Merge branch 'main' of https://github.com/community-scripts/ProxmoxVED

2026-02-25 05:57:26 +00:00 · 2025-12-15 11:26:47 +01:00
parent a3ba39b9de 4af2c41204
commit dfd694052f
18 changed files with 432 additions and 1003 deletions
--- a/install/heimdall-dashboard-install.sh
+++ b/install/heimdall-dashboard-install.sh
@@ -0,0 +1,57 @@
+#!/usr/bin/env bash
+
+# Copyright (c) 2021-2025 tteck
+# Author: tteck (tteckster)
+# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE
+# Source: https://heimdall.site/
+
+source /dev/stdin <<<"$FUNCTIONS_FILE_PATH"
+color
+verb_ip6
+catch_errors
+setting_up_container
+network_check
+update_os
+
+msg_info "Installing Dependencies"
+$STD apt install -y apt-transport-https
+msg_ok "Installed Dependencies"
+
+PHP_VERSION="8.4" PHP_MODULE="bz2,sqlite3" PHP_FPM="YES" setup_php
+setup_composer
+fetch_and_deploy_gh_release "Heimdall" "linuxserver/Heimdall" "tarball"
+
+msg_info "Setting up Heimdall-Dashboard"
+cd /opt/Heimdall
+cp .env.example .env
+$STD php artisan key:generate
+msg_ok "Setup Heimdall-Dashboard"
+
+msg_info "Creating Service"
+cat <<EOF >/etc/systemd/system/heimdall.service
+[Unit]
+Description=Heimdall
+After=network.target
+
+[Service]
+Restart=always
+RestartSec=5
+Type=simple
+User=root
+WorkingDirectory=/opt/Heimdall
+ExecStart=/usr/bin/php artisan serve --port 7990 --host 0.0.0.0
+TimeoutStopSec=30
+
+[Install]
+WantedBy=multi-user.target"
+EOF
+systemctl enable -q --now heimdall
+cd /opt/Heimdall
+export COMPOSER_ALLOW_SUPERUSER=1
+$STD composer dump-autoload
+systemctl restart heimdall.service
+msg_ok "Created Service"
+
+motd_ssh
+customize
+cleanup_lxc
--- a/install/homarr-install.sh
+++ b/install/homarr-install.sh
@@ -24,11 +24,10 @@ msg_ok "Installed Dependencies"

 NODE_VERSION=$(curl -s https://raw.githubusercontent.com/homarr-labs/homarr/dev/package.json | jq -r '.engines.node | split(">=")[1] | split(".")[0]')
 setup_nodejs
-fetch_and_deploy_gh_release "homarr" "homarr-labs/homarr"
+fetch_and_deploy_gh_release "homarr" "homarr-labs/homarr" "prebuild" "latest" "/opt/homarr" "build-amd64.tar.gz"

-msg_info "Installing Homarr (Patience)"
+msg_info "Installing Homarr"
 ln -s /usr/lib/x86_64-linux-musl/libc.so /lib/libc.musl-x86_64.so.1
-cd /opt
 mkdir -p /opt/homarr_db
 touch /opt/homarr_db/db.sqlite
 SECRET_ENCRYPTION_KEY="$(openssl rand -hex 32)"
@@ -46,8 +45,9 @@ EOF
 msg_ok "Installed Homarr"

