New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Backport 18.09] nextcloud module: init #47859
Conversation
(cherry picked from commit ebd3818) Co-authored-by: Franz Pletz <fpletz@fnordicwalking.de> Co-authored-by: Robin Gloster <mail@glob.in> Co-authored-by: Janne Heß <janne@hess.ooo> Co-authored-by: Florian Klink <flokli@flokli.de>
(cherry picked from commit e5b3ea5) Co-authored-by: Robin Gloster <mail@glob.in>
(cherry picked from commit 1fd6477)
263a88d
to
cc34043
Compare
Success on aarch64-linux (full log) Attempted: nextcloud Partial log (click to expand)
|
Success on x86_64-darwin (full log) Attempted: nextcloud Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: nextcloud Partial log (click to expand)
|
cc @schneefux @bachp |
@GrahamcOfBorg test nextcloud.basic nextcloud.with-mysql-and-memcached nextcloud.with-postgresql-and-redis |
Success on x86_64-linux (full log) Attempted: tests.nextcloud.basic, tests.nextcloud.with-mysql-and-memcached, tests.nextcloud.with-postgresql-and-redis Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: tests.nextcloud.basic, tests.nextcloud.with-mysql-and-memcached, tests.nextcloud.with-postgresql-and-redis Partial log (click to expand)
|
Haven't looked at the PR in details yet. Nextcloud probably goes into the security sensitive category for backports; it's often exposed to the whole wild web. Unless it gets an LTS version, or another distro has security patches handy, it will probably always need to be updated in the stable release, so it's easier to apply security updates as needed. The fact that it adds a test for nextcloud makes me less hesitant to include this change into an already released stable branch, though this is still way past the branch freese :/. |
@samueldr according to https://nextcloud.com/release-channels/, nextcloud does have a concept of release channels, although they don't explicitly show on the website which version is currently on which channel. According to the URL above, the latest stable version can be found on the installation page, which is currently pointing to 14.0.1, so we should be good. |
I did dig a bit deeper into it. Nextclouds updater logic polls some updater server, it's configuration can be found here: So basically nextcloud 14.0.1 is also delivered on both "production" and "stable" channels. |
@samueldr Could you confirm whether this is wanted or not?
From my reading of the diff, the risky changes are:
* Addition of the `nextcloud.nix`: no risk of
backwards-incompatibility, everything is gated on the `enable` option
* [Changes to nginx](https://github.com/NixOS/nixpkgs/pull/47859/files#diff-795fa65a7c41a479084de826e4e2e65c),
likely the part with the highest risk of avoidable
backwards-incompatibility, it appears to reorder the `location {}`
blocks in the nginx config
* Addition of tests… things I think we do want :)
* Bump of the nextcloud package: this part will certainly be
backwards-incompatible, but you mentioned that we'd want to bump it
anyway at the next security update, and so might as well do it
now. Now, nextcloud 13 appears to still receive updates even now that
nextcloud 14 is out (cf. the dates in the
[changelog](https://nextcloud.com/changelog/)), so this part may
potentially be replaced by a bump to 13.0.7.
|
@GrahamcOfBorg test nextcloud.basic nextcloud.with-mysql-and-memcached nextcloud.with-postgresql-and-redis |
Success on aarch64-linux (full log) Attempted: tests.nextcloud.basic, tests.nextcloud.with-mysql-and-memcached, tests.nextcloud.with-postgresql-and-redis Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: tests.nextcloud.basic, tests.nextcloud.with-mysql-and-memcached, tests.nextcloud.with-postgresql-and-redis Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: nextcloud Partial log (click to expand)
|
Failure on x86_64-darwin (full log) Attempted: nextcloud Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: nextcloud Partial log (click to expand)
|
Motivation for this change
This backports #47159 to 18.09. Filed a separate PR to run tests as suggested by @Mic92 in #47159 (comment) .
I decided to keep the bump to 14.0.1 around, due to that release supporting 2FA and having a "Data Protection Confirmation app and separate audit log file" application.
Things done
sandbox
innix.conf
on non-NixOS)nix-shell -p nox --run "nox-review wip"
./result/bin/
)nix path-info -S
before and after)cc @eqyiel @fpletz @globin @Ekleog