

nextcloud.securityContext.fsGroupChangePolicy (2)

OnRootMismatch

string

nextcloud.securityContext.readOnlyRootFilesystem (1)

false

boolean

nextcloud.phpConfigs."uploadLimit.ini" (6)

upload_max_filesize = 16G
post_max_size = 16G
max_input_time = 3600
max_execution_time = 3600

string

nextcloud.phpConfigs."www.conf" (6)

[www]
user = www-data
group = www-data
listen = 127.0.0.1:9000
pm = dynamic
pm.max_children = 57
pm.start_servers = 14
pm.min_spare_servers = 14
pm.max_spare_servers = 42
pm.max_requests = 500
pm.process_idle_timeout = 10s

string

nextcloud.phpConfigs."php.ini" (1)

max_execution_time = 600
default_socket_timeout = 300
curl.cainfo = /etc/ssl/certs/ca-certificates.crt
extension=imagick
extension=exif
extension=intl
extension=gd
memory_limit = 8G
opcache.memory_consumption = 512
opcache.max_accelerated_files = 20000
opcache.revalidate_freq = 60

string

nextcloud.lifecycle.postStartCommand[] (4)

- /bin/sh
- -c
- cd /var/www/html; ./occ maintenance:repair --include-expensive; ./occ db:add-missing-indices; /bin/true

string

nextcloud.containerPort (3)

number

nextcloud.defaultConfigs."imaginary.config.php" (2)

true

boolean

nextcloud.defaultConfigs."redis.config.php" (2)

false

boolean

nextcloud.defaultConfigs."s3.config.php" (1)

false

boolean

nextcloud.extraSidecarContainers[].args[] (1)

- --port
- "7867"

string

nextcloud.extraSidecarContainers[].command[] (1)

- /var/www/html/custom_apps/notify_push/bin/x86_64/notify_push
- /var/www/html/config/config.php

string

nextcloud.extraSidecarContainers[].env[].name (1)

NEXTCLOUD_URL
PORT

string

nextcloud.extraSidecarContainers[].env[].value (1)

http://localhost:8080
7867

string

nextcloud.extraSidecarContainers[].image (1)

nextcloud:33.0.0-fpm-alpine

string

nextcloud.extraSidecarContainers[].name (1)

notify-push

string

nextcloud.extraSidecarContainers[].ports[].containerPort (1)

number

nextcloud.extraSidecarContainers[].ports[].name (1)

push

string

nextcloud.extraSidecarContainers[].ports[].protocol (1)

TCP

string

nextcloud.extraSidecarContainers[].resources.limits.memory (1)

192Mi

string

nextcloud.extraSidecarContainers[].resources.requests.cpu (1)

10m

string

nextcloud.extraSidecarContainers[].resources.requests.memory (1)

96Mi

string

nextcloud.extraSidecarContainers[].volumeMounts[].mountPath (1)

/var/www/html
/var/www/data

string

nextcloud.extraSidecarContainers[].volumeMounts[].name (1)

nextcloud-main
nextcloud-data

string

nextcloud.extraSidecarContainers[].volumeMounts[].readOnly (1)

true
true

boolean

nextcloud.hooks.before-starting (1)

# disable unneceserry apps
for appname in activity circles systemtags federation privacy \
    nextcloud_announcements announcementcenter support survey_client \
    user_status weather_status dashboard
  do
  php occ app:disable "$appname"
done

string

nextcloud.hooks.post-installation (1)

printf "Add missing DB indices\n"
php occ db:add-missing-indices

string

nextcloud.hooks.post-upgrade (1)

