From cf7ff6b2fb159b4ae9af1b7f60b8f22e19544430 Mon Sep 17 00:00:00 2001
From: Menno van Leeuwen <menno@vleeuwen.me>
Date: Fri, 14 Mar 2025 10:22:22 +0100
Subject: [PATCH] feat: configure Nextcloud to use Hetzner object storage and
 update data directory path

---
 .../servers/services/nextcloud/docker-compose.yml.j2 | 12 ++++++++++--
 .../tasks/servers/services/nextcloud/nextcloud.yml   |  4 +++-
 2 files changed, 13 insertions(+), 3 deletions(-)

diff --git a/config/ansible/tasks/servers/services/nextcloud/docker-compose.yml.j2 b/config/ansible/tasks/servers/services/nextcloud/docker-compose.yml.j2
index b56f5ae..5c058e2 100644
--- a/config/ansible/tasks/servers/services/nextcloud/docker-compose.yml.j2
+++ b/config/ansible/tasks/servers/services/nextcloud/docker-compose.yml.j2
@@ -28,8 +28,16 @@ services:
       - MYSQL_DATABASE=nextcloud
       - MYSQL_USER=nextcloud
       - MYSQL_HOST=db
-      # - NEXTCLOUD_ADMIN_USER={{ lookup('community.general.onepassword', 'x5jporz6fguqsm4dmwrb6juua4', vault='j7nmhqlsjmp2r6umly5t75hzb4', field='NEXTCLOUD_ADMIN_USER') }}
-      # - NEXTCLOUD_ADMIN_PASSWORD={{ lookup('community.general.onepassword', 'x5jporz6fguqsm4dmwrb6juua4', vault='j7nmhqlsjmp2r6umly5t75hzb4', field='NEXTCLOUD_ADMIN_PASSWORD') }}
+      - OBJECTSTORE_S3_BUCKET=nextcloud
+      - OBJECTSTORE_S3_KEY={{hetzner_access_key}}
+      - OBJECTSTORE_S3_SECRET={{hetzner_secret_key}}
+      - OBJECTSTORE_S3_HOST=mvl-sh.hel1.your-objectstorage.com
+      - OBJECTSTORE_S3_PORT=443
+      - OBJECTSTORE_S3_SSL=true
+      - OBJECTSTORE_S3_USEPATH_STYLE=true
+      - OBJECTSTORE_S3_AUTOCREATE=true
+      - NEXTCLOUD_ADMIN_USER={{ lookup('community.general.onepassword', 'x5jporz6fguqsm4dmwrb6juua4', vault='j7nmhqlsjmp2r6umly5t75hzb4', field='NEXTCLOUD_ADMIN_USER') }}
+      - NEXTCLOUD_ADMIN_PASSWORD={{ lookup('community.general.onepassword', 'x5jporz6fguqsm4dmwrb6juua4', vault='j7nmhqlsjmp2r6umly5t75hzb4', field='NEXTCLOUD_ADMIN_PASSWORD') }}
     networks:
       - caddy_network
       - nextcloud
diff --git a/config/ansible/tasks/servers/services/nextcloud/nextcloud.yml b/config/ansible/tasks/servers/services/nextcloud/nextcloud.yml
index 9ce4163..1a56828 100644
--- a/config/ansible/tasks/servers/services/nextcloud/nextcloud.yml
+++ b/config/ansible/tasks/servers/services/nextcloud/nextcloud.yml
@@ -4,7 +4,9 @@
     - name: Set Nextcloud directories
       ansible.builtin.set_fact:
         nextcloud_service_dir: "{{ ansible_env.HOME }}/services/nextcloud"
-        nextcloud_data_dir: "/mnt/object_storage/services/nextcloud"
+        nextcloud_data_dir: "/mnt/services/nextcloud"
+        hetzner_access_key: "{{ lookup('community.general.onepassword', 'mfk2qgnaplgtk6xmfc3r6w6neq', vault='j7nmhqlsjmp2r6umly5t75hzb4', field='AWS_ACCESS_KEY_ID') }}"
+        hetzner_secret_key: "{{ lookup('community.general.onepassword', 'mfk2qgnaplgtk6xmfc3r6w6neq', vault='j7nmhqlsjmp2r6umly5t75hzb4', field='AWS_SECRET_ACCESS_KEY') }}"
 
     - name: Create Nextcloud directory
       ansible.builtin.file: