mirror of
https://github.com/YunoHost-Apps/freshrss_ynh.git
synced 2024-09-03 18:36:33 +02:00
8d51003b97
* fix SC2086 linter alerts * tidying up * add fail2ban * add fail2ban * fix install: "Have not found any log file for freshrss jail" * sigh I'm dumdum... / fix touch path while installing fail2ban * while upgrading, create the logfile for fail2ban if it doesn't exist * reduce warns that freshrss returns and which may worry users
130 lines
4.5 KiB
Bash
Executable file
130 lines
4.5 KiB
Bash
Executable file
#!/bin/bash
|
|
|
|
#=================================================
|
|
# GENERIC START
|
|
#=================================================
|
|
# IMPORT GENERIC HELPERS
|
|
#=================================================
|
|
|
|
source _common.sh
|
|
source /usr/share/yunohost/helpers
|
|
|
|
#=================================================
|
|
# CHECK VERSION
|
|
#=================================================
|
|
|
|
upgrade_type=$(ynh_check_app_version_changed)
|
|
|
|
#=================================================
|
|
# STANDARD UPGRADE STEPS
|
|
#=================================================
|
|
# ENSURE DOWNWARD COMPATIBILITY
|
|
#=================================================
|
|
ynh_script_progression --message="Ensuring downward compatibility..." --weight=1
|
|
|
|
if [ -z "$admin" ]; then
|
|
admin=$(ynh_app_setting_get --app="$app" --key=admin_user)
|
|
if [ -z "$admin" ]; then
|
|
ynh_die --message="no admin user found"
|
|
fi;
|
|
ynh_app_setting_delete --app="$app" --key=admin_user
|
|
ynh_app_setting_set --app="$app" --key=admin --value="$admin"
|
|
fi
|
|
|
|
#=================================================
|
|
# DOWNLOAD, CHECK AND UNPACK SOURCE
|
|
#=================================================
|
|
|
|
if [ "$upgrade_type" == "UPGRADE_APP" ]
|
|
then
|
|
ynh_script_progression --message="Upgrading source files..." --weight=1
|
|
|
|
# Download, check integrity, uncompress and patch the source from app.src
|
|
ynh_setup_source --dest_dir="$install_dir" --keep="data/config.php data/users/ extensions/"
|
|
fi
|
|
|
|
chmod -R o-rwx "$install_dir"
|
|
chown -R "$app":www-data "$install_dir"
|
|
|
|
#=================================================
|
|
# REAPPLY SYSTEM CONFIGURATIONS
|
|
#=================================================
|
|
ynh_script_progression --message="Upgrading system configurations related to $app..." --weight=1
|
|
|
|
#=================================================
|
|
# PHP CONFIGURATION
|
|
#=================================================
|
|
ynh_script_progression --message="Upgrading PHP configuration..."
|
|
|
|
# Create a dedicated PHP-FPM config
|
|
ynh_add_fpm_config
|
|
|
|
#=================================================
|
|
# NGINX CONFIGURATION
|
|
#=================================================
|
|
ynh_script_progression --message="Upgrading NGINX web server configuration..."
|
|
|
|
# Create a dedicated NGINX config
|
|
ynh_add_nginx_config
|
|
|
|
#=================================================
|
|
# CRON CONFIGURATION
|
|
#=================================================
|
|
ynh_script_progression --message="Upgrading Cron configuration..."
|
|
|
|
ynh_add_config --template="../conf/freshrss.cron" --destination="/etc/cron.d/$app"
|
|
chown root: "/etc/cron.d/$app"
|
|
chmod 644 "/etc/cron.d/$app"
|
|
|
|
#=================================================
|
|
# LOG FILES
|
|
#=================================================
|
|
|
|
if [ -f /tmp/FreshRSS.log ]; then
|
|
ynh_secure_remove --file="/tmp/FreshRSS.log"
|
|
fi
|
|
|
|
if [ -f "$install_dir/$app.log" ]; then
|
|
ynh_secure_remove --file="/var/www/$app/$app.log"
|
|
fi
|
|
|
|
log_path="/var/log/$app"
|
|
mkdir -p "$log_path"
|
|
chown "$app":www-data "$log_path"
|
|
|
|
#=================================================
|
|
# SETUP LOGROTATE
|
|
#=================================================
|
|
ynh_script_progression --message="Upgrading logrotate configuration..."
|
|
|
|
# Use logrotate to manage app-specific logfile(s)
|
|
ynh_use_logrotate --non-append
|
|
|
|
#=================================================
|
|
# SETUP FAIL2BAN
|
|
#=================================================
|
|
ynh_script_progression --message="Upgrading fail2ban configuration..."
|
|
|
|
# If it doesn't exist, create the logfile, required before configuring fail2ban
|
|
if [ ! -f "/var/log/${domain}-access.log" ]; then
|
|
touch "/var/log/${domain}-access.log"
|
|
fi
|
|
|
|
# Create a dedicated Fail2Ban config
|
|
ynh_add_fail2ban_config --logpath="/var/log/${domain}-access.log" --failregex="<HOST> .* \"GET /api/.*\" 401" --max_retry=5
|
|
|
|
#=================================================
|
|
# SPECIFIC UPGRADE
|
|
#=================================================
|
|
# UPGRADING FRESHRSS
|
|
#=================================================
|
|
ynh_script_progression --message="Upgrading FreshRSS..." --weight=1
|
|
|
|
# reconfigure application with latest parameters
|
|
ynh_exec_warn_less ynh_exec_as "$app" "$install_dir/cli/reconfigure.php" --default_user "$admin" --auth_type http_auth --environment production --base_url "https://$domain$path" --title FreshRSS --api_enabled --db-type mysql --db-host localhost --db-user "$db_name" --db-password "$db_pwd" --db-base "$db_name"
|
|
|
|
#=================================================
|
|
# END OF SCRIPT
|
|
#=================================================
|
|
|
|
ynh_script_progression --message="Upgrade of $app completed" --last
|