mirror of
https://github.com/YunoHost-Apps/agendav_ynh.git
synced 2024-09-03 20:36:12 +02:00
155 lines
4.7 KiB
Bash
155 lines
4.7 KiB
Bash
#!/bin/bash
|
|
|
|
# Source local helpers
|
|
source ./_common.sh
|
|
|
|
# Source app helpers
|
|
source /usr/share/yunohost/helpers
|
|
|
|
# Abort script if errors
|
|
ynh_abort_if_errors
|
|
|
|
# Retrieve arguments
|
|
domain=$YNH_APP_ARG_DOMAIN
|
|
path=$YNH_APP_ARG_PATH
|
|
language=$YNH_APP_ARG_LANGUAGE
|
|
is_public=$YNH_APP_ARG_IS_PUBLIC
|
|
|
|
# Set app specific variables
|
|
app=$YNH_APP_INSTANCE_NAME
|
|
dbname=$app
|
|
dbuser=$app
|
|
|
|
path=$(ynh_normalize_url_path "$path")
|
|
|
|
# Set and store language
|
|
language=${LANGUAGES[$language]}
|
|
|
|
ynh_app_setting_set "$app" language "$language"
|
|
ynh_app_setting_set "$app" is_public "$is_public"
|
|
ynh_app_setting_set "$app" path "$path"
|
|
|
|
# Check web path availability
|
|
ynh_webpath_available "$domain" "$path"
|
|
# Register (book) web path
|
|
ynh_webpath_register "$app" "$domain" "$path"
|
|
|
|
# Define LOGDIR (create it later when user is created)
|
|
LOGDIR=/var/log/$app
|
|
|
|
# Check destination directory
|
|
DESTDIR="/var/www/${app}"
|
|
[[ -d "$DESTDIR" ]] && ynh_die \
|
|
"The destination directory '${DESTDIR}' already exists.\
|
|
You should safely delete it before installing this app."
|
|
|
|
mkdir -p "$DESTDIR"
|
|
|
|
# Check whether Baïkal or Radicale is installed
|
|
baikal_install=$(agendav_app_check_installation "baikal")
|
|
radicale_install=$(agendav_app_check_installation "radicale")
|
|
if [[ -n "$baikal_install" ]]
|
|
then
|
|
caldav_app="baikal"
|
|
caldav_baseurl="/cal.php/"
|
|
elif [[ -n "$radicale_install" ]]
|
|
then
|
|
caldav_app="radicale"
|
|
caldav_baseurl="/"
|
|
else
|
|
ynh_die "Baikal or Radicale is mandatory"
|
|
fi
|
|
|
|
# Install dependencies
|
|
ynh_install_app_dependencies php5-cli
|
|
|
|
ynh_setup_source "$DESTDIR"
|
|
|
|
# Generate random password and encryption key
|
|
dbpass=$(ynh_string_random)
|
|
encryptkey=$(ynh_string_random 24)
|
|
ynh_app_setting_set "$app" encryptkey "$encryptkey"
|
|
ynh_app_setting_set "$app" mysqlpwd "$dbpass"
|
|
|
|
# Copy and set AgenDAV configuration
|
|
conf_path="${DESTDIR}/web/config/settings.php"
|
|
cp ../conf/settings.php "$conf_path"
|
|
sed -i "s/{DBUSER}/${dbuser}/g" "$conf_path"
|
|
sed -i "s/{DBPASS}/${dbpass}/g" "$conf_path"
|
|
sed -i "s/{DBNAME}/${dbname}/g" "$conf_path"
|
|
sed -i "s/{ENCRYPTKEY}/${encryptkey}/g" "$conf_path"
|
|
sed -i "s@{LOGDIR}@${LOGDIR}@g" "$conf_path"
|
|
sed -i "s@{TIMEZONE}@$(cat /etc/timezone)@g" "$conf_path"
|
|
sed -i "s@{LANGUAGE}@${language}@g" "$conf_path"
|
|
|
|
# CalDAV config
|
|
caldav_domain=$(ynh_app_setting_get "$caldav_app" domain)
|
|
caldav_path=$(ynh_app_setting_get "$caldav_app" path)
|
|
caldav_url="https://${caldav_domain}${caldav_path%/}"
|
|
sed -i "s@{CALDAV_BASEURL}@${caldav_url}${caldav_baseurl}@g" "$conf_path"
|
|
sed -i "s@{CALDAV_DOMAIN}@${caldav_domain}@g" "$conf_path"
|
|
|
|
ynh_system_user_create "$app" "$DESTDIR"
|
|
|
|
# Protect source code against modifications
|
|
find "${DESTDIR}" -type f -exec chown root:root {} \; -exec chmod 644 {} \;
|
|
find "${DESTDIR}" -type d -exec chown root:root {} \; -exec chmod 755 {} \;
