#!/bin/bash #================================================= # GENERIC START #================================================= # Load common variables and helpers source ./experimental_helper.sh source ./_common.sh # IMPORT GENERIC HELPERS source /usr/share/yunohost/helpers # Exit if an error occurs during the execution of the script ynh_abort_if_errors ynh_script_progression --message="Validating installation parameters..." # Retrieve arguments domain=$YNH_APP_ARG_DOMAIN path_url=$YNH_APP_ARG_PATH admin=$YNH_APP_ARG_ADMIN is_public=$YNH_APP_ARG_IS_PUBLIC upstream_version=$(ynh_app_upstream_version) # Register (book) web path ynh_webpath_register --app $app --domain $domain --path_url $path_url # Check user parameter ynh_user_exists "$admin" \ || ynh_die --message "The chosen admin user does not exist." # Check Final Path availability test ! -e "$final_path" || ynh_die --message "This path already contains a folder" if [ -e "$datadir" ]; then old_data_dir_path="$datadir$(date '+%Y%m%d.%H%M%S')" ynh_print_warn "A data directory already exist. Data was renamed to $old_data_dir_path" mv "$datadir" "$old_data_dir_path" fi # Generate random password and key ynh_script_progression --message="Defining db password and key..." db_password=$(ynh_string_random) key=$(ynh_string_random) lfs_key=$(ynh_string_random) # Find available ports port=$(ynh_find_port --port 6000) # Store Settings ynh_script_progression --message="Storing installation settings..." ynh_app_setting_set --app $app --key mysqlpwd --value $db_password ynh_app_setting_set --app $app --key adminusername --value $admin ynh_app_setting_set --app $app --key secret_key --value $key ynh_app_setting_set --app $app --key lfs_key --value $lfs_key ynh_app_setting_set --app $app --key web_port --value $port #================================================= # STANDARD MODIFICATIONS #================================================= # Initialize database and store mysql password for upgrade ynh_script_progression --message="Configuring MySQL database..." ynh_mysql_create_db "$dbname" "$db_user" "$db_password" # Add users ynh_script_progression --message="Configuring system user..." ynh_system_user_create --username=$app --home_dir=$datadir --use_shell # Add ssh permission for forgejo user adduser $app ssh.app # create needed directories create_dir # Configure init script ynh_script_progression --message="Configuring a systemd service..." --weight=2 ynh_add_systemd_config # Modify Nginx configuration file and copy it to Nginx conf directory ynh_script_progression --message="Configuring nginx..." --weight=1 config_nginx # Configure forgejo with app.ini file ynh_script_progression --message="Configuring application, step 1/2..." config_forgejo ynh_script_progression --message="Installing sources files..." --weight=10 # Install forgejo ynh_setup_source $final_path source/$architecture # Set permissions ynh_script_progression --message="Protecting directory" set_permission ynh_script_progression --message="Configuring application, step 2/2..." # Start forgejo for building mysql tables systemctl start "$app".service # Wait untill login_source mysql table is created while ! $(ynh_mysql_connect_as "$db_user" "$db_password" "$dbname" <<< "SELECT * FROM login_source;" &>/dev/null) do sleep 2 done # Add ldap config ynh_replace_string --match_string "__APP__" --replace_string "$app" --target_file ../conf/login_source.sql ynh_mysql_connect_as "$db_user" "$db_password" "$dbname" < ../conf/login_source.sql # SETUP FAIL2BAN ynh_script_progression --message="Configuring fail2ban..." ynh_add_fail2ban_config --logpath "/var/log/$app/forgejo.log" --failregex ".*Failed authentication attempt for .* from " --max_retry 5 #================================================= # GENERIC FINALIZATION #================================================= # Unprotect root from SSO if public ynh_script_progression --message="Configuring permissions..." if [ "$is_public" == '1' ]; then ynh_permission_update --permission "main" --add "visitors" fi # Create permission ynh_script_progression --message="Configuring permissions" ynh_permission_create --permission="admin" --allowed=$admin # Add forgejo to YunoHost's monitored services ynh_script_progression --message="Register Forgejo service..." yunohost service add "$app" --log="/var/log/$app/forgejo.log" # Configure logrotate ynh_script_progression --message="Configuring log rotation..." ynh_use_logrotate --logfile "/var/log/$app" # Save Version ynh_app_setting_set --app $app --key upstream_version --value $(ynh_app_upstream_version) # Reload services ynh_script_progression --message="Starting forgejo services..." --weight=3 ynh_systemd_action --service_name=$app --action="start" --log_path="/var/log/$app/forgejo.log" --line_match="Starting new Web server: tcp:127.0.0.1:" # Store the checksum with the 'INTERNAL_TOKEN' value. # Should be removed when the issue https://github.com/go-gitea/gitea/issues/3246 is fixed ynh_store_file_checksum --file "$final_path/custom/conf/app.ini" ynh_script_progression --message="Installation of $app completed" --last