kanboard_ynh/scripts/upgrade

#!/bin/bash

#=================================================
# GENERIC START
#=================================================
# IMPORT GENERIC HELPERS
#=================================================

source _common.sh
source /usr/share/yunohost/helpers

#=================================================
# LOAD SETTINGS
#=================================================

app=$YNH_APP_INSTANCE_NAME

domain=$(ynh_app_setting_get $app domain)
path_url=$(ynh_app_setting_get $app path)
admin=$(ynh_app_setting_get $app adminusername)
is_public=$(ynh_app_setting_get $app is_public)
final_path=$(ynh_app_setting_get $app final_path)
db_name=$(ynh_app_setting_get $app db_name)

#=================================================
# ENSURE DOWNWARD COMPATIBILITY
#=================================================

# Fix is_public as a boolean value
if [ "$is_public" = "Yes" ]; then
	ynh_app_setting_set $app is_public 1
	is_public=1
elif [ "$is_public" = "No" ]; then
	ynh_app_setting_set $app is_public 0
	is_public=0
fi

# If db_name doesn't exist, create it
if [ -z $db_name ]; then
	db_name=$(ynh_sanitize_dbid $app)
	ynh_app_setting_set $app db_name $db_name
fi

# If final_path doesn't exist, create it
if [ -z $final_path ]; then
	final_path=/var/www/$app
	ynh_app_setting_set $app final_path $final_path
fi

#=================================================
# BACKUP BEFORE UPGRADE THEN ACTIVE TRAP
#=================================================

# Backup the current version of the app
ynh_backup_before_upgrade
ynh_clean_setup () {
	# restore it if the upgrade fails
	ynh_restore_upgradebackup
}
# Exit if an error occurs during the execution of the script
ynh_abort_if_errors

#=================================================
# CHECK THE PATH
#=================================================

# Normalize the URL path syntax
path_url=$(ynh_normalize_url_path $path_url)

#=================================================
# STANDARD UPGRADE STEPS
#=================================================
# DOWNLOAD, CHECK AND UNPACK SOURCE
#=================================================

# Move old app dir
mv "$final_path" "$final_path.old"

# Download, check integrity, uncompress and patch the source from app.src
ynh_setup_source "$final_path"
mkdir -p "$final_path"/sessions

# restore data
cp -a "$final_path.old/data" "$final_path"

# restore plugins
if [ -e "$final_path.old/plugins" ]
then
	cp -a "$final_path.old/plugins" "$final_path"
fi
# delete temp directory
ynh_secure_remove "$final_path.old"

#=================================================
# NGINX CONFIGURATION
#=================================================

# Create a dedicated nginx config
ynh_add_nginx_config

#=================================================
# CREATE DEDICATED USER
#=================================================

# Create a dedicated user (if not existing)
ynh_system_user_create $app

#=================================================
# PHP-FPM CONFIGURATION
#=================================================

# Create a dedicated php-fpm config
ynh_add_fpm_config

#=================================================
# UPGRADE DEPENDENCIES
#=================================================

ynh_install_app_dependencies $pkg_dependencies

#=================================================
# SPECIFIC UPGRADE
#=================================================
# CREATE CONFIG.PHP
#=================================================

# Retrieve admin email
email=$(ynh_user_get_info $admin mail)

# Copy and edit config.php
config_php="${final_path}/config.php"

ynh_backup_if_checksum_is_different "$config_php"

cp ../conf/config.php "$config_php"
db_pwd=$(ynh_app_setting_get $app mysqlpwd)
ynh_replace_string "__DB_PWD__" "$db_pwd" "$config_php"
ynh_replace_string "__DB_NAME__" $db_name "$config_php"
ynh_replace_string "__USER__"    $admin   "$config_php"
ynh_replace_string "__EMAIL__"   $email   "$config_php"
ynh_replace_string "__DOMAIN__"  $domain  "$config_php"

