#!/bin/bash # Exit on command errors and treat unset variables as an error set -eu # Source app helpers source ./_common source /usr/share/yunohost/helpers # Retrieve arguments domain=$YNH_APP_ARG_DOMAIN path=$(ynh_normalize_url_path $YNH_APP_ARG_PATH) is_public=$YNH_APP_ARG_IS_PUBLIC app=$YNH_APP_INSTANCE_NAME # Check domain/path availability sudo yunohost app checkurl "${domain}${path}" -a "$app" # Copy files to the right place final_path=/var/www/$app sudo mkdir -p $final_path extract_source $final_path # Create system user dedicace for this app ynh_system_user_create $app # Files owned by user specific can just read sudo find $final_path -type f | xargs sudo chmod 644 sudo find $final_path -type d | xargs sudo chmod 755 sudo chown -R root: $final_path # except for data and tmp subdir, where www-data must have write permissions sudo mkdir -p $final_path/{data,tmp} sudo chown -R $app:root $final_path/{data,tmp} sudo chmod 700 $final_path/{data,tmp} # Modify Nginx configuration file and copy it to Nginx conf directory ynh_nginx_config # Create the php-fpm pool config ynh_fpm_config # If app is public, add url to SSOWat conf as skipped_uris if [[ $is_public -eq 1 ]]; then # unprotected_uris allows SSO credentials to be passed anyway. ynh_app_setting_set "$app" unprotected_uris "/" fi sudo systemctl reload nginx sudo yunohost app ssowatconf