feat(nextcloud): tweaks to nextcloud

hosts/sobotka/default.nix

@@ -3,11 +3,9 @@
   config,
   pkgs,
   ...
-}:
-let
+}: let
   ifTheyExist = groups: builtins.filter (group: builtins.hasAttr group config.users.groups) groups;
-in
-{
+in {
   users.users.cnst = {
     isNormalUser = true;
     shell = pkgs.fish;
@@ -51,8 +49,7 @@ in
     ./server.nix
   ];
 
-  boot.initrd.luks.devices."luks-47b35d4b-467a-4637-a5f9-45177da62897".device =
-    "/dev/disk/by-uuid/47b35d4b-467a-4637-a5f9-45177da62897";
+  boot.initrd.luks.devices."luks-47b35d4b-467a-4637-a5f9-45177da62897".device = "/dev/disk/by-uuid/47b35d4b-467a-4637-a5f9-45177da62897";
 
   networking = {
     hostName = "sobotka";
@@ -69,8 +66,8 @@ in
   ];
 
   boot = {
-    supportedFilesystems = [ "zfs" ];
-    zfs.extraPools = [ "data" ];
+    supportedFilesystems = ["zfs"];
+    zfs.extraPools = ["data"];
   };
 
   services.zfs = {
@@ -78,6 +75,8 @@ in
     autoScrub.enable = true;
   };
 
+  environment.etc."nextcloud-admin-pass".text = "DeHKor3x8^eqqnBXjqhQ&QBl*3!sOLg8agfzOILihju#^0!2AfJ9W*vn";
+
   environment.variables.NH_FLAKE = "/home/cnst/.nix-config";
 
   #   # https://nixos.wiki/wiki/FAQ/When_do_I_update_stateVersion

hosts/sobotka/server.nix

@@ -3,6 +3,7 @@
     enable = true;
     email = "adam@cnst.dev";
     domain = "cnix.dev";
+    domainPublic = "cnst.dev";
     user = "share";
     group = "share";
     uid = 994;
@@ -61,12 +62,12 @@
         credentialsFile = config.age.secrets.vaultwardenCloudflared.path;
       };
     };
-    ocis = {
+    nextcloud = {
       enable = true;
-      url = "cloud.cnst.dev";
+      adminpassFile = config.age.secrets.nextcloudAdminPass.path;
       cloudflared = {
-        tunnelId = "8871dad0-e6ff-424c-9a6b-222ef0f492df";
-        credentialsFile = config.age.secrets.ocisCloudflared.path;
+        tunnelId = "35802b60-7012-4f70-a686-f493c8f2dec0";
+        credentialsFile = config.age.secrets.nextcloudCloudflared.path;
       };
     };
     fail2ban = {