Data Node

Private Cyberspace PERSONAL ENTITY
1

Introduction

Currently the Data Node is based on open sourced the Nextcloud software, with substantial value-added by Private Cyberspace.

1. Nextcloud

The Data Node of your Private Cyberspace is currently based on the open sourced Nextcloud software.

1.1. Version

Minimum Supported Version: 25.0.6
2023-04-26

1.2. Security

  1. Separated System and User Storage Encryption

Stolen hardware cannot be

  1. Remote Boot Up Decryption

You can have

2. Value-Add

2.1. Infinite Disk

Although Nextcloud supports a lot of external storages, they all have feature limitations when compared to native local storage.

Infinite Disk provide a native local storage to nextcloud, supporting the maximum number of features.

Your Nextcloud data (files or databases) will revolutionary storage that:

  • never run out of capacity

Infinite Disk
smb server (apple time machine compatible)
continuous backup
unlimited disk size

2.2. Virtual Private Mesh

Virtual Private Mesh
secure remote boot
separate user, system, data links

2.3. Dynamic Alias

Dynamic Alias
built-in TOTP
public accounts
trust labels

9

Nextcloud

Create Nextcloud User

Requirements

  1. Member Alias
  2. Credit Card verification

Steps

  1. Go to IDENTITY TIMELINE -> Alias Verification- > Charge Card (AU Credit Card). If there is a Verified Token displayed then go step 2. If there is no Verified Token, register and verify your Visa or Mastercard.
  2. Go to HOME APPLICATION -> Nodes -> Node Set A -> Activate. Enter the Credit Card Expiry Date (MM/YY), Password and the Confirm Password fields and select the Create User button.

Access Nextcloud as User

Steps

  1. Go to HOME APPLICATION -> Nodes -> Node Set A -> Activated, click on the https://file.quuvoo4ohcequuox.0.88.io/ link.
  2. Enter the Nextcloud Username and Password previously created.

Access Nextcloud as User from an external network

Requirements

Please make sure you are able to access app.contacttrace.com.au menu first.

  1. Go to HOME APPLICATION -> Nodes -> Node Set A ->Access.
  2. Enter the Duration(Days) field, the minimum is 1 and the maximum is 300.
  3. Enter the Password and select the Submit button which will create the Access Token.

Steps

  1. Using an external network. go to https://file.quuvoo4ohcequuox.0.88.io
  2. Select Access Anonymously (access is limited to a maximum of 60 minutes) or Access with your Alias. When choosing "Access with your Alias", the password is the access token password and the access duration is based on the duration set by the owner of the account, which has a minimum of 1 day. Select the Submit button.
  3. Enter the Nextcloud Username and Password.

2-Factor Authentication (optional)

Setup

  1. After logging on to Nextcloud, go to Settings and select the 3-bar button on the upper top left.
  2. Navigate to Security and select ENABLE TOTP
    nextcloud_enable_totp
  3. Copy the TOTP secret. In the example below, the TOTP secret is Z7WQNRBIP7XTSYF5
    nextcloud_totp_secret
  4. Open a new tab on the browser and go to https://token.contacttrace.com.au and press the + button.
    time_token
  5. Paste the TOTP secret into the Shared secret field. The Name field is used to identify the site that uses it. In the example below, the site is nextcloud . Press the add_button to continue.
    shared_secret_nextcloud
  6. If successful, the One Time Password will be shown and it changes every 30 seconds.
    token_otp_nextcloud
  7. Go back to first tab, i.e: https://file.quuvoo4ohcequuox.0.88.io and enter the TOTP One Time Password in the Authentication code field. In the example below, the code is 537297. Press on the Verify button to continue.
    nextcloud_authentication_code
  8. If successful, the Enable TOTP will be ticked.
    nextcloud_totp_enabled

Usage

  1. After entering the username and password on https://file.quuvoo4ohcequuox.0.88.io, there will be a prompt to enter the Authentication code.
    nextcloud_2fa_prompt
  2. Open https://token.contacttrace.com.au to view the One Time Password, enter it into the Authentication code field and Submit

Device-specific password (optional)

Setup

At the bottom of the list you find a button to create a new device-specific password. The generated password is used for configuring the new client. Ideally, generate individual tokens for every device you connect to your account, so you can disconnect those individually if necessary.

