nik/FreedomBox
1
0
Fork 0
mirror of https://github.com/freedombox/FreedomBox.git synced 2026-05-13 10:30:16 +00:00
Code Issues Packages Projects Releases Wiki Activity

nextcloud: Configure redis caching, create static PHP file

Browse Source 
Configure caching for Nextcloud with Redis running on the host, create static
php file under
/var/lib/containers/storage/volumes/nextcloud-volume-fbx/_data/config. Nextcloud
communicates with Redis via the bridge adapter, which isn't a loopback device.
For this reason, setting a redis password is required. In addition, configure
the email app to accomodate the changes.

Signed-off-by: Benedek Nagy <contact@nbenedek.me>
Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>
This commit is contained in:
Benedek Nagy 2023-10-23 18:45:56 +02:00 committed by Sunil Mohan Adapa
parent b21af70510
commit 60f8a3f3db
No known key found for this signature in database
GPG Key ID: 43EA1CFF0AA7C5F2
2 changed files with 69 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
plinth/modules/nextcloud/__init__.py
View File

@ -63,10 +63,10 @@ class NextcloudApp(app_module.App):
login_required=True) login_required=True)
self.add(shortcut) self.add(shortcut)
packages = Packages('packages-nextcloud', packages = Packages('packages-nextcloud', [
['podman', 'default-mysql-server', 'podman', 'default-mysql-server', 'python3-iso3166',
'python3-iso3166'], 'redis-server', 'php-redis'
conflicts=['libpam-tmpdir'], ], conflicts=['libpam-tmpdir'],
conflicts_action=Packages.ConflictsAction.REMOVE) conflicts_action=Packages.ConflictsAction.REMOVE)
self.add(packages) self.add(packages)

65
plinth/modules/nextcloud/privileged.py
View File

@ -5,10 +5,13 @@ import os
import pathlib import pathlib
import random import random
import re import re
import shutil
import string import string
import subprocess import subprocess
import time import time
import augeas
from plinth import action_utils from plinth import action_utils
from plinth.actions import privileged from plinth.actions import privileged
@ -36,6 +39,9 @@ NEXTCLOUD_CRON_TIMER_FILE = pathlib.Path(
DB_BACKUP_FILE = pathlib.Path( DB_BACKUP_FILE = pathlib.Path(
'/var/lib/plinth/backups-data/nextcloud-database.sql') '/var/lib/plinth/backups-data/nextcloud-database.sql')
REDIS_CONFIG = '/etc/redis/redis.conf'
REDIS_CONFIG_AUG = f'/files{REDIS_CONFIG}'
@privileged @privileged
def setup(): def setup():
@ -65,6 +71,10 @@ def setup():
time.sleep(1) time.sleep(1)
_nextcloud_setup_wizard(database_password, administrator_password) _nextcloud_setup_wizard(database_password, administrator_password)
_bind_redis(f'127.0.0.1 -::1 {BRIDGE_IP}')
_set_redis_password(_generate_secret_key(16))
action_utils.service_restart('redis-server')
_create_redis_config(_get_redis_password())
# Check if LDAP has already been configured. This is necessary because # Check if LDAP has already been configured. This is necessary because
# if the setup proccess is rerun when updating the FredomBox app another # if the setup proccess is rerun when updating the FredomBox app another
# redundant LDAP config would be created. # redundant LDAP config would be created.
@ -275,6 +285,10 @@ WantedBy=timers.target
@privileged @privileged
def uninstall(): def uninstall():
"""Uninstall Nextcloud""" """Uninstall Nextcloud"""
# Set bind setting back to default in case other apps
# are still using it
_bind_redis('127.0.0.1 -::1')
action_utils.service_restart('redis-server')
_drop_database() _drop_database()
_remove_db_socket() _remove_db_socket()
_configure_firewall(action='remove', interface_name=NETWORK_NAME) _configure_firewall(action='remove', interface_name=NETWORK_NAME)
@ -365,3 +379,54 @@ def _get_dbpassword():
match = re.search(pattern, config_contents) match = re.search(pattern, config_contents)
return match.group(1) return match.group(1)
def _create_redis_config(password):
"""Create a php file for Redis configuration."""
config_file = pathlib.Path(
'/var/lib/containers/storage/volumes/nextcloud-volume-fbx/_data/'
'config/freedombox.config.php')
file_content = f'''<?php
$CONFIG = [
'filelocking.enabled' => true,
'memcache.locking' => '\\\\OC\\\\Memcache\\\\Redis',
'memcache.distributed' => '\\\\OC\\\\Memcache\\\\Redis',
'redis' => [
'host' => '{BRIDGE_IP}',
'port' => '6379',
'password' => '{password}',
],
];
'''
config_file.write_text(file_content)
shutil.chown(config_file, 'www-data', 'www-data')
def _load_augeas():
"""Initialize Augeas."""
aug = augeas.Augeas(flags=augeas.Augeas.NO_LOAD +
augeas.Augeas.NO_MODL_AUTOLOAD)
aug.transform('Spacevars', REDIS_CONFIG)
aug.set('/augeas/context', REDIS_CONFIG_AUG)
aug.load()
return aug
def _bind_redis(ip_address):
"""Configure Redis to listen on the podman bridge adapter."""
aug = _load_augeas()
aug.set(REDIS_CONFIG_AUG + '/bind', ip_address)
aug.save()
def _set_redis_password(password):
if _get_redis_password() is None:
aug = _load_augeas()
aug.set(REDIS_CONFIG_AUG + '/requirepass', password)
aug.save()
def _get_redis_password() -> str:
aug = _load_augeas()
password = aug.get(REDIS_CONFIG_AUG + '/requirepass')
return password