mirror of
https://github.com/YunoHost-Apps/flarum_ynh.git
synced 2024-09-03 18:36:24 +02:00
0f73336986
Fixes #59
262 lines
9 KiB
Bash
262 lines
9 KiB
Bash
#!/bin/bash
|
||
|
||
#=================================================
|
||
# GENERIC START
|
||
#=================================================
|
||
# IMPORT GENERIC HELPERS
|
||
#=================================================
|
||
|
||
source _common.sh
|
||
source /usr/share/yunohost/helpers
|
||
|
||
#=================================================
|
||
# MANAGE SCRIPT FAILURE
|
||
#=================================================
|
||
|
||
# Exit if an error occurs during the execution of the script
|
||
ynh_abort_if_errors
|
||
|
||
#===================================================
|
||
# RETRIEVE ARGUMENTS FROM THE MANIFEST
|
||
#===================================================
|
||
|
||
# This is a multi-instance app, meaning it can be installed several times independently
|
||
# The id of the app as stated in the manifest is available as $YNH_APP_ID
|
||
# The instance number is available as $YNH_APP_INSTANCE_NUMBER (equals "1", "2", ...)
|
||
# The app instance name is available as $YNH_APP_INSTANCE_NAME
|
||
# - the first time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample
|
||
# - the second time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample__2
|
||
# - ynhexample__{N} for the subsequent installations, with N=3,4, ...
|
||
# The app instance name is probably what you are interested the most, since this is
|
||
# guaranteed to be unique. This is a good unique identifier to define installation path,
|
||
# db names, ...
|
||
app=$YNH_APP_INSTANCE_NAME
|
||
|
||
# Retrieve arguments
|
||
|
||
domain=$YNH_APP_ARG_DOMAIN
|
||
path_url=$YNH_APP_ARG_PATH
|
||
admin=$YNH_APP_ARG_ADMIN
|
||
title=$YNH_APP_ARG_TITLE
|
||
is_public=$YNH_APP_ARG_IS_PUBLIC
|
||
flarum_version="v0.1.0-beta.7"
|
||
|
||
#===================================================
|
||
# CHECK IF THE APP CAN BE INSTALLED WITH THESE ARGS
|
||
#===================================================
|
||
|
||
final_path=/var/www/$app
|
||
test ! -e "$final_path" || ynh_die "This path already contains a folder"
|
||
|
||
# Normalize the url path syntax
|
||
path_url=$(ynh_normalize_url_path $path_url)
|
||
|
||
# Check web path availability
|
||
ynh_webpath_available $domain $path_url
|
||
|
||
# Register (book) web path
|
||
ynh_webpath_register $app $domain $path_url
|
||
|
||
#===================================================
|
||
# STORE SETTINGS FROM MANIFEST
|
||
#===================================================
|
||
|
||
# Save app settings
|
||
ynh_app_setting_set $app domain $domain
|
||
ynh_app_setting_set $app path $path_url
|
||
ynh_app_setting_set $app admin $admin
|
||
ynh_app_setting_set $app is_public $is_public
|
||
ynh_app_setting_set $app final_path $final_path
|
||
|
||
#===================================================
|
||
# CREATE DEDICATED USER
|
||
#===================================================
|
||
|
||
ynh_system_user_create $app "$final_path"
|
||
sudo usermod -a -G www-data $app
|
||
|
||
#=================================================
|
||
# COMPOSER INSTALLATION
|
||
#=================================================
|
||
|
||
composer_path=/opt/${app}_composer
|
||
# Test if composer is installed
|
||
if ! type "${composer_path}/composer" > /dev/null; then
|
||
|
||
# Prepare composer directories
|
||
sudo mkdir -p $composer_path
|
||
sudo mkdir -p $composer_path/cache
|
||
sudo chown -R $app:www-data $composer_path
|
||
sudo chmod -R 0775 $composer_path
|
||
|
||
# Install composer (https://getcomposer.org)
|
||
EXPECTED_SIGNATURE=$(wget https://composer.github.io/installer.sig -O - -q)
|
||
php -r "copy('https://getcomposer.org/installer', '$composer_path/composer-setup.php');"
|
||
ACTUAL_SIGNATURE=$(php -r "echo hash_file('SHA384', '$composer_path/composer-setup.php');")
|
||
if [ "$EXPECTED_SIGNATURE" = "$ACTUAL_SIGNATURE" ]
|
||
then
|
||
sudo su - $app -s /bin/bash -c "php $composer_path/composer-setup.php --install-dir=$composer_path --filename=composer --quiet"
|
||
RESULT=$?
