Geekly Articles each Day
📜 ⬆️ ⬇️

Release ownCloud 9.0 - opensource alternatives to Dropbox and other cloud storage



A new release of the ownCloud 9.0 personal cloud platform has been released .

I already wrote about ownCloud before . I love this combine from the data warehouse with synchronization, versioning, gallery, calendar, contact storage and other buns. The server part is written in PHP, WebDAV, CardDAV, CalDAV protocols are supported. Client software is available under Linux, OS-X, Windows, mobile platforms and through the web interface. In theory, it can work with petabyte data volumes.
')
The service can work in the federated mode - it is possible to combine and link independent ownCloud instances, share directories and other data. As a file system, you can use GPFS, GlusterFS and other distributed options. Good integration into Amazon infrastructure.

Changelog:
  1. Ability to add comments and tags to files
  2. New notification system
  3. (Federated mode) Auto-completion of usernames
  4. (Federated Mode) Trusted Server Lists
  5. Code for add and main files finally signed
  6. Added new update system
  7. Performance Improvements for Directory Sharing
  8. New API for External Storage
  9. Various security enhancements


Some illustrations


image
Web interface with new tag and comment features

image
File open menu for third-party users


Learn more about the federated multi-server federation system.

Personal impressions


Subjective feelings of using the service are the most positive. Now used to store and synchronize data in our laboratory. Access to the main server via HTTPS. In my version, everything works on a KVM virtual machine, the main Debian system, on a virtual machine - Ubuntu 14.04 LTS. This provides some flexibility in terms of isolating the service from the main server and simplifies cloning, transferring and backing up in case of problems with the upgrade. By the way, there are problems. Unfortunately, I have not tested the fresh release yet - I plan to try deploying it on a test machine today.

The main set of services that provide my ownCloud operation is nginx + php-fpm (PHP version 5.5.9) + apcu (caching) + MariaDB (the current MySQL fork). Everything works very quickly and without any complaints. Data is not lost once. The main advantage for us is the unlimited space available for synchronization - everything depends on the HDD server. In the case of physical death of HDD - there is a backup of the virtual machine with its ownCloud, and all data on the clients does not disappear anywhere. It will look simple as a break.

Configuration files


Nginx
upstream php-handler {
server 127.0.0.1:9000;
#server unix:/var/run/php5-fpm.sock;
}

server {
listen 80;
server_name example.net;
# enforce https
return 301 https://$server_name$request_uri;
}

server {
listen 443 ssl;
server_name example.net;

ssl_certificate /etc/ssl/nginx/bundle.crt;
ssl_certificate_key /etc/ssl/nginx/private.key;
ssl_dhparam /etc/ssl/nginx/dh2048.pem;

ssl_stapling on;
ssl_session_timeout 10m;
ssl_session_cache shared:SSL:2m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers kEECDH+AES128:kEECDH:kEDH:-3DES:kRSA+AES128:kEDH+3DES:!RC4:!aNULL:!eNULL:!MD5:!EXPORT:!LOW:!SEED:!CAMELLIA:!IDEA:!PSK:!SRP:!SSLv2:!RC4;
#ssl_ciphers kEECDH+AES128:kEECDH:kEDH:-3DES:kRSA+AES128:kEDH+3DES:DES-CBC3-SHA:!RC4:!aNULL:!eNULL:!MD5:!EXPORT:!LOW:!SEED:!CAMELLIA:!IDEA:!PSK:!SRP:!SSLv2;

ssl_prefer_server_ciphers on;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
add_header Content-Security-Policy-Report-Only "default-src https:; script-src https: 'unsafe-eval' 'unsafe-inline'; style-src https: 'unsafe-inline'; img-src https: data:; f$
# Path to the root of your installation
root /var/www;
# set max upload size
client_max_body_size 10G;
fastcgi_buffers 64 4K;

rewrite ^/caldav(.*)$ /remote.php/caldav$1 redirect;
rewrite ^/carddav(.*)$ /remote.php/carddav$1 redirect;
rewrite ^/webdav(.*)$ /remote.php/webdav$1 redirect;

index index.php;
error_page 403 /core/templates/403.php;
error_page 404 /core/templates/404.php;

location = /robots.txt {
allow all;
log_not_found off;
access_log off;
}

location ~ ^/(?:\.htaccess|data|config|db_structure\.xml|README){
deny all;
}
location / {
# The following 2 rules are only needed with webfinger
rewrite ^/.well-known/host-meta /public.php?service=host-meta last;
rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;

rewrite ^/.well-known/carddav /remote.php/carddav/ redirect;
rewrite ^/.well-known/caldav /remote.php/caldav/ redirect;

rewrite ^(/core/doc/[^\/]+/)$ $1/index.html;

try_files $uri $uri/ /index.php;
}

location ~ \.php(?:$|/) {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param PATH_INFO $fastcgi_path_info;
fastcgi_param HTTPS on;
fastcgi_pass php-handler;
}

# Optional: set long EXPIRES header on static assets
location ~* \.(?:jpg|jpeg|gif|bmp|ico|png|css|js|swf)$ {
expires 30d;
# Optional: Don't log access to assets
access_log off;
}




PHP settings are default.

Official update instructions


https://owncloud.org/blog/time-to-upgrade-to-owncloud-9-0/

Source: https://habr.com/ru/post/278893/

More articles:


All Articles