#=================================================
# UPGRADE KANBOARD
#=================================================

(
	cd "$final_path"
	# Launch database migration
	php cli db:migrate --no-interaction --verbose
	# Launch plugins migration
	php cli plugin:upgrade --no-interaction --verbose
)

#=================================================
# GENERIC FINALIZATION
#=================================================
# SECURE FILES AND DIRECTORIES
#=================================================

# Set permissions to app files
chown -R root: $final_path
chown -R $app $final_path/{data,plugins,sessions}
chmod -R 700 $final_path/sessions

#=================================================
# SETUP FAIL2BAN
#=================================================

if [[ "$path_url" == "/" ]]
then
	# ynh panel is only comptable with non-root installation
	ynh_replace_string "	include conf.d/"  "	#include conf.d/"  "$finalnginxconf"

	ynh_store_file_checksum "$finalnginxconf"
else
	ynh_replace_string "^#sub_path_only"      ""   "$finalnginxconf"
	ynh_store_file_checksum "$finalnginxconf"
fi
#=================================================
# SETUP SSOWAT
#=================================================

# Make app public or private
if [ $is_public -eq 1 ]
then
	ynh_app_setting_set $app unprotected_uris "/"
	ynh_replace_string "define('LDAP_AUTH'.*$"        "define('LDAP_AUTH', true);"        "$config_php"
	ynh_replace_string "define('HIDE_LOGIN_FORM'.*$"  "define('HIDE_LOGIN_FORM', false);" "$config_php"
	ynh_replace_string "define('REMEMBER_ME_AUTH'.*$" "define('REMEMBER_ME_AUTH', true);" "$config_php"
	ynh_replace_string "define('DISABLE_LOGOUT'.*$"   "define('DISABLE_LOGOUT', false);"  "$config_php"
else
	ynh_app_setting_set $app unprotected_uris "/jsonrpc.php"
fi

# Calculate and store the config file checksum into the app settings
ynh_store_file_checksum "$config_php"

#=================================================
# RELOAD NGINX
#=================================================

ynh_add_fail2ban_config "/var/log/nginx/$domain-error.log" "^.*authentication failure\" while reading response header from upstream, client: <HOST>,.*$" 5
systemctl reload nginx

#=================================================
#=================================================
Add admin user init 2014-07-20 18:10:20 +02:00			`#!/bin/bash`
Add set -e and proper path check 2015-10-23 16:24:30 +02:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
			`# GENERIC START`
			`#=================================================`
			`# IMPORT GENERIC HELPERS`
			`#=================================================`
Download sources during installation and upgrade to 1.0.36 (#38) * Download sources (except dependencies) during installation and upgrade to 1.0.35 * Download dependencies during installation Upgrade to 1.0.36 * Download kanboard zip from kanboard.net website * Take review into account 2017-01-17 17:51:12 +01:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`source _common.sh`
Fix linter 2017-10-19 12:13:47 +02:00			`source /usr/share/yunohost/helpers`

Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# LOAD SETTINGS`
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`

Let's make this app a multi-instance one 2017-10-19 12:31:32 +02:00			`app=$YNH_APP_INSTANCE_NAME`
Fix linter 2017-10-19 12:13:47 +02:00
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`domain=$(ynh_app_setting_get $app domain)`
			`path_url=$(ynh_app_setting_get $app path)`
			`admin=$(ynh_app_setting_get $app adminusername)`
			`is_public=$(ynh_app_setting_get $app is_public)`
			`final_path=$(ynh_app_setting_get $app final_path)`
			`db_name=$(ynh_app_setting_get $app db_name)`
use ynh_replace_string, ynh_secure_remove, ynh_app_setting_set, ynh_restore_file, and 2017-10-19 14:57:07 +02:00
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`#=================================================`
			`# ENSURE DOWNWARD COMPATIBILITY`
			`#=================================================`
Update install and update script for v1.0.8 Before : LDAP auth Now : reverse proxy auth 2014-10-22 21:21:37 +02:00
Add is_public replacement and final_path addition 2017-10-23 16:34:18 +02:00			`# Fix is_public as a boolean value`
			`if [ "$is_public" = "Yes" ]; then`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`ynh_app_setting_set $app is_public 1`
Add is_public replacement and final_path addition 2017-10-23 16:34:18 +02:00			`is_public=1`
			`elif [ "$is_public" = "No" ]; then`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`ynh_app_setting_set $app is_public 0`
Add is_public replacement and final_path addition 2017-10-23 16:34:18 +02:00			`is_public=0`
			`fi`

Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# If db_name doesn't exist, create it`
			`if [ -z $db_name ]; then`
			`db_name=$(ynh_sanitize_dbid $app)`
			`ynh_app_setting_set $app db_name $db_name`
			`fi`

Add is_public replacement and final_path addition 2017-10-23 16:34:18 +02:00			`# If final_path doesn't exist, create it`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`if [ -z $final_path ]; then`
			`final_path=/var/www/$app`
			`ynh_app_setting_set $app final_path $final_path`
Add is_public replacement and final_path addition 2017-10-23 16:34:18 +02:00			`fi`

Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# BACKUP BEFORE UPGRADE THEN ACTIVE TRAP`
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`

add ynh_backup_before_upgrade 2017-10-23 15:52:55 +02:00			`# Backup the current version of the app`
			`ynh_backup_before_upgrade`
			`ynh_clean_setup () {`
			`# restore it if the upgrade fails`
			`ynh_restore_upgradebackup`
			`}`
			`# Exit if an error occurs during the execution of the script`
			`ynh_abort_if_errors`

Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`#=================================================`
			`# CHECK THE PATH`
			`#=================================================`

			`# Normalize the URL path syntax`
			`path_url=$(ynh_normalize_url_path $path_url)`

Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
			`# STANDARD UPGRADE STEPS`
			`#=================================================`
			`# DOWNLOAD, CHECK AND UNPACK SOURCE`
			`#=================================================`
Flush sessions before upgrade 2015-12-29 02:06:14 +01:00
Major update of all scripts to use the new yunohost helpers 2016-07-23 14:54:26 +02:00			`# Move old app dir`
Shellcheck 2017-10-19 15:40:50 +02:00			`mv "$final_path" "$final_path.old"`
Switch data folder 2014-11-23 20:45:36 +01:00
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# Download, check integrity, uncompress and patch the source from app.src`
use ynh_replace_string, ynh_secure_remove, ynh_app_setting_set, ynh_restore_file, and 2017-10-19 14:57:07 +02:00			`ynh_setup_source "$final_path"`
Fix plugin installation and sessions 2017-10-30 10:59:00 +01:00			`mkdir -p "$final_path"/sessions`
Download sources during installation and upgrade to 1.0.36 (#38) * Download sources (except dependencies) during installation and upgrade to 1.0.35 * Download dependencies during installation Upgrade to 1.0.36 * Download kanboard zip from kanboard.net website * Take review into account 2017-01-17 17:51:12 +01:00
Save plugins during upgrade 2016-01-24 18:24:34 +01:00			`# restore data`
Shellcheck 2017-10-19 15:40:50 +02:00			`cp -a "$final_path.old/data" "$final_path"`
Download sources during installation and upgrade to 1.0.36 (#38) * Download sources (except dependencies) during installation and upgrade to 1.0.35 * Download dependencies during installation Upgrade to 1.0.36 * Download kanboard zip from kanboard.net website * Take review into account 2017-01-17 17:51:12 +01:00
Save plugins during upgrade 2016-01-24 18:24:34 +01:00			`# restore plugins`
Shellcheck 2017-10-19 15:40:50 +02:00			`if [ -e "$final_path.old/plugins" ]`
Mode public Et correction sur le dossier plugin, qui provoque un échec de mise à jour si le dossier n'existe pas. 2016-05-05 12:57:31 +02:00			`then`
Shellcheck 2017-10-19 15:40:50 +02:00			`cp -a "$final_path.old/plugins" "$final_path"`
Mode public Et correction sur le dossier plugin, qui provoque un échec de mise à jour si le dossier n'existe pas. 2016-05-05 12:57:31 +02:00			`fi`
Save plugins during upgrade 2016-01-24 18:24:34 +01:00			`# delete temp directory`
Shellcheck 2017-10-19 15:40:50 +02:00			`ynh_secure_remove "$final_path.old"`
Update install and update script for v1.0.8 Before : LDAP auth Now : reverse proxy auth 2014-10-22 21:21:37 +02:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
			`# NGINX CONFIGURATION`
			`#=================================================`