|
|
|
|
# Only agendav user should write here
|
|
chown -hR $app: "${DESTDIR}/web/var/cache/"{profiler,twig}
|
|
chmod -R 750 "${DESTDIR}/web/var/cache/"{profiler,twig}
|
|
|
|
# The agendav user should read here, but does not need to write
|
|
# Other users should not be able to read as it stores passwords.
|
|
find "${DESTDIR}/web/config" -type f -exec chown root:$app {} \; -exec chmod 640 {} \;
|
|
find "${DESTDIR}/web/config" -type d -exec chown root:$app {} \; -exec chmod 750 {} \;
|
|
|
|
# Create log directory
|
|
install -m 750 -o $app -g adm -d "$LOGDIR"
|
|
|
|
# Initialize database
|
|
ynh_mysql_create_db "$dbname" "$dbuser" "$dbpass"
|
|
|
|
# Run database migrations
|
|
(
|
|
cd $DESTDIR
|
|
php agendavcli migrations:migrate --no-interaction
|
|
)
|
|
|
|
# Copy and set nginx configuration
|
|
nginx_conf="/etc/nginx/conf.d/${domain}.d/${app}.conf"
|
|
sed -i "s@{PATH}@${path}@g" ../conf/nginx.conf
|
|
sed -i "s@{LOCATION}@${path:-/}@g" ../conf/nginx.conf
|
|
sed -i "s@{DESTDIR}@${DESTDIR}@g" ../conf/nginx.conf
|
|
sed -i "s@{POOLNAME}@${app}@g" ../conf/nginx.conf
|
|
# comment redirection in case of an installation at root
|
|
[[ -n "$path" ]] || sed -i '$s/^/#/' ../conf/nginx.conf
|
|
cp ../conf/nginx.conf "$nginx_conf"
|
|
|
|
# Copy and set php-fpm configuration
|
|
phpfpm_conf="/etc/php5/fpm/pool.d/${app}.conf"
|
|
sed -i "s@{POOLNAME}@${app}@g" ../conf/php-fpm.conf
|
|
sed -i "s@{DESTDIR}@${DESTDIR}/@g" ../conf/php-fpm.conf
|
|
sed -i "s@{USER}@${app}@g" ../conf/php-fpm.conf
|
|
sed -i "s@{GROUP}@${app}@g" ../conf/php-fpm.conf
|
|
cp ../conf/php-fpm.conf "$phpfpm_conf"
|
|
|
|
if [ "$is_public" -eq 0 ]
|
|
then # Remove the public access
|
|
ynh_app_setting_delete "$app" skipped_uris
|
|
fi
|
|
# Make app public if necessary
|
|
if [ "$is_public" -eq 1 ]
|
|
then
|
|
# unprotected_uris allows SSO credentials to be passed anyway.
|
|
ynh_app_setting_set "$app" unprotected_uris "/"
|
|
|
|
# ynh panel is not needed
|
|
ynh_replace_string " include conf.d/" " #include conf.d/" "$nginx_conf"
|
|
|
|
ynh_store_file_checksum "$nginx_conf"
|
|
fi
|
|
|
|
# Reload services
|
|
service php5-fpm restart
|
|
service nginx reload
|