From 55d9a9e9f9f182765b82a5fabf6fc736614fd171 Mon Sep 17 00:00:00 2001
From: glenn <glenn@nixos.org>
Date: Sun, 5 May 2024 22:03:04 +0200
Subject: [PATCH 1/8] better backup name

---
 nextcloud.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nextcloud.nix b/nextcloud.nix
index 5a34596..1a09e65 100644
--- a/nextcloud.nix
+++ b/nextcloud.nix
@@ -21,7 +21,7 @@ in
   systemd.services."nextcloud-backup" = {
     script = with pkgs; ''
       set -eu
-      ${postgresql}/bin/pg_dump "nextcloud" | ${openssh}/bin/ssh -i /etc/nixos/.secrets/tulpan Glenn@nas "cat - > back/nextcloud/dump.sql" 
+      ${postgresql}/bin/pg_dump "nextcloud" | ${openssh}/bin/ssh -i /etc/nixos/.secrets/tulpan Glenn@nas "cat - > back/nextcloud/latest.sql" 
     '';
     serviceConfig = {
       Type = "oneshot";

From 71b0b70bee3f34973c5183b8b7c17d7184cb5c35 Mon Sep 17 00:00:00 2001
From: admin <admin@sondell.org>
Date: Sun, 23 Jun 2024 08:05:34 +0200
Subject: [PATCH 2/8] moved data

---
 nextcloud.nix | 16 +++++++++++++---
 1 file changed, 13 insertions(+), 3 deletions(-)

diff --git a/nextcloud.nix b/nextcloud.nix
index 1a09e65..925b336 100644
--- a/nextcloud.nix
+++ b/nextcloud.nix
@@ -8,17 +8,17 @@ in
   environment.systemPackages = [
     nextcloud
   ];
-  systemd.timers."nextcloud-backup" = {
+  systemd.timers."nextcloud-db-backup" = {
     wantedBy = [ "timers.target" ];
       timerConfig = {
         # OnBootSec = "5m";
         # OnUnitActiveSec = "5m";
         OnCalendar="*-*-* 2:00:00";
-        Unit = "nextcloud-backup.service";
+        Unit = "nextcloud-db-backup.service";
       };
   };
 
-  systemd.services."nextcloud-backup" = {
+  systemd.services."nextcloud-db-backup" = {
     script = with pkgs; ''
       set -eu
       ${postgresql}/bin/pg_dump "nextcloud" | ${openssh}/bin/ssh -i /etc/nixos/.secrets/tulpan Glenn@nas "cat - > back/nextcloud/latest.sql" 
@@ -28,8 +28,16 @@ in
       User = "postgres";
     };
   };
+
   
   services = {
+    # restic = {
+    #   "nextcloud-repo" = {
+    #     passwordFile = "/etc/nixos/.secrets/restic_pw";
+    #   };
+    # };
+
+  
     nginx.virtualHosts = {
       ${domain} = {
         forceSSL = true;
@@ -48,6 +56,8 @@ in
       # Let NixOS install and configure the database automatically.
       database.createLocally = true;
       # Increase the maximum file upload size.
+      datadir="/pool/var/lib/nextcloud";
+      
       maxUploadSize = "16G";
       https = true;
       autoUpdateApps.enable = true;

From 52365bc4f2e088c2c5d0414798f58b06073c4ee8 Mon Sep 17 00:00:00 2001
From: glenn <glenn@nixos.org>
Date: Sun, 23 Jun 2024 12:28:28 +0200
Subject: [PATCH 3/8] init sondell home

---
 flake.nix        | 38 +++++++++++++++++++++++++++++---------
 home/sondell.nix | 25 +++++++++++++++++++++++++
 2 files changed, 54 insertions(+), 9 deletions(-)
 create mode 100644 home/sondell.nix

diff --git a/flake.nix b/flake.nix
index aa86fed..3d37b82 100644
--- a/flake.nix
+++ b/flake.nix
@@ -1,17 +1,37 @@
 {
-  inputs.nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
-  inputs.home.url = "git+https://git.sondell.org/glennwso/home.git";
-  inputs.home.inputs.nixpkgs.follows = "nixpkgs";
-  inputs.nixos-mailserver = {
-    url = "gitlab:simple-nixos-mailserver/nixos-mailserver";
-    inputs.nixpkgs.follows = "nixpkgs";
-  };
+  inputs = {
+    nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
+    home = {
+      url = "git+https://git.sondell.org/glennwso/home.git";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+    home-manager = {
+      url = "github:nix-community/home-manager";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+    nixos-mailserver = {
+      url = "gitlab:simple-nixos-mailserver/nixos-mailserver";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+};
 
