diff --git a/stable/nextcloud/3.7.15/CHANGELOG.md b/stable/nextcloud/3.7.15/CHANGELOG.md
new file mode 100644
index 00000000000..5a8ce0495e4
--- /dev/null
+++ b/stable/nextcloud/3.7.15/CHANGELOG.md
@@ -0,0 +1,13 @@
+
+
+### [nextcloud-3.7.15](https://github.com/truecharts/apps/compare/nextcloud-3.7.14...nextcloud-3.7.15) (2021-09-08)
+
+#### Feat
+
+* Add IPWhitelist, redirectRegex and (internal) nextcloud middlewares ([#929](https://github.com/truecharts/apps/issues/929))
+* Pre-commit and tag-appversion syncing ([#926](https://github.com/truecharts/apps/issues/926))
+
+#### Fix
+
+* Add initcontainer to force refresh TRUSTED_DOMAINS ([#930](https://github.com/truecharts/apps/issues/930))
+
diff --git a/stable/nextcloud/3.7.15/CONFIG.md b/stable/nextcloud/3.7.15/CONFIG.md
new file mode 100644
index 00000000000..fc9b2fa2d5f
--- /dev/null
+++ b/stable/nextcloud/3.7.15/CONFIG.md
@@ -0,0 +1,8 @@
+# Configuration Options
+
+##### Connecting to other apps
+If you need to connect this App to other Apps on TrueNAS SCALE, please refer to our "Linking Apps Internally" quick-start guide:
+https://truecharts.org/manual/Quick-Start%20Guides/14-linking-apps/
+
+##### Available config options
+In the future this page is going to contain an automated list of options available in the installation/edit UI.
diff --git a/stable/nextcloud/3.7.15/Chart.lock b/stable/nextcloud/3.7.15/Chart.lock
new file mode 100644
index 00000000000..b2ac3510b8a
--- /dev/null
+++ b/stable/nextcloud/3.7.15/Chart.lock
@@ -0,0 +1,12 @@
+dependencies:
+- name: common
+ repository: https://truecharts.org/
+ version: 6.13.8
+- name: postgresql
+ repository: https://truecharts.org/
+ version: 1.6.5
+- name: redis
+ repository: https://charts.bitnami.com/bitnami
+ version: 15.3.1
+digest: sha256:9b60ad9c2e2d09a112a54fb1b46b836d458abf2f29aa38210bc91f063152e562
+generated: "2021-09-08T20:17:08.113443974Z"
diff --git a/stable/nextcloud/3.7.15/Chart.yaml b/stable/nextcloud/3.7.15/Chart.yaml
new file mode 100644
index 00000000000..91db460d596
--- /dev/null
+++ b/stable/nextcloud/3.7.15/Chart.yaml
@@ -0,0 +1,36 @@
+apiVersion: v2
+appVersion: 22.1.1
+dependencies:
+- name: common
+ repository: https://truecharts.org/
+ version: 6.13.8
+- condition: postgresql.enabled
+ name: postgresql
+ repository: https://truecharts.org/
+ version: 1.6.5
+- condition: redis.enabled
+ name: redis
+ repository: https://charts.bitnami.com/bitnami
+ version: 15.3.1
+deprecated: false
+description: A private cloud server that puts the control and security of your own
+ data back into your hands.
+home: https://nextcloud.com/
+icon: https://upload.wikimedia.org/wikipedia/commons/thumb/6/60/Nextcloud_Logo.svg/1280px-Nextcloud_Logo.svg.png
+keywords:
+- nextcloud
+- storage
+- http
+- web
+- php
+kubeVersion: '>=1.16.0-0'
+maintainers:
+- email: info@truecharts.org
+ name: TrueCharts
+ url: truecharts.org
+name: nextcloud
+sources:
+- https://github.com/nextcloud/docker
+- https://github.com/nextcloud/helm
+type: application
+version: 3.7.15
diff --git a/stable/nextcloud/3.7.15/README.md b/stable/nextcloud/3.7.15/README.md
new file mode 100644
index 00000000000..7aa6d368343
--- /dev/null
+++ b/stable/nextcloud/3.7.15/README.md
@@ -0,0 +1,40 @@
+# Introduction
+
+A private cloud server that puts the control and security of your own data back into your hands.
+
+TrueCharts are designed to be installed as TrueNAS SCALE app only. We can not guarantee this charts works as a stand-alone helm installation.
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/apps/issues/new/choose)**
+
+## Source Code
+
+*
+*
+
+## Requirements
+
+Kubernetes: `>=1.16.0-0`
+
+## Dependencies
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://charts.bitnami.com/bitnami | redis | 15.3.1 |
+| https://truecharts.org/ | common | 6.13.8 |
+| https://truecharts.org/ | postgresql | 1.6.5 |
+
+## Installing the Chart
+
+To install this App on TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/03-Installing-an-App/).
+
+## Uninstalling the Chart
+
+To remove this App from TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/07-Deleting-an-App/).
+
+## Support
+
+- Please check our [quick-start guides](https://truecharts.org/manual/Quick-Start%20Guides/01-Open-Apps/) first.
+- See the [Wiki](https://truecharts.org)
+- Check our [Discord](https://discord.gg/tVsPTHWTtr)
+- Open a [issue](https://github.com/truecharts/apps/issues/new/choose)
+---
+All Rights Reserved - The TrueCharts Project
diff --git a/stable/nextcloud/3.7.15/app-readme.md b/stable/nextcloud/3.7.15/app-readme.md
new file mode 100644
index 00000000000..28094fc642d
--- /dev/null
+++ b/stable/nextcloud/3.7.15/app-readme.md
@@ -0,0 +1,3 @@
+A private cloud server that puts the control and security of your own data back into your hands.
+
+This App is supplied by TrueCharts, for more information please visit https://truecharts.org
diff --git a/stable/nextcloud/3.7.15/charts/common-6.13.8.tgz b/stable/nextcloud/3.7.15/charts/common-6.13.8.tgz
new file mode 100644
index 00000000000..d3fd2fa87de
Binary files /dev/null and b/stable/nextcloud/3.7.15/charts/common-6.13.8.tgz differ
diff --git a/stable/nextcloud/3.7.15/charts/postgresql-1.6.5.tgz b/stable/nextcloud/3.7.15/charts/postgresql-1.6.5.tgz
new file mode 100644
index 00000000000..89d7c9c9ff4
Binary files /dev/null and b/stable/nextcloud/3.7.15/charts/postgresql-1.6.5.tgz differ
diff --git a/stable/nextcloud/3.7.15/charts/redis-15.3.1.tgz b/stable/nextcloud/3.7.15/charts/redis-15.3.1.tgz
new file mode 100644
index 00000000000..7bfdadbc26a
Binary files /dev/null and b/stable/nextcloud/3.7.15/charts/redis-15.3.1.tgz differ
diff --git a/stable/nextcloud/3.7.15/helm-values.md b/stable/nextcloud/3.7.15/helm-values.md
new file mode 100644
index 00000000000..8f2f41b3c59
--- /dev/null
+++ b/stable/nextcloud/3.7.15/helm-values.md
@@ -0,0 +1,94 @@
+# Default Helm-Values
+
+TrueCharts is primarily build to supply TrueNAS SCALE Apps.
