bingen
/
rpi_docker_home_server
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
66 Commits
6 Branches
Tree: 31f0b30721
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van '31f0b30721'
${ noResults }
rpi_docker_home_server/setup_noswarm.sh

250 lines
9.0KB
Ruw Blame Geschiedenis 

  1. #!/bin/bash

  2. 

  3. DEFAULT_VOLUMES=/media/volumes

  4. PWD_GEN='< /dev/urandom tr -dc _A-Z-a-z-0-9 | head -c${1:-32};echo;'

  5. #PWD_GEN='openssl rand -base64 20'

  6. DEFAULT_LDAP_MAIL_UID='mail'

  7. DEFAULT_LDAP_NEXTCLOUD_UID='nextcloud'

  8. DEFAULT_LDAP_GOGS_UID='gogs'

  9. 

  10. read -p "Main domain: " domain

  11. while [[ ! $domain =~ ^.*\.[a-z]{2,}$ ]]; do

  12.     read -p "Please Enter a valid domain: " domain

  13. done

  14. # TODO: more than 1 level domains

  15. org=`echo $domain | cut -f1 -d'.'`

  16. ext=`echo $domain | cut -f2 -d'.'`

  17. 

  18. read -p "Volumes path ($DEFAULT_VOLUMES): " volumes

  19. if [[ ${#volumes} -eq 0 ]]; then

  20.     volumes=$DEFAULT_VOLUMES

  21. fi

  22. 

  23. read -p "DB admin password (a random one will be generated if empty): " db_pwd

  24. if [[ ${#db_pwd} -eq 0 ]]; then

  25.     db_pwd=`eval "$PWD_GEN"`

  26. fi

  27. 

  28. read -p "LDAP admin password (a random one will be generated if empty): " ldap_pwd

  29. if [[ ${#ldap_pwd} -eq 0 ]]; then

  30.     ldap_pwd=`eval "$PWD_GEN"`

  31. fi

  32. 

  33. read -p "LDAP Mail Bind DN uid ($DEFAULT_LDAP_MAIL_UID): " ldap_mail_uid

  34. if [[ ${#ldap_mail_uid} -eq 0 ]]; then

  35.     ldap_mail_uid=$DEFAULT_LDAP_MAIL_UID

  36. fi

  37. 

  38. read -p "LDAP Mail Bind DN Pwd (a random one will be generated if empty): " ldap_mail_pwd

  39. if [[ ${#ldap_mail_pwd} -eq 0 ]]; then

  40.     ldap_mail_pwd=`eval "$PWD_GEN"`

  41. fi

  42. 

  43. read -p "LDAP Nextcloud Bind DN uid ($DEFAULT_LDAP_NEXTCLOUD_UID): " ldap_nextcloud_uid

  44. if [[ ${#ldap_nextcloud_uid} -eq 0 ]]; then

  45.     ldap_nextcloud_uid=$DEFAULT_LDAP_NEXTCLOUD_UID

  46. fi

  47. 

  48. read -p "LDAP Nextcloud Bind DN Pwd (a random one will be generated if empty): " ldap_nextcloud_pwd

  49. if [[ ${#ldap_nextcloud_pwd} -eq 0 ]]; then

  50.     ldap_nextcloud_pwd=`eval "$PWD_GEN"`

  51. fi

  52. 

  53. read -p "LDAP Gogs Bind DN uid ($DEFAULT_LDAP_GOGS_UID): " ldap_gogs_uid

  54. if [[ ${#ldap_gogs_uid} -eq 0 ]]; then

  55.     ldap_gogs_uid=$DEFAULT_LDAP_GOGS_UID

  56. fi

  57. 

  58. read -p "LDAP Gogs Bind DN Pwd (a random one will be generated if empty): " ldap_gogs_pwd

  59. if [[ ${#ldap_gogs_pwd} -eq 0 ]]; then

  60.     ldap_gogs_pwd=`eval "$PWD_GEN"`

  61. fi

  62. 

