#!/bin/bash #================================================= # GENERIC START #================================================= # IMPORT GENERIC HELPERS #================================================= source _common.sh source /usr/share/yunohost/helpers #from 2024.2~ynh1 #End of support for mosquitto. However, we still keep trace of if it was installed in order to be able to back it up and remove it correctly mosquitto=$(ynh_app_setting_get --app=$app --key=mosquitto) if [[ -z "${mosquitto+x}" ]]; then if [[ "$mqtt_domain"="$domain" ]]; then ynh_app_setting_set --app="$app" --key=mosquitto --value=0 else ynh_print_warn --message="If you didn't already do it, you should migrate to mosquitto package outside of the app as it will soon not be maintained anymore" ynh_app_setting_set --app="$app" --key=mosquitto --value=1 fi fi #================================================= # CHECK VERSION #================================================= ynh_script_progression --message="Checking version..." upgrade_type=$(ynh_check_app_version_changed) #================================================= # STANDARD UPGRADE STEPS #================================================= # STOP SYSTEMD SERVICE #================================================= ynh_script_progression --message="Stopping a systemd service..." --weight=2 ynh_systemd_action --service_name="$app" --action="stop" --log_path="/var/log/$app/$app.log" #================================================= # ENSURE DOWNWARD COMPATIBILITY #================================================= ynh_script_progression --message="Ensuring downward compatibility..." #Store OS and machine (to be used in restore script) if [ -z "${OS:+x}" ]; then ynh_app_setting_-set --app="$app" --key=OS --value=`lowercase \`uname -s\`` fi if [ -z "${mach:+x}" ]; then mach=`uname -m` ynh_app_setting_set --app="$app" --key=mach --value="$mach" fi #sudoer file for restarting is not required anymore (from 2024.2~ynh1) as upgrade is managed by the Yunohost Package if [ -f /etc/sudoers.d/domoticz ]; then rm /etc/sudoers.d/domoticz fi #Create a dedicated path for the api access if [ -z "$api_path" ]; then if [ "$path" == "/" ]; then api_path=/api_/"$app" else api_path=/api_"$path" fi ynh_app_setting_set --app="$app" --key=api_path --value="$api_path" fi #remove unwanted log folder if [ -d "/var/log/$app/$app" ]; then ynh_secure_remove "/var/log/$app/$app" fi #================================================= # CREATE DEDICATED USER #================================================= ynh_script_progression --message="Checking dedicated user permissions..." #allow user to access USB / serial port to communicate with tools (RFXtrx, Z-wave dongle, etc.) & i2c bus if grep dialout -q < /etc/group; then usermod -a -G dialout "$app" fi if grep i2c -q < /etc/group; then usermod -a -G i2c "$app" fi if grep gpio -q < /etc/group; then usermod -a -G gpio "$app" fi #================================================= # DOWNLOAD, CHECK AND UNPACK SOURCE #================================================= if [ "$upgrade_type" == "UPGRADE_APP" ] then ynh_script_progression --message="Upgrading source files..." --weight=15 ynh_setup_source --dest_dir="$install_dir" #Create the database file if [ ! -f "$install_dir"/domoticz.db ]; then touch "$install_dir"/domoticz.db chmod 644 "$install_dir"/domoticz.db fi fi chmod 750 "$install_dir" chmod -R o-rwx "$install_dir" chown -R "$app":"$app" "$install_dir" #================================================= # NGINX CONFIGURATION #================================================= ynh_script_progression --message="Upgrading NGINX web server configuration..." [[ "$mosquitto" = 1 ]] && ynh_add_config --template="../conf/mqtt_nginx.conf" --destination="/etc/nginx/conf.d/"$mqtt_domain".d/mqtt_"$app".conf" #Set Hook for nginx domain cp -R ../sources/hooks/conf_regen/95-nginx_domoticz /usr/share/yunohost/hooks/conf_regen/ # Create a dedicated NGINX config if [[ ! -f "/etc/nginx/conf.d/"$domain".d/api_"$app".conf" ]] then ynh_print_warn --message="The nginx conf file will now be splitted between standard and api related path" ynh_print_warn --message="Report any manual changes on the new /etc/nginx/conf.d/$domain.d/api_$app.conf file for json command to keep working" ynh_add_config --template="api_nginx.conf" --destination="/etc/nginx/conf.d/"$domain".d/api_"$app".conf" fi ynh_add_nginx_config #================================================= # SPECIFIC UPGRADE #================================================= # SETUP SYSTEMD #================================================= ynh_script_progression --message="Upgrading systemd configuration..." # Create a dedicated systemd config ynh_add_systemd_config #================================================= # GENERIC FINALIZATION #================================================= # SETUP LOGROTATE #================================================= ynh_script_progression --message="Upgrading logrotate configuration..." mkdir -p /var/log/"$app" chown -R domoticz: /var/log/"$app" # Use logrotate to manage app-specific logfile(s) ynh_use_logrotate --logfile="/var/log/$app" --non-append #================================================= # SETUP FAIL2BAN #================================================= ynh_script_progression --message="Configuring Fail2Ban..." --weight=8 # Make sure a log file exists (mostly for CI tests) log_file=/var/log/$app/$app.log if [ ! -f "$log_file" ]; then touch "$log_file" chown $app: "$log_file" fi # Create a dedicated Fail2Ban config ynh_add_fail2ban_config --logpath="$log_file" --failregex="^.*Error: Failed login attempt from .*$" --max_retry=5 #not required in 2023.1 anymore #ynh_print_info --message="If you wish for Fail2ban to work, set up your local address in Setup/Settings/System/Local Networks as per documentation" #================================================= # INTEGRATE SERVICE IN YUNOHOST #================================================= ynh_script_progression --message="Integrating service in YunoHost..." yunohost service add "$app" --description="Domotique open sources" --log="/var/log/$app/$app.log" #================================================= # START SYSTEMD SERVICE #================================================= ynh_script_progression --message="Starting a systemd service..." --weight=3 ynh_systemd_action --service_name="$app" --action="start" #================================================= # END OF SCRIPT #================================================= ynh_script_progression --message="Upgrade of $app completed" --last