#!/bin/bash

# Exit on command errors and treat unset variables as an error
set -eu

# Source app helpers
source ./_common
source /usr/share/yunohost/helpers

# Retrieve arguments
domain=$YNH_APP_ARG_DOMAIN
path=$(ynh_normalize_url_path $YNH_APP_ARG_PATH)
is_public=$YNH_APP_ARG_IS_PUBLIC

app=$YNH_APP_INSTANCE_NAME

# Check domain/path availability
sudo yunohost app checkurl "${domain}${path}" -a "$app"

# Copy files to the right place
final_path=/var/www/$app
sudo mkdir -p $final_path
extract_source $final_path

# Create system user dedicace for this app
ynh_system_user_create $app

# Files owned by user specific can just read
sudo find $final_path -type f | xargs sudo chmod 644
sudo find $final_path -type d | xargs sudo chmod 755
sudo chown -R root: $final_path

# except for data and tmp subdir, where www-data must have write permissions
sudo mkdir -p $final_path/{data,tmp}
sudo chown -R $app:root $final_path/{data,tmp}
sudo chmod 700 $final_path/{data,tmp}

# Modify Nginx configuration file and copy it to Nginx conf directory
ynh_nginx_config

# Create the php-fpm pool config
ynh_fpm_config

<<<<<<< HEAD
# If app is public, add url to SSOWat conf as skipped_uris
if [[ $is_public -eq 1 ]]; then
  # unprotected_uris allows SSO credentials to be passed anyway.
  ynh_app_setting_set "$app" unprotected_uris "/"
=======
# Set ssowat config
ynh_app_setting_set $app is_public "$is_public"
if [ "$is_public" = "Yes" ];
then
  ynh_app_setting_set $app unprotected_uris "/"
>>>>>>> ed68227b97ca7aa0f4e0d0f9450df936e867585f
fi

sudo systemctl reload nginx
sudo yunohost app ssowatconf