+However, we also supply all Apps as standard Helm-Charts. In this document we aim to document the default values in our values.yaml file.
+
+Most of our Apps also consume our "common" Helm Chart.
+If this is the case, this means that all values.yaml values are set to the common chart values.yaml by default. This values.yaml file will only contain values that deviate from the common chart.
+You will, however, be able to use all values referenced in the common chart here, besides the values listed in this document.
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| cronjob.annotations | object | `{}` | |
+| cronjob.failedJobsHistoryLimit | int | `5` | |
+| cronjob.schedule | string | `"*/5 * * * *"` | |
+| cronjob.successfulJobsHistoryLimit | int | `2` | |
+| env.NEXTCLOUD_ADMIN_PASSWORD | string | `"adminpass"` | |
+| env.NEXTCLOUD_ADMIN_USER | string | `"admin"` | |
+| env.TRUSTED_PROXIES | string | `"172.16.0.0/16"` | |
+| envFrom[0].configMapRef.name | string | `"nextcloudconfig"` | |
+| envTpl.POSTGRES_DB | string | `"{{ .Values.postgresql.postgresqlDatabase }}"` | |
+| envTpl.POSTGRES_USER | string | `"{{ .Values.postgresql.postgresqlUsername }}"` | |
+| envValueFrom.POSTGRES_HOST.secretKeyRef.key | string | `"host"` | |
+| envValueFrom.POSTGRES_HOST.secretKeyRef.name | string | `"dbcreds"` | |
+| envValueFrom.POSTGRES_PASSWORD.secretKeyRef.key | string | `"postgresql-password"` | |
+| envValueFrom.POSTGRES_PASSWORD.secretKeyRef.name | string | `"dbcreds"` | |
+| envValueFrom.REDIS_HOST.secretKeyRef.key | string | `"masterhost"` | |
+| envValueFrom.REDIS_HOST.secretKeyRef.name | string | `"rediscreds"` | |
+| envValueFrom.REDIS_HOST_PASSWORD.secretKeyRef.key | string | `"redis-password"` | |
+| envValueFrom.REDIS_HOST_PASSWORD.secretKeyRef.name | string | `"rediscreds"` | |
+| image.pullPolicy | string | `"IfNotPresent"` | |
+| image.repository | string | `"nextcloud"` | |
+| image.tag | string | `"22.1.1"` | |
+| initContainers[0].command[0] | string | `"sh"` | |
+| initContainers[0].command[1] | string | `"-c"` | |
+| initContainers[0].command[2] | string | `"until pg_isready -U nextcloud -h ${pghost} ; do sleep 2 ; done"` | |
+| initContainers[0].env[0].name | string | `"pghost"` | |
+| initContainers[0].env[0].valueFrom.secretKeyRef.key | string | `"plainhost"` | |
+| initContainers[0].env[0].valueFrom.secretKeyRef.name | string | `"dbcreds"` | |
+| initContainers[0].image | string | `"postgres:13.1"` | |
+| initContainers[0].imagePullPolicy | string | `"IfNotPresent"` | |
+| initContainers[0].name | string | `"init-postgresdb"` | |
+| initContainers[1].args[0] | string | `"if [ -f /var/www/html/occ ]; then if [ -n \"${NEXTCLOUD_TRUSTED_DOMAINS+x}\" ]; then echo \"setting trusted domains…\"; NC_TRUSTED_DOMAIN_IDX=1; for DOMAIN in $NEXTCLOUD_TRUSTED_DOMAINS ; do DOMAIN=$(echo \"$DOMAIN\" | sed -e 's/^[[:space:]]*//' -e 's/[[:space:]]*$//'); php /var/www/html/occ config:system:set trusted_domains $NC_TRUSTED_DOMAIN_IDX --value=$DOMAIN; NC_TRUSTED_DOMAIN_IDX=$(($NC_TRUSTED_DOMAIN_IDX+1)); done; fi; fi;"` | |
+| initContainers[1].command[0] | string | `"su"` | |
+| initContainers[1].command[1] | string | `"-p"` | |
+| initContainers[1].command[2] | string | `"www-data"` | |
+| initContainers[1].command[3] | string | `"-s"` | |
+| initContainers[1].command[4] | string | `"/bin/sh"` | |
+| initContainers[1].command[5] | string | `"-c"` | |
+| initContainers[1].envFrom[0].configMapRef.name | string | `"nextcloudconfig"` | |
+| initContainers[1].image | string | `"nextcloud:22.1.1"` | |
+| initContainers[1].name | string | `"injectconfig"` | |
+| initContainers[1].volumeMounts[0].mountPath | string | `"/var/www/html"` | |
+| initContainers[1].volumeMounts[0].name | string | `"data"` | |
+| persistence.data.accessMode | string | `"ReadWriteOnce"` | |
+| persistence.data.enabled | bool | `true` | |
+| persistence.data.mountPath | string | `"/var/www/html"` | |
+| persistence.data.size | string | `"100Gi"` | |
+| persistence.data.type | string | `"pvc"` | |
+| persistence.redismaster.accessMode | string | `"ReadWriteOnce"` | |
+| persistence.redismaster.enabled | bool | `true` | |
+| persistence.redismaster.forceName | string | `"redismaster"` | |
+| persistence.redismaster.noMount | bool | `true` | |
+| persistence.redismaster.size | string | `"100Gi"` | |
+| persistence.redismaster.type | string | `"pvc"` | |
+| podSecurityContext.fsGroup | int | `33` | |
+| postgresql.enabled | bool | `true` | |
+| postgresql.existingSecret | string | `"dbcreds"` | |
+| postgresql.postgresqlDatabase | string | `"nextcloud"` | |
+| postgresql.postgresqlUsername | string | `"nextcloud"` | |
+| probes | object | See below | Probe configuration -- [[ref]](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/) |
+| probes.liveness | object | See below | Liveness probe configuration |
+| probes.liveness.spec | object | "/" | If a HTTP probe is used (default for HTTP/HTTPS services) this path is used |
+| probes.readiness | object | See below | Redainess probe configuration |
+| probes.readiness.spec | object | "/" | If a HTTP probe is used (default for HTTP/HTTPS services) this path is used |
+| probes.startup | object | See below | Startup probe configuration |
+| probes.startup.spec | object | "/" | If a HTTP probe is used (default for HTTP/HTTPS services) this path is used |
+| redis.architecture | string | `"standalone"` | |
+| redis.auth.existingSecret | string | `"rediscreds"` | |
+| redis.auth.existingSecretPasswordKey | string | `"redis-password"` | |
+| redis.enabled | bool | `true` | |
+| redis.master.persistence.enabled | bool | `false` | |
+| redis.master.persistence.existingClaim | string | `"redismaster"` | |
+| redis.replica.persistence.enabled | bool | `false` | |
+| redis.replica.replicaCount | int | `0` | |
+| redis.volumePermissions.enabled | bool | `true` | |
+| service.hpb.enabled | bool | `true` | |
+| service.hpb.ports.hpb.enabled | bool | `true` | |
+| service.hpb.ports.hpb.port | int | `7867` | |
+| service.main.ports.main.port | int | `80` | |
+| strategy.type | string | `"Recreate"` | |
+
+All Rights Reserved - The TrueCharts Project
diff --git a/stable/nextcloud/3.7.15/ix_values.yaml b/stable/nextcloud/3.7.15/ix_values.yaml
new file mode 100644
index 00000000000..f791c144a92
--- /dev/null
+++ b/stable/nextcloud/3.7.15/ix_values.yaml
@@ -0,0 +1,162 @@
+##
+# This file contains Values.yaml content that gets added to the output of questions.yaml
+# It's ONLY meant for content that the user is NOT expected to change.
+# Example: Everything under "image" is not included in questions.yaml but is included here.
+##
+
+image:
+ repository: nextcloud
+ pullPolicy: IfNotPresent
+ tag: 22.1.1
+
+strategy:
+ type: Recreate
+
+env: {}
+
+
+envTpl:
+ POSTGRES_DB: "{{ .Values.postgresql.postgresqlDatabase }}"
+ POSTGRES_USER: "{{ .Values.postgresql.postgresqlUsername }}"
+
+envFrom:
+ - configMapRef:
+ name: nextcloudconfig
+
+envValueFrom:
+ POSTGRES_PASSWORD:
+ secretKeyRef:
+ name: dbcreds
+ key: postgresql-password
+ POSTGRES_HOST:
+ secretKeyRef:
+ name: dbcreds
+ key: host
+ REDIS_HOST:
+ secretKeyRef:
+ name: rediscreds
+ key: masterhost
+ REDIS_HOST_PASSWORD:
+ secretKeyRef:
+ name: rediscreds
+ key: redis-password
+
+initContainers:
+ - name: init-postgresdb
+ image: postgres:13.1
+ command:
+ - "sh"
+ - "-c"
+ - "until pg_isready -U nextcloud -h ${pghost} ; do sleep 2 ; done"
+ imagePullPolicy: IfNotPresent
+ env:
+ - name: pghost
+ valueFrom:
+ secretKeyRef:
+ name: dbcreds
+ key: plainhost
+
+
+# -- Probe configuration
+# -- [[ref]](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)
+# @default -- See below
+probes:
+ # -- Liveness probe configuration
+ # @default -- See below
+ liveness:
+ custom: true
+ # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+ # @default -- "/"
+ spec:
+ httpGet:
+ path: /status.php
+ port: 80
+ httpHeaders:
+ - name: Host
+ value: "test.fakedomain.dns"
+ initialDelaySeconds: 10
+ periodSeconds: 10
+ timeoutSeconds: 2
+ failureThreshold: 5
+
+ # -- Redainess probe configuration
+ # @default -- See below
+ readiness:
+ custom: true
+ # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+ # @default -- "/"
+ spec:
+ httpGet:
+ path: /status.php
+ port: 80
+ httpHeaders:
+ - name: Host
+ value: "test.fakedomain.dns"
+ initialDelaySeconds: 10
+ periodSeconds: 10
+ timeoutSeconds: 2
+ failureThreshold: 5
+
+ # -- Startup probe configuration
+ # @default -- See below
+ startup:
+ custom: true
+ # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+ # @default -- "/"
+ spec:
+ httpGet:
+ path: /status.php
+ port: 80
+ httpHeaders:
+ - name: Host
+ value: "test.fakedomain.dns"
+ initialDelaySeconds: 10
+ periodSeconds: 10
+ timeoutSeconds: 2
+ failureThreshold: 5
+
+## Cronjob to execute Nextcloud background tasks
+## ref: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/background_jobs_configuration.html#webcron
+##
+cronjob:
+ # Every 5 minutes
+ # Note: Setting this to any any other value than 5 minutes might
+ # cause issues with how nextcloud background jobs are executed
+ schedule: "*/5 * * * *"
+ annotations: {}
+ failedJobsHistoryLimit: 5
+ successfulJobsHistoryLimit: 2
+
+# Enabled postgres
+postgresql:
+ enabled: true
+ postgresqlUsername: nextcloud
+ postgresqlDatabase: nextcloud
+ existingSecret: dbcreds
+ persistence:
+ db:
+ storageClass: "SCALE-ZFS"
+ dbbackups:
+ storageClass: "SCALE-ZFS"
+
+# Enabled redis
+# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/redis
+redis:
+ architecture: standalone
+ enabled: true
+ auth:
+ existingSecret: rediscreds
+ existingSecretPasswordKey: redis-password
+ master:
+ persistence:
+ enabled: true
+ existingClaim: redismaster
+ replica:
+ replicaCount: 0
+ persistence:
+ enabled: false
+
+##
+# Most other defaults are set in questions.yaml
+# For other options please refer to the wiki, default_values.yaml or the common library chart
+##
diff --git a/stable/nextcloud/3.7.15/questions.yaml b/stable/nextcloud/3.7.15/questions.yaml
new file mode 100644
index 00000000000..32482410e59
--- /dev/null
+++ b/stable/nextcloud/3.7.15/questions.yaml
@@ -0,0 +1,1059 @@
+groups:
+ - name: "Container Image"
+ description: "Image to be used for container"
+ - name: "Controller"
+ description: "Configure workload deployment"
+ - name: "Container Configuration"
+ description: "additional container configuration"
+ - name: "App Configuration"
+ description: "App specific config options"
+ - name: "Networking and Services"
+ description: "Configure Network and Services for container"
+ - name: "Storage and Persistence"
+ description: "Persist and share data that is separate from the container"
+ - name: "Ingress"
+ description: "Ingress Configuration"
+ - name: "Security and Permissions"
+ description: "Configure security context and permissions"
+ - name: "Resources and Devices"
+ description: "Specify resources/devices to be allocated to workload"
+ - name: "Advanced"
+ description: "Advanced Configuration"
+portals:
+ web_portal:
+ protocols:
+ - "$kubernetes-resource_configmap_portal_protocol"
+ host:
+ - "$kubernetes-resource_configmap_portal_host"
+ ports:
+ - "$kubernetes-resource_configmap_portal_port"
+questions:
+ - variable: portal
+ group: "Container Image"
+ label: "Configure Portal Button"
+ schema:
+ type: dict
+ hidden: true
+ attrs:
+ - variable: enabled
+ label: "Enable"
+ description: "enable the portal button"
+ schema:
+ hidden: true
+ editable: false
+ type: boolean
+ default: true
+ - variable: controller
+ group: "Controller"
+ label: ""
+ schema:
+ type: dict
+ attrs:
+ - variable: type
+ description: "Please specify type of workload to deploy"
+ label: "(Advanced) Controller Type"
+ schema:
+ type: string
+ default: "deployment"
+ required: true
+ enum:
+ - value: "deployment"
+ description: "Deployment"
+ - value: "statefulset"
+ description: "Statefulset"
+ - value: "daemonset"
+ description: "Daemonset"
+ - variable: replicas
+ description: "Number of desired pod replicas"
+ label: "Desired Replicas"
+ schema:
+ type: int
+ default: 1
+ required: true
+ - variable: strategy
+ description: "Please specify type of workload to deploy"
+ label: "(Advanced) Update Strategy"
+ schema:
+ type: string
+ default: "Recreate"
+ required: true
+ enum:
+ - value: "Recreate"
+ description: "Recreate: Kill existing pods before creating new ones"
+ - value: "RollingUpdate"
+ description: "RollingUpdate: Create new pods and then kill old ones"
+ - value: "OnDelete"
+ description: "(Legacy) OnDelete: ignore .spec.template changes"
+ - variable: labelsList
+ label: "Controller Labels"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: labelItem
+ label: "Label"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ - variable: value
+ label: "Value"
+ schema:
+ type: string
+ - variable: annotationsList
+ label: " Controller Annotations"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: annotationItem
+ label: "Label"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ - variable: value
+ label: "Value"
+ schema:
+ type: string
+
+
+ - variable: podLabelsList
+ group: "Container Configuration"
+ label: "Pod Labels"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: podLabelItem
+ label: "Label"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ - variable: value
+ label: "Value"
+ schema:
+ type: string
+
+ - variable: podAnnotationsList
+ group: "Container Configuration"
+ label: "Pod Annotations"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: podAnnotationItem
+ label: "Label"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ - variable: value
+ label: "Value"
+ schema:
+ type: string
+
+ - variable: termination
+ group: "Container Configuration"
+ label: "Termination settings"
+ schema:
+ type: dict
+ attrs:
+ - variable: gracePeriodSeconds
+ label: "Grace Period Seconds"
+ schema:
+ type: int
+ default: 10
+
+ - variable: env
+ group: "Container Configuration"
+ label: "Image Environment"
+ schema:
+ type: dict
+ attrs:
+ - variable: TZ
+ label: "Timezone"
+ schema:
+ type: string
+ default: "Etc/UTC"
+ $ref:
+ - "definitions/timezone"
+ - variable: UMASK
+ label: "UMASK"
+ description: "Sets the UMASK env var for LinuxServer.io (compatible) containers"
+ schema:
+ type: string
+ default: "002"
+ - variable: NEXTCLOUD_ADMIN_USER
+ label: "NEXTCLOUD_ADMIN_USER"
+ description: "Sets nextcloud admin username"
+ schema:
+ type: string
+ required: true
+ default: ""
+ - variable: NEXTCLOUD_ADMIN_PASSWORD
+ label: "NEXTCLOUD_ADMIN_PASSWORD"
+ description: "Sets nextcloud admin password"
+ schema:
+ type: string
+ required: true
+ default: ""
+ - variable: TRUSTED_PROXIES
+ label: "TRUSTED_PROXIES"
+ description: "Sets nextcloud Trusted Proxies"
+ schema:
+ type: string
+ default: "172.16.0.0/16"
+ - variable: NODE_IP
+ label: "NODE_IP"
+ description: "Sets nextcloud nodeip for nodeport connections"
+ schema:
+ type: string
+ $ref:
+ - "definitions/nodeIP"
+
+
+ # Configure Enviroment Variables
+ - variable: envList
+ label: "Image environment"
+ group: "Container Configuration"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: envItem
+ label: "Environment Variable"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ - variable: value
+ label: "Value"
+ schema:
+ type: string
+
+ - variable: hostNetwork
+ group: "Networking and Services"
+ label: "Enable Host Networking"
+ schema:
+ type: boolean
+ default: false
+
+ - variable: service
+ group: "Networking and Services"
+ label: "Configure Service(s)"
+ schema:
+ type: dict
+ attrs:
+ - variable: main
+ label: "Main Service"
+ description: "The Primary service on which the healthcheck runs, often the webUI"
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "Enable the service"
+ schema:
+ type: boolean
+ default: true
+ hidden: true
+ - variable: type
+ label: "Service Type"
+ description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer"
+ schema:
+ type: string
+ default: "NodePort"
+ enum:
+ - value: "NodePort"
+ description: "NodePort"
+ - value: "ClusterIP"
+ description: "ClusterIP"
+ - value: "LoadBalancer"
+ description: "LoadBalancer"
+ - variable: loadBalancerIP
+ label: "LoadBalancer IP"
+ description: "LoadBalancerIP"
+ schema:
+ show_if: [["type", "=", "LoadBalancer"]]
+ type: string
+ default: ""
+ - variable: externalIPs
+ label: "External IP's"
+ description: "External IP's"
+ schema:
+ show_if: [["type", "=", "LoadBalancer"]]
+ type: list
+ default: []
+ items:
+ - variable: externalIP
+ label: "External IP"
+ schema:
+ type: string
+ - variable: ports
+ label: "Service's Port(s) Configuration"
+ schema:
+ type: dict
+ attrs:
+ - variable: main
+ label: "Main Service Port Configuration"
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "Enable the port"
+ schema:
+ type: boolean
+ default: true
+ hidden: true
+ - variable: protocol
+ label: "Port Type"
+ schema:
+ type: string
+ default: "HTTP"
+ enum:
+ - value: HTTP
+ description: "HTTP"
+ - value: "HTTPS"
+ description: "HTTPS"
+ - value: TCP
+ description: "TCP"
+ - value: "UDP"
+ description: "UDP"
+ - variable: targetPort
+ label: "Target Port"
+ description: "This port exposes the container port on the service"
+ schema:
+ type: int
+ default: 80
+ editable: false
+ hidden: true
+ - variable: port
+ label: "Container Port"
+ schema:
+ type: int
+ default: 80
+ editable: true
+ required: true
+ - variable: nodePort
+ label: "Node Port (Optional)"
+ description: "This port gets exposed to the node. Only considered when service type is NodePort"
+ schema:
+ type: int
+ min: 9000
+ max: 65535
+ default: 36091
+ required: true
+
+ - variable: persistence
+ label: "Integrated Persistent Storage"
+ description: "Integrated Persistent Storage"
+ group: "Storage and Persistence"
+ schema:
+ type: dict
+ attrs:
+ - variable: data
+ label: "App Data Storage"
+ description: "Stores the Application Data."
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "Enable the storage"
+ schema:
+ type: boolean
+ default: true
+ - variable: type
+ label: "(Advanced) Type of Storage"
+ description: "Sets the persistence type"
+ schema:
+ type: string
+ default: "pvc"
+ enum:
+ - value: "pvc"
+ description: "pvc"
+ - value: "emptyDir"
+ description: "emptyDir"
+ - value: "hostPath"
+ description: "hostPath"
+ - variable: storageClass
+ label: "(Advanced) storageClass"
+ description: " Warning: Anything other than SCALE-ZFS will break rollback!"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "SCALE-ZFS"
+ - variable: setPermissions
+ label: "Automatic Permissions"
+ description: "Automatically set permissions on install"
+ schema:
+ show_if: [["type", "=", "hostPath"]]
+ type: boolean
+ default: true
+ - variable: readOnly
+ label: "readOnly"
+ schema:
+ type: boolean
+ default: false
+ - variable: hostPath
+ label: "hostPath"
+ description: "Path inside the container the storage is mounted"
+ schema:
+ show_if: [["type", "=", "hostPath"]]
+ type: hostpath
+ - variable: hostPathType
+ label: "hostPath Type"
+ schema:
+ show_if: [["type", "=", "hostPath"]]
+ type: string
+ default: ""
+ enum:
+ - value: ""
+ description: "Default"
+ - value: "DirectoryOrCreate"
+ description: "DirectoryOrCreate"
+ - value: "Directory"
+ description: "Directory"
+ - value: "FileOrCreate"
+ description: "FileOrCreate"
+ - value: "File"
+ description: "File"
+ - value: "Socket"
+ description: "Socket"
+ - value: "CharDevice"
+ description: "CharDevice"
+ - value: "BlockDevice"
+ description: "BlockDevice"
+ - variable: mountPath
+ label: "mountPath"
+ description: "Path inside the container the storage is mounted"
+ schema:
+ type: string
+ default: "/var/www/html"
+ hidden: true
+ - variable: medium
+ label: "EmptyDir Medium"
+ schema:
+ show_if: [["type", "=", "emptyDir"]]
+ type: string
+ default: ""
+ enum:
+ - value: ""
+ description: "Default"
+ - value: "Memory"
+ description: "Memory"
+ - variable: accessMode
+ label: "Access Mode (Advanced)"
+ description: "Allow or disallow multiple PVC's writhing to the same PV"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "ReadWriteOnce"
+ enum:
+ - value: "ReadWriteOnce"
+ description: "ReadWriteOnce"
+ - value: "ReadOnlyMany"
+ description: "ReadOnlyMany"
+ - value: "ReadWriteMany"
+ description: "ReadWriteMany"
+ - variable: size
+ label: "Size quotum of storage"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "100Gi"
+ - variable: redismaster
+ label: "Redis Storage"
+ description: "Stores the Application redis-master-database."
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "Enable the storage"
+ schema:
+ type: boolean
+ default: true
+ hidden: true
+ - variable: noMount
+ label: "Do not mount this storage inside the main pod"
+ schema:
+ type: boolean
+ default: true
+ hidden: true
+ - variable: forceName
+ label: "Override PVC Name (advanced)"
+ description: "Forces a certain name for the PVC"
+ schema:
+ type: string
+ default: "redismaster"
+ hidden: true
+ - variable: type
+ label: "(Advanced) Type of Storage"
+ description: "Sets the persistence type"
+ schema:
+ type: string
+ default: "pvc"
+ hidden: true
+ enum:
+ - value: "pvc"
+ description: "pvc"
+ - value: "emptyDir"
+ description: "emptyDir"
+ - value: "hostPath"
+ description: "hostPath"
+ - variable: storageClass
+ label: "(Advanced) storageClass"
+ description: " Warning: Anything other than SCALE-ZFS will break rollback!"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "SCALE-ZFS"
+ - variable: mountPath
+ label: "mountPath"
+ description: "Path inside the container the storage is mounted"
+ schema:
+ type: string
+ default: ""
+ hidden: true
+ - variable: medium
+ label: "EmptyDir Medium"
+ schema:
+ show_if: [["type", "=", "emptyDir"]]
+ type: string
+ default: ""
+ enum:
+ - value: ""
+ description: "Default"
+ - value: "Memory"
+ description: "Memory"
+ - variable: accessMode
+ label: "Access Mode (Advanced)"
+ description: "Allow or disallow multiple PVC's writhing to the same PV"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "ReadWriteOnce"
+ enum:
+ - value: "ReadWriteOnce"
+ description: "ReadWriteOnce"
+ - value: "ReadOnlyMany"
+ description: "ReadOnlyMany"
+ - value: "ReadWriteMany"
+ description: "ReadWriteMany"
+ - variable: size
+ label: "Size quotum of storage"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "100Gi"
+
+ - variable: persistenceList
+ label: "Additional app storage"
+ group: "Storage and Persistence"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: persistenceListEntry
+ label: "Custom Storage"
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "Enable the storage"
+ schema:
+ type: boolean
+ default: true
+ - variable: type
+ label: "(Advanced) Type of Storage"
+ description: "Sets the persistence type"
+ schema:
+ type: string
+ default: "hostPath"
+ enum:
+ - value: "pvc"
+ description: "pvc"
+ - value: "emptyDir"
+ description: "emptyDir"
+ - value: "hostPath"
+ description: "hostPath"
+ - variable: storageClass
+ label: "(Advanced) storageClass"
+ description: " Warning: Anything other than SCALE-ZFS will break rollback!"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "SCALE-ZFS"
+ - variable: setPermissions
+ label: "Automatic Permissions"
+ description: "Automatically set permissions on install"
+ schema:
+ show_if: [["type", "=", "hostPath"]]
+ type: boolean
+ default: true
+ - variable: readOnly
+ label: "readOnly"
+ schema:
+ type: boolean
+ default: false
+ - variable: hostPath
+ label: "hostPath"
+ description: "Path inside the container the storage is mounted"
+ schema:
+ show_if: [["type", "=", "hostPath"]]
+ type: hostpath
+ - variable: hostPathType
+ label: "hostPath Type"
+ schema:
+ show_if: [["type", "=", "hostPath"]]
+ type: string
+ default: ""
+ enum:
+ - value: ""
+ description: "Default"
+ - value: "DirectoryOrCreate"
+ description: "DirectoryOrCreate"
+ - value: "Directory"
+ description: "Directory"
+ - value: "FileOrCreate"
+ description: "FileOrCreate"
+ - value: "File"
+ description: "File"
+ - value: "Socket"
+ description: "Socket"
+ - value: "CharDevice"
+ description: "CharDevice"
+ - value: "BlockDevice"
+ description: "BlockDevice"
+ - variable: mountPath
+ label: "mountPath"
+ description: "Path inside the container the storage is mounted"
+ schema:
+ type: string
+ required: true
+ default: ""
+ - variable: medium
+ label: "EmptyDir Medium"
+ schema:
+ show_if: [["type", "=", "emptyDir"]]
+ type: string
+ default: ""
+ enum:
+ - value: ""
+ description: "Default"
+ - value: "Memory"
+ description: "Memory"
+ - variable: accessMode
+ label: "Access Mode (Advanced)"
+ description: "Allow or disallow multiple PVC's writhing to the same PVC"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "ReadWriteOnce"
+ enum:
+ - value: "ReadWriteOnce"
+ description: "ReadWriteOnce"
+ - value: "ReadOnlyMany"
+ description: "ReadOnlyMany"
+ - value: "ReadWriteMany"
+ description: "ReadWriteMany"
+ - variable: size
+ label: "Size quotum of storage"
+ schema:
+ show_if: [["type", "=", "pvc"]]
+ type: string
+ default: "100Gi"
+
+ - variable: ingress
+ label: ""
+ group: "Ingress"
+ schema:
+ type: dict
+ attrs:
+ - variable: main
+ label: "Main Ingress"
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "Enable Ingress"
+ schema:
+ type: boolean
+ default: false
+ show_subquestions_if: true
+ subquestions:
+ - variable: hosts
+ label: "Hosts"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: hostEntry
+ label: "Host"
+ schema:
+ type: dict
+ attrs:
+ - variable: host
+ label: "HostName"
+ schema:
+ type: string
+ default: ""
+ required: true
+ - variable: paths
+ label: "Paths"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: pathEntry
+ label: "Host"
+ schema:
+ type: dict
+ attrs:
+ - variable: path
+ label: "path"
+ schema:
+ type: string
+ required: true
+ default: "/"
+ - variable: pathType
+ label: "pathType"
+ schema:
+ type: string
+ required: true
+ default: "Prefix"
+ - variable: tls
+ label: "TLS-Settings"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: tlsEntry
+ label: "Host"
+ schema:
+ type: dict
+ attrs:
+ - variable: hosts
+ label: "Certificate Hosts"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: host
+ label: "Host"
+ schema:
+ type: string
+ default: ""
+ required: true
+ - variable: scaleCert
+ label: "Select TrueNAS SCALE Certificate"
+ schema:
+ type: int
+ $ref:
+ - "definitions/certificate"
+ - variable: entrypoint
+ label: "Traefik Entrypoint"
+ description: "Entrypoint used by Traefik when using Traefik as Ingress Provider"
+ schema:
+ type: string
+ default: "websecure"
+ required: true
+ - variable: middlewares
+ label: "Traefik Middlewares"
+ description: "Add previously created Traefik Middlewares to this Ingress"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ default: ""
+ required: true
+
+ - variable: ingressList
+ label: "Additional Ingress"
+ group: "Ingress"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: ingressListEntry
+ label: "Custom Ingress"
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "Enable Ingress"
+ schema:
+ type: boolean
+ default: true
+ hidden: true
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ default: ""
+ - variable: ingressClassName
+ label: "IngressClass Name"
+ schema:
+ type: string
+ default: ""
+ - variable: labelsList
+ label: "Labels"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: labelItem
+ label: "Label"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ - variable: value
+ label: "Value"
+ schema:
+ type: string
+ - variable: annotationsList
+ label: "Annotations"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: annotationItem
+ label: "Label"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ - variable: value
+ label: "Value"
+ schema:
+ type: string
+ - variable: hosts
+ label: "Hosts"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: hostEntry
+ label: "Host"
+ schema:
+ type: dict
+ attrs:
+ - variable: host
+ label: "HostName"
+ schema:
+ type: string
+ default: ""
+ required: true
+ - variable: paths
+ label: "Paths"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: pathEntry
+ label: "Host"
+ schema:
+ type: dict
+ attrs:
+ - variable: path
+ label: "path"
+ schema:
+ type: string
+ required: true
+ default: "/"
+ - variable: pathType
+ label: "pathType"
+ schema:
+ type: string
+ required: true
+ default: "Prefix"
+ - variable: service
+ label: "Linked Service"
+ schema:
+ type: dict
+ attrs:
+ - variable: name
+ label: "Service Name"
+ schema:
+ type: string
+ default: ""
+ - variable: port
+ label: "Service Port"
+ schema:
+ type: int
+ - variable: tls
+ label: "TLS-Settings"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: tlsEntry
+ label: "Host"
+ schema:
+ type: dict
+ attrs:
+ - variable: hosts
+ label: "Certificate Hosts"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: host
+ label: "Host"
+ schema:
+ type: string
+ default: ""
+ required: true
+ - variable: scaleCert
+ label: "Select TrueNAS SCALE Certificate"
+ schema:
+ type: int
+ $ref:
+ - "definitions/certificate"
+ - variable: entrypoint
+ label: "Traefik Entrypoint"
+ description: "Entrypoint used by Traefik when using Traefik as Ingress Provider"
+ schema:
+ type: string
+ default: "websecure"
+ required: true
+ - variable: middlewares
+ label: "Traefik Middlewares"
+ description: "Add previously created Traefik Middlewares to this Ingress"
+ schema:
+ type: list
+ default: []
+ items:
+ - variable: name
+ label: "Name"
+ schema:
+ type: string
+ default: ""
+ required: true
+
+ - variable: podSecurityContext
+ group: "Security and Permissions"
+ label: "Pod Security Context"
+ schema:
+ type: dict
+ attrs:
+ - variable: fsGroup
+ label: "fsGroup"
+ description: "The group that should own ALL storage."
+ schema:
+ type: int
+ default: 33
+ - variable: fsGroupChangePolicy
+ label: "When should we take ownership?"
+ schema:
+ type: string
+ default: "OnRootMismatch"
+ enum:
+ - value: "OnRootMismatch"
+ description: "OnRootMismatch"
+ - value: "Always"
+ description: "Always"
+ - variable: resources
+ group: "Resources and Devices"
+ label: ""
+ schema:
+ type: dict
+ attrs:
+ - variable: limits
+ label: "Advanced Limit Resource Consumption"
+ schema:
+ type: dict
+ attrs:
+ - variable: cpu
+ label: "CPU"
+ schema:
+ type: string
+ default: "2000m"
+ - variable: memory
+ label: "Memory RAM"
+ schema:
+ type: string
+ default: "2Gi"
+ - variable: requests
+ label: "Advanced Request minimum resources required"
+ schema:
+ type: dict
+ attrs:
+ - variable: cpu
+ label: "CPU"
+ schema:
+ type: string
+ default: "10m"
+ - variable: memory
+ label: "Memory RAM"
+ schema:
+ type: string
+ default: "50Mi"
+
+
+
+ - variable: autoscaling
+ group: "Resources and Devices"
+ label: "Horizontal Pod Autoscaler"
+ schema:
+ type: dict
+ attrs:
+ - variable: enabled
+ label: "enabled"
+ schema:
+ type: boolean
+ default: false
+ show_subquestions_if: true
+ subquestions:
+ - variable: target
+ label: "Target"
+ description: "deployment name, defaults to main deployment"
+ schema:
+ type: string
+ default: ""
+ - variable: minReplicas
+ label: "Minimum Replicas"
+ schema:
+ type: int
+ default: 1
+ - variable: maxReplicas
+ label: "Maximum Replicas"
+ schema:
+ type: int
+ default: 5
+ - variable: targetCPUUtilizationPercentage
+ label: "Target CPU Utilization Percentage"
+ schema:
+ type: int
+ default: 80
+ - variable: targetMemoryUtilizationPercentage
+ label: "Target Memory Utilization Percentage"
+ schema:
+ type: int
+ default: 80
diff --git a/stable/nextcloud/3.7.15/templates/_configmap.tpl b/stable/nextcloud/3.7.15/templates/_configmap.tpl
new file mode 100644
index 00000000000..3bb5a51325b
--- /dev/null
+++ b/stable/nextcloud/3.7.15/templates/_configmap.tpl
@@ -0,0 +1,35 @@
+{{/* Define the configmap */}}
+{{- define "nextcloud.configmap" -}}
+
+{{- $hosts := "" }}
+{{- if .Values.ingress.main.enabled }}
+{{- range .Values.ingress }}
+{{- range $index, $host := .hosts }}
+ {{- if $index }}
+ {{ $hosts = ( printf "%v %v" $hosts $host.host ) }}
+ {{- else }}
+ {{ $hosts = ( printf "%s" $host.host ) }}
+ {{- end }}
+{{- end }}
+{{- end }}
+{{- end }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+ name: nextcloudconfig
+data:
+ NEXTCLOUD_TRUSTED_DOMAINS: {{ ( printf "%v %v %v %v %v" "test.fakedomain.dns" ( .Values.env.NODE_IP | default "localhost" ) ( printf "%v-%v" .Release.Name "nextcloud" ) ( printf "%v-%v" .Release.Name "nextcloud-hpb" ) $hosts ) | quote }}
+ {{- if .Values.ingress.main.enabled }}
+ APACHE_DISABLE_REWRITE_IP: "1"
+ {{- end }}
+
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+ name: hpbconfig
+data:
+ NEXTCLOUD_URL: {{ ( printf "%v-%v" .Release.Name "nextcloud" ) | quote }}
+
+{{- end -}}
diff --git a/stable/nextcloud/3.7.15/templates/_cronjob.tpl b/stable/nextcloud/3.7.15/templates/_cronjob.tpl
new file mode 100644
index 00000000000..96a0b6145c6
--- /dev/null
+++ b/stable/nextcloud/3.7.15/templates/_cronjob.tpl
@@ -0,0 +1,51 @@
+{{/* Define the cronjob */}}
+{{- define "nextcloud.cronjob" -}}
+{{- $jobName := include "common.names.fullname" . }}
+
+---
+apiVersion: batch/v1beta1
+kind: CronJob
+metadata:
+ name: {{ printf "%s-cronjob" $jobName }}
+ labels:
+ {{- include "common.labels" . | nindent 4 }}
+spec:
+ schedule: "{{ .Values.cronjob.schedule }}"
+ concurrencyPolicy: Forbid
+ {{- with .Values.cronjob.failedJobsHistoryLimit }}
+ failedJobsHistoryLimit: {{ . }}
+ {{- end }}
+ {{- with .Values.cronjob.successfulJobsHistoryLimit }}
+ successfulJobsHistoryLimit: {{ . }}
+ {{- end }}
+ jobTemplate:
+ metadata:
+ spec:
+ template:
+ metadata:
+ spec:
+ restartPolicy: Never
+ {{- with (include "common.controller.volumes" . | trim) }}
+ volumes:
+ {{- nindent 12 . }}
+ {{- end }}
+ containers:
+ - name: {{ .Chart.Name }}
+ image: "{{ .Values.image.repository }}:{{ default .Values.image.tag }}"
+ imagePullPolicy: {{ default .Values.image.pullPolicy }}
+ command: [ "php" ]
+ args:
+ - "-f"
+ - "/var/www/html/cron.php"
+ # Will mount configuration files as www-data (id: 33) by default for nextcloud
+ {{- with (include "common.controller.volumeMounts" . | trim) }}
+ volumeMounts:
+ {{ nindent 16 . }}
+ {{- end }}
+ securityContext:
+ runAsUser: 33
+ runAsGroup: 33
+ resources:
+{{ toYaml .Values.resources | indent 16 }}
+
+{{- end -}}
diff --git a/stable/nextcloud/3.7.15/templates/_secrets.tpl b/stable/nextcloud/3.7.15/templates/_secrets.tpl
new file mode 100644
index 00000000000..d9ae0df858c
--- /dev/null
+++ b/stable/nextcloud/3.7.15/templates/_secrets.tpl
@@ -0,0 +1,50 @@
+{{/* Define the secrets */}}
+{{- define "nextcloud.secrets" -}}
+
+---
+
+apiVersion: v1
+kind: Secret
+metadata:
+ labels:
+ {{- include "common.labels" . | nindent 4 }}
+ name: dbcreds
+{{- $previous := lookup "v1" "Secret" .Release.Namespace "dbcreds" }}
+{{- $dbPass := "" }}
+data:
+{{- if $previous }}
+ {{- $dbPass = ( index $previous.data "postgresql-password" ) | b64dec }}
+ postgresql-password: {{ ( index $previous.data "postgresql-password" ) }}
+ postgresql-postgres-password: {{ ( index $previous.data "postgresql-postgres-password" ) }}
+{{- else }}
+ {{- $dbPass = randAlphaNum 50 }}
+ postgresql-password: {{ $dbPass | b64enc | quote }}
+ postgresql-postgres-password: {{ randAlphaNum 50 | b64enc | quote }}
+{{- end }}
+ url: {{ ( printf "%v%v:%v@%v-%v:%v/%v" "postgresql://" .Values.postgresql.postgresqlUsername $dbPass .Release.Name "postgresql" "5432" .Values.postgresql.postgresqlDatabase ) | b64enc | quote }}
+ host: {{ ( printf "%v-%v:5432" .Release.Name "postgresql" ) | b64enc | quote }}
+ plainhost: {{ ( printf "%v-%v" .Release.Name "postgresql" ) | b64enc | quote }}
+type: Opaque
+
+---
+
+apiVersion: v1
+kind: Secret
+metadata:
+ labels:
+ {{- include "common.labels" . | nindent 4 }}
+ name: rediscreds
+{{- $redisprevious := lookup "v1" "Secret" .Release.Namespace "rediscreds" }}
+{{- $redisPass := "" }}
+data:
+{{- if $redisprevious }}
+ {{- $redisPass = ( index $redisprevious.data "redis-password" ) | b64dec }}
+ redis-password: {{ ( index $redisprevious.data "redis-password" ) }}
+{{- else }}
+ {{- $redisPass = randAlphaNum 50 }}
+ redis-password: {{ $redisPass | b64enc | quote }}
+{{- end }}
+ masterhost: {{ ( printf "%v-%v" .Release.Name "redis-master" ) | b64enc | quote }}
+ slavehost: {{ ( printf "%v-%v" .Release.Name "redis-master" ) | b64enc | quote }}
+type: Opaque
+{{- end -}}
diff --git a/stable/nextcloud/3.7.15/templates/common.yaml b/stable/nextcloud/3.7.15/templates/common.yaml
new file mode 100644
index 00000000000..53b4b7b25be
--- /dev/null
+++ b/stable/nextcloud/3.7.15/templates/common.yaml
@@ -0,0 +1,17 @@
+{{/* Make sure all variables are set properly */}}
+{{- include "common.values.setup" . }}
+
+{{/* Render configmap for nextcloud */}}
+{{- include "nextcloud.configmap" . }}
+
+{{/* Render secrets for nextcloud */}}
+{{- include "nextcloud.secrets" . }}
+
+{{- $newMiddlewares := append .Values.ingress.main.fixedMiddlewares "tc-nextcloud-chain" }}
+{{- $_ := set .Values.ingress.main "fixedMiddlewares" $newMiddlewares -}}
+
+{{/* Render cronjob for nextcloud */}}
+{{- include "nextcloud.cronjob" . }}
+
+{{/* Render the templates */}}
+{{ include "common.all" . }}
diff --git a/stable/nextcloud/3.7.15/test_values.yaml b/stable/nextcloud/3.7.15/test_values.yaml
new file mode 100644
index 00000000000..5fc6cd6e647
--- /dev/null
+++ b/stable/nextcloud/3.7.15/test_values.yaml
@@ -0,0 +1,211 @@
+# Default values for Bitwarden.
