#!/bin/bash #================================================= # GENERIC START #================================================= # IMPORT GENERIC HELPERS #================================================= source _common.sh source /usr/share/yunohost/helpers #================================================= # MANAGE SCRIPT FAILURE #================================================= # Exit if an error occurs during the execution of the script ynh_abort_if_errors #=================================================== # RETRIEVE ARGUMENTS FROM THE MANIFEST #=================================================== # This is a multi-instance app, meaning it can be installed several times independently # The id of the app as stated in the manifest is available as $YNH_APP_ID # The instance number is available as $YNH_APP_INSTANCE_NUMBER (equals "1", "2", ...) # The app instance name is available as $YNH_APP_INSTANCE_NAME # - the first time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample # - the second time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample__2 # - ynhexample__{N} for the subsequent installations, with N=3,4, ... # The app instance name is probably what you are interested the most, since this is # guaranteed to be unique. This is a good unique identifier to define installation path, # db names, ... app=$YNH_APP_INSTANCE_NAME # Retrieve arguments domain=$YNH_APP_ARG_DOMAIN path_url=$YNH_APP_ARG_PATH admin=$YNH_APP_ARG_ADMIN title=$YNH_APP_ARG_TITLE is_public=$YNH_APP_ARG_IS_PUBLIC flarum_version="v0.1.0-beta.7" #=================================================== # CHECK IF THE APP CAN BE INSTALLED WITH THESE ARGS #=================================================== final_path=/var/www/$app test ! -e "$final_path" || ynh_die "This path already contains a folder" # Normalize the url path syntax path_url=$(ynh_normalize_url_path $path_url) # Check web path availability ynh_webpath_available $domain $path_url # Register (book) web path ynh_webpath_register $app $domain $path_url #=================================================== # STORE SETTINGS FROM MANIFEST #=================================================== # Save app settings ynh_app_setting_set $app domain $domain ynh_app_setting_set $app path $path_url ynh_app_setting_set $app admin $admin ynh_app_setting_set $app is_public $is_public ynh_app_setting_set $app final_path $final_path #=================================================== # CREATE DEDICATED USER #=================================================== ynh_system_user_create $app "$final_path" sudo usermod -a -G www-data $app #================================================= # COMPOSER INSTALLATION #================================================= composer_path=/opt/${app}_composer # Test if composer is installed if ! type "${composer_path}/composer" > /dev/null; then # Prepare composer directories sudo mkdir -p $composer_path sudo mkdir -p $composer_path/cache sudo chown -R $app:www-data $composer_path sudo chmod -R 0775 $composer_path # Install composer (https://getcomposer.org) EXPECTED_SIGNATURE=$(wget https://composer.github.io/installer.sig -O - -q) php -r "copy('https://getcomposer.org/installer', '$composer_path/composer-setup.php');" ACTUAL_SIGNATURE=$(php -r "echo hash_file('SHA384', '$composer_path/composer-setup.php');") if [ "$EXPECTED_SIGNATURE" = "$ACTUAL_SIGNATURE" ] then sudo su - $app -s /bin/bash -c "php $composer_path/composer-setup.php --install-dir=$composer_path --filename=composer --quiet" RESULT=$? else >&2 echo 'ERROR: Invalid Composer installer signature' RESULT=1 fi if [ $RESULT != 0 ] then ynh_die 'Composer could not be installed' fi fi COMPOSER_HOME=$composer_path #================================================= # FLARUM INSTALLATION #================================================= # Prepare Flarum temp directory tmp=/tmp/$app sudo mkdir -p $tmp sudo chown -R $app:www-data $tmp sudo chmod -R 0775 $tmp # Install Flarum sudo su - $app -s /bin/bash -c "php -d memory_limit=-1 $composer_path/composer create-project flarum/flarum $tmp $flarum_version --stability=beta --ansi" sudo cp -Rf $tmp/* $final_path sudo chown -R $app:www-data $final_path sudo chmod 0775 -R $final_path ynh_secure_remove "$tmp" #================================================= # CREATE A MYSQL DATABASE #================================================= db_name=$(ynh_sanitize_dbid $app) ynh_app_setting_set $app db_name $db_name ynh_mysql_setup_db $db_name $db_name ynh_app_setting_set "$app" db_pwd "$db_pwd" #================================================= # NGINX CONFIGURATION #================================================= # Bug in Nginx with locations and aliases (see http://stackoverflow.com/a/35102259 ) if [ $path_url = "/" ]; then sed -i "s@YNH_WWW_ROOTPATH@@g" ../conf/nginx.conf sed -i "s@YNH_WWW_ROOTAPP@/@g" ../conf/nginx.conf else sed -i "s@YNH_WWW_ROOTPATH@$path_url@g" ../conf/nginx.conf sed -i "s@YNH_WWW_ROOTAPP@$path_url$path_url@g" ../conf/nginx.conf fi # Create a dedicated nginx config ynh_add_nginx_config #================================================= # PHP-FPM CONFIGURATION #================================================= # Create a dedicated php-fpm config ynh_add_fpm_config #================================================= # SETUP LOGROTATE #================================================= # Use logrotate to manage app-specific logfile(s) ynh_use_logrotate #================================================= # SETUP SSOWAT #================================================= if [ $is_public -eq 0 ] then # Remove the public access ynh_app_setting_delete $app skipped_uris fi # Make app public if necessary if [ $is_public -eq 1 ] then # unprotected_uris allows SSO credentials to be passed anyway. ynh_app_setting_set $app unprotected_uris "/" fi #================================================= # RELOAD NGINX #================================================= systemctl reload nginx #================================================= # FLARUM POST-INSTALL #================================================= # Only if admin user or title were specified if [[ -n $admin && -n $title ]]; then finalflarumconf="$final_path/configuration.yml" cp ../sources/configuration.yml $finalflarumconf admin_pwd=$(ynh_string_random 8) sed -i "s@YNH_APP_DOMAIN@$domain@g" $finalflarumconf sed -i "s@/YNH_WWW_PATH@$path_url@g" $finalflarumconf sed -i "s@YNH_WWW_APP@$app@g" $finalflarumconf sed -i "s@YNH_DB_PASS@$db_pwd@g" $finalflarumconf sed -i "s@YNH_ADMIN_USER@$admin@g" $finalflarumconf sed -i "s@YNH_ADMIN_PASS@$admin_pwd@g" $finalflarumconf admin_mail=$(ynh_user_get_info $admin mail) sed -i "s%YNH_ADMIN_EMAIL%$admin_mail%g" $finalflarumconf sed -i "s@YNH_FORUM_TITLE@$title@g" $finalflarumconf cd "$final_path" exec_as www-data \ php -d memory_limit=-1 flarum install -f configuration.yml # Generate and add root token for user creation and deletion roottoken=$(ynh_string_random 40) apitablesql="CREATE TABLE IF NOT EXISTS api_keys (api_key TEXT(40) NOT NULL)" rootsql="INSERT INTO api_keys VALUES ('"$roottoken"')" ynh_mysql_execute_as_root "$apitablesql" $db_name ynh_mysql_execute_as_root "$rootsql" $db_name ynh_app_setting_set "$app" root_token "$roottoken" # Install the SSOwat auth extension #sudo su - www-data -s /bin/bash -c "cd $final_path && /opt/flarum_composer/composer require 'tituspijean/flarum-ext-auth-ssowat:*@dev'" # Configure SSOwat auth extension #ssowatdomain=$(&2 echo "Installation successfull. Admin : $admin, password : $admin_pwd. Change it!" else >&2 echo "Installation successfull. Post-installation required, visit your Flarum instance!" fi