#!/bin/bash #set -eu # Charge les fonctions génériques habituellement utilisées dans le script source fonctions # Active trap pour arrêter le script si une erreur est détectée. #TRAP_ON # Source app helpers source /usr/share/yunohost/helpers # We retrieve app parameters app=$YNH_APP_INSTANCE_NAME # We check variables are not empty CHECK_VAR "$app" "app name not set" path=$(ynh_app_setting_get $app path) domain=$(ynh_app_setting_get $app domain) final_path=$(ynh_app_setting_get $app final_path) finalnginxconf=$(ynh_app_setting_get $app finalnginxconf) finalphpconf=$(ynh_app_setting_get $app finalphpconf) runninguser=$(ynh_app_setting_get $app runninguser) calibrepath=$(ynh_app_setting_get $app calibrepath) basicauthcreate=$(ynh_app_setting_get $app basicauthcreate) # We check that calibrepath is correct CHECK_CALIBREPATH # We install dependencies sudo apt-get update -y sudo apt-get install php5-gd php5-sqlite php5-json php5-intl -y # Removal of old folder and restart from fresh sudo rm -rf $final_path sudo mkdir -p $final_path # We download the sources and check the md5sum cops_file=`sudo cat ../sources/source_file`; sudo wget -nv -i ../sources/source_url -P ../sources/ sudo md5sum -c ../sources/source_md5 --status || (echo "Corrupt source" >&2 && false) sudo unzip ../sources/${cops_file} -d $final_path # Site adjustments sed -i "s@CALIBRETOCHANGE@$calibrepath@g" ../conf/config_local.php timezone=`sudo cat /etc/timezone`; sed -i "s@TIMEZONETOCHANGE@$timezone@g" ../conf/config_local.php sudo cp ../conf/config_local.php $final_path sudo cp ../conf/robots.txt $final_path # Set permissions sudo chmod 775 -R $final_path sudo chown -hR $runninguser:$runninguser $final_path # Add basic auth if requested if [ "$basicauthcreate" = "Yes" ]; then basicauthuser=$(ynh_app_setting_get $app basicauthuser) basicauthpass=$(ynh_app_setting_get $app basicauthpass) # Generation of the htpasswd file according https://www.nginx.com/resources/wiki/community/faq/ SALT="$(openssl rand -base64 3)" (SHA1=$(printf "$basicauthpass$SALT" | openssl dgst -binary -sha1 | xxd -ps | sed 's#$#'"`echo -n $SALT | xxd -ps`"'#' | xxd -r -ps | base64);printf "$basicauthuser:{SSHA}$SHA1\n" >> ../sources/htpasswd) sudo cp ../sources/htpasswd $final_path sudo chmod 440 $final_path/htpasswd sudo chown www-data:www-data $final_path/htpasswd # Modif nginx sed -i "s|^.*\bauth_basic\b.*$| auth_basic \"Private Library\";|" ../conf/nginx.conf; sed -i "s|^.*\bauth_basic_user_file\b.*$| auth_basic_user_file $final_path/htpasswd;|" ../conf/nginx.conf; else echo "No basic auth"; fi # Modify Nginx configuration file and copy it to Nginx conf.d directory sed -i "s@PATHTOCHANGE@$path@g" ../conf/nginx.conf sed -i "s@ALIASTOCHANGE@$final_path/@g" ../conf/nginx.conf sed -i "s@NAMETOCHANGE@$app@g" ../conf/nginx.conf sudo cp ../conf/nginx.conf $finalnginxconf # Modify php-fpm configuration file and copy it to php-fpm pool.d directory sed -i "s@NAMETOCHANGE@$app@g" ../conf/php-fpm.conf sed -i "s@FOLDERTOCHANGE@$final_path@g" ../conf/php-fpm.conf sed -i "s@USERTOCHANGE@$runninguser@g" ../conf/php-fpm.conf sudo cp ../conf/php-fpm.conf $finalphpconf sudo chown root: $finalphpconf sudo chmod 644 $finalphpconf # Make app public if necessary is_public=$(ynh_app_setting_get $app is_public) if [ "$is_public" = "Yes" ]; then ynh_app_setting_set $app skipped_uris "/" else ynh_app_setting_set $app protected_uris "/" fi # Reload Nginx and regenerate SSOwat conf sudo service php5-fpm reload sudo service nginx reload sudo yunohost app ssowatconf