#!/bin/bash source _common.sh source /usr/share/yunohost/helpers #================================================= # DOWNLOAD, CHECK AND UNPACK SOURCE #================================================= ynh_script_progression "Setting up source files..." # Download, check integrity, uncompress and patch the source from app.src ynh_setup_source --dest_dir="$install_dir" #REMOVEME? Assuming the install dir is setup using ynh_setup_source, the proper chmod/chowns are now already applied and it shouldn't be necessary to tweak perms | chmod -R o-rwx "$install_dir" #REMOVEME? Assuming the install dir is setup using ynh_setup_source, the proper chmod/chowns are now already applied and it shouldn't be necessary to tweak perms | chown -R "$app":www-data "$install_dir" #================================================= # SYSTEM CONFIGURATION #================================================= ynh_script_progression "Adding system configurations related to $app..." # Create a dedicated PHP-FPM config ynh_config_add_phpfpm # Create a dedicated NGINX config ynh_config_add_nginx ynh_config_add --template="freshrss.cron" --destination="/etc/cron.d/$app" #REMOVEME? Assuming the file is setup using ynh_config_add, the proper chmod/chowns are now already applied and it shouldn't be necessary to tweak perms | chown root: "/etc/cron.d/$app" #REMOVEME? Assuming the file is setup using ynh_config_add, the proper chmod/chowns are now already applied and it shouldn't be necessary to tweak perms | chmod 644 "/etc/cron.d/$app" log_path="/var/log/$app" mkdir -p "$log_path" chown "$app":www-data "$log_path" #================================================= # SETUP LOGROTATE #================================================= ynh_script_progression "Configuring log rotation..." # Use logrotate to manage application logfile(s) ynh_config_add_logrotate #================================================= # SETUP FAIL2BAN #================================================= ynh_script_progression "Upgrading fail2ban configuration..." # Create the logfile, required before configuring fail2ban touch "/var/log/${domain}-access.log" # Create a dedicated Fail2Ban config ynh_config_add_fail2ban --logpath="/var/log/nginx/${domain}-access.log" --failregex=" .* \"GET /api/.*\" 401" #================================================= # SPECIFIC SETUP #================================================= # SETUPING FRESHRSS #================================================= ynh_script_progression "$app setup..." ynh_hide_warnings ynh_exec_as_app "$install_dir/cli/do-install.php" --default_user "$admin" --auth_type http_auth --environment production --base_url "https://$domain$path" --title FreshRSS --api_enabled --db-type mysql --db-host localhost --db-user "$db_name" --db-password "$db_pwd" --db-base "$db_name" for myuser in $(ynh_user_list) do user_token=$(ynh_string_random) ynh_exec_as_app "$install_dir/cli/create-user.php" --user "$myuser" --language "$language" --token "$user_token" done #================================================= # END OF SCRIPT #================================================= ynh_script_progression "Installation of $app completed"