-  outputs = { self, nixpkgs, home, nixos-mailserver}@attrs:
+  outputs = { self, nixpkgs, home, nixos-mailserver, home-manager}@attrs:
   let 
     system = "x86_64-linux";
     homepage = home.packages.${system}.default;
     mailserver = nixos-mailserver.nixosModules.default;
+
+    homeSettings = {
+          home-manager = {
+            useGlobalPkgs = true;
+            useUserPackages = true;
+            users.sondell = import ./home/sondell.nix;
+          };
+    };
+    homeModules = [
+      home-manager.nixosModules.home-manager
+      homeSettings
+    ];
   in
    {
     # replace 'joes-desktop' with your hostname here.
@@ -33,7 +53,7 @@
         ./vaultwarden.nix
         (import ./mail.nix {inherit mailserver;})
         (import ./homepage.nix {inherit homepage;})
-      ];
+      ] ++ homeModules;
 
     };
   };
diff --git a/home/sondell.nix b/home/sondell.nix
new file mode 100644
index 0000000..584375f
--- /dev/null
+++ b/home/sondell.nix
@@ -0,0 +1,25 @@
+{
+  # pkgs,
+  # config,
+  # lib,
+  ...
+}:
+{	
+  # Home Manager needs a bit of information about you and the
+  # paths it should manage.
+  home.username = "sondell";
+  home.homeDirectory = "/home/sondell";
+
+  # This value determines the Home Manager release that your
+  # configuration is compatible with. This helps avoid breakage
+  # when a new Home Manager release introduces backwards
+  # incompatible changes.
+  #
+  # You can update Home Manager without changing this value. See
+  # the Home Manager release notes for a list of state version
+  # changes in each release.
+  home.stateVersion = "24.05";
+
+  # Let Home Manager install and manage itself.
+  programs.home-manager.enable = true;
+}

From 1cc85f8237e41f76fdfef9c77aab0b0c963667d2 Mon Sep 17 00:00:00 2001
From: glenn <glenn@nixos.org>
Date: Sun, 23 Jun 2024 15:39:08 +0200
Subject: [PATCH 4/8] flake lock update

---
 configuration.nix | 20 +++++++-----
 flake.lock        | 83 ++++++++++++++++++++++++-----------------------
 flake.nix         | 12 +++----
 nextcloud.nix     | 15 ++++++---
 4 files changed, 71 insertions(+), 59 deletions(-)

diff --git a/configuration.nix b/configuration.nix
index eae3e8d..8a265ab 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -105,6 +105,7 @@
 
   # Define a user account. Don't forget to set a password with ‘passwd’.
   users.users.sondell = {
+    home = "/home/sondell";
     isNormalUser = true;
     description = "sondell";
     extraGroups = ["networkmanager" "wheel"];
@@ -127,6 +128,7 @@
   environment.systemPackages = with pkgs; [
     #  vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default.
     #  wget
+    restic
     htop
     cloudflared
     filebrowser
@@ -143,17 +145,19 @@
   programs = {
     ssh.startAgent = true;
     fish = {
-      enable = true;
+      enable = false;
       shellInit = "starship init fish | source";
     };
-    starship.enable = true;
-    starship.settings = {
-      shell = {
-        disabled = false;
-        fish_indicator = "";
-        bash_indicator = "BASH";
+  starship = {
+      enable = false;
+      settings = {
+        shell = {
+          disabled = false;
+          # fish_indicator = "";
+          bash_indicator = "BASH";
+        };
       };
-    };
+  };
   };
 
