Alias {{ nextcloud_url }} {{ nextcloud_prefix }}/nextcloud

<Directory {{ nextcloud_prefix }}/nextcloud/>
    Options -Indexes
    AllowOverride All

    <IfModule mod_authz_core.c>
    # Apache 2.4
    Require host localhost
    # PERMIT ACCESS FROM ALL IPv4 ADDRESSES:
    Require all granted
    # USE THIS LINE INSTEAD, IF YOU WANT BASIC SECURITY BASED ON IPv4 ADDRESSES:
    #Require ip 127.0.0.1 172.18.96.1/255.255.224.0 192.168 10
    # DON'T USE THIS LINE WHICH CAUSES PROBLEMS IN SCHOOLS WITH 192.168.1.x etc:
    #Require ip 127.0.0.1 {{ lan_ip }}/{{ lan_netmask }} {{ nextcloud_required_ip }} {{ openvpn_server_virtual_ip }}/255.255.255.0
    </IfModule>
    <IfModule !mod_authz_core.c>
    # Apache 2.2
    Order Deny,Allow
    Deny from all
    Allow from 127.0.0.1
    Allow from ::1
    </IfModule>

    ErrorDocument 404 /core/templates/404.php

    <IfModule mod_php5.c>
    php_value upload_max_filesize 512M
    php_value post_max_size 512M
    php_value memory_limit 512M
    php_value mbstring.func_overload 0
    </IfModule>

    SetEnv htaccessWorking true

    <IfModule pagespeed_module>
    ModPagespeed Off
    </IfModule>

    RewriteEngine on
    RewriteRule .* - [env=HTTP_AUTHORIZATION:%{HTTP:Authorization},last]
    RewriteRule ^\.well-known/carddav /remote.php/carddav/ [R]
    RewriteRule ^\.well-known/caldav /remote.php/caldav/ [R]
</Directory>