Configuring NextCloud

📌 Purpose

This document outlines ~~the~~key ~~production~~configuration ~~`config.php`~~insights for the **Nextcloud AIO*All-in-One (AIO)** instance running at `cloud.mslspartners.com`com. It> ~~includes~~⚠️ ~~caching,~~Note: ~~database,~~This ~~logging,~~instance is managed by Nextcloud AIO. Most settings shown here are auto-generated and ~~security~~should ~~settings~~not ~~necessary~~be edited manually via config.php. Instead, use: > - The Nextcloud AIO web interface > - Environment variables when launching the AIO container > - The admin UI in Nextcloud for ~~a secure~~app and ~~performant~~email ~~deployment.~~configurations ---

```php🌐 Domain and Protocol

"overwritehost": "cloud.mslspartners.com",
"overwriteprotocol": "https",
"trusted_domains": [
    "localhost",
    "cloud.mslspartners.com"
],
"overwrite.cli.url": "https://cloud.mslspartners.com/",
"instanceid":

~~"***REMOVED***",~~

- ~~"installed":~~These ~~true~~are ~~```~~set automatically based on AIO setup and HTTPS configuration - ~~Enforces HTTPS access - Restricts access to trusted~~Trusted domains -should ~~Ensures~~be ~~consistent URL access~~managed via ~~CLI~~the AIO panel or container setup ---

🧠 CacheCaching Settings(Managed by AIO)

~~```php~~

"memcache.local": "\OC\Memcache\APCu",
"memcache.distributed": "\OC\Memcache\Redis",
"memcache.locking": "\OC\Memcache\Redis",
"redis":

~~{ "host": "***REMOVED***", "password": "***REMOVED***", "port": 6379 } ``` - APCu is used for local caching~~

- Redis and APCu are preconfigured in AIO - No manual configuration is ~~used~~required unless for ~~distributed~~advanced ~~caching and file locking ---~~

📦 Apps Paths

```php "apps_paths": [ { "path": "/var/www/html/apps", "url": "/apps", "writable": false }, { "path": "/var/www/html/custom_apps", "url": "/custom_apps", "writable": true } ] ``` - Separates official and custom apps - Only custom apps are writabletroubleshooting ---

📝 Logging Settings

~~```php~~

"loglevel": 2,
"log_type": "file",
"logfile": "/var/www/html/data/nextcloud.log",
"log_rotate_size": 10485760,10485760
"log.condition":

~~{ "apps": ["admin_audit"] } ```~~

- Logs ~~warnings~~are ~~and~~written ~~above~~inside the Nextcloud container - ~~Auto-rotates~~You can access logs atvia ~~10MB~~the ~~- Enables audit~~AIO logs ~~for~~interface ~~admin~~or ~~activities~~docker logs command ---

🛠🔧 Maintenance & Updates

~~```php~~

"maintenance": false,
"upgrade.disable-web": true,
"updatedirectory": "/nc-updater",
"maintenance_window_start":

~~100~~

- ~~```~~Updates are handled automatically or via the AIO web UI - ~~Web~~Do not perform upgrades ~~are~~using ~~disabled~~the (traditional CLI ~~upgrade~~or ~~enforced)~~web ~~- Sets custom update directory and window~~updater ---

✉️👥 EmailUser SettingsLimits & AIO Flags

~~```php "mail_smtpmode": "smtp" ``` - Uses SMTP to send emails ---~~

🧹 Data Retention Policies

~~```php "trashbin_retention_obligation": "auto, 30", "versions_retention_obligation": "auto, 30", "activity_expire_days": 30 ``` - Deletes files and version history older than 30 days automatically ---~~

🖼 Preview Settings

```php "enable_previews": true, "preview_max_x": 2048, "preview_max_y": 2048, "jpeg_quality": 60, "enabledPreviewProviders": { "0": "OC\Preview\Imaginary", "1": "OC\Preview\Image", "2": "OC\Preview\MarkDown", "3": "OC\Preview\MP3", "4": "OC\Preview\TXT", "5": "OC\Preview\OpenDocument", "6": "OC\Preview\Movie", "7": "OC\Preview\Krita", "23": "OC\Preview\ImaginaryPDF" } ``` - Enables Imaginary preview backend and limits preview sizes - Reduces JPEG quality to save space ---

🔒 Security Settings

```php "auth.bruteforce.protection.enabled": true, "ratelimit.protection.enabled": true, "files_external_allow_create_new_local": false ``` - Enables brute-force and rate-limiting protections - Disables creation of unsafe local external mounts ---

⚡ One-Click Deployment Info

~~```php~~

"one-click-instance": true,
"one-click-instance.user-limit": 100,
"one-click-instance.link": "https://nextcloud.com/all-in-one/"
```

- ~~Flags~~Indicates this asis an AIO ~~instance~~deployment - ~~Soft-limits~~The ~~users~~user ~~for~~limit ~~performance~~can ~~reasons~~be adjusted via environment or licensing ---

⚙️💾 Additional SettingsStorage

~~```php~~

"allow_local_remote_servers": true, "htaccess.RewriteBase"datadirectory": "/",mnt/ncdata"
"DOMAIN":

~~"cloud.mslspartners.com",~~

- The data directory is mounted via Docker volume or external NFS - Ensure it has correct permissions (`www-data`) and is persistent ---

🗄 Database (Internal)

"dbtype": "pgsql",
"dbtableprefix": "oc_",
"dbpersistent": false
```

- AIO uses an internal PostgreSQL container, linked automatically - ~~Enables~~Manual access not required unless for debugging ---

🔐 Security Settings

"auth.bruteforce.protection.enabled": true,
"ratelimit.protection.enabled": true

- Security features are enabled by default - Manage trusted proxies and TLS via your reverse proxy ~~forwarding~~(e.g., HAProxy) ---

🖼 Preview Configuration

"enable_previews": true,
"preview_max_x": 2048,
"preview_max_y": 2048,
"jpeg_quality": 60

- Preview options can be customized via admin panel - ~~Uses~~Imaginary ~~PostgreSQL~~preview asproviders ~~the~~may ~~database~~be ~~engine~~enabled for better performance ---

🧾 VerificationNotes

> ✅ Last reviewed: **May 2025** 2025
> 📍 ~~Environment:~~Deployed `at: cloud.mslspartners.com` com
> 🔐⚠️ ~~Sensitive~~Use ~~fields~~the ~~omitted~~AIO interface or container environment variables for ~~security~~changes
> 🛑 Do not manually edit config.php in production ---