|
||
else
|
||
>&2 echo 'ERROR: Invalid Composer installer signature'
|
||
RESULT=1
|
||
fi
|
||
if [ $RESULT != 0 ]
|
||
then
|
||
ynh_die 'Composer could not be installed'
|
||
fi
|
||
|
||
fi
|
||
|
||
COMPOSER_HOME=$composer_path
|
||
|
||
#=================================================
|
||
# FLARUM INSTALLATION
|
||
#=================================================
|
||
|
||
# Prepare Flarum temp directory
|
||
tmp=/tmp/$app
|
||
sudo mkdir -p $tmp
|
||
sudo chown -R $app:www-data $tmp
|
||
sudo chmod -R 0775 $tmp
|
||
|
||
# Install Flarum
|
||
sudo su - $app -s /bin/bash -c "php -d memory_limit=-1 $composer_path/composer create-project flarum/flarum $tmp $flarum_version --stability=beta --ansi"
|
||
|
||
sudo cp -Rf $tmp/* $final_path
|
||
sudo chown -R $app:www-data $final_path
|
||
sudo chmod 0775 -R $final_path
|
||
ynh_secure_remove "$tmp"
|
||
|
||
#=================================================
|
||
# CREATE A MYSQL DATABASE
|
||
#=================================================
|
||
|
||
db_name=$(ynh_sanitize_dbid $app)
|
||
ynh_app_setting_set $app db_name $db_name
|
||
ynh_mysql_setup_db $db_name $db_name
|
||
ynh_app_setting_set "$app" db_pwd "$db_pwd"
|
||
|
||
#=================================================
|
||
# NGINX CONFIGURATION
|
||
#=================================================
|
||
|
||
# Bug in Nginx with locations and aliases (see http://stackoverflow.com/a/35102259 )
|
||
if [ $path_url = "/" ]; then
|
||
sed -i "s@YNH_WWW_ROOTPATH@@g" ../conf/nginx.conf
|
||
sed -i "s@YNH_WWW_ROOTAPP@/@g" ../conf/nginx.conf
|
||
else
|
||
sed -i "s@YNH_WWW_ROOTPATH@$path_url@g" ../conf/nginx.conf
|
||
sed -i "s@YNH_WWW_ROOTAPP@$path_url$path_url@g" ../conf/nginx.conf
|
||
fi
|
||
# Create a dedicated nginx config
|
||
ynh_add_nginx_config
|
||
|
||
#=================================================
|
||
# PHP-FPM CONFIGURATION
|
||
#=================================================
|
||
|
||
# Create a dedicated php-fpm config
|
||
ynh_add_fpm_config
|
||
|
||
#=================================================
|
||
# SETUP LOGROTATE
|
||
#=================================================
|
||
|
||
# Use logrotate to manage app-specific logfile(s)
|
||
ynh_use_logrotate
|
||
|
||
#=================================================
|
||
# SETUP SSOWAT
|
||
#=================================================
|
||
|
||
if [ $is_public -eq 0 ]
|
||
then # Remove the public access
|
||
ynh_app_setting_delete $app skipped_uris
|
||
fi
|
||
# Make app public if necessary
|
||
if [ $is_public -eq 1 ]