   # Some programs need SUID wrappers, can be configured further or are
diff --git a/flake.lock b/flake.lock
index f632184..5f629a9 100644
--- a/flake.lock
+++ b/flake.lock
@@ -71,6 +71,26 @@
         "url": "https://git.sondell.org/glennwso/home.git"
       }
     },
+    "home-manager": {
+      "inputs": {
+        "nixpkgs": [
+          "nixpkgs"
+        ]
+      },
+      "locked": {
+        "lastModified": 1716847642,
+        "narHash": "sha256-rjEswRV0o23eBBils8lJXyIGha+l/VjV73IPg+ztxgk=",
+        "owner": "nix-community",
+        "repo": "home-manager",
+        "rev": "10c7c219b7dae5795fb67f465a0d86cbe29f25fa",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-community",
+        "repo": "home-manager",
+        "type": "github"
+      }
+    },
     "nixos-mailserver": {
       "inputs": {
         "blobs": "blobs",
@@ -78,14 +98,14 @@
         "nixpkgs": [
           "nixpkgs"
         ],
-        "utils": "utils"
+        "nixpkgs-24_05": "nixpkgs-24_05"
       },
       "locked": {
-        "lastModified": 1710449465,
-        "narHash": "sha256-2orO8nfplp6uQJBFqKkj1iyNMC6TysmwbWwbb4osTag=",
+        "lastModified": 1718697807,
+        "narHash": "sha256-Enla61WFisytTYbWygPynEbu8vozjeGc6Obkj2GRj7o=",
         "owner": "simple-nixos-mailserver",
         "repo": "nixos-mailserver",
-        "rev": "79c8cfcd5873a85559da6201b116fb38b490d030",
+        "rev": "290a995de5c3d3f08468fa548f0d55ab2efc7b6b",
         "type": "gitlab"
       },
       "original": {
@@ -96,11 +116,11 @@
     },
     "nixpkgs": {
       "locked": {
-        "lastModified": 1711703276,
-        "narHash": "sha256-iMUFArF0WCatKK6RzfUJknjem0H9m4KgorO/p3Dopkk=",
+        "lastModified": 1716509168,
+        "narHash": "sha256-4zSIhSRRIoEBwjbPm3YiGtbd8HDWzFxJjw5DYSDy1n8=",
         "owner": "NixOS",
         "repo": "nixpkgs",
-        "rev": "d8fe5e6c92d0d190646fb9f1056741a229980089",
+        "rev": "bfb7a882678e518398ce9a31a881538679f6f092",
         "type": "github"
       },
       "original": {
@@ -110,9 +130,25 @@
         "type": "github"
       }
     },
+    "nixpkgs-24_05": {
+      "locked": {
+        "lastModified": 1717144377,
+        "narHash": "sha256-F/TKWETwB5RaR8owkPPi+SPJh83AQsm6KrQAlJ8v/uA=",
+        "owner": "NixOS",
+        "repo": "nixpkgs",
+        "rev": "805a384895c696f802a9bf5bf4720f37385df547",
+        "type": "github"
+      },
+      "original": {
+        "id": "nixpkgs",
+        "ref": "nixos-24.05",
+        "type": "indirect"
+      }
+    },
     "root": {
       "inputs": {
         "home": "home",
+        "home-manager": "home-manager",
         "nixos-mailserver": "nixos-mailserver",
         "nixpkgs": "nixpkgs"
       }
@@ -131,39 +167,6 @@
         "repo": "default",
         "type": "github"
       }
-    },
-    "systems_2": {
-      "locked": {
-        "lastModified": 1681028828,
-        "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=",
-        "owner": "nix-systems",
-        "repo": "default",
-        "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e",
-        "type": "github"
-      },
-      "original": {
-        "owner": "nix-systems",
-        "repo": "default",
-        "type": "github"
-      }
-    },
-    "utils": {
-      "inputs": {
-        "systems": "systems_2"
-      },
-      "locked": {
-        "lastModified": 1709126324,
-        "narHash": "sha256-q6EQdSeUZOG26WelxqkmR7kArjgWCdw5sfJVHPH/7j8=",
-        "owner": "numtide",
-        "repo": "flake-utils",
-        "rev": "d465f4819400de7c8d874d50b982301f28a84605",
-        "type": "github"
-      },
-      "original": {
-        "owner": "numtide",
-        "repo": "flake-utils",
-        "type": "github"
-      }
     }
   },
   "root": "root",
diff --git a/flake.nix b/flake.nix
index 3d37b82..afb2517 100644
--- a/flake.nix
+++ b/flake.nix
@@ -22,11 +22,11 @@
     mailserver = nixos-mailserver.nixosModules.default;
 
     homeSettings = {
-          home-manager = {
-            useGlobalPkgs = true;
-            useUserPackages = true;
-            users.sondell = import ./home/sondell.nix;
-          };
+      home-manager = {
+        useGlobalPkgs = true;
+        useUserPackages = true;
+        users.sondell = import ./home/sondell.nix;
+      };
     };
     homeModules = [
       home-manager.nixosModules.home-manager
@@ -46,7 +46,7 @@
         ./forgejo.nix 
         ./nextcloud.nix 
         ./jellyfin.nix 
-        ./filebrowser.nix
+        # ./filebrowser.nix
         ./tail.nix
         ./matrix.nix
         ./coturn.nix  
diff --git a/nextcloud.nix b/nextcloud.nix
index 925b336..64ffef8 100644
--- a/nextcloud.nix
+++ b/nextcloud.nix
@@ -31,11 +31,16 @@ in
 
   
   services = {
-    # restic = {
-    #   "nextcloud-repo" = {
-    #     passwordFile = "/etc/nixos/.secrets/restic_pw";
-    #   };
-    # };
+    restic.backups = {
+      "diskstation423" = {
+        passwordFile = "/etc/nixos/.secrets/restic_pw";
+        repository = "sftp:Glenn@nas:/home/back/nextcloud/restic-repo";
+        paths = [
+          "/pool/var/lib/nextcloud"
+        ];
+        timerConfig.onCalendar = "02:05";
+      };
+    };
 
   
     nginx.virtualHosts = {

From 66af534edca90f64fb98c46f828f2a30868e7528 Mon Sep 17 00:00:00 2001
From: admin <admin@sondell.org>
Date: Sun, 23 Jun 2024 15:55:00 +0200
Subject: [PATCH 5/8] filebrowser

