reverseproxy_ynh/scripts/upgrade


#!/bin/bash

#=================================================
# GENERIC START
#=================================================
# IMPORT GENERIC HELPERS
#=================================================

# source _common.sh
source /usr/share/yunohost/helpers

#=================================================
# LOAD SETTINGS
#=================================================

# This is a multi-instance app, meaning it can be installed several times independently
# The id of the app as stated in the manifest is available as $YNH_APP_ID
# The instance number is available as $YNH_APP_INSTANCE_NUMBER (equals "1", "2", ...)
# The app instance name is available as $YNH_APP_INSTANCE_NAME
#    - the first time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample
#    - the second time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample__2
#    - ynhexample__{N} for the subsequent installations, with N=3,4, ...
# The app instance name is probably what you are interested the most, since this is
# guaranteed to be unique. This is a good unique identifier to define installation path,
# db names, ...
app=$YNH_APP_INSTANCE_NAME

# Source app helpers
. /usr/share/yunohost/helpers

# Retrieve arguments
domain=$(ynh_app_setting_get "$app" domain)
path_url=$(ynh_app_setting_get "$app" path)
redirect_type=$(ynh_app_setting_get "$app" redirect_type)
redirect_path=$(ynh_app_setting_get "$app" redirect_path)

#=================================================
# ENSURE DOWNWARD COMPATIBILITY
#=================================================

# Fix is_public as a boolean value
# Default value for redirect_type if upgrading from https://github.com/scith/redirect_ynh
if [ -z "$redirect_type" ];
then
    redirect_type="proxy"
    ynh_app_setting_set $app 'redirect_type' $redirect_type
fi

# Migrate away from old stuff with 'is_public' and old redirect type names
is_public=$(ynh_app_setting_get "$app" is_public)
if [ -n "$is_public" ]
then
    if [ "$is_public" = "Yes" ]; then
        is_public=1
    elif [ "$is_public" = "No" ]; then
        is_public=0
    fi

    if [ "$is_public" = "0" ] && [ "$redirect_type" != "proxy" ]; then
       echo "WARNING: You previously had a 'supposedly' private 301 or 302 redirection ... but it was found that it was public all along and it is not easy to create such a private redirection. Your 301 or 302 redirection will be re-flagged as public..." >&2
       is_public=1
    fi

    if [ "$redirect_type" == "proxy" ] && [ "$is_public" = "1" ]
    then
        redirect_type="public_proxy"
    elif [ "$redirect_type" == "proxy" ] && [ "$is_public" = "0" ]
    then
        redirect_type="private_proxy"
    elif [ "$redirect_type" == "visible_302" ]
    then
        redirect_type="public_302"
    elif [ "$redirect_type" == "visible_301" ]
    then
        redirect_type="public_301"
    fi
    
    ynh_app_setting_set $app 'redirect_type' $redirect_type
    ynh_app_setting_set $app 'is_public'
fi


#=================================================
# BACKUP BEFORE UPGRADE THEN ACTIVE TRAP
#=================================================

# Backup the current version of the app
ynh_backup_before_upgrade
ynh_clean_setup () {
	# restore it if the upgrade fails
	ynh_restore_upgradebackup
}
# Exit if an error occurs during the execution of the script
ynh_abort_if_errors

# Validate redirect path
url_regex='(https?|ftp|file)://[-A-Za-z0-9\+&@#/%?=~_|!:,.;]*[-A-Za-z0-9\+&@#/%=~_|]'
[[ ! $redirect_path =~ $url_regex ]] && ynh_die "Invalid destination: $redirect_path" 1

# Nginx configuration
for FILE in $(ls ../conf/nginx-*.conf)
do
    ynh_replace_string "YNH_LOCATION" "$path_url" $FILE
done
if [ "$redirect_type" = "public_302" ];
then
    ynh_replace_string "YNH_REDIRECT_PATH" "$redirect_path" ../conf/nginx-visible-302.conf
    cp ../conf/nginx-visible-302.conf /etc/nginx/conf.d/$domain.d/$app.conf
elif [ "$redirect_type" = "public_301" ];
then
    ynh_replace_string "YNH_REDIRECT_PATH" "$redirect_path" ../conf/nginx-visible-301.conf
    cp ../conf/nginx-visible-301.conf /etc/nginx/conf.d/$domain.d/$app.conf
elif [ "$redirect_type" = "public_proxy" ] || [ "$redirect_type" = "private_proxy" ];
then
    ynh_replace_string "YNH_REDIRECT_PATH" "$redirect_path" ../conf/nginx-proxy.conf
    cp ../conf/nginx-proxy.conf /etc/nginx/conf.d/$domain.d/$app.conf
fi

