bingen
/
rpi_docker_home_server
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Pull Requests 0 Lanzamientos 0 Wiki Actividad
No puede seleccionar más de 25 temas Los temas deben comenzar con una letra o número, pueden incluir guiones ('-') y pueden tener hasta 35 caracteres de largo.
96 Commits
6 Ramas
Árbol: 4cf7934ca4
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '4cf7934ca4'
${ noResults }
rpi_docker_home_server/setup.sh

314 líneas
11KB
Original Blame Histórico 

  1. #!/bin/bash

  2. 

  3. DEFAULT_VOLUMES=/media/volumes

  4. PWD_GEN='< /dev/urandom tr -dc _A-Z-a-z-0-9 | head -c${1:-32};echo;'

  5. #PWD_GEN='openssl rand -base64 20'

  6. DEFAULT_LDAP_MAIL_UID='mail'

  7. DEFAULT_LDAP_NEXTCLOUD_UID='nextcloud'

  8. DEFAULT_LDAP_GITEA_UID='git'

  9. DEFAULT_LDAP_HAUK_UID='hauk'

  10. 

  11. # main domain

  12. read -p "Add main domain: " domain

  13. while [[ ! $domain =~ ^.*\.[a-z]{2,}$ ]]; do

  14.     read -p "Add domain (empty to finish): " domain

  15. done

  16. # TODO: more than 1 level domains

  17. org=`echo ${domain} | cut -f1 -d'.'`

  18. ext=`echo ${domain} | cut -f2 -d'.'`

  19. 

  20. # additional domain

  21. virtual_domains=()

  22. while :; do

  23.     read -p "Add additional domains (empty to finish): " virtual_domain

  24.     if [[ -z $virtual_domain ]]; then

  25.         break;

  26.     elif [[ ! $virtual_domain =~ ^.*\.[a-z]{2,}$ ]]; then

  27.         echo "Please Enter a valid domain";

  28.     else

  29.         virtual_domains+=($virtual_domain);

  30.     fi

  31. done

  32. 

  33. read -p "Volumes path ($DEFAULT_VOLUMES): " volumes

  34. if [[ ${#volumes} -eq 0 ]]; then

  35.     volumes=$DEFAULT_VOLUMES

  36. fi

  37. 

  38. read -p "DB admin password (a random one will be generated if empty): " db_pwd

  39. if [[ ${#db_pwd} -eq 0 ]]; then

  40.     db_pwd=`eval "$PWD_GEN"`

  41. fi

  42. 

  43. read -p "LDAP admin password (a random one will be generated if empty): " ldap_pwd

  44. if [[ ${#ldap_pwd} -eq 0 ]]; then

  45.     ldap_pwd=`eval "$PWD_GEN"`

  46. fi

  47. 

  48. read -p "LDAP Mail Bind DN uid ($DEFAULT_LDAP_MAIL_UID): " ldap_mail_uid

  49. if [[ ${#ldap_mail_uid} -eq 0 ]]; then

  50.     ldap_mail_uid=$DEFAULT_LDAP_MAIL_UID

  51. fi

  52. 

  53. read -p "LDAP Mail Bind DN Pwd (a random one will be generated if empty): " ldap_mail_pwd

  54. if [[ ${#ldap_mail_pwd} -eq 0 ]]; then

  55.     ldap_mail_pwd=`eval "$PWD_GEN"`

  56. fi

  57. 

  58. read -p "LDAP Nextcloud Bind DN uid ($DEFAULT_LDAP_NEXTCLOUD_UID): " ldap_nextcloud_uid

  59. if [[ ${#ldap_nextcloud_uid} -eq 0 ]]; then

  60.     ldap_nextcloud_uid=$DEFAULT_LDAP_NEXTCLOUD_UID

  61. fi

  62. 

  63. read -p "LDAP Nextcloud Bind DN Pwd (a random one will be generated if empty): " ldap_nextcloud_pwd

  64. if [[ ${#ldap_nextcloud_pwd} -eq 0 ]]; then

  65.     ldap_nextcloud_pwd=`eval "$PWD_GEN"`

  66. fi

  67. 

  68. read -p "LDAP Gitea Bind DN uid ($DEFAULT_LDAP_GITEA_UID): " ldap_gitea_uid

  69. if [[ ${#ldap_gitea_uid} -eq 0 ]]; then

  70.     ldap_gitea_uid=$DEFAULT_LDAP_GITEA_UID

  71. fi

  72. 