---
 flake.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/flake.nix b/flake.nix
index afb2517..f7c8353 100644
--- a/flake.nix
+++ b/flake.nix
@@ -46,7 +46,7 @@
         ./forgejo.nix 
         ./nextcloud.nix 
         ./jellyfin.nix 
-        # ./filebrowser.nix
+        ./filebrowser.nix
         ./tail.nix
         ./matrix.nix
         ./coturn.nix  

From e7c4000fbfce86838376a3a41235746065e3c6fd Mon Sep 17 00:00:00 2001
From: glenn <glenn@nixos.org>
Date: Mon, 24 Jun 2024 08:12:35 +0200
Subject: [PATCH 6/8] working restic jobb

---
 configuration.nix | 4 +++-
 home/sondell.nix  | 5 +++++
 nextcloud.nix     | 1 +
 3 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/configuration.nix b/configuration.nix
index 8a265ab..df371b9 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -108,12 +108,14 @@
     home = "/home/sondell";
     isNormalUser = true;
     description = "sondell";
-    extraGroups = ["networkmanager" "wheel"];
+    extraGroups = ["networkmanager" "wheel" "backup"];
     packages = with pkgs; [
       firefox
       #  thunderbird
     ];
   };
+  users.groups."backup".gid = 1337;
+
 
   users.users.root = {
     isNormalUser = false;
diff --git a/home/sondell.nix b/home/sondell.nix
index 584375f..e35b39d 100644
--- a/home/sondell.nix
+++ b/home/sondell.nix
@@ -9,6 +9,11 @@
   # paths it should manage.
   home.username = "sondell";
   home.homeDirectory = "/home/sondell";
+  programs.ssh.addKeysToAgent = "yes";
+  programs.ssh.enable = true;
+  programs.ssh.matchBlocks."*".identityFile = [
+    "/home/sondell/.ssh/tulpan"
+  ];
 
   # This value determines the Home Manager release that your
   # configuration is compatible with. This helps avoid breakage
diff --git a/nextcloud.nix b/nextcloud.nix
index 64ffef8..c9ec935 100644
--- a/nextcloud.nix
+++ b/nextcloud.nix
@@ -38,6 +38,7 @@ in
         paths = [
           "/pool/var/lib/nextcloud"
         ];
+        user = "sondell";
         timerConfig.onCalendar = "02:05";
       };
     };

From 4de4db324ec414506719ff047607ccd9c85a990b Mon Sep 17 00:00:00 2001
From: admin <admin@sondell.org>
Date: Mon, 24 Jun 2024 13:08:54 +0200
Subject: [PATCH 7/8] keep multiple dates of sql dumps

---
 nextcloud.nix | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/nextcloud.nix b/nextcloud.nix
index c9ec935..176d325 100644
--- a/nextcloud.nix
+++ b/nextcloud.nix
@@ -21,7 +21,8 @@ in
   systemd.services."nextcloud-db-backup" = {
     script = with pkgs; ''
       set -eu
-      ${postgresql}/bin/pg_dump "nextcloud" | ${openssh}/bin/ssh -i /etc/nixos/.secrets/tulpan Glenn@nas "cat - > back/nextcloud/latest.sql" 
+      date=$(date --iso-8601)
+      ${postgresql}/bin/pg_dump "nextcloud" | ${openssh}/bin/ssh -i /etc/nixos/.secrets/tulpan Glenn@nas "cat - > back/nextcloud/sqldump/$date.sql" 
     '';
     serviceConfig = {
       Type = "oneshot";

From 61784db467267c261cbffb468dc776e81f504996 Mon Sep 17 00:00:00 2001
From: admin <admin@sondell.org>
Date: Mon, 24 Jun 2024 13:09:53 +0200
Subject: [PATCH 8/8] prune_cfg

---
 nextcloud.nix | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/nextcloud.nix b/nextcloud.nix
index 176d325..4cbf834 100644
--- a/nextcloud.nix
+++ b/nextcloud.nix
@@ -33,14 +33,20 @@ in
   
   services = {
     restic.backups = {
-      "diskstation423" = {
+      "nextcloud" = {
         passwordFile = "/etc/nixos/.secrets/restic_pw";
         repository = "sftp:Glenn@nas:/home/back/nextcloud/restic-repo";
         paths = [
           "/pool/var/lib/nextcloud"
         ];
         user = "sondell";
-        timerConfig.onCalendar = "02:05";
+        timerConfig.OnCalendar = "02:05";
+        pruneOpts = [
+          "--keep-daily 10"
+          "--keep-weekly 5"
+          "--keep-monthly 12"
+          "--keep-yearly 75"
+        ];
       };
     };