# based on https://github.com/nextcloud/all-in-one/blob/25c580bca370eaead5f1fad9d3842a9c49562dff/Containers/nextcloud/entrypoint.sh#L451-L457
php occ maintenance:repair --include-expensive
php occ db:add-missing-indices
php occ db:add-missing-columns
php occ db:add-missing-primary-keys

string

nextcloud.objectStorage.s3.autoCreate (1)

true

boolean

nextcloud.objectStorage.s3.bucket (1)

nextcloud

string

nextcloud.objectStorage.s3.enabled (1)

true

boolean

nextcloud.objectStorage.s3.existingSecret (1)

nextcloud-secrets

string

nextcloud.objectStorage.s3.host (1)

minio.storage.svc.cluster.local

string

nextcloud.objectStorage.s3.port (1)

number

nextcloud.objectStorage.s3.secretKeys.accessKey (1)

MINIO_ACCESS_KEY

string

nextcloud.objectStorage.s3.secretKeys.secretKey (1)

MINIO_SECRET_KEY

string

nextcloud.objectStorage.s3.ssl (1)

false

boolean

nextcloud.objectstore.s3.autocreate (1)

true

boolean

nextcloud.objectstore.s3.bucket (1)

nextcloud-data

string

nextcloud.objectstore.s3.enabled (1)

true

boolean

nextcloud.objectstore.s3.existingSecret (1)

nextcloud-secret

string

nextcloud.objectstore.s3.host (1)

192.168.20.5:3900

string

nextcloud.objectstore.s3.region (1)

us-east-1

string

nextcloud.objectstore.s3.secretKeys.accessKey (1)

S3_ACCESS_KEY

string

nextcloud.objectstore.s3.secretKeys.secretKey (1)

S3_SECRET_KEY

string

nextcloud.objectstore.s3.ssl (1)

false

boolean

nextcloud.objectstore.s3.usePathStyle (1)

false

boolean

nextcloud.podSecurityContext.capabilities.add[] (1)

- NET_BIND_SERVICE

string

nextcloud.podSecurityContext.capabilities.drop[] (1)

- ALL

string

nextcloud.podSecurityContext.fsGroup (1)

${PGID}

string

nextcloud.podSecurityContext.readOnlyRootFilesystem (1)

false

boolean

nextcloud.podSecurityContext.runAsGroup (1)

${PGID}

string

nextcloud.podSecurityContext.runAsNonRoot (1)

true

boolean

nextcloud.podSecurityContext.runAsUser (1)

${PUID}

string

nextcloud.strategy.type (1)

Recreate

string

persistence.enabled (16)

true

boolean

persistence.existingClaim (16)

nextcloud

string

persistence.nextcloudData.enabled (7)

true

boolean

persistence.nextcloudData.existingClaim (7)

nextcloud-nfs

string

persistence.nextcloudData.accessMode (6)

ReadWriteMany

string

persistence.data.globalMounts[].path (2)

/var/www/html/data

string

persistence.data.globalMounts[].readOnly (1)

false

boolean

persistence.data.existingClaim (1)

{{ .Release.Name }}

string

persistence.data.path (1)

/mnt/apps/kubernetes/nextcloud

string

persistence.data.server (1)

${SECRET_NFS_SERVER:=temp}

string

persistence.data.type (1)

nfs

string

persistence.alex-nfs.globalMounts[].path (1)

/var/www/html/data/alex/files

string

persistence.alex-nfs.path (1)

/mnt/Fast/Alex

string

persistence.alex-nfs.server (1)

192.168.42.20

string

persistence.alex-nfs.type (1)

nfs

string

persistence.config-file.globalMounts[].path (1)

/var/www/html/config/custom.config.php
/usr/local/etc/php/conf.d/php.ini
/usr/local/etc/php-fpm.d/www.conf
/etc/apache2/conf-available/remoteip.conf

string

persistence.config-file.globalMounts[].subPath (1)

custom.config.php
php.ini
www.conf
remoteip.conf

string

persistence.config-file.identifier (1)

config

string

persistence.config-file.type (1)

configMap

string

persistence.config.existingClaim (1)

nextcloud

string

persistence.config.globalMounts[].path (1)

/var/www/html

string

persistence.tmpfs.globalMounts[].path (1)