  73. read -p "LDAP Gitea Bind DN Pwd (a random one will be generated if empty): " ldap_gitea_pwd

  74. if [[ ${#ldap_gitea_pwd} -eq 0 ]]; then

  75.     ldap_gitea_pwd=`eval "$PWD_GEN"`

  76. fi

  77. 

  78. read -p "LDAP Hauk Bind DN uid ($DEFAULT_LDAP_HAUK_UID): " ldap_hauk_uid

  79. if [[ ${#ldap_hauk_uid} -eq 0 ]]; then

  80.     ldap_hauk_uid=$DEFAULT_LDAP_HAUK_UID

  81. fi

  82. 

  83. read -p "LDAP Hauk Bind DN Pwd (a random one will be generated if empty): " ldap_hauk_pwd

  84. if [[ ${#ldap_hauk_pwd} -eq 0 ]]; then

  85.     ldap_hauk_pwd=`eval "$PWD_GEN"`

  86. fi

  87. 

  88. read -p "Nextcloud Admin User Pwd (a random one will be generated if empty): " nextcloud_admin_pwd

  89. if [[ ${#nextcloud_admin_pwd} -eq 0 ]]; then

  90.     nextcloud_admin_pwd=`eval "$PWD_GEN"`

  91. fi

  92. 

  93. read -p "Gitea Admin User Pwd (a random one will be generated if empty): " gitea_admin_pwd

  94. if [[ ${#gitea_admin_pwd} -eq 0 ]]; then

  95.     gitea_admin_pwd=`eval "$PWD_GEN"`

  96. fi

  97. 

  98. read -p "Hauk Server Pwd (a random one will be generated if empty): " hauk_server_pwd

  99. if [[ ${#hauk_server_pwd} -eq 0 ]]; then

  100.     hauk_server_pwd=`eval "$PWD_GEN"`

  101. fi

  102. 

  103. read -p "Pi-Hole Web User Pwd (a random one will be generated if empty): " pihole_web_pwd

  104. if [[ ${#pihole_web_pwd} -eq 0 ]]; then

  105.     pihole_web_pwd=`eval "$PWD_GEN"`

  106. fi

  107. 

  108. read -p "Admin E-mail, used for Let's Encrypt account and more (admin@${domain}): " admin_email

  109. if [[ ${#admin_email} -eq 0 ]]; then

  110.     admin_email=admin@${domain}

  111. fi

  112. 

  113. echo "If you have a password salt and a secret from a previous installation, provide them here."

  114. echo "They are used by Passman and need to remain the same for the vaults to be accessible"

  115. read -p "Nextcloud Pwd Salt (a random one will be generated by NC if empty): " nextcloud_salt

  116. read -p "Nextcloud Secret (a random one will be generated by NC if empty): " nextcloud_secret

  117. 

  118. # read -p "Paperless Web Server User (paperless): " paperless_webserver_user

  119. # if [[ ${#paperless_webserver_user} -eq 0 ]]; then

  120. #     paperless_webserver_user=paperless

  121. # fi

  122. 

  123. # read -p "Paperless Web Server Pwd (a random one will be generated if empty): " paperless_webserver_pwd

  124. # if [[ ${#paperless_webserver_pwd} -eq 0 ]]; then

  125. #     paperless_webserver_pwd=`eval "$PWD_GEN"`

  126. # fi

  127. 

  128. # read -p "Paperless Encryption Passphrase (a random one will be generated if empty): " paperless_passphrase

  129. # if [[ ${#paperless_passphrase} -eq 0 ]]; then

  130. #     paperless_=`eval "$PWD_GEN"`

  131. # fi

  132. 

  133. read -p "SFTP User - SFTP server is used by paperless (consume): " paperless_ftp_user

  134. if [[ ${#paperless_ftp_user} -eq 0 ]]; then

  135.     paperless_ftp_user=consume

  136. fi

  137. 

  138. read -p "SFTP Pwd (a random one will be generated if empty): " paperless_ftp_pwd

  139. if [[ ${#paperless_ftp_pwd} -eq 0 ]]; then

  140.     paperless_ftp_pwd=`eval "$PWD_GEN"`

  141. fi

  142. 

  143. read -p "Blog 1 URL (https://blog.${domain})" blog_1_url

  144. if [[ ${#blog_1_url} -eq 0 ]]; then

  145.     blog_1_url=https://blog.${domain}

  146. fi

  147. 

  148. echo $'\E[33m'

  149. echo "//////////////////////////////////////////////////"

  150. echo "///////////////// PLEASE CONFIRM /////////////////"

  151. echo "//////////////////////////////////////////////////"

  152. echo $'\E[1;30m'

  153. 

