Bruno BELANYI
138d4d2bd9
This needs to be configured through the "Nextcloud Office" app, specifically the WOPI setting is important for security (I put both the external IP, as well as `::1` and `127.0.0.1`).
59 lines
1.4 KiB
Nix
59 lines
1.4 KiB
Nix
# Document editor with Nextcloud
|
|
{ config, lib, ... }:
|
|
let
|
|
cfg = config.my.services.nextcloud.collabora;
|
|
in
|
|
{
|
|
options.my.services.nextcloud.collabora = with lib; {
|
|
enable = mkEnableOption "Collabora integration";
|
|
|
|
port = mkOption {
|
|
type = types.port;
|
|
default = 9980;
|
|
example = 8080;
|
|
description = "Internal port for API";
|
|
};
|
|
};
|
|
|
|
config = lib.mkIf cfg.enable {
|
|
services.collabora-online = {
|
|
enable = true;
|
|
inherit (cfg) port;
|
|
|
|
aliasGroups = [
|
|
{
|
|
host = "https://collabora.${config.networking.domain}";
|
|
# Allow using from nextcloud
|
|
aliases = [ "https://${config.services.nextcloud.hostName}" ];
|
|
}
|
|
];
|
|
|
|
settings = {
|
|
# Rely on reverse proxy for SSL
|
|
ssl = {
|
|
enable = false;
|
|
termination = true;
|
|
};
|
|
};
|
|
};
|
|
|
|
my.services.nginx.virtualHosts = {
|
|
collabora = {
|
|
inherit (cfg) port;
|
|
|
|
extraConfig = {
|
|
# Too bad for the repetition...
|
|
locations."~ ^/cool/(.*)/ws$" = {
|
|
proxyPass = "http://127.0.0.1:${builtins.toString cfg.port}";
|
|
proxyWebsockets = true;
|
|
};
|
|
locations."^~ /cool/adminws" = {
|
|
proxyPass = "http://127.0.0.1:${builtins.toString cfg.port}";
|
|
proxyWebsockets = true;
|
|
};
|
|
};
|
|
};
|
|
};
|
|
};
|
|
}
|