  63. read -p "Nextcloud Admin User Pwd (a random one will be generated if empty): " nextcloud_admin_pwd

  64. if [[ ${#nextcloud_admin_pwd} -eq 0 ]]; then

  65.     nextcloud_admin_pwd=`eval "$PWD_GEN"`

  66. fi

  67. 

  68. read -p "Gogs Admin User Pwd (a random one will be generated if empty): " gogs_admin_pwd

  69. if [[ ${#gogs_admin_pwd} -eq 0 ]]; then

  70.     gogs_admin_pwd=`eval "$PWD_GEN"`

  71. fi

  72. 

  73. read -p "Pi-Hole Web User Pwd (a random one will be generated if empty): " pihole_web_pwd

  74. if [[ ${#pihole_web_pwd} -eq 0 ]]; then

  75.     pihole_web_pwd=`eval "$PWD_GEN"`

  76. fi

  77. 

  78. read -p "Admin E-mail, used for Let's Encrypt account and more (admin@${domain}): " admin_email

  79. if [[ ${#admin_email} -eq 0 ]]; then

  80.     admin_email=admin@${domain}

  81. fi

  82. 

  83. echo "If you have a password salt and a secret from a previous installation, provide them here."

  84. echo "They are used by Passman and need to remain the same for the vaults to be accessible"

  85. read -p "Nextcloud Pwd Salt (a random one will be generated by NC if empty): " nextcloud_salt

  86. read -p "Nextcloud Secret (a random one will be generated by NC if empty): " nextcloud_secret

  87. 

  88. # read -p "Paperless Web Server User (paperless): " paperless_webserver_user

  89. # if [[ ${#paperless_webserver_user} -eq 0 ]]; then

  90. #     paperless_webserver_user=paperless

  91. # fi

  92. 

  93. # read -p "Paperless Web Server Pwd (a random one will be generated if empty): " paperless_webserver_pwd

  94. # if [[ ${#paperless_webserver_pwd} -eq 0 ]]; then

  95. #     paperless_webserver_pwd=`eval "$PWD_GEN"`

  96. # fi

  97. 

  98. # read -p "Paperless Encryption Passphrase (a random one will be generated if empty): " paperless_passphrase

  99. # if [[ ${#paperless_passphrase} -eq 0 ]]; then

  100. #     paperless_=`eval "$PWD_GEN"`

  101. # fi

  102. 

  103. read -p "SFTP User - SFTP server is used by paperless (consume): " paperless_ftp_user

  104. if [[ ${#paperless_ftp_user} -eq 0 ]]; then

  105.     paperless_ftp_user=consume

  106. fi

  107. 

  108. read -p "SFTP Pwd (a random one will be generated if empty): " paperless_ftp_pwd

  109. if [[ ${#paperless_ftp_pwd} -eq 0 ]]; then

  110.     paperless_ftp_pwd=`eval "$PWD_GEN"`

  111. fi

  112. 

  113. echo $'\E[33m'

  114. echo "//////////////////////////////////////////////////"

  115. echo "///////////////// PLEASE CONFIRM /////////////////"

  116. echo "//////////////////////////////////////////////////"

  117. echo $'\E[1;30m'

  118. 

  119. echo Your domain is:                       $domain

  120. echo Your Volumes path is:                 $volumes

  121. echo Your LDAP Mail Bind DN Uid is:        $ldap_mail_uid

  122. echo Your LDAP Nextcloud Bind DN Uid is:   $ldap_nextcloud_uid

  123. echo Your LDAP Gogs Bind DN Uid is:        $ldap_gogs_uid

  124. echo Your Admin email. Let\'s Encrypt...:  $admin_email

  125. echo Your Paperless Web Server User:       $paperless_webserver_user

  126. echo Your SFTP User:                       $paperless_ftp_user

  127. 