/tmp
/cache
/var/run

string

persistence.tmpfs.globalMounts[].subPath (1)

tmp
cache
run

string

persistence.tmpfs.type (1)

emptyDir

string

startupProbe.enabled (16)

true

boolean

startupProbe.failureThreshold (13)

number

startupProbe.initialDelaySeconds (13)

number

startupProbe.periodSeconds (13)

number

startupProbe.successThreshold (13)

number

startupProbe.timeoutSeconds (13)

number

nginx.enabled (14)

true

boolean

nginx.resources.requests.cpu (4)

10m

string

nginx.resources.requests.memory (4)

64Mi

string

nginx.resources.limits.memory (3)

128Mi

string

nginx.resources.limits.cpu (1)

200m

string

nginx.config.headers.Strict-Transport-Security (2)

max-age=15552000; includeSubDomains

string

nginx.config.default (1)

true

boolean

nginx.config.serverBlockCustom (1)

client_max_body_size 10G;
client_body_timeout 300s;
fastcgi_buffers 64 4K;
fastcgi_read_timeout 3600s;

# Handle forwarded headers for proper protocol detection
real_ip_header X-Forwarded-For;
set_real_ip_from 10.0.0.0/8;
set_real_ip_from 172.16.0.0/12;
set_real_ip_from 192.168.0.0/16;

string

nginx.image.repository (1)

nginx

string

nginx.image.tag (1)

1.29.5

string

ingress.enabled (13)

false

boolean

ingress.annotations."nginx.ingress.kubernetes.io/proxy-body-size" (3)

10G

string

ingress.annotations."nginx.ingress.kubernetes.io/server-snippet" (3)

server_tokens off;
proxy_hide_header X-Powered-By;
more_set_headers "Strict-Transport-Security: max-age=31536000; includeSubDomains; preload";

rewrite ^/.well-known/webfinger /public.php?service=webfinger last;
rewrite ^/.well-known/host-meta /public.php?service=host-meta last;
rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json;
location = /.well-known/carddav {
  return 301 $scheme://$host/remote.php/dav;
}
location = /.well-known/caldav {
  return 301 $scheme://$host/remote.php/dav;
}
location = /robots.txt {
  allow all;
  log_not_found off;
  access_log off;
}
location ~ ^/(?:build|tests|config|lib|3rdparty|templates|data)/ {
  deny all;
}
location ~ ^/(?:autotest|occ|issue|indie|db_|console) {
  deny all;
}

string

ingress.annotations."nginx.ingress.kubernetes.io/proxy-buffering" (2)

off

string

ingress.annotations."nginx.ingress.kubernetes.io/proxy-request-buffering" (2)

off

string

ingress.annotations."cert-manager.io/cluster-issuer" (1)

letsencrypt-production

string

ingress.annotations."external-dns.alpha.kubernetes.io/cloudflare-proxied" (1)

false

string

ingress.annotations."external-dns.home.arpa/enabled" (1)

true

string

ingress.annotations."hajimari.io/enable" (1)

true

string

ingress.annotations."hajimari.io/group" (1)

Family

string

ingress.annotations."hajimari.io/icon" (1)

simple-icons:nextcloud

string

ingress.annotations."hajimari.io/info" (1)

File and Calendar server

string

ingress.annotations."nginx.ingress.kubernetes.io/backend-protocol" (1)

HTTP

string

ingress.annotations."nginx.ingress.kubernetes.io/cors-allow-headers" (1)

X-Forwarded-For, X-Real-IP, X-Frame-Options, X-Content-Type-Options, X-Forwarded-Proto

string

ingress.annotations."nginx.org/proxy-hide-headers" (1)

X-Powered-By

string

ingress.annotations."nginx.org/rewrites" (1)

/.well-known/webfinger /index.php/.well-known/webfinger;
/.well-known/nodeinfo /index.php/.well-known/nodeinfo;
/.well-known/host-meta /public.php?service=host-meta;
/.well-known/host-meta.json /public.php?service=host-meta-json;
/.well-known/carddav $scheme://$host/remote.php/dav redirect=301;
/.well-known/caldav $scheme://$host/remote.php/dav redirect=301;

string

ingress.annotations."nginx.org/server-tokens" (1)

off

string

ingress.className (3)

external

string

ingress.path (2)

string

ingress.pathType (2)