  1. Enter the device name. In the example below the name used is iPhone13.
    device_pw

  2. Click on the Create new app password button. If prompted enter the web authentication password. The app username and password will be displayed as in the example below. Click on the Done button.
    device_pw_enabled

  3. If successful the entry will be displayed.
    device_session

Usage

If 2FA is enabled, the sync apps such as DAVx must use this new app password instead of the web authentication password.

10

Client Installation

Android

The app is available from Google Play

After the app has been installed:

  1. Select the android_login_button button
  2. Put https://file.quuvoo4ohcequuox.0.88.io in the server address field and tap on the android_right_arrow button.

android_server_address

  1. There might be a warning as shown below. Simply tap on the Log in button to continue.

android_security_warning

  1. Enter the Nextcloud Username and Password, tap on the Log in button and select the Grant Access button.

android_grant_access

iOS

The app is available on App Store

  1. Select the android_login_button button
  2. Put https://file.quuvoo4ohcequuox.0.88.io in the server address field and tap on the android_right_arrow button.

android_server_address

  1. There might be a warning as shown below. Simply tap on the Log in button to continue.

ios_nextcloud_warning

  1. Enter the Nextcloud Username and Password, tap on the Log in button and select the Grant Access button.

ios_nextcloud_access

Browser

Nextcloud can be also be accessed from a browser and the recommended browsers are Chrome and Safari. The Nextcloud web address is https://file.quuvoo4ohcequuox.0.88.io

Simply enter the Nextcloud Username and Password and tap on the Log in button.

browser_login

11

Client File Synchronisation

Android

  1. On the upper left corner, select the android_menu_button button and go to Settings.
  2. Select Auto upload and select the folder location(s) that are detected or select android_3dot_button button and Set up a custom folder. In the example below, the Auto upload is enabled on the Camera folder indicated by the blue android_autoupload_enabled button.

android_auto_upload

3. A folder called InstantUpload will be created and from now on, every time a photo is taken, it will be automatically uploaded to the InstantUpload -> Camera folder on Nextcloud.

android_instantupload

iOS

  1. On the bottom left right corner, select the ios_menu_button button and go to Settings.
  2. Select Auto upload and if prompted, select Allow Access to All Photos.

ios_access_photos

  1. Enable the Auto upload as shown below.

ios_autouploade_enabled

4.Tap on the Select the "auto upload" folder and browse to the folder to be used for automatically upload photos to Nextcloud. In the example below, the InstantUpload -> Camera folder is selected. To save the the selection, tap on the ios_select button.

ios_autoupload_folder

  1. Every time a photo is taken, it will be automatically uploaded to the InstantUpload -> Camera folder on Nextcloud.
12

Nextcloud Client Contact and Calendar Sync

Android

Contacts

  1. Install DAVx⁵ on your Android device from DAVx⁵ | F-Droid - Free and Open Source Android App Repository
  2. Enable the permissions as shown below.

davx_permissions

  1. In the Nextcloud mobile app, go to Settings and tap on Sync calendars & contacts.
  2. DAVx⁵ will open Nextcloud’s Webflow login window. Select Login with URL and user name. If there is a Security Warning, just proceed by tapping on the Log In button.

android_davx_account

5. DAVx⁵ will open and ask you to create an account. Select the account name and set **Contact Group Method** to **Groups are per-contact categories**. In the example below, the account name is `gdpomuet@quuvoo4ohcequuox.0.88.io` and tap on the ![create_account_button|157x30](upload://3W5AhA1g4kf79rgLz3Dk1wf2EVF.png) button to continue.

davx_account_creation

  1. Close the DAVx⁵ app and launch the DAVx⁵ app again.
  2. Tap on the icon for the account DAVx⁵ has just created, In the example below, the account created is gdpomuet@quuvoo4ohcequuox.0.88.io

davx_gdpomuet

  1. In the example below, the Contacts address book is detected. To sync, simply tap on the dax_sync_button button at the bottom right corner.

davx_address_book

Calendar

Follow the DAVx⁵ app installation for the Contacts above. After the DAVx⁵ app has been installed, it will display the Calendar detected. In the example below the Calendar detected is Personal.To sync, simply tap on the dax_sync_button button at the bottom right corner.

