#!/bin/bash source /usr/share/yunohost/helpers source ./_common app=$YNH_APP_INSTANCE_NAME domain=$(sudo yunohost app setting $app domain) path=$(sudo yunohost app setting $app path) is_public=$(sudo yunohost app setting $app is_public) # Remove trailing "/" for next commands if [[ ! "$path" == "/" ]]; then path=${path%/} fi # Init final_path, if ever it got deleted somehow final_path=/var/www/$app sudo mkdir -p $final_path # Clean up # This will remove old paste data (otherwise we would need to lower down security) sudo rm -rf $final_path/* # Copy files to the right place extract_source $final_path # Files owned by root, www-data can just read sudo find $final_path -type f | xargs sudo chmod 644 sudo find $final_path -type d | xargs sudo chmod 755 sudo chown -R root: $final_path # except for data and tmp subdir, where www-data must have write permissions sudo chown -R www-data:root $final_path/{data,tmp} sudo chmod 700 $final_path/{data,tmp} # Modify Nginx configuration file and copy it to Nginx conf directory sed -i "s@YNH_WWW_PATH@$path@g" ../conf/nginx.conf sed -i "s@YNH_WWW_ALIAS@$final_path/@g" ../conf/nginx.conf nginxconf=/etc/nginx/conf.d/$domain.d/$app.conf sudo cp ../conf/nginx.conf $nginxconf sudo chown root: $nginxconf sudo chmod 600 $nginxconf if [ "$is_public" = "Yes" ]; then sudo yunohost app setting $app skipped_uris -d sudo yunohost app setting $app unprotected_uris -v "/" fi sudo service nginx reload sudo yunohost app ssowatconf