#!/bin/bash #================================================= # GENERIC START #================================================= # IMPORT GENERIC HELPERS #================================================= # Keep this path for calling _common.sh inside the execution's context of backup and restore scripts source ../settings/scripts/_common.sh source ../settings/scripts/ynh_mongo_db__2 source ../settings/scripts/ynh_install_java source /usr/share/yunohost/helpers #================================================= # MANAGE SCRIPT FAILURE #================================================= ynh_clean_setup () { #### Remove this function if there's nothing to clean before calling the remove script. true } # Exit if an error occurs during the execution of the script ynh_abort_if_errors #================================================= # LOAD SETTINGS #================================================= ynh_script_progression --message="Loading installation settings..." --weight=1 app=$YNH_APP_INSTANCE_NAME domain=$(ynh_app_setting_get --app=$app --key=domain) path_url=$(ynh_app_setting_get --app=$app --key=path) final_path=$(ynh_app_setting_get --app=$app --key=final_path) db_user=$(ynh_app_setting_get --app=$app --key=db_user) html_path=$(ynh_app_setting_get --app=$app --key=html_path) document_path=$(ynh_app_setting_get --app=$app --key=document_path) public_key=$(ynh_app_setting_get --app=$app --key=public_key) #================================================= # CHECK IF THE APP CAN BE RESTORED #================================================= ynh_script_progression --message="Validating restoration parameters..." --weight=1 test ! -d $final_path \ || ynh_die --message="There is already a directory: $final_path " #================================================= # STANDARD RESTORATION STEPS #================================================= # RECREATE THE DEDICATED USER #================================================= ynh_script_progression --message="Recreating the dedicated system user..." --weight=1 # Create the dedicated user (if not existing) ynh_system_user_create --username=$app --home_dir="$final_path" --use_shell --groups="ssh.app" #================================================= # RESTORE THE APP MAIN DIR #================================================= ynh_script_progression --message="Restoring the app main directory..." --weight=1 ynh_restore_file --origin_path="$final_path" # FIXME: this should be managed by the core in the future # Here, as a packager, you may have to tweak the ownerhsip/permissions # such that the appropriate users (e.g. maybe www-data) can access # files in some cases. # But FOR THE LOVE OF GOD, do not allow r/x for "others" on the entire folder - # this will be treated as a security issue. chmod 750 "$final_path" chmod -R o-rwx "$final_path" chown -R $app:$app "$final_path" #Make sure the .ssh and files have the correct access rights if [ -n "$public_key" ] then chown -R $app:$app "$final_path/.ssh" chmod 700 "$final_path/.ssh" chmod 600 "$final_path/.ssh/authorized_keys" # Enable restart of services for the dont-code user chown $app:$app "$final_path/restart-services.sh" chmod o-rwx,gu=rwx "$final_path/restart-services.sh" ynh_restore_file --origin_path="/etc/sudoers.d/$app-sudoers" chown root:root "/etc/sudoers.d/$app-sudoers" chmod o-rwx,gu=r "/etc/sudoers.d/$app-sudoers" fi #================================================= # RESTORE THE DOCUMENTS DIRECTORY #================================================= ynh_script_progression --message="Restoring the html directory..." --weight=1 ynh_restore_file --origin_path="$html_path" --not_mandatory mkdir -p $document_path # FIXME: this should be managed by the core in the future # Here, as a packager, you may have to tweak the ownerhsip/permissions # such that the appropriate users (e.g. maybe www-data) can access # files in some cases. # But FOR THE LOVE OF GOD, do not allow r/x for "others" on the entire folder - # this will be treated as a security issue. chmod 750 "$html_path" chmod -R o-rwx "$html_path" chown -R $app:www-data "$html_path" #================================================= # SPECIFIC RESTORATION #================================================= # REINSTALL DEPENDENCIES #================================================= ynh_script_progression --message="Reinstalling dependencies..." --weight=1 # Install the required version of Java ynh_install_java --java_version=$java_version --jdk_type=jre # Define and install dependencies ynh_install_app_dependencies $pkg_dependencies # Install the required version of Mongo ynh_install_mongo --mongo_version=$mongo_version #================================================= # RESTORE THE NGINX CONFIGURATION #================================================= ynh_script_progression --message="Restoring the NGINX web server configuration..." --weight=1 ynh_restore_file --origin_path="/etc/nginx/conf.d/$domain.d/$app.conf" #================================================= # RESTORE THE MONGO DATABASES #================================================= ynh_script_progression --message="Restoring the Mongo databases..." --weight=1 db_pwd=$(ynh_app_setting_get --app=$app --key=db_pwd) ynh_mongo_setup_db --db_user=$db_user --db_name=${MONGO_DB_LIST[0]} --db_pwd=$db_pwd for db_name in "${MONGO_DB_LIST[@]}" do ynh_mongo_restore_db --database="$db_name" < ./dump-${db_name}.bson done #================================================= # RESTORE VARIOUS FILES #================================================= ynh_script_progression --message="Restoring various files..." --weight=1 # ynh_restore_file --origin_path="/etc/cron.d/$app" #================================================= # RESTORE SYSTEMD #================================================= ynh_script_progression --message="Restoring the systemd configuration..." --weight=1 for service_name in "${SERVICES_LIST[@]}" do ynh_restore_file --origin_path="/etc/systemd/system/${app}-${service_name}.service" systemctl enable "${app}-${service_name}.service" --quiet done #================================================= # RESTORE THE LOGROTATE CONFIGURATION #================================================= ynh_script_progression --message="Restoring the logrotate configuration..." --weight=1 ynh_restore_file --origin_path="/etc/logrotate.d/$app" mkdir --parents /var/log/$app chown $app:adm /var/log/$app #================================================= # INTEGRATE SERVICES IN YUNOHOST #================================================= ynh_script_progression --message="Integrating services in YunoHost..." --weight=1 for service_name in "${SERVICES_LIST[@]}" do yunohost service add "${app}-${service_name}" --description="Dont-code platform ${service_name} service" --log="/var/log/${app}/${service_name}-${app}.log" done #================================================= # START SYSTEMD SERVICE #================================================= ynh_script_progression --message="Starting systemd services..." --weight=1 for service_name in "${SERVICES_LIST[@]}" do ynh_systemd_action --service_name="${app}-${service_name}" --action="start" --log_path="/var/log/$app/$app.log" done #================================================= # GENERIC FINALIZATION #================================================= # RELOAD NGINX #================================================= ynh_script_progression --message="Reloading NGINX web server..." --weight=1 ynh_systemd_action --service_name=nginx --action=reload #================================================= # END OF SCRIPT #================================================= ynh_script_progression --message="Restoration completed for $app" --last