|
||
then
|
||
# unprotected_uris allows SSO credentials to be passed anyway.
|
||
ynh_app_setting_set $app unprotected_uris "/"
|
||
fi
|
||
|
||
#=================================================
|
||
# RELOAD NGINX
|
||
#=================================================
|
||
|
||
systemctl reload nginx
|
||
|
||
#=================================================
|
||
# FLARUM POST-INSTALL
|
||
#=================================================
|
||
|
||
# Only if admin user or title were specified
|
||
if [[ -n $admin && -n $title ]]; then
|
||
finalflarumconf="$final_path/configuration.yml"
|
||
cp ../sources/configuration.yml $finalflarumconf
|
||
admin_pwd=$(ynh_string_random 8)
|
||
sed -i "s@YNH_APP_DOMAIN@$domain@g" $finalflarumconf
|
||
sed -i "s@/YNH_WWW_PATH@$path_url@g" $finalflarumconf
|
||
sed -i "s@YNH_WWW_APP@$app@g" $finalflarumconf
|
||
sed -i "s@YNH_DB_PASS@$db_pwd@g" $finalflarumconf
|
||
sed -i "s@YNH_ADMIN_USER@$admin@g" $finalflarumconf
|
||
sed -i "s@YNH_ADMIN_PASS@$admin_pwd@g" $finalflarumconf
|
||
admin_mail=$(ynh_user_get_info $admin mail)
|
||
sed -i "s%YNH_ADMIN_EMAIL%$admin_mail%g" $finalflarumconf
|
||
sed -i "s@YNH_FORUM_TITLE@$title@g" $finalflarumconf
|
||
cd "$final_path"
|
||
exec_as www-data \
|
||
php -d memory_limit=-1 flarum install -f configuration.yml
|
||
ynh_secure_remove $finalflarumconf
|
||
|
||
# Generate and add root token for user creation and deletion
|
||
roottoken=$(ynh_string_random 40)
|
||
apitablesql="CREATE TABLE IF NOT EXISTS api_keys (api_key TEXT(40) NOT NULL)"
|
||
rootsql="INSERT INTO api_keys VALUES ('"$roottoken"')"
|
||
ynh_mysql_execute_as_root "$apitablesql" $db_name
|
||
ynh_mysql_execute_as_root "$rootsql" $db_name
|
||
ynh_app_setting_set "$app" root_token "$roottoken"
|
||
|
||
# Install the SSOwat auth extension
|
||
#sudo su - www-data -s /bin/bash -c "cd $final_path && /opt/flarum_composer/composer require 'tituspijean/flarum-ext-auth-ssowat:*@dev'"
|
||
|
||
# Configure SSOwat auth extension
|
||
#ssowatdomain=$(</etc/yunohost/current_host)
|
||
#data='{"flarum-ext-auth-ssowat.address": "'$ssowatdomain'","flarum-ext-auth-ssowat.onlyUse": true}'
|
||
#rep=$(curl -s -o /dev/null -w "%{http_code}" -k -i \
|
||
# -H "Content-Type: application/json" \
|
||
# -H "Authorization: Token $roottoken; userId=1" \
|
||
# -X POST -d "$data" \
|
||
# -L https://${domain}${path}/api/settings )
|
||
#
|
||
#if [[ $rep != 204 ]]; then
|
||
# ynh_die "ERROR: Could not configure SSOwat extension"
|
||
#fi
|
||
|
||
# Create missing users
|
||
for username in $(ynh_user_list); do
|
||
if [ "$username" == "$admin" ]; then continue; else
|
||
userpass=$(ynh_string_random 16)
|
||
usermail=$(ynh_user_get_info $username 'mail')
|
||
data='{"data":{"attributes":{"username":"'$username'","email":"'$usermail'","password":"'$userpass'"}}}'
|
||
rep=$(curl -s -o /dev/null -w "%{http_code}" -k -i \
|
||
-H "Content-Type: application/json" \
|
||
-H "Authentication: Token $roottoken" \
|
||
-X POST -d "$data" \
|
||
-L https://${domain}${path_url}/api/users )
|
||
if [[ $rep != 201 ]]; then
|
||
ynh_die "ERROR: Flarum account creation failed for $username"
|
||
fi
|
||
fi
|
||
done
|
||
app_message="User : $admin, password : $admin_pwd
|
||
Change your password!
|
||
Your forum is accessible at https://$domain/$path_url"
|
||
>&2 echo $app_message
|
||
ynh_send_readme_to_admin "$app_message" "$admin"
|
||
else
|
||
app_message="Post-installation required, visit your Flarum instance."
|
||
>&2 echo $app_message
|
||
ynh_send_readme_to_admin "$app_message" "$admin"
|
||
fi
|