 msg_info "Copying config files"
+mkdir -p /appdata/redis
 chown -R redis:redis /appdata/redis
-chmod 755 /appdata/redis
+chmod 744 /appdata/redis
 cp /opt/homarr/redis.conf /etc/redis/redis.conf
 rm /etc/nginx/nginx.conf
 mkdir -p /etc/nginx/templates
--- a/install/invoiceninja-install.sh
+++ b/install/invoiceninja-install.sh
@@ -1,168 +0,0 @@
-#!/usr/bin/env bash
-
-# Copyright (c) 2021-2025 community-scripts ORG
-# Author: MickLesk (CanbiZ)
-# License: MIT | https://github.com/community-scripts/ProxmoxVED/raw/main/LICENSE
-# Source: https://invoiceninja.com/
-
-source /dev/stdin <<<"$FUNCTIONS_FILE_PATH"
-color
-verb_ip6
-catch_errors
-setting_up_container
-network_check
-update_os
-
-msg_info "Installing Dependencies"
-$STD apt install -y \
-  nginx \
-  supervisor
-msg_ok "Installed Dependencies"
-
-setup_mariadb
-MARIADB_DB_NAME="invoiceninja" MARIADB_DB_USER="invoiceninja" setup_mariadb_db
-PHP_VERSION="8.4" PHP_FPM="YES" PHP_MODULE="bcmath,curl,gd,gmp,imagick,intl,mbstring,mysql,soap,xml,zip" setup_php
-import_local_ip
-fetch_and_deploy_gh_release "invoiceninja" "invoiceninja/invoiceninja" "prebuild" "latest" "/opt/invoiceninja" "invoiceninja.tar.gz"
-
-msg_info "Configuring InvoiceNinja"
-cd /opt/invoiceninja
-APP_KEY=$(php artisan key:generate --show)
-cat <<EOF >/opt/invoiceninja/.env
-APP_NAME="Invoice Ninja"
-APP_ENV=production
-APP_KEY=${APP_KEY}
-APP_DEBUG=false
-APP_URL=http://${LOCAL_IP}:8080
-
-DB_CONNECTION=mysql
-DB_HOST=127.0.0.1
-DB_PORT=3306
-DB_DATABASE=${MARIADB_DB_NAME}
-DB_USERNAME=${MARIADB_DB_USER}
-DB_PASSWORD=${MARIADB_DB_PASS}
-
-MULTI_DB_ENABLED=false
-DEMO_MODE=false
-
-BROADCAST_DRIVER=log
-LOG_CHANNEL=stack
-CACHE_DRIVER=file
-QUEUE_CONNECTION=database
-SESSION_DRIVER=file
-SESSION_LIFETIME=120
-
-MAIL_MAILER=log
-MAIL_HOST=null
-MAIL_PORT=null
-MAIL_USERNAME=null
-MAIL_PASSWORD=null
-MAIL_ENCRYPTION=null
-MAIL_FROM_ADDRESS="noreply@localhost"
-MAIL_FROM_NAME="Invoice Ninja"
-
-REQUIRE_HTTPS=false
-NINJA_ENVIRONMENT=selfhost
-PDF_GENERATOR=snappdf
-
-TRUSTED_PROXIES=*
-INTERNAL_QUEUE_ENABLED=false
-EOF
-
-mkdir -p /opt/invoiceninja/bootstrap/cache
-mkdir -p /opt/invoiceninja/storage/{app/public,framework/{cache/data,sessions,views},logs}
-chown -R www-data:www-data /opt/invoiceninja
-chmod -R 775 /opt/invoiceninja/storage /opt/invoiceninja/bootstrap/cache
-msg_ok "Configured InvoiceNinja"
-
-msg_info "Setting up Database"
-cd /opt/invoiceninja
-$STD php artisan config:clear
-$STD php artisan cache:clear
-$STD php artisan route:clear
-$STD php artisan view:clear
-$STD php artisan migrate --force
-$STD php artisan db:seed --force
-$STD php artisan optimize
-msg_ok "Set up Database"
-
-msg_info "Configuring Nginx"
-cat <<'EOF' >/etc/nginx/sites-available/invoiceninja
-server {
-    listen 8080;
-    server_name _;
-    root /opt/invoiceninja/public;
-    index index.php;
-
-    client_max_body_size 50M;
-    charset utf-8;
-
-    gzip on;
-    gzip_types application/javascript application/x-javascript text/javascript text/plain application/xml application/json;
-    gzip_proxied no-cache no-store private expired auth;
-    gzip_min_length 1000;
-
-    location / {
-        try_files $uri $uri/ /index.php?$query_string;
-    }
-
-    location = /index.php {
-        fastcgi_pass unix:/run/php/php8.4-fpm.sock;
-        fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
-        include fastcgi_params;
-        fastcgi_read_timeout 300;
-    }
-
-    location ~ \.php$ {
-        return 403;
-    }
-
-    location ~ /\.ht {
-        deny all;
-    }
-
-    error_log /var/log/nginx/invoiceninja_error.log;
-    access_log /var/log/nginx/invoiceninja_access.log;
-}
-EOF
-
-ln -sf /etc/nginx/sites-available/invoiceninja /etc/nginx/sites-enabled/
-rm -f /etc/nginx/sites-enabled/default
-$STD systemctl reload nginx
-msg_ok "Configured Nginx"
-
-msg_info "Setting up Queue Worker"
-cat <<'EOF' >/etc/supervisor/conf.d/invoiceninja-worker.conf
-[program:invoiceninja-worker]
-process_name=%(program_name)s_%(process_num)02d
-command=php /opt/invoiceninja/artisan queue:work --sleep=3 --tries=3 --max-time=3600
-autostart=true
-autorestart=true
-stopasgroup=true
-killasgroup=true
-user=www-data
-numprocs=2
-redirect_stderr=true
-stdout_logfile=/var/log/invoiceninja-worker.log
-stopwaitsecs=3600
-EOF
-
-touch /var/log/invoiceninja-worker.log
-chown www-data:www-data /var/log/invoiceninja-worker.log
-$STD supervisorctl reread
-$STD supervisorctl update
-msg_ok "Set up Queue Worker"
-
-msg_info "Setting up Cron"
-cat <<'EOF' >/etc/cron.d/invoiceninja
-* * * * * www-data cd /opt/invoiceninja && php artisan schedule:run >> /dev/null 2>&1
-EOF
-msg_ok "Set up Cron"
-
-msg_info "Enabling Services"
-systemctl enable -q --now php8.4-fpm nginx supervisor
-msg_ok "Enabled Services"
-
-motd_ssh
-customize
-cleanup_lxc
--- a/install/nextexplorer-install.sh
+++ b/install/nextexplorer-install.sh
@@ -0,0 +1,141 @@
+#!/usr/bin/env bash
+
+# Copyright (c) 2021-2025 community-scripts ORG
+# Author: vhsdream
+# License: MIT | https://github.com/community-scripts/ProxmoxVED/raw/main/LICENSE
+# Source: https://github.com/vikramsoni2/nextExplorer
+
+source /dev/stdin <<<"$FUNCTIONS_FILE_PATH"
+color
+verb_ip6
+catch_errors
+setting_up_container
+network_check
+update_os
+
+msg_info "Installing Dependencies"
+$STD apt install -y \
+  ripgrep \
+  imagemagick \
+  ffmpeg
+msg_ok "Installed Dependencies"
+
+NODE_VERSION="24" setup_nodejs
+
+fetch_and_deploy_gh_release "nextExplorer" "vikramsoni2/nextExplorer" "tarball" "latest" "/opt/nextExplorer"
+
+msg_info "Building nextExplorer"
+APP_DIR="/opt/nextExplorer/app"
+LOCAL_IP="$(hostname -I | awk '{print $1}')"
+mkdir -p "$APP_DIR"
+mkdir -p /etc/nextExplorer
+cd /opt/nextExplorer/backend
+export NODE_ENV=production
+$STD npm ci
+unset NODE_ENV
+
+cd /opt/nextExplorer/frontend
+export NODE_ENV=development
+$STD npm ci
+$STD npm run build -- --sourcemap false
+unset NODE_ENV
+
+cd /opt/nextExplorer
+mv backend/{node_modules,src,package.json} "$APP_DIR"
+mv frontend/dist/ "$APP_DIR"/src/public
+msg_ok "Built nextExplorer"
+
+msg_info "Configuring nextExplorer"
+SECRET=$(openssl rand -hex 32)
+cat <<EOF >/etc/nextExplorer/.env
+NODE_ENV=production
+PORT=3000
+
+VOLUME_ROOT=/mnt
+CONFIG_DIR=/etc/nextExplorer
+CACHE_DIR=/etc/nextExplorer/cache
+# USER_ROOT=
+
+PUBLIC_URL=${LOCAL_IP}:3000
+# TRUST_PROXY=
+# CORS_ORIGINS=
+
+LOG_LEVEL=info
+DEBUG=false
+ENABLE_HTTP_LOGGING=false
+
+AUTH_ENABLED=true
+AUTH_MODE=both
+SESSION_SECRET="${SECRET}"
+# AUTH_MAX_FAILED=
+# AUTH_LOCK_MINUTES=
+
+# OIDC_ENABLED=
+# OIDC_ISSUER=
+# OIDC_AUTHORIZATION_URL=
+# OIDC_TOKEN_URL=
+# OIDC_USERINFO_URL=
+# OIDC_CLIENT_ID=
+# OIDC_CLIENT_SECRET=
+# OIDC_CALLBACK_URL=
+# OIDC_SCOPES=
+
+# SEARCH_DEEP=
+# SEARCH_RIPGREP=
+# SEARCH_MAX_FILESIZE=
+
+# ONLYOFFICE_URL=
+# ONLYOFFICE_SECRET=
+# ONLYOFFICE_LANG=
+# ONLYOFFICE_FORCE_SAVE=
+# ONLYOFFICE_FILE_EXTENSIONS=
+
+SHOW_VOLUME_USAGE=true
+# USER_DIR_ENABLED=
+# SKIP_HOME=
+
+# EDITOR_EXTENSIONS=
+
+# FFMPEG_PATH=
+# FFPROBE_PATH=
+
+FAVORITES_DEFAULT_ICON=outline.StarIcon
+
+SHARES_ENABLED=true
+# SHARES_TOKEN_LENGTH=10
+# SHARES_MAX_PER_USER=100
+# SHARES_DEFAULT_EXPIRY_DAYS=30
+# SHARES_GUEST_SESSION_HOURS=24
+# SHARES_ALLOW_PASSWORD=true
+# SHARES_ALLOW_ANONYMOUS=true
+EOF
+chmod 600 /etc/nextExplorer/.env
+$STD useradd -U -s /bin/bash -m -d /home/explorer explorer
+chown -R explorer:explorer "$APP_DIR" /etc/nextExplorer
+msg_ok "Configured nextExplorer"
+
+msg_info "Creating nextExplorer Service"
+cat <<EOF >/etc/systemd/system/nextexplorer.service
+[Unit]
+Description=nextExplorer Service
+After=network.target
+
+[Service]
+Type=simple
+WorkingDirectory=/opt/nextExplorer/app
+EnvironmentFile=/etc/nextExplorer/.env
+ExecStart=/usr/bin/node ./src/app.js
+Restart=always
+RestartSec=5
+StandardOutput=journal
+StandardError=journal
+
+[Install]
+WantedBy=multi-user.target
+EOF
+$STD systemctl enable -q --now nextexplorer
+msg_ok "Created nextExplorer Service"
+
+motd_ssh
+customize
+cleanup_lxc
--- a/install/opencloud-install.sh
+++ b/install/opencloud-install.sh
@@ -45,6 +45,12 @@ EOF
 $STD apt-get update
 $STD apt-get install -y coolwsd code-brand
 systemctl stop coolwsd
+mkdir -p /etc/systemd/system/coolwsd.service.d
+cat <<EOF >/etc/systemd/system/coolwsd.service.d/override.conf
+[Unit]
+Before=opencloud-wopi.service
+EOF
+systemctl daemon-reload
 COOLPASS="$(openssl rand -base64 36)"
 $STD sudo -u cool coolconfig set-admin-password --user=admin --password="$COOLPASS"
 echo "$COOLPASS" >~/.coolpass
@@ -59,8 +65,8 @@ CONFIG_DIR="/etc/opencloud"
 ENV_FILE="${CONFIG_DIR}/opencloud.env"
 mkdir -p "$DATA_DIR" "$CONFIG_DIR"/assets/apps

-curl -fsSL https://raw.githubusercontent.com/opencloud-eu/opencloud/refs/heads/main/devtools/deployments/opencloud_full/config/opencloud/csp.yaml -o "$CONFIG_DIR"/csp.yaml
-curl -fsSL https://raw.githubusercontent.com/opencloud-eu/opencloud/refs/heads/main/devtools/deployments/opencloud_full/config/opencloud/proxy.yaml -o "$CONFIG_DIR"/proxy.yaml.bak
+curl -fsSL https://raw.githubusercontent.com/opencloud-eu/opencloud-compose/refs/heads/main/config/opencloud/csp.yaml -o "$CONFIG_DIR"/csp.yaml
+curl -fsSL https://raw.githubusercontent.com/opencloud-eu/opencloud-compose/refs/heads/main/config/opencloud/proxy.yaml -o "$CONFIG_DIR"/proxy.yaml.bak

 cat <<EOF >"$ENV_FILE"
 OC_URL=https://${OC_HOST}
@@ -69,12 +75,13 @@ IDM_CREATE_DEMO_USERS=false
 OC_LOG_LEVEL=warning
 OC_CONFIG_DIR=${CONFIG_DIR}
 OC_BASE_DATA_PATH=${DATA_DIR}
+STORAGE_SYSTEM_OC_ROOT=${DATA_DIR}/storage/metadata

-# Proxy
+## Proxy
 PROXY_TLS=false
 PROXY_CSP_CONFIG_FILE_LOCATION=${CONFIG_DIR}/csp.yaml

-# Collaboration - requires VALID TLS
+## Collaboration - requires VALID TLS
 COLLABORA_DOMAIN=${COLLABORA_HOST}
 COLLABORATION_APP_NAME="CollaboraOnline"
 COLLABORATION_APP_PRODUCT="Collabora"
@@ -84,53 +91,53 @@ COLLABORATION_HTTP_ADDR=0.0.0.0:9300
 COLLABORATION_WOPI_SRC=https://${WOPI_HOST}
 COLLABORATION_JWT_SECRET=

-# Applications
+## Applications
 WEB_ASSET_APPS_PATH=${CONFIG_DIR}/assets/apps

-# Notifications - Email settings
+## Notifications - Email settings
 # NOTIFICATIONS_SMTP_HOST=
 # NOTIFICATIONS_SMTP_PORT=
 # NOTIFICATIONS_SMTP_SENDER=
 # NOTIFICATIONS_SMTP_USERNAME=
 # NOTIFICATIONS_SMTP_PASSWORD=
 # NOTIFICATIONS_SMTP_AUTHENTICATION=login
-# Encryption method. Possible values are 'starttls', 'ssltls' and 'none'
+## Encryption method. Possible values are 'starttls', 'ssltls' and 'none'
 # NOTIFICATIONS_SMTP_ENCRYPTION=starttls
-# Allow insecure connections. Defaults to false.
+## Allow insecure connections. Defaults to false.
 # NOTIFICATIONS_SMTP_INSECURE=false

-# Start additional services at runtime
-# Examples: notifications, antivirus etc.
-# Do not uncomment unless configured above.
+## Start additional services at runtime
+## Examples: notifications, antivirus etc.
+## Do not uncomment unless configured above.
 # OC_ADD_RUN_SERVICES="notifications"

