Releases · ReinerNippes/nextcloud

05 May 17:45

ReinerNippes

v3.2

9bde70a

Release v3.2 — May 2026 Latest

Latest

Euro-Office, MariaDB Analyzer, Dedicated DB/Redis & Hetzner Improvements

Euro-Office Document Server: New eurooffice role for the OnlyOffice-compatible Euro-Office Document Server, mirroring the onlyoffice architecture with support for collocated and dedicated deployment, reverse-proxied through nginx/Apache. Tested on Debian 13, Rocky 10, CentOS 10, and openSUSE Leap 16.
MariaDB Analyzer: New mariadb_analyzer role for live tuning analysis, mirroring postgres_analyzer. Provides hardware-aware recommendations for InnoDB buffer pool, connections, thread cache, tmp tables, and IO threads across collocated, dedicated, and managed deployments.
Dedicated Database & Redis servers: PostgreSQL, MariaDB, and Redis on separate hosts are now fully functional. Includes dynamic source-IP detection for pg_hba.conf (via ip route get), scram-sha-256 auth, TCP-mode Redis bound to the private interface, and automatic cleanup of stale pg_hba.conf entries.
Managed database/Redis support: New nextcloud_db.managed flag for external services (e.g. AWS RDS, Scaleway Managed PostgreSQL/MySQL). Analyzers handle managed services gracefully (no process stats, TCP admin login).
Pulumi stack examples split: Pulumi.nextcloud.yaml.example replaced by three focused examples: Hetzner all-in-one, Hetzner multi-tier (private network for DB/Redis), and Scaleway compute + Cloudflare DNS + managed services.
Hetzner intern-only servers & per-server firewalls: Servers with no public firewall rules are labelled intern_only=true and exposed as a dedicated inventory group. Hetzner now creates one merged firewall per server, removing the previous 5-firewalls-per-server limit.
Breaking changes: Default database type changed from mysql to pgsql; default PostgreSQL version bumped to 18. APCu tuning defaults now include apc.shm_size = 128M and apc.serializer = igbinary.

Assets 2

11 Apr 12:53

ReinerNippes

v3.1

05c7020

Release v3.1 — April 2026

Major update adding several new roles, broader OS support, and a rewrite of all occ interactions:

Whiteboard role: Excalidraw-based collaborative whiteboard with Docker + reverse proxy, supports collocated and dedicated deployment.
Office co-hosting refactor: nextcloudoffice and onlyoffice roles now support both collocated and dedicated server modes with auto-detection.
Nextcloud role split: Monolithic nextcloud role split into nextcloud_prepare, nextcloud_install, and nextcloud_app for better modularity.
Custom Ansible collection (reinernippes.nextcloud): All raw php occ calls replaced with idempotent typed modules (occ_app, occ_config_system, occ_user, etc.) in a separate collection.
openSUSE Leap 16 support: Full coverage across all roles including Valkey (Redis fork), PHP packages, and Apache with OS-specific task splits.
New firewall role: Disables firewalld on openSUSE; placeholder for future per-server port management.
Various improvements: Elasticsearch 7→9, Redis/Valkey config regex fixes, TLS cert provisioning for office/whiteboard hosts, preview icon toggle, updated example inventories.

Assets 2

02 Apr 21:29

ReinerNippes

v3.0

62b413e

Release v3.0 — April 2026

What's New

Complete Playbook Refactoring
The entire Ansible playbook has been rewritten from the ground up — cleaner role structure, consistent variable naming, and a clear separation between user configuration (group_vars/all/*.yml) and internal defaults (group_vars/all/*/main.yml).

All OS and Software Versions Updated
Everything has been brought up to date as of April 2026:

Linux: Ubuntu 24.04, Debian 12/13, CentOS 10, AlmaLinux 10, RockyLinux 10
Nextcloud: Latest stable
Databases: PostgreSQL and MariaDB (current releases)
PHP, Redis/Valkey, nginx, Apache: All updated to current versions

Cloud Infrastructure with Pulumi (cloud-stuff)
New: Provision your servers automatically using Pulumi instead of setting them up manually. Currently tested with Hetzner Cloud, more providers are in the pipeline. Includes dynamic inventory integration, DNS management, firewall policies, and managed service support.

Server Hardening
Added a dedicated hardening playbook (nextcloud-hardening.yml) based on the DevSec Hardening Framework.

Performance Tuning Analyzers
Built-in PHP-FPM and PostgreSQL analyzers that provide hardware-aware tuning recommendations — both at install time and under real-world load.

Multi-Server Support
Full support for dedicated coturn, signaling/recording, OnlyOffice, Collabora, and Fulltextsearch servers. See the compatibility matrix in the README for details.

Breaking Changes

This release is not compatible with previous versions. Do not run it on existing installations managed by the old playbook.
Variable names and structure have changed significantly — review group_vars/all/*.yml before running.
The default branch has been renamed from master to main.