Prefix

string

ingress.tls[].hosts[] (1)

- nc.${SECRET_DOMAIN}

string

ingress.tls[].secretName (1)

tls.nextcloud

string

cronjob.enabled (12)

true

boolean

cronjob.curlInsecure (3)

true

boolean

cronjob.failedJobsHistoryLimit (2)

number

cronjob.successfulJobsHistoryLimit (2)

number

cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].labelSelector.matchLabels."app.kubernetes.io/component" (1)

app

string

cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].labelSelector.matchLabels."app.kubernetes.io/instance" (1)

nextcloud

string

cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].labelSelector.matchLabels."app.kubernetes.io/name" (1)

nextcloud

string

cronjob.cronjob.affinity.podAffinity.requiredDuringSchedulingIgnoredDuringExecution[].topologyKey (1)

kubernetes.io/hostname

string

cronjob.cronjob.command[] (1)

- /bin/sh
- /scripts/cron.sh

string

cronjob.cronjob.env[].name (1)

MAIL_FROM_ADDRESS
PHP_MEMORY_LIMIT

string

cronjob.cronjob.env[].value (1)

${FROM_ADDRESS}
8G

string

cronjob.cronjob.extraVolumeMounts[].mountPath (1)

/scripts

string

cronjob.cronjob.extraVolumeMounts[].name (1)

scripts

string

cronjob.cronjob.extraVolumeMounts[].readOnly (1)

true

boolean

cronjob.cronjob.extraVolumes[].configMap.defaultMode (1)

number

cronjob.cronjob.extraVolumes[].configMap.name (1)

nextcloud-scripts

string

cronjob.cronjob.extraVolumes[].name (1)

scripts

string

cronjob.cronjob.failedJobsHistoryLimit (1)

number

cronjob.cronjob.schedule (1)

*/5 * * * *

string

cronjob.cronjob.securityContext.runAsGroup (1)

number

cronjob.cronjob.securityContext.runAsNonRoot (1)

true

boolean

cronjob.cronjob.securityContext.runAsUser (1)

number

cronjob.cronjob.successfulJobsHistoryLimit (1)

number

cronjob.cronjob.ttlSecondsAfterFinished (1)

number

cronjob.resources.limits.memory (1)

192Mi

string

cronjob.resources.requests.cpu (1)

10m

string

cronjob.resources.requests.memory (1)

96Mi

string

cronjob.securityContext.fsGroup (1)

${PGID}

string

cronjob.securityContext.readOnlyRootFilesystem (1)

true

boolean

cronjob.securityContext.runAsGroup (1)

${PGID}

string

cronjob.securityContext.runAsNonRoot (1)

true

boolean

cronjob.securityContext.runAsUser (1)

${PUID}

string

cronjob.type (1)

cronjob

string

image.flavor (12)

fpm-alpine

string

image.tag (5)

33.0.0-fpm-alpine

string

image.repository (2)

nextcloud

string

image.pullPolicy (1)

IfNotPresent

string

resources.requests.cpu (9)

100m

string

resources.requests.memory (9)

363Mi

string

resources.limits.memory (8)

8Gi

string

resources.limits.cpu (3)

number

deploymentAnnotations."reloader.stakater.com/auto" (7)

true

string

deploymentAnnotations."secret.reloader.stakater.com/reload" (2)

nextcloud-secret

string

livenessProbe.enabled (4)

false

boolean

livenessProbe.failureThreshold (2)

number

livenessProbe.initialDelaySeconds (2)

number

livenessProbe.periodSeconds (2)

number

livenessProbe.successThreshold (2)

number

livenessProbe.timeoutSeconds (2)

number

readinessProbe.enabled (4)

false

boolean

readinessProbe.failureThreshold (2)

number

readinessProbe.initialDelaySeconds (2)

number

readinessProbe.periodSeconds (2)

number

readinessProbe.successThreshold (2)

number

readinessProbe.timeoutSeconds (2)

number

phpClientHttpsFix.enabled (3)

true

boolean

phpClientHttpsFix.protocol (3)

https

string

redis.enabled (3)

false

boolean

redis.auth.enabled (1)

true

boolean

redis.auth.existingSecret (1)

nextcloud-secret

string

redis.auth.existingSecretPasswordKey (1)