  154. echo Your main domain is:                  ${domain}

  155. echo Your virtual domains are:             ${virtual_domains[*]}

  156. echo Your Volumes path is:                 $volumes

  157. echo Your LDAP Mail Bind DN Uid is:        $ldap_mail_uid

  158. echo Your LDAP Nextcloud Bind DN Uid is:   $ldap_nextcloud_uid

  159. echo Your LDAP Gitea Bind DN Uid is:       $ldap_gitea_uid

  160. echo Your LDAP Hauk Bind DN Uid is:        $ldap_hauk_uid

  161. echo Your Admin email. Let\'s Encrypt...:  $admin_email

  162. echo Your Paperless Web Server User:       $paperless_webserver_user

  163. echo Your SFTP User:                       $paperless_ftp_user

  164. echo Your Blog 1 URL:                      $blog_1_url

  165. 

  166. echo $'\E[1;37m'

  167. read -p "Are These Settings Correct? Yes (y), No (n): " confirm

  168. while [[ ! $confirm =~ ^[yYnN]{1}$ ]]; do

  169.     read -p "Please Enter 'y' or 'n' To Confirm Settings: " confirm

  170. done

  171. 

  172. if [[ $confirm != [yY] ]]; then

  173.     exit 1

  174. fi

  175. 

  176. echo $'\E[33m'

  177. echo "//////////////////////////////////////////////////"

  178. echo "///////////// COPYING TEMPLATE FILES /////////////"

  179. echo "//////////////////////////////////////////////////"

  180. echo $'\E[1;30m'

  181. 

  182. cp env.template .env

  183. cp mariadb.env.template mariadb.env

  184. cp openldap.env.template openldap.env

  185. cp mail.env.template mail.env

  186. cp nextcloud.env.template nextcloud.env

  187. cp haproxy.env.template haproxy.env

  188. cp paperless.env.template paperless.env

  189. cp sftp.env.template sftp.env

  190. cp gitea.env.template gitea.env

  191. cp hauk.env.template hauk.env

  192. cp pihole.env.template pihole.env

  193. chmod 600 *.env

  194. 

  195. # Passwords

  196. echo MYSQL_ROOT_PWD=$db_pwd >> mariadb.env

  197. echo MYSQL_ROOT_PWD=$db_pwd >> nextcloud.env

  198. 

  199. echo LDAP_ADMIN_PWD=$ldap_pwd >> openldap.env

  200. echo LDAP_MAIL_PWD=$ldap_mail_pwd >> openldap.env

  201. echo LDAP_NEXTCLOUD_PWD=$ldap_nextcloud_pwd >> openldap.env

  202. echo LDAP_GITEA_PWD=$ldap_gitea_pwd >> openldap.env

  203. echo LDAP_HAUK_PWD=$ldap_hauk_pwd >> openldap.env

  204. echo LDAP_BIND_PWD=$ldap_mail_pwd >> mail.env

  205. echo LDAP_BIND_PWD=$ldap_nextcloud_pwd >> nextcloud.env

  206. echo LDAP_BIND_PWD=$ldap_gitea_pwd >> gitea.env

  207. echo LDAP_BIND_PWD=$ldap_hauk_pwd >> hauk.env

  208. 

  209. echo NEXTCLOUD_ADMIN_PWD=$nextcloud_admin_pwd >> nextcloud.env

  210. echo NEXTCLOUD_SALT=$nextcloud_salt >> nextcloud.env

  211. echo NEXTCLOUD_SECRET=$nextcloud_secret >> nextcloud.env

  212. 

  213. #echo PAPERLESS_WEBSERVER_PWD=$paperless_webserver_pwd >> paperless.env

  214. #echo PAPERLESS_PASSPHRASE=$paperless_passphrase >> paperless.env

  215. echo PAPERLESS_FTP_PWD=$paperless_ftp_pwd >> sftp.env

  216. echo GITEA_ADMIN_PWD=$gitea_admin_pwd >> gitea.env

  217. echo HAUK_SERVER_PWD=$hauk_server_pwd >> hauk.env

  218. #echo $pihole_web_pwd | docker secret create pihole_web_pwd -

  219. sed -i "s/\${PIHOLE_WEB_PWD}/${pihole_web_pwd}/g" pihole.env

  220. 