			`# Create a dedicated nginx config`
			`ynh_add_nginx_config`

Let's create a specific user 2017-10-21 23:15:17 +02:00			`#=================================================`
			`# CREATE DEDICATED USER`
			`#=================================================`

Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# Create a dedicated user (if not existing)`
			`ynh_system_user_create $app`
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00
			`#=================================================`
			`# PHP-FPM CONFIGURATION`
			`#=================================================`

			`# Create a dedicated php-fpm config`
			`ynh_add_fpm_config`

Fix stretch 2018-03-08 18:33:25 +01:00			`#=================================================`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# UPGRADE DEPENDENCIES`
Fix stretch 2018-03-08 18:33:25 +01:00			`#=================================================`

Add php-zip if not jessie 2018-04-13 17:37:55 +02:00			`ynh_install_app_dependencies $pkg_dependencies`
Fix stretch 2018-03-08 18:33:25 +01:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
			`# SPECIFIC UPGRADE`
			`#=================================================`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# CREATE CONFIG.PHP`
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`

Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# Retrieve admin email`
			`email=$(ynh_user_get_info $admin mail)`

Update install and update script for v1.0.8 Before : LDAP auth Now : reverse proxy auth 2014-10-22 21:21:37 +02:00			`# Copy and edit config.php`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`config_php="${final_path}/config.php"`
Shellcheck 2017-10-19 15:40:50 +02:00
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`ynh_backup_if_checksum_is_different "$config_php"`