+
+image:
+ repository: nextcloud
+ pullPolicy: IfNotPresent
+ tag: 22.1.1
+
+strategy:
+ type: Recreate
+
+service:
+ main:
+ ports:
+ main:
+ port: 80
+ hpb:
+ enabled: true
+ ports:
+ hpb:
+ enabled: true
+ port: 7867
+
+env:
+ NEXTCLOUD_ADMIN_USER: "admin"
+ NEXTCLOUD_ADMIN_PASSWORD: "adminpass"
+ TRUSTED_PROXIES: "172.16.0.0/16"
+
+envTpl:
+ POSTGRES_DB: "{{ .Values.postgresql.postgresqlDatabase }}"
+ POSTGRES_USER: "{{ .Values.postgresql.postgresqlUsername }}"
+
+envFrom:
+ - configMapRef:
+ name: nextcloudconfig
+
+envValueFrom:
+ POSTGRES_PASSWORD:
+ secretKeyRef:
+ name: dbcreds
+ key: postgresql-password
+ POSTGRES_HOST:
+ secretKeyRef:
+ name: dbcreds
+ key: host
+ REDIS_HOST:
+ secretKeyRef:
+ name: rediscreds
+ key: masterhost
+ REDIS_HOST_PASSWORD:
+ secretKeyRef:
+ name: rediscreds
+ key: redis-password
+
+persistence:
+ data:
+ enabled: true
+ mountPath: "/var/www/html"
+ type: pvc
+ accessMode: ReadWriteOnce
+ size: "100Gi"
+
+ redismaster:
+ noMount: true
+ forceName: "redismaster"
+ enabled: true
+ type: pvc
+ accessMode: ReadWriteOnce
+ size: "100Gi"
+
+initContainers:
+ - name: init-postgresdb
+ image: postgres:13.1
+ command:
+ - "sh"
+ - "-c"
+ - "until pg_isready -U nextcloud -h ${pghost} ; do sleep 2 ; done"
+ imagePullPolicy: IfNotPresent
+ env:
+ - name: pghost
+ valueFrom:
+ secretKeyRef:
+ name: dbcreds
+ key: plainhost
+ - name: injectconfig
+ image: nextcloud:22.1.1
+ envFrom:
+ - configMapRef:
+ name: nextcloudconfig
+ command:
+ - "su"
+ - "-p"
+ - "www-data"
+ - "-s"
+ - "/bin/sh"
+ - "-c"
+ args:
+ - if [ -f /var/www/html/occ ]; then
+ if [ -n "${NEXTCLOUD_TRUSTED_DOMAINS+x}" ]; then
+ echo "setting trusted domains…";
+ NC_TRUSTED_DOMAIN_IDX=1;
+ for DOMAIN in $NEXTCLOUD_TRUSTED_DOMAINS ; do
+ DOMAIN=$(echo "$DOMAIN" | sed -e 's/^[[:space:]]*//' -e 's/[[:space:]]*$//');
+ php /var/www/html/occ config:system:set trusted_domains $NC_TRUSTED_DOMAIN_IDX --value=$DOMAIN;
+ NC_TRUSTED_DOMAIN_IDX=$(($NC_TRUSTED_DOMAIN_IDX+1));
+ done;
+ fi;
+ fi;
+ volumeMounts:
+ - mountPath: /var/www/html
+ name: data
+
+
+podSecurityContext:
+ fsGroup: 33
+
+# -- Probe configuration
+# -- [[ref]](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)
+# @default -- See below
+probes:
+ # -- Liveness probe configuration
+ # @default -- See below
+ liveness:
+ custom: true
+ # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+ # @default -- "/"
+ spec:
+ httpGet:
+ path: /status.php
+ port: 80
+ httpHeaders:
+ - name: Host
+ value: "test.fakedomain.dns"
+ initialDelaySeconds: 10
+ periodSeconds: 10
+ timeoutSeconds: 2
+ failureThreshold: 5
+
+ # -- Redainess probe configuration
+ # @default -- See below
+ readiness:
+ custom: true
+ # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+ # @default -- "/"
+ spec:
+ httpGet:
+ path: /status.php
+ port: 80
+ httpHeaders:
+ - name: Host
+ value: "test.fakedomain.dns"
+ initialDelaySeconds: 10
+ periodSeconds: 10
+ timeoutSeconds: 2
+ failureThreshold: 5
+
+ # -- Startup probe configuration
+ # @default -- See below
+ startup:
+ custom: true
+ # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+ # @default -- "/"
+ spec:
+ httpGet:
+ path: /status.php
+ port: 80
+ httpHeaders:
+ - name: Host
+ value: "test.fakedomain.dns"
+ initialDelaySeconds: 10
+ periodSeconds: 10
+ timeoutSeconds: 2
+ failureThreshold: 5
+
+
+## Cronjob to execute Nextcloud background tasks
+## ref: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/background_jobs_configuration.html#webcron
+##
+cronjob:
+ # Every 5 minutes
+ # Note: Setting this to any any other value than 5 minutes might
+ # cause issues with how nextcloud background jobs are executed
+ schedule: "*/5 * * * *"
+ annotations: {}
+ failedJobsHistoryLimit: 5
+ successfulJobsHistoryLimit: 2
+
+# Enabled postgres
+postgresql:
+ enabled: true
+ postgresqlUsername: nextcloud
+ postgresqlDatabase: nextcloud
+ existingSecret: dbcreds
+
+# Enabled redis
+# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/redis
+redis:
+ volumePermissions:
+ enabled: true
+ architecture: standalone
+ enabled: true
+ auth:
+ existingSecret: rediscreds
+ existingSecretPasswordKey: redis-password
+ master:
+ persistence:
+ enabled: false
+ existingClaim: redismaster
+ replica:
+ replicaCount: 0
+ persistence:
+ enabled: false
diff --git a/stable/nextcloud/3.7.15/values.yaml b/stable/nextcloud/3.7.15/values.yaml
new file mode 100644
index 00000000000..e69de29bb2d