REDIS_PASSWORD

string

redis.host (1)

nextcloud-valkey.selfhosted.svc.cluster.local

string

redis.port (1)

number

controllers.nextcloud.annotations."reloader.stakater.com/auto" (2)

true

string

controllers.nextcloud.containers.app.env.NEXTCLOUD_TRUSTED_DOMAINS (2)

nextcloud.${SECRET_DOMAIN}

string

controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_PASSWORD.valueFrom.secretKeyRef.key (1)

NEXTCLOUD_ADMIN_PASSWORD

string

controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_PASSWORD.valueFrom.secretKeyRef.name (1)

nextcloud-secret

string

controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_USER.valueFrom.secretKeyRef.key (1)

NEXTCLOUD_ADMIN_USER

string

controllers.nextcloud.containers.app.env.NEXTCLOUD_ADMIN_USER.valueFrom.secretKeyRef.name (1)

nextcloud-secret

string

controllers.nextcloud.containers.app.env.NEXTCLOUD_DATA_DIR (1)

/var/www/html/data

string

controllers.nextcloud.containers.app.env.OVERWRITECLIURL (1)

https://nextcloud.${SECRET_DOMAIN}

string

controllers.nextcloud.containers.app.env.OVERWRITEPROTOCOL (1)

https

string

controllers.nextcloud.containers.app.env.POSTGRES_DB.valueFrom.secretKeyRef.key (1)

POSTGRES_DB

string

controllers.nextcloud.containers.app.env.POSTGRES_DB.valueFrom.secretKeyRef.name (1)

nextcloud-secret

string

controllers.nextcloud.containers.app.env.POSTGRES_HOST.valueFrom.secretKeyRef.key (1)

POSTGRES_HOST

string

controllers.nextcloud.containers.app.env.POSTGRES_HOST.valueFrom.secretKeyRef.name (1)

nextcloud-secret

string

controllers.nextcloud.containers.app.env.POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)

POSTGRES_PASSWORD

string

controllers.nextcloud.containers.app.env.POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)

nextcloud-secret

string

controllers.nextcloud.containers.app.env.POSTGRES_USER.valueFrom.secretKeyRef.key (1)

POSTGRES_USER

string

controllers.nextcloud.containers.app.env.POSTGRES_USER.valueFrom.secretKeyRef.name (1)

nextcloud-secret

string

controllers.nextcloud.containers.app.env.REDIS_HOST (1)

dragonfly.database.svc.cluster.local

string

controllers.nextcloud.containers.app.env.TZ (1)

${TIMEZONE}

string

controllers.nextcloud.containers.app.image.repository (2)

nextcloud

string

controllers.nextcloud.containers.app.image.tag (2)

32.0.6-apache

string

controllers.nextcloud.containers.app.probes.liveness.custom (2)

true

boolean

controllers.nextcloud.containers.app.probes.liveness.enabled (2)

true

boolean

controllers.nextcloud.containers.app.probes.liveness.spec.failureThreshold (2)

number

controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.path (2)

/status.php

string

controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.port (2)

number

controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.httpHeaders[].name (1)

Host

string

controllers.nextcloud.containers.app.probes.liveness.spec.httpGet.httpHeaders[].value (1)

storage.hyde.services

string

controllers.nextcloud.containers.app.probes.liveness.spec.initialDelaySeconds (2)

number

controllers.nextcloud.containers.app.probes.liveness.spec.periodSeconds (2)

number

controllers.nextcloud.containers.app.probes.liveness.spec.timeoutSeconds (2)

number

controllers.nextcloud.containers.app.probes.readiness.custom (2)

true

boolean

controllers.nextcloud.containers.app.probes.readiness.enabled (2)

true

boolean

controllers.nextcloud.containers.app.probes.readiness.spec.failureThreshold (2)

number

controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.path (2)