-# OpenID - via web browser
-#
-# uncomment for OpenID in general - works for Authelia
+## OpenID - via web browser
+## uncomment for OpenID in general
 # OC_EXCLUDE_RUN_SERVICES=idp
 # OC_OIDC_ISSUER=<your auth URL>
+# IDP_DOMAIN=<your auth URL>
 # PROXY_OIDC_ACCESS_TOKEN_VERIFY_METHOD=none
 # PROXY_OIDC_REWRITE_WELLKNOWN=true
 # PROXY_USER_OIDC_CLAIM=preferred_username
 # PROXY_USER_CS3_CLAIM=username
-# automatically create accounts
+## automatically create accounts
 # PROXY_AUTOPROVISION_ACCOUNTS=true
 # WEB_OIDC_SCOPE=openid profile email groups
 # GRAPH_ASSIGN_DEFAULT_USER_ROLE=false
 #
-# uncomment below if using PocketID
+## uncomment below if using PocketID
 # WEB_OIDC_CLIENT_ID=<generated in PocketID>
 # WEB_OIDC_METADATA_URL=<your auth URL>/.well-known/openid-configuration

-# Full Text Search - Apache Tika
-# Requires a separate install of Tika - see https://community-scripts.github.io/ProxmoxVE/scripts?id=apache-tika
+## Full Text Search - Apache Tika
+## Requires a separate install of Tika - see https://community-scripts.github.io/ProxmoxVE/scripts?id=apache-tika
 # SEARCH_EXTRACTOR_TYPE=tika
 # FRONTEND_FULL_TEXT_SEARCH_ENABLED=true
 # SEARCH_EXTRACTOR_TIKA_TIKA_URL=<your-tika-url>

-# External storage test - currently not working
+## External storage test - Only NFS v4.2+ is supported
+## User files
 # STORAGE_USERS_POSIX_ROOT=<path-to-your-bind_mount>
-# STORAGE_USERS_ID_CACHE_STORE=nats-js-kv
 EOF

 cat <<EOF >/etc/systemd/system/opencloud.service
@@ -153,14 +160,15 @@ EOF
 cat <<EOF >/etc/systemd/system/opencloud-wopi.service
 [Unit]
 Description=OpenCloud WOPI Server
-Requires=coolwsd.service
-After=network.target opencloud.service coolwsd.service
+Wants=coolwsd.service
+After=opencloud.service coolwsd.service

