Главная Обзор Помощь
Вход
torambo.com
/
flohmarkt_ynh
0
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: 68b757b175
Ветки Метки
flohmarkt_ynh
/
scripts
/
install

install 4.0 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114 
  1. #!/bin/bash
    2. 

  2. 

  3. # IMPORT GENERIC HELPERS
    4. 

  4. source _common.sh
    5. 

  5. source /usr/share/yunohost/helpers
    6. 

  6. 

  7. # INITIALIZE AND STORE SETTINGS
    8. 

  8. # @@ todo do we need to store the password un-encrypted somewhere on the system?
    9. 

  9. ynh_app_setting_set --app=$app --key=password_couchdb_admin --value="$password_couchdb_admin"
    10. 

  10. 

  11. # INSTALL COUCHDB
    12. 

  12. # @@ todo
    13. 

  13. # https://codeberg.org/ChriChri/flohmarkt_ynh/issues/9
    14. 

  14. # check if couchdb is already installed
    15. 

  15. # get port, admin_pw for already installed couchdb
    16. 

  16. # skip the installation steps below
    17. 

  17. ynh_script_progression --message="Installing CouchDB..." --weight=60
    18. 

  18. 

  19. # @@ todo: why is 'cookie string' and 'admin password' below the same?
    20. 

  20. echo "\
    21. 

  21. couchdb couchdb/mode select standalone
    22. 

  22. couchdb couchdb/mode seen true
    23. 

  23. couchdb couchdb/bindaddress string 127.0.0.1
    24. 

  24. couchdb couchdb/bindaddress seen true
    25. 

  25. couchdb couchdb/cookie string $password_couchdb_admin
    26. 

  26. couchdb couchdb/adminpass password $password_couchdb_admin
    27. 

  27. couchdb couchdb/adminpass seen true
    28. 

  28. couchdb couchdb/adminpass_again password $password_couchdb_admin
    29. 

  29. couchdb couchdb/adminpass_again seen true" | debconf-set-selections
    30. 

  30. DEBIAN_FRONTEND=noninteractive # apt-get install -y --force-yes couchdb
    31. 

  31. 

  32. ynh_install_extra_app_dependencies \
    33. 

  33.     --repo="deb https://apache.jfrog.io/artifactory/couchdb-deb/ $(lsb_release -c -s) main" \
    34. 

  34.     --key="https://couchdb.apache.org/repo/keys.asc" \
    35. 

  35.     --package="couchdb"
    36. 

  36. 

  37. # add couchdb configuration
    38. 

  38. ynh_script_progression --message="Adding a configuration file..." --weight=2
    39. 

  39. # customize couchdb config
    40. 

  40. ynh_add_config --template="../conf/couch_ynh.ini" --destination="/opt/couchdb/etc/local.d/couch_ynh.ini"
    41. 

  41. 

  42. # @@ todo need to create a couchdb user and set the files to be readable/executable by it
    43. 

  43. chmod 750 "$install_dir"
    44. 

  44. chmod -R o-rwx "$install_dir"
    45. 

  45. chown -R "$app:$app" "$install_dir"
    46. 

  46. 

  47. # INTEGRATE SERVICE IN YUNOHOST
    48. 

  48. # ynh_script_progression --message="Integrating service in YunoHost..." --weight=1
    49. 

  49. # yunohost service add $app --description="war mal couchdb" --log="/var/log/$app/$app.log"
    50. 

  50. 

  51. # get flohmarkt
    52. 

  52. ynh_setup_source --dest_dir="$install_dir/$app/"
    53. 

  53. 

  54. # setup python environment for flohmarkt
    55. 

  55. ynh_secure_remove "$install_dir/venv"
    56. 

  56. python3 -m venv --without-pip "$install_dir/venv"
    57. 

  57. 

  58. # install python dependencies
    59. 

  59. (
    60. 

  60.     set +o nounset
    61. 

  61.     source "$install_dir/venv/bin/activate"
    62. 

  62.     set -o nounset
    63. 

  63.     set -x
    64. 

  64.     $install_dir/venv/bin/python3 -m ensurepip
    65. 

  65.     $install_dir/venv/bin/pip3 install -r "$install_dir/$app/requirements.txt"
    66. 

  66. )
    67. 

  67. 

  68. # JwtSecret
    69. 

  69. jwtsecret=$(openssl rand 256 | base64 -w 0)
    70. 

  70. 

  71. # generate flohmarkt.conf
    72. 

  72. ynh_add_config --template="../conf/flohmarkt.conf" --destination="$install_dir/$app/flohmarkt.conf"
    73. 

  73. 

  74. # setup couchdb
    75. 

  75. (
    76. 

  76.     set +o nounset
    77. 

  77.     source "$install_dir/venv/bin/activate"
    78. 

  78.     set -o nounset
    79. 

  79.     cd "$install_dir/$app"
    80. 

  80.     python3 initialize_couchdb.py bla42fasel bla42fasel
    81. 

  81. )
    82. 

  82. 

  83. # SETUP LOGROTATE
    84. 

  84. ynh_script_progression --message="Configuring log rotation..." --weight=2
    85. 

  85. # Use logrotate to manage application logfile(s)
    86. 

  86. # @@ how does this know where the logfiles are?
    87. 

  87. ynh_use_logrotate
    88. 

  88. 

  89. # NGINX CONFIGURATION
    90. 

  90. ynh_script_progression --message="Configuring NGINX web server..." --weight=3
    91. 

  91. # Create a dedicated NGINX config
    92. 

  92. ynh_add_nginx_config
    93. 

  93. 

  94. # systemd.service
    95. 

  95. ynh_script_progression --message="Configuring a systemd service..." --weight=1
    96. 

  96. # Create a dedicated systemd config
    97. 

  97. ynh_add_systemd_config
    98. 

  98. # integrate into yunohost
    99. 

  99. ynh_script_progression --message="Integrating service in YunoHost..." --weight=1
    100. 

  100. yunohost service add $app --description="A self-hosted, single-user, ActivityPub powered microblog." --log="/var/log/$app/$app.log"
    101. 

  101. # start service
    102. 

  102. ynh_systemd_action --service_name=$app --action="start"
    103. 

  103. 

  104. # SETUP FAIL2BAN
    105. 

  105. # no need for couchdb, because it will not listen externally
    106. 

  106. # ynh_script_progression --message="Configuring Fail2Ban..." --weight=3
    107. 

  107. # 
    108. 

  108. # # Create a dedicated Fail2Ban config
    109. 

  109. # ynh_add_fail2ban_config --logpath="/var/log/couchdb/couchdb.log" --failregex="[warning] .*couch_httpd_auth: Authentication failed for user .+ from <HOST>" --max_retry=5
    110. 

  110. 

  111. # @@ logrotation
    112. 

  112. 

  113. ynh_script_progression --message="Installation of $app completed" --last
    114. 

  114. # qed
    115.