/status.php

string

controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.port (2)

number

controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.httpHeaders[].name (1)

Host

string

controllers.nextcloud.containers.app.probes.readiness.spec.httpGet.httpHeaders[].value (1)

storage.hyde.services

string

controllers.nextcloud.containers.app.probes.readiness.spec.initialDelaySeconds (2)

number

controllers.nextcloud.containers.app.probes.readiness.spec.periodSeconds (2)

number

controllers.nextcloud.containers.app.probes.readiness.spec.timeoutSeconds (2)

number

controllers.nextcloud.containers.app.probes.startup.enabled (2)

true

boolean

controllers.nextcloud.containers.app.probes.startup.spec.failureThreshold (2)

number

controllers.nextcloud.containers.app.probes.startup.spec.periodSeconds (2)

number

controllers.nextcloud.containers.app.probes.startup.spec.httpGet.path (1)

/status.php

string

controllers.nextcloud.containers.app.probes.startup.spec.httpGet.port (1)

number

controllers.nextcloud.containers.app.probes.startup.spec.initialDelaySeconds (1)

number

controllers.nextcloud.containers.app.probes.startup.spec.timeoutSeconds (1)

number

controllers.nextcloud.containers.app.probes.startup.custom (1)

true

boolean

controllers.nextcloud.containers.app.resources.limits.memory (2)

2Gi

string

controllers.nextcloud.containers.app.resources.requests.cpu (2)

100m

string

controllers.nextcloud.containers.app.resources.requests.memory (2)

512Mi

string

controllers.nextcloud.containers.app.securityContext.allowPrivilegeEscalation (2)

false

boolean

controllers.nextcloud.containers.app.securityContext.capabilities.drop[] (2)

- ALL

string

controllers.nextcloud.containers.app.securityContext.readOnlyRootFilesystem (2)

false

boolean

controllers.nextcloud.containers.app.envFrom[].secretRef.name (1)

{{ .Release.Name }}-secret

string

controllers.nextcloud.initContainers.copy-config.command[] (1)

- sh
- -c
- cp -r /usr/src/nextcloud/config/*.php /var/www/html/config/

string

controllers.nextcloud.initContainers.copy-config.image.repository (1)

docker.io/library/nextcloud

string

controllers.nextcloud.initContainers.copy-config.image.tag (1)

33.0.0@sha256:ff2cbaab14c85e587b5541e3aff4216a8a484e06424ebae661581937c0c8da0c

string

controllers.nextcloud.initContainers.copy-config.securityContext.allowPrivilegeEscalation (1)

false

boolean

controllers.nextcloud.initContainers.copy-config.securityContext.capabilities.drop[] (1)

- ALL

string

controllers.nextcloud.initContainers.copy-config.securityContext.readOnlyRootFilesystem (1)

true

boolean

controllers.nextcloud.initContainers.init-db.envFrom[].secretRef.name (1)

nextcloud-secret

string

controllers.nextcloud.initContainers.init-db.image.repository (1)

ghcr.io/home-operations/postgres-init

string

controllers.nextcloud.initContainers.init-db.image.tag (1)

rolling

string

controllers.nextcloud.type (1)

deployment

string

defaultPodOptions.securityContext.fsGroup (2)

number

defaultPodOptions.securityContext.fsGroupChangePolicy (2)

OnRootMismatch

string

defaultPodOptions.securityContext.runAsGroup (1)

number

defaultPodOptions.securityContext.runAsNonRoot (1)

true

boolean

defaultPodOptions.securityContext.runAsUser (1)

number

imaginary.enabled (2)

true

boolean

postgresql.enabled (2)

false

boolean

route.app.annotations."gatus.home-operations.com/endpoint" (2)

group: productivity

string

route.app.annotations."external-dns.alpha.kubernetes.io/cloudflare-proxied" (1)

false

string

route.app.annotations."gethomepage.dev/description" (1)

