Polish nextcloud config

AUTODISCOVER_AP_UUID=abcd

# database

DBHOST=mariadb

MYSQL_ROOT_PASSWORD=123456

DBUSER=selfhost

DBPASS=123456

DBHOST=mariadb

PFDB_DB=postfix

PFDB_USR=postfix

MYSQL_DATABASE_NC=nextcloud

MYSQL_USER_NC=nextcloud

MYSQL_DATABASE_NC=nextcloud

MYSQL_PASSWORD_NC=123456

# redis

REDIS_HOST=redis

# welcome

WELCOME_SECRET=123456

WELCOME_SECRET_SHA=abcdefgh

WEBSITE_SECRET=789456123

WEBSITE_SECRET=123456

ECLOUD_ACCOUNTS_SECRET=123456

# nextcloud

NEXTCLOUD_ADMIN_PASSWORD=@adm1n

NEXTCLOUD_EMAIL_RECOVERY_APP_SECRET=123456

CREATE_ACCOUNT_PASSWORD=123456

### Start bootstrap process

Login to the server via ssh as root (on Linux/macOS the ssh client is available out of the box, on Windows you need to use an ssh client like [Putty](https://www.putty.org/) for example).

Execute these commands and follow the on-screen instructions:

Copy the environment file `.env.example` and name it `.env` in the root directory of the project, then update it accordingly.

Once done you can run the project with:

```

$ ssh root@$DOMAIN

# git clone https://gitlab.e.foundation/e/infra/ecloud-selfhosting.git --single-branch --branch master /mnt/repo-base

# cd /mnt/repo-base

# bash scripts/bootstrap.sh

chown -R '33':'33' volumes/nextcloud/{html,data,log}`

mkdir -p ./volumes/nextcloud/{html,data,log} && sudo chown -R '33':'33' volumes/nextcloud/{html,data,log}

docker compose up -d

```

The setup script will ask you to input some details of your setup (like your domain name) and to setup additional DNS records (the two A records plus the PTR record were set already above).

Example session for yourdomain.com:

```

## Privacy

- The default behaviour of nextcloud is that all users on a server can see and share with each other. As this may make sense on a company or family environment, we keep this behaviour in the  `selfhost` image tag.

- For public instances like our [ecloud](https://ecloud.global), we provide the `selfhost-privacy` tag with the enhanced privacy approach.

- For public instances like our [murena.io](https://murena.io), we provide the `selfhost-privacy` tag with the enhanced privacy approach.

- Some of the improvements are:

  - Users cannot find each other on search unless they use the full email address

  - User statuses are not available globally for other users to view

[server]

performance_schema = on

skip_name_resolve = 1

innodb_buffer_pool_size=1G

innodb_buffer_pool_size = 128M

innodb_buffer_pool_instances = 1

innodb_buffer_pool_chunk_size = 1G

innodb_flush_log_at_trx_commit = 2

innodb_log_buffer_size = 256M

innodb_log_buffer_size = 32M

innodb_max_dirty_pages_pct = 90

innodb_io_capacity=4000

query_cache_type = 1

query_cache_limit = 2M

query_cache_min_res_unit = 2k

query_cache_size = 64M

tmp_table_size= 64M

max_heap_table_size= 64M

slow_query_log = 1

slow_query_log_file = /var/log/mysql/slow.log

long_query_time = 1

[client-server]

!includedir /etc/mysql/conf.d/

!includedir /etc/mysql/mariadb.conf.d/

[client]

default-character-set = utf8mb4

[mysqld]

character_set_server = utf8mb4

collation_server = utf8mb4_general_ci

innodb_file_per_table=1

transaction_isolation = READ-COMMITTED

binlog_format = ROW

innodb_large_prefix=on

innodb_file_format=barracuda

innodb_file_per_table=1

CREATE DATABASE IF NOT EXISTS postfix;

CREATE DATABASE IF NOT EXISTS nextcloud DEFAULT CHARACTER SET utf8mb4 COLLATE utf8mb4_general_ci;

CREATE USER IF NOT EXISTS 'selfhost'@'%' IDENTIFIED BY '123456';

GRANT ALL PRIVILEGES ON postfix.* TO 'selfhost'@'%' WITH GRANT OPTION;

GRANT ALL PRIVILEGES ON nextcloud.* TO 'selfhost'@'%' WITH GRANT OPTION;

FLUSH PRIVILEGES;

[www]

pm = dynamic

pm.max_children = 120

pm.start_servers = 12

pm.min_spare_servers = 6

pm.max_spare_servers = 18

pm.max_requests = 200