From 4ba0fa0dd5ac3d0eab7110499b9e8dd836a52ac5 Mon Sep 17 00:00:00 2001
From: Danilo Reyes <danilo.reyes.251@proton.me>
Date: Thu, 5 Feb 2026 06:04:42 -0600
Subject: [PATCH] nextcloud nginx logic needs to exists in two place

---
 modules/servers/nextcloud.nix | 35 +++++++++++++++++++----------------
 1 file changed, 19 insertions(+), 16 deletions(-)

diff --git a/modules/servers/nextcloud.nix b/modules/servers/nextcloud.nix
index 097c6fb..9987896 100644
--- a/modules/servers/nextcloud.nix
+++ b/modules/servers/nextcloud.nix
@@ -163,6 +163,21 @@ in
             all.bz2
           ];
         };
+        nginx.virtualHosts.${cfg.host} = {
+          forceSSL = false;
+          enableACME = false;
+          http2 = false;
+          listen = [
+            {
+              addr = config.my.ips.wg-server;
+              port = 8081;
+            }
+            {
+              addr = config.my.localhost;
+              port = 8081;
+            }
+          ];
+        };
       };
       virtualisation.oci-containers.containers = {
         go-vod = lib.mkIf config.my.servers.go-vod.enable {
@@ -239,22 +254,10 @@ in
       my.servers.nextcloud.useDefaultProxy = false;
       services.nginx.virtualHosts = {
         "${cfg.host}" = {
-          forceSSL = false; # vps
-          enableACME = false; # vps
-          http2 = false; # vps
-          default = true; # vps
-          #vps
-          listen = [
-            {
-              addr = config.my.ips.wg-server;
-              port = 8081;
-            }
-            {
-              addr = config.my.localhost;
-              port = 8081;
-            }
-          ];
-          #vps
+          forceSSL = true;
+          enableACME = true;
+          http2 = true;
+          default = true;
           serverAliases = [ "cloud.rotehaare.art" ];
           extraConfig = ''
             add_header X-XSS-Protection "1; mode=block" always;