File Sync & Collaboration

string

route.app.annotations."gethomepage.dev/enabled" (1)

true

string

route.app.annotations."gethomepage.dev/group" (1)

Productivity

string

route.app.annotations."gethomepage.dev/icon" (1)

nextcloud.png

string

route.app.annotations."gethomepage.dev/name" (1)

Nextcloud

string

route.app.annotations."gethomepage.dev/widget.password" (1)

{{`{{HOMEPAGE_VAR_NEXTCLOUD_PASSWORD}}`}}

string

route.app.annotations."gethomepage.dev/widget.type" (1)

nextcloud

string

route.app.annotations."gethomepage.dev/widget.url" (1)

http://nextcloud.productivity.svc.cluster.local:80

string

route.app.annotations."gethomepage.dev/widget.username" (1)

{{`{{HOMEPAGE_VAR_NEXTCLOUD_USERNAME}}`}}

string

route.app.hostnames[] (2)

- nextcloud.${SECRET_DOMAIN}

string

route.app.parentRefs[].name (2)

internal

string

route.app.parentRefs[].namespace (2)

network

string

route.app.parentRefs[].sectionName (1)

https

string

route.app.rules[].backendRefs[].identifier (1)

app

string

route.app.rules[].backendRefs[].port (1)

number

route.app.rules[].filters[].responseHeaderModifier.add[].name (1)

Strict-Transport-Security

string

route.app.rules[].filters[].responseHeaderModifier.add[].value (1)

max-age=31536000; includeSubDomains; preload

string

route.app.rules[].filters[].type (1)

ResponseHeaderModifier

string

securityContext.fsGroupChangePolicy (2)

OnRootMismatch

string

service.app.ports.http.port (2)

number

service.app.controller (1)

nextcloud

string

affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].preference.matchExpressions[].key (1)

kubernetes.io/hostname

string

affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].preference.matchExpressions[].operator (1)

In

string

affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].preference.matchExpressions[].values[] (1)

- control-1

string

affinity.nodeAffinity.preferredDuringSchedulingIgnoredDuringExecution[].weight (1)

number

configMaps.config.data."custom.config.php" (1)

<?php
$CONFIG = array(
	'overwriteprotocol' => 'https',
	'overwrite.cli.url' => 'https://storage.hyde.services',
	'overwritehost' => 'storage.hyde.services',
	'check_data_directory_permissions' => false,
	'default_phone_region' => 'AU',
	'trusted_proxies' => array(
		0 => '127.0.0.1',
		1 => '10.42.0.0/16',
	),
	'trusted_domains' => array(
		0 => '127.0.0.1',
		1 => 'storage.hyde.services',
	),
	'simpleSignUpLink.shown' => false,
	'cache_path' => '/cache',
	'forwarded_for_headers' => array('X-Forwarded-For'),
	'maintenance_window_start' => 100,
	'memcache.distributed' => '\OC\Memcache\Redis',
	'memcache.locking' => '\OC\Memcache\Redis',
	'redis' => array(
		'host' => 'dragonfly.databases.svc.cluster.local',
		'port' => 6379,
		'dbindex' => 1,
	),
);

string

configMaps.config.data."php.ini" (1)

session.save_handler = redis
session.save_path = "tcp://dragonfly.databases.svc.cluster.local:6379/1"
redis.session.locking_enabled = 1
redis.session.lock_retries = -1
redis.session.lock_wait_time = 10000
upload_max_filesize = 16G
post_max_size = 16G
memory_limit = 512M
max_execution_time = 3600

string

configMaps.config.data."remoteip.conf" (1)

RemoteIPHeader X-Forwarded-For
RemoteIPInternalProxy 10.42.0.0/16

string

configMaps.config.data."www.conf" (1)