  128. echo $'\E[1;37m'

  129. read -p "Are These Settings Correct? Yes (y), No (n): " confirm

  130. while [[ ! $confirm =~ ^[yYnN]{1}$ ]]; do

  131.     read -p "Please Enter 'y' or 'n' To Confirm Settings: " confirm

  132. done

  133. 

  134. if [[ $confirm != [yY] ]]; then

  135.     exit 1

  136. fi

  137. 

  138. echo $'\E[33m'

  139. echo "//////////////////////////////////////////////////"

  140. echo "///////////// COPYING TEMPLATE FILES /////////////"

  141. echo "//////////////////////////////////////////////////"

  142. echo $'\E[1;30m'

  143. 

  144. cp env.template .env

  145. cp mariadb.env.template mariadb.env

  146. cp openldap.env.template openldap.env

  147. cp mail.env.template mail.env

  148. cp nextcloud.env.template nextcloud.env

  149. cp haproxy.env.template haproxy.env

  150. cp paperless.env.template paperless.env

  151. cp sftp.env.template sftp.env

  152. cp gogs.env.template gogs.env

  153. cp pihole.env.template pihole.env

  154. chmod 600 *.env

  155. 

  156. # Passwords

  157. echo MYSQL_ROOT_PWD=$db_pwd >> mariadb.env

  158. echo MYSQL_ROOT_PWD=$db_pwd >> nextcloud.env

  159. echo MYSQL_ROOT_PWD=$db_pwd >> gogs.env

  160. 

  161. echo LDAP_ADMIN_PWD=$ldap_pwd >> openldap.env

  162. echo LDAP_MAIL_PWD=$ldap_mail_pwd >> openldap.env

  163. echo LDAP_NEXTCLOUD_PWD=$ldap_nextcloud_pwd >> openldap.env

  164. echo LDAP_GOGS_PWD=$ldap_gogs_pwd >> openldap.env

  165. echo LDAP_BIND_PWD=$ldap_mail_pwd >> mail.env

  166. echo LDAP_BIND_PWD=$ldap_nextcloud_pwd >> nextcloud.env

  167. echo LDAP_BIND_PWD=$ldap_gogs_pwd >> gogs.env

  168. 

  169. echo NEXTCLOUD_ADMIN_PWD=$nextcloud_admin_pwd >> nextcloud.env

  170. echo NEXTCLOUD_SALT=$nextcloud_salt >> nextcloud.env

  171. echo NEXTCLOUD_SECRET=$nextcloud_secret >> nextcloud.env

  172. 

  173. #echo PAPERLESS_WEBSERVER_PWD=$paperless_webserver_pwd >> paperless.env

  174. #echo PAPERLESS_PASSPHRASE=$paperless_passphrase >> paperless.env

  175. echo PAPERLESS_FTP_PWD=$paperless_ftp_pwd >> sftp.env

  176. echo GOGS_ADMIN_PWD=$gogs_admin_pwd >> gogs.env

  177. #echo $pihole_web_pwd | docker secret create pihole_web_pwd -

  178. sed -i "s/\${PIHOLE_WEB_PWD}/${pihole_web_pwd}/g" pihole.env

  179. 

  180. # IP for Pi-Hole

  181. IP_LOOKUP="$(ip route get 8.8.8.8 | awk '{ print $NF; exit }')"  # May not work for VPN / tun0

  182. IPv6_LOOKUP="$(ip -6 route get 2001:4860:4860::8888 | awk '{for(i=1;i<=NF;i++) if ($i=="src") print $(i+1)}')"  # May not work for VPN / tun0

  183. 