#=================================================
# SETUP SSOWAT
#=================================================

# Make app public if necessary
if [ "$redirect_type" != "private_proxy" ]
then
	# unprotected_uris allows SSO credentials to be passed anyway.
	ynh_app_setting_set "$app" unprotected_uris "/"
fi

# Reload Nginx and regenerate SSOwat conf
service nginx reload
Add basic helpers 2018-05-26 10:27:01 +02:00
Initial commit. 2016-06-20 23:43:51 +02:00			`#!/bin/bash`

Add basic helpers 2018-05-26 10:27:01 +02:00			`#=================================================`
			`# GENERIC START`
			`#=================================================`
			`# IMPORT GENERIC HELPERS`
			`#=================================================`

			`# source _common.sh`
			`source /usr/share/yunohost/helpers`

			`#=================================================`
			`# LOAD SETTINGS`
			`#=================================================`
Initial commit. 2016-06-20 23:43:51 +02:00
			`# This is a multi-instance app, meaning it can be installed several times independently`
			`# The id of the app as stated in the manifest is available as $YNH_APP_ID`
			`# The instance number is available as $YNH_APP_INSTANCE_NUMBER (equals "1", "2", ...)`
			`# The app instance name is available as $YNH_APP_INSTANCE_NAME`
			`# - the first time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample`
			`# - the second time the app is installed, YNH_APP_INSTANCE_NAME = ynhexample__2`
			`# - ynhexample__{N} for the subsequent installations, with N=3,4, ...`
			`# The app instance name is probably what you are interested the most, since this is`
			`# guaranteed to be unique. This is a good unique identifier to define installation path,`
			`# db names, ...`
			`app=$YNH_APP_INSTANCE_NAME`

			`# Source app helpers`
			`. /usr/share/yunohost/helpers`

			`# Retrieve arguments`
			`domain=$(ynh_app_setting_get "$app" domain)`
Use path_url instead of path, because helpers require it 2019-05-09 19:57:27 +02:00			`path_url=$(ynh_app_setting_get "$app" path)`
Initial commit. 2016-06-20 23:43:51 +02:00			`redirect_type=$(ynh_app_setting_get "$app" redirect_type)`
			`redirect_path=$(ynh_app_setting_get "$app" redirect_path)`

Add basic helpers 2018-05-26 10:27:01 +02:00			`#=================================================`
			`# ENSURE DOWNWARD COMPATIBILITY`
			`#=================================================`

			`# Fix is_public as a boolean value`
[fix] Default value for redirect_type. Fixes #1 2016-11-23 21:49:09 +01:00			`# Default value for redirect_type if upgrading from https://github.com/scith/redirect_ynh`
			`if [ -z "$redirect_type" ];`
			`then`
			`redirect_type="proxy"`
[fix] Save redirect_type default value. #1 2016-11-23 21:53:14 +01:00			`ynh_app_setting_set $app 'redirect_type' $redirect_type`
[fix] Default value for redirect_type. Fixes #1 2016-11-23 21:49:09 +01:00			`fi`

is_public was a lie. Only reverse proxy can be private. 2019-05-15 18:35:57 +02:00			`# Migrate away from old stuff with 'is_public' and old redirect type names`
			`is_public=$(ynh_app_setting_get "$app" is_public)`
			`if [ -n "$is_public" ]`
			`then`
			`if [ "$is_public" = "Yes" ]; then`
			`is_public=1`
			`elif [ "$is_public" = "No" ]; then`
			`is_public=0`
			`fi`

			`if [ "$is_public" = "0" ] && [ "$redirect_type" != "proxy" ]; then`
			`echo "WARNING: You previously had a 'supposedly' private 301 or 302 redirection ... but it was found that it was public all along and it is not easy to create such a private redirection. Your 301 or 302 redirection will be re-flagged as public..." >&2`
			`is_public=1`
			`fi`

			`if [ "$redirect_type" == "proxy" ] && [ "$is_public" = "1" ]`
			`then`
			`redirect_type="public_proxy"`
			`elif [ "$redirect_type" == "proxy" ] && [ "$is_public" = "0" ]`
			`then`
			`redirect_type="private_proxy"`
			`elif [ "$redirect_type" == "visible_302" ]`
			`then`
			`redirect_type="public_302"`
			`elif [ "$redirect_type" == "visible_301" ]`
			`then`
			`redirect_type="public_301"`
			`fi`