			`cp ../conf/config.php "$config_php"`
			`db_pwd=$(ynh_app_setting_get $app mysqlpwd)`
			`ynh_replace_string "__DB_PWD__" "$db_pwd" "$config_php"`
			`ynh_replace_string "__DB_NAME__" $db_name "$config_php"`
			`ynh_replace_string "__USER__" $admin "$config_php"`
			`ynh_replace_string "__EMAIL__" $email "$config_php"`
			`ynh_replace_string "__DOMAIN__" $domain "$config_php"`
Update install and update script for v1.0.8 Before : LDAP auth Now : reverse proxy auth 2014-10-22 21:21:37 +02:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# UPGRADE KANBOARD`
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
Add admin user init 2014-07-20 18:10:20 +02:00
Fix plugin installation and sessions 2017-10-30 10:59:00 +01:00			`(`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`cd "$final_path"`
			`# Launch database migration`
			`php cli db:migrate --no-interaction --verbose`
			`# Launch plugins migration`
			`php cli plugin:upgrade --no-interaction --verbose`
Fix plugin installation and sessions 2017-10-30 10:59:00 +01:00			`)`
Upgrade to upstream version 1.0.41 + manual database migration (#44) Upgrade to upstream version 1.0.41 (closes #43) and run migrations during upgrade script (closes #42) 2017-04-01 18:52:48 +02:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
			`# GENERIC FINALIZATION`
			`#=================================================`
			`# SECURE FILES AND DIRECTORIES`
			`#=================================================`
use ynh_replace_string, ynh_secure_remove, ynh_app_setting_set, ynh_restore_file, and 2017-10-19 14:57:07 +02:00
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# Set permissions to app files`
			`chown -R root: $final_path`
			`chown -R $app $final_path/{data,plugins,sessions}`
			`chmod -R 700 $final_path/sessions`
Use dedicated php pool 2015-10-20 15:44:33 +02:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# SETUP FAIL2BAN`
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
Fix linter 2017-10-19 12:13:47 +02:00
Shellcheck 2017-10-19 15:40:50 +02:00			`if [[ "$path_url" == "/" ]]`
Fix linter 2017-10-19 12:13:47 +02:00			`then`
			`# ynh panel is only comptable with non-root installation`
			`ynh_replace_string " include conf.d/" " #include conf.d/" "$finalnginxconf"`
use ynh_add_nginx_config, rename in 2017-10-19 15:03:38 +02:00
			`ynh_store_file_checksum "$finalnginxconf"`
upgrade to 1.20, fix nginx issue, open jsonrpc for kandroid 2018-01-18 18:55:08 +01:00			`else`
			`ynh_replace_string "^#sub_path_only" "" "$finalnginxconf"`
Update nginx conf file checksum 2018-01-31 12:50:58 +01:00			`ynh_store_file_checksum "$finalnginxconf"`
Fix linter 2017-10-19 12:13:47 +02:00			`fi`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`#=================================================`
			`# SETUP SSOWAT`
			`#=================================================`
Add admin user init 2014-07-20 18:10:20 +02:00
Mode public Et correction sur le dossier plugin, qui provoque un échec de mise à jour si le dossier n'existe pas. 2016-05-05 12:57:31 +02:00			`# Make app public or private`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`if [ $is_public -eq 1 ]`
Mode public Et correction sur le dossier plugin, qui provoque un échec de mise à jour si le dossier n'existe pas. 2016-05-05 12:57:31 +02:00			`then`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`ynh_app_setting_set $app unprotected_uris "/"`
use ynh_replace_string, ynh_secure_remove, ynh_app_setting_set, ynh_restore_file, and 2017-10-19 14:57:07 +02:00			`ynh_replace_string "define('LDAP_AUTH'.*$" "define('LDAP_AUTH', true);" "$config_php"`
			`ynh_replace_string "define('HIDE_LOGIN_FORM'.*$" "define('HIDE_LOGIN_FORM', false);" "$config_php"`
			`ynh_replace_string "define('REMEMBER_ME_AUTH'.*$" "define('REMEMBER_ME_AUTH', true);" "$config_php"`
			`ynh_replace_string "define('DISABLE_LOGOUT'.*$" "define('DISABLE_LOGOUT', false);" "$config_php"`
upgrade to 1.20, fix nginx issue, open jsonrpc for kandroid 2018-01-18 18:55:08 +01:00			`else`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`ynh_app_setting_set $app unprotected_uris "/jsonrpc.php"`
Mode public Et correction sur le dossier plugin, qui provoque un échec de mise à jour si le dossier n'existe pas. 2016-05-05 12:57:31 +02:00			`fi`

Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# Calculate and store the config file checksum into the app settings`
			`ynh_store_file_checksum "$config_php"`

Added Fail2ban 2018-11-20 22:43:27 +01:00			`#=================================================`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`# RELOAD NGINX`
Added Fail2ban 2018-11-20 22:43:27 +01:00			`#=================================================`

			`ynh_add_fail2ban_config "/var/log/nginx/$domain-error.log" "^.authentication failure\" while reading response header from upstream, client: <HOST>,.$" 5`
Normalization from example_ynh 2019-02-15 19:49:22 +01:00			`systemctl reload nginx`
Added Fail2ban 2018-11-20 22:43:27 +01:00
Add comments and respect same order as YunoHost/example_ynh 2017-10-21 22:52:21 +02:00			`#=================================================`
			`#=================================================`