  184. for i in `ls *.env .env`; do

  185.     sed -i "s/\${DOMAIN}/${domain}/g" $i

  186.     sed -i "s/\${ORGANIZATION}/${org}/g" $i

  187.     sed -i "s/\${EXTENSION}/${ext}/g" $i

  188.     sed -i "s/\${VOLUMES_PATH}/${volumes//\//\\/}/g" $i

  189.     sed -i "s/\${LDAP_MAIL_UID}/${ldap_mail_uid}/g" $i

  190.     sed -i "s/\${LDAP_NEXTCLOUD_UID}/${ldap_nextcloud_uid}/g" $i

  191.     sed -i "s/\${LDAP_GOGS_UID}/${ldap_gogs_uid}/g" $i

  192.     sed -i "s/\${ADMIN_EMAIL}/${admin_email}/g" $i

  193.     sed -i "s/\${PAPERLESS_WEBSERVER_USER}/${paperless_webserver_user}/g" $i

  194.     sed -i "s/\${PAPERLESS_FTP_USER}/${paperless_ftp_user}/g" $i

  195.     sed -i "s/\${IP_LOOKUP}/${IP_LOOKUP}/g" $i

  196.     sed -i "s/\${IPv6_LOOKUP}/${IPv6_LOOKUP}/g" $i

  197.     #sed -i "s/\${}/${}/g" $i

  198. done;

  199. 

  200. # read variables

  201. . .env

  202. # repeated env variables

  203. echo "" >> mail.env

  204. echo "MAIL_DATA_PATH=${MAIL_DATA_PATH}" >> mail.env

  205. echo "" >> nextcloud.env

  206. echo "NEXTCLOUD_DB_BACKUP=${NEXTCLOUD_DATA_PATH}/nextcloud_db_backup.sql" >> nextcloud.env

  207. echo "NEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}" >> nextcloud.env

  208. echo "NEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}" >> nextcloud.env

  209. echo "" >> paperless.env

  210. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> paperless.env

  211. echo "PAPERLESS_EXPORT_DIR=${PAPERLESS_EXPORT_PATH}" >> paperless.env

  212. echo "" >> sftp.env

  213. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> sftp.env

  214. 

  215. echo $'\E[33m'

  216. echo "//////////////////////////////////////////////////"

  217. echo "//////////////// CREATING FOLDERS ////////////////"

  218. echo "//////////////////////////////////////////////////"

  219. echo $'\E[1;30m'

  220. 

  221. # openldap

  222. sudo mkdir -p ${LDAP_DATA_VOLUME_PATH}

  223. sudo mkdir -p ${LDAP_CONFIG_VOLUME_PATH}

  224. sudo mkdir -p ${LDAP_CERTS_VOLUME_PATH}

  225. # db

  226. sudo mkdir -p ${DB_DATA_VOLUME_PATH}

  227. #sudo mkdir -p ${DB_CONFIG_VOLUME_PATH}

  228. # mail

  229. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}

  230. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}/getmail

  231. #sudo mkdir -p ${MAIL_STATE_VOLUME_PATH}

  232. # nextcloud

  233. sudo mkdir -p ${NEXTCLOUD_DATA_VOLUME_PATH}

  234. sudo mkdir -p ${NEXTCLOUD_BACKUP_VOLUME_PATH}

  235. # paperless

  236. sudo mkdir -p ${PAPERLESS_DATA_VOLUME_PATH}

  237. sudo mkdir -p ${PAPERLESS_MEDIA_VOLUME_PATH}

  238. sudo mkdir -p ${PAPERLESS_CONSUMPTION_VOLUME_PATH}

  239. sudo mkdir -p ${PAPERLESS_EXPORT_VOLUME_PATH}

  240. # gogs

  241. sudo mkdir -p ${GOGS_DATA_VOLUME_PATH}

  242. # Pi-Hole

  243. sudo mkdir -p ${PIHOLE_CONFIG_VOLUME_PATH}

  244. sudo mkdir -p ${PIHOLE_DNSMASQ_VOLUME_PATH}

  245. # let's Encrypt

  246. sudo mkdir -p ${LETSENCRYPT_VOLUME_PATH}

  247. 

  248. echo "Copying getmail confs"

  249. cp images/email/getmail/getmailrc-* ${MAIL_DATA_VOLUME_PATH}/getmail/