			`ynh_app_setting_set $app 'redirect_type' $redirect_type`
			`ynh_app_setting_set $app 'is_public'`
			`fi`


Add basic helpers 2018-05-26 10:27:01 +02:00			`#=================================================`
			`# BACKUP BEFORE UPGRADE THEN ACTIVE TRAP`
			`#=================================================`

			`# Backup the current version of the app`
			`ynh_backup_before_upgrade`
			`ynh_clean_setup () {`
			`# restore it if the upgrade fails`
			`ynh_restore_upgradebackup`
			`}`
			`# Exit if an error occurs during the execution of the script`
			`ynh_abort_if_errors`

Initial commit. 2016-06-20 23:43:51 +02:00			`# Validate redirect path`
			`url_regex='(https?\|ftp\|file)://[-A-Za-z0-9\+&@#/%?=~_\|!:,.;]*[-A-Za-z0-9\+&@#/%=~_\|]'`
Various fixes for linter warnings / deprecrated practices 2019-04-29 20:49:40 +02:00			`[[ ! $redirect_path =~ $url_regex ]] && ynh_die "Invalid destination: $redirect_path" 1`
Initial commit. 2016-06-20 23:43:51 +02:00
			`# Nginx configuration`
Moar misc fixes following tests... 2019-05-09 23:08:09 +02:00			`for FILE in $(ls ../conf/nginx-*.conf)`
			`do`
			`ynh_replace_string "YNH_LOCATION" "$path_url" $FILE`
			`done`
is_public was a lie. Only reverse proxy can be private. 2019-05-15 18:35:57 +02:00			`if [ "$redirect_type" = "public_302" ];`
Initial commit. 2016-06-20 23:43:51 +02:00			`then`
Various fixes for linter warnings / deprecrated practices 2019-04-29 20:49:40 +02:00			`ynh_replace_string "YNH_REDIRECT_PATH" "$redirect_path" ../conf/nginx-visible-302.conf`
Remove sudo 2018-05-26 10:01:42 +02:00			`cp ../conf/nginx-visible-302.conf /etc/nginx/conf.d/$domain.d/$app.conf`
is_public was a lie. Only reverse proxy can be private. 2019-05-15 18:35:57 +02:00			`elif [ "$redirect_type" = "public_301" ];`
Initial commit. 2016-06-20 23:43:51 +02:00			`then`
Various fixes for linter warnings / deprecrated practices 2019-04-29 20:49:40 +02:00			`ynh_replace_string "YNH_REDIRECT_PATH" "$redirect_path" ../conf/nginx-visible-301.conf`
Remove sudo 2018-05-26 10:01:42 +02:00			`cp ../conf/nginx-visible-301.conf /etc/nginx/conf.d/$domain.d/$app.conf`
is_public was a lie. Only reverse proxy can be private. 2019-05-15 18:35:57 +02:00			`elif [ "$redirect_type" = "public_proxy" ] \|\| [ "$redirect_type" = "private_proxy" ];`
Initial commit. 2016-06-20 23:43:51 +02:00			`then`
Various fixes for linter warnings / deprecrated practices 2019-04-29 20:49:40 +02:00			`ynh_replace_string "YNH_REDIRECT_PATH" "$redirect_path" ../conf/nginx-proxy.conf`
Remove sudo 2018-05-26 10:01:42 +02:00			`cp ../conf/nginx-proxy.conf /etc/nginx/conf.d/$domain.d/$app.conf`
Initial commit. 2016-06-20 23:43:51 +02:00			`fi`

Add basic helpers 2018-05-26 10:27:01 +02:00			`#=================================================`
			`# SETUP SSOWAT`
			`#=================================================`

Initial commit. 2016-06-20 23:43:51 +02:00			`# Make app public if necessary`
is_public was a lie. Only reverse proxy can be private. 2019-05-15 18:35:57 +02:00			`if [ "$redirect_type" != "private_proxy" ]`
Initial commit. 2016-06-20 23:43:51 +02:00			`then`
Add basic helpers 2018-05-26 10:27:01 +02:00			`# unprotected_uris allows SSO credentials to be passed anyway.`
is_public was a lie. Only reverse proxy can be private. 2019-05-15 18:35:57 +02:00			`ynh_app_setting_set "$app" unprotected_uris "/"`
Initial commit. 2016-06-20 23:43:51 +02:00			`fi`

			`# Reload Nginx and regenerate SSOwat conf`
Remove sudo 2018-05-26 10:01:42 +02:00			`service nginx reload`