[www]
listen = 127.0.0.1:9000
pm = dynamic
pm.max_children = 50
pm.start_servers = 12
pm.min_spare_servers = 6
pm.max_spare_servers = 18

string

deploymentLabels.nfsMount (1)

true

string

deploymentLabels.postgres (1)

true

string

extraManifests[] (1)

- apiVersion: v1
kind: Service
metadata:
  name: nextcloud-push
  labels:
    app.kubernetes.io/name: {{ include "nextcloud.name" . }}
    app.kubernetes.io/instance: {{ .Release.Name }}
spec:
  type: ClusterIP
  ports:
    - name: push
      port: 7867
      targetPort: 7867
      protocol: TCP
  selector:
    app.kubernetes.io/name: {{ include "nextcloud.name" . }}
    app.kubernetes.io/instance: {{ .Release.Name }}

- apiVersion: v1
kind: ConfigMap
metadata:
  name: nextcloud-hooks
data:
  sync-db-password.sh: |
    #!/bin/sh
    set -e
    CONFIG_FILE="/var/www/html/config/config.php"
    if [ -f "$CONFIG_FILE" ] && [ -n "$POSTGRES_PASSWORD" ]; then
      echo "=> Syncing database password from secret to config.php"
      # Use PHP to safely update the password
      php -r "
        \$config = file_get_contents('$CONFIG_FILE');
        \$config = preg_replace(
          \"/'dbpassword'\\s*=>\\s*'[^']*'/\",
          \"'dbpassword' => '\" . getenv('POSTGRES_PASSWORD') . \"'\",
          \$config
        );
        file_put_contents('$CONFIG_FILE', \$config);
      "
      echo "=> Database password synced successfully"
    fi

string

fullnameOverride (1)

nextcloud

string

hpa.enabled (1)

false

boolean

httpRoute.annotations."gatus.home-operations.com/enabled" (1)

false

string

httpRoute.apiVersion (1)

gateway.networking.k8s.io/v1

string

httpRoute.enabled (1)

true

boolean

httpRoute.hostnames[] (1)

- nextcloud.${SECRET_DOMAIN}

string

httpRoute.kind (1)

HTTPRoute

string

httpRoute.parentRefs[].name (1)

envoy-external

string

httpRoute.parentRefs[].namespace (1)

network

string

httpRoute.rules[].backendRefs[].name (1)

notify-push
nextcloud
nextcloud
nextcloud
nextcloud
nextcloud
nextcloud
nextcloud

string

httpRoute.rules[].backendRefs[].port (1)

number

httpRoute.rules[].filters[].type (1)

URLRewrite
URLRewrite
URLRewrite
URLRewrite
URLRewrite
URLRewrite

string

httpRoute.rules[].filters[].urlRewrite.path.replaceFullPath (1)

/public.php?service=host-meta
/public.php?service=host-meta-json

string

httpRoute.rules[].filters[].urlRewrite.path.replacePrefixMatch (1)

/index.php/.well-known/webfinger
/index.php/.well-known/nodeinfo
/remote.php/dav
/remote.php/dav

string

httpRoute.rules[].filters[].urlRewrite.path.type (1)

ReplacePrefixMatch
ReplacePrefixMatch
ReplaceFullPath
ReplaceFullPath
ReplacePrefixMatch
ReplacePrefixMatch

string

httpRoute.rules[].matches[].path.type (1)

PathPrefix
PathPrefix
PathPrefix
PathPrefix
Exact
Exact
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix
PathPrefix

string

httpRoute.rules[].matches[].path.value (1)

/push/
/
/.well-known/webfinger
/.well-known/nodeinfo
/.well-known/host-meta
/.well-known/host-meta.json
/.well-known/caldav
/.well-known/carddav
/build
/tests
/config
/lib
/3rdparty
/templates
/data
/autotest
/occ
/issue
/indie
/db_
/console

string

lifecycle.postStartCommand[] (1)

- /bin/bash
- /scripts/post-start.sh

string

podAnnotations."reloader.stakater.com/search" (1)

true

string

nextcloud helm

Install

Examples

Top Repositories (3 out of 18)

Resources

Values