davx_calendar

13

iOS

Contacts

  1. Open the Settings application.
  2. Select Contacts.
  3. Select Accounts.
  4. Select Add Account.
  5. Select Other as account type.
  6. Select Add CardDAV account.
  7. Enter the details and select the ios_next_button button. In the example below, the username is gdpomuet

ios_carddav_account

  1. If there is an SSL error, select Cancel and the Advance Settings menu will be displayed. Tap on it and in the Account URL field put https://file.quuvoo4ohcequuox.0.88.io

ios_card_ssl

  1. Go back to CardDAV and tap on the Save button.

Calendar

  1. Open the Settings application.
  2. Select Calendar.
  3. Select Accounts.
  4. Select Add Account.
  5. Select Other as account type.
  6. Select Add CalDAV account.
  7. Enter the details and select the ios_next_button button. In the example below, the username is gdpomuet

ios_caldav_account

  1. If there is an SSL error, select Cancel and the Advance Settings menu will be displayed. Tap on it and in the Account URL field put https://file.quuvoo4ohcequuox.0.88.io

ios_card_ssl

  1. Enable Calendars and Reminders and tap on the ios_save_button button.

ios_caldav

14

Internal Plugins

Nextcloud comes with a lot of plugins (it calls them "apps"), most Private Cyberspace installations will have the following plugins installed and enabled by default.

  1. Activity
  2. Analytics ++
  3. Auditing / Logging
  4. Brute-force settings -
  5. Calendar
  6. Circles --
  7. Client Push
  8. Collaborative tags
  9. Comments
  10. Contacts
  11. Contacts Interaction
  12. Custom menu ++
  13. Default encryption module -
  14. Dashboard
  15. Deck
  16. External storage support +
  17. Federation
  18. File sharing
  19. First run wizard
  20. Full text search
  21. Full text search - Elasticsearch Platform
  22. Full text search - Files
  23. LDAP user and group backend -
  24. Log Reader
  25. Maps ++
  26. Monitoring
  27. Nextcloud All In One
  28. Nextcloud announcements --
  29. Nextcloud Office
  30. NCDownloader ++
  31. Notifications
  32. Password policy
  33. PDF viewer
  34. PhoneTrack ++
  35. Photos
  36. Privacy
  37. Recommendations
  38. Related Resources
  39. Right click
  40. Share by mail
  41. Snappymail ++
  42. Support --
  43. Suspicious Login -
  44. Tables ++
  45. Talk
  46. Tasks
  47. Text
  48. Two-Factor TOTP Provider
  49. Usage survey --
  50. User status
  51. Versions
  52. Weather status --

Below documents what has been done to Nextcloud plugins listed above by default (when your Private Cyberspace is first created).

  • Those 36 without any suffix are enabled when installed.
  • Those 4 with - suffix are disabled when installed.
  • Those 1 with + suffix are disabled when installed but are enabled afterwards.
  • Those 4 with -- are enabled when installed but are disabled afterwards.
  • Those 7 with ++ are added and enabled afterwards.

Following plugins are being tested and may be included as default in future release:

  1. Translate
  2. Draw.io

Feel free to suggest some more "must have" plugins to be added to the above list!

15

External Software

Some external software are added in the Data Node to complement Nextcloud.

1. Photoprism

Currently Photoprism is installed in the Data Node to provide an AI driven multimedia album for your Private Cyberspace.

The files on Photoprism are accessed from within Nextcloud under the photoprism directory using via the WebDAV external storage with the following setting by default:

  • Encryption - Disabled
  • Preview - Disabled
  • Sharing - Disabled
  • Check Changes - Once every direct access
  • Mac NFD - Disabled
  • Read Only - Disabled

Note the default processing delays in Photoprism:
PHOTOPRISM_AUTO_INDEX - default 5 minutes.
PHOTOPRISM_AUTO_IMPORT - default 3 minutes.

Further work:

  • turn off requirement for review in order to show image in main view (by default).

1.1. Alternative

The following Nextcloud Memories Plugin Set can be used instead of Photoprism to provide media album function.

16

OCC Commands