 [Service]
 Type=simple
 User=opencloud
 Group=opencloud
 EnvironmentFile=${ENV_FILE}
+ExecStartPre=/bin/sleep 10
 ExecStart=/usr/bin/opencloud collaboration server
 Restart=always
 KillSignal=SIGKILL
--- a/install/wallabag-install.sh
+++ b/install/wallabag-install.sh
@@ -1,150 +0,0 @@
-#!/usr/bin/env bash
-
-# Copyright (c) 2021-2025 community-scripts ORG
-# Author: MickLesk (CanbiZ)
-# License: MIT | https://github.com/community-scripts/ProxmoxVED/raw/main/LICENSE
-# Source: https://wallabag.org/
-
-source /dev/stdin <<<"$FUNCTIONS_FILE_PATH"
-color
-verb_ip6
-catch_errors
-setting_up_container
-network_check
-update_os
-
-msg_info "Installing Dependencies"
-$STD apt install -y \
-  nginx \
-  redis-server \
-  imagemagick
-msg_ok "Installed Dependencies"
-
-import_local_ip
-setup_mariadb
-MARIADB_DB_NAME="wallabag" MARIADB_DB_USER="wallabag" setup_mariadb_db
-PHP_VERSION="8.3" PHP_FPM="YES" PHP_MODULE="bcmath,bz2,curl,gd,imagick,intl,mbstring,mysql,redis,tidy,xml,zip" setup_php
-setup_composer
-NODE_VERSION="22" setup_nodejs
-
-fetch_and_deploy_gh_release "wallabag" "wallabag/wallabag" "prebuild" "latest" "/opt/wallabag" "wallabag-*.tar.gz"
-
-msg_info "Configuring Wallabag"
-cd /opt/wallabag
-SECRET_KEY="$(openssl rand -base64 32 | tr -dc 'a-zA-Z0-9' | cut -c1-32)"
-cat <<EOF >/opt/wallabag/app/config/parameters.yml
-parameters:
-    database_driver: pdo_mysql
-    database_host: 127.0.0.1
-    database_port: 3306
-    database_name: ${MARIADB_DB_NAME}
-    database_user: ${MARIADB_DB_USER}
-    database_password: ${MARIADB_DB_PASS}
-    database_path: null
-    database_table_prefix: wallabag_
-    database_socket: null
-    database_charset: utf8mb4
-
-    domain_name: http://${LOCAL_IP}:8000
-    server_name: Wallabag
-
-    mailer_dsn: null
-
-    locale: en
-
-    secret: ${SECRET_KEY}
-
-    twofactor_auth: false
-    twofactor_sender: no-reply@wallabag.org
-
-    fosuser_registration: true
-    fosuser_confirmation: false
-
-    fos_oauth_server_access_token_lifetime: 3600
-    fos_oauth_server_refresh_token_lifetime: 1209600
-
-    from_email: no-reply@wallabag.org
-
-    rss_limit: 50
-
-    rabbitmq_host: localhost
-    rabbitmq_port: 5672
-    rabbitmq_user: guest
-    rabbitmq_password: guest
-    rabbitmq_prefetch_count: 10
-
-    redis_scheme: tcp
-    redis_host: localhost
-    redis_port: 6379
-    redis_path: null
-    redis_password: null
-
-    sentry_dsn: null
-EOF
-chown -R www-data:www-data /opt/wallabag
-msg_ok "Configured Wallabag"
-
-msg_info "Installing Wallabag (Patience)"
-export COMPOSER_ALLOW_SUPERUSER=1
-export SYMFONY_ENV=prod
-cd /opt/wallabag
-$STD php bin/console wallabag:install --env=prod --no-interaction
-$STD php bin/console cache:clear --env=prod
-chown -R www-data:www-data /opt/wallabag
-chmod -R 755 /opt/wallabag/var
-chmod -R 755 /opt/wallabag/web/assets
-msg_ok "Installed Wallabag"
-
-msg_info "Configuring Nginx"
-cat <<'EOF' >/etc/nginx/sites-available/wallabag
-server {
-    listen 8000;
-    server_name _;
-    root /opt/wallabag/web;
-
-    add_header X-Frame-Options "SAMEORIGIN";
-    add_header X-Content-Type-Options "nosniff";
-
-    index app.php;
-    charset utf-8;
-
-    location / {
-        try_files $uri /app.php$is_args$args;
-    }
-
-    location ~ ^/app\.php(/|$) {
-        fastcgi_pass unix:/run/php/php8.3-fpm.sock;
-        fastcgi_split_path_info ^(.+\.php)(/.*)$;
-        include fastcgi_params;
-        fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
-        fastcgi_param DOCUMENT_ROOT $realpath_root;
-        internal;
-    }
-
-    location ~ \.php$ {
-        return 404;
-    }
-
-    location ~ /\.(?!well-known).* {
-        deny all;
-    }
-
-    error_log /var/log/nginx/wallabag_error.log;
-    access_log /var/log/nginx/wallabag_access.log;
-}
-EOF
-
-ln -sf /etc/nginx/sites-available/wallabag /etc/nginx/sites-enabled/
-rm -f /etc/nginx/sites-enabled/default
-$STD systemctl reload nginx
-msg_ok "Configured Nginx"
-
-msg_info "Enabling Services"
-systemctl enable -q --now redis-server
-systemctl enable -q --now php8.3-fpm
-systemctl enable -q --now nginx
-msg_ok "Enabled Services"
-
-motd_ssh
-customize
-cleanup_lxc