  221. # IP for Pi-Hole

  222. IP_LOOKUP="$(ip route get 8.8.8.8 | awk '{ print $NF; exit }')"  # May not work for VPN / tun0

  223. IPv6_LOOKUP="$(ip -6 route get 2001:4860:4860::8888 | awk '{for(i=1;i<=NF;i++) if ($i=="src") print $(i+1)}')"  # May not work for VPN / tun0

  224. 

  225. for i in `ls *.env .env`; do

  226.     sed -i "s/\${DOMAIN}/${domain}/g" $i

  227.     sed -i "s/\${VIRTUAL_DOMAINS}/${virtual_domains[*]}/g" $i

  228.     sed -i "s/\${ORGANIZATION}/${org}/g" $i

  229.     sed -i "s/\${EXTENSION}/${ext}/g" $i

  230.     sed -i "s/\${VOLUMES_PATH}/${volumes//\//\\/}/g" $i

  231.     sed -i "s/\${LDAP_MAIL_UID}/${ldap_mail_uid}/g" $i

  232.     sed -i "s/\${LDAP_NEXTCLOUD_UID}/${ldap_nextcloud_uid}/g" $i

  233.     sed -i "s/\${LDAP_GITEA_UID}/${ldap_gitea_uid}/g" $i

  234.     sed -i "s/\${LDAP_HAUK_UID}/${ldap_hauk_uid}/g" $i

  235.     sed -i "s/\${ADMIN_EMAIL}/${admin_email}/g" $i

  236.     sed -i "s/\${PAPERLESS_WEBSERVER_USER}/${paperless_webserver_user}/g" $i

  237.     sed -i "s/\${PAPERLESS_FTP_USER}/${paperless_ftp_user}/g" $i

  238.     sed -i "s/\${IP_LOOKUP}/${IP_LOOKUP}/g" $i

  239.     sed -i "s/\${IPv6_LOOKUP}/${IPv6_LOOKUP}/g" $i

  240.     sed -i "s/\${BLOG_1_URL}/${blog_1_url}/g" $i

  241.     #sed -i "s/\${}/${}/g" $i

  242. done;

  243. 

  244. # read variables

  245. . .env

  246. # repeated env variables

  247. # domains available for all, just in case

  248. for i in `ls *.env`; do

  249.     echo "" >> $i

  250.     echo "# Domains" >> $i

  251.     echo "DOMAIN=${DOMAIN}" >> $i

  252.     echo "VIRTUAL_DOMAINS=${VIRTUAL_DOMAINS}" >> $i

  253.     echo "DOMAINS=${DOMAINS}" >> $i

  254. done

  255. 

  256. echo "" >> mail.env

  257. echo "MAIL_DATA_PATH=${MAIL_DATA_PATH}" >> mail.env

  258. echo "" >> nextcloud.env

  259. echo "NEXTCLOUD_SERVER_NAME=${NEXTCLOUD_SERVER_NAME}" >> nextcloud.env

  260. echo "NEXTCLOUD_DB_BACKUP=${NEXTCLOUD_DATA_PATH}/nextcloud_db_backup.sql" >> nextcloud.env

  261. echo "NEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}" >> nextcloud.env

  262. echo "NEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}" >> nextcloud.env

  263. echo "" >> gitea.env

  264. echo "GITEA_SERVER_NAME=${GITEA_SERVER_NAME}" >> gitea.env

  265. echo "GITEA_HTTP_PORT=${GITEA_HTTP_PORT}" >> gitea.env

  266. echo "" >> paperless.env

  267. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> paperless.env

  268. echo "PAPERLESS_EXPORT_DIR=${PAPERLESS_EXPORT_PATH}" >> paperless.env

  269. echo "" >> sftp.env

  270. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> sftp.env

  271. echo "" >> haproxy.env

  272. echo "NEXTCLOUD_SERVER_NAME=${NEXTCLOUD_SERVER_NAME}" >> haproxy.env

  273. echo "GITEA_SERVER_NAME=${GITEA_SERVER_NAME}" >> haproxy.env

  274. echo "BLOG_1_SERVER_NAME=${BLOG_1_SERVER_NAME}" >> haproxy.env

  275. echo "HAUK_SERVER_NAME=${HAUK_SERVER_NAME}" >> haproxy.env

  276. 

  277. echo $'\E[33m'

  278. echo "//////////////////////////////////////////////////"

  279. echo "//////////////// CREATING FOLDERS ////////////////"

  280. echo "//////////////////////////////////////////////////"

  281. echo $'\E[1;30m'

  282. 

  283. # openldap

  284. sudo mkdir -p ${LDAP_DATA_VOLUME_PATH}

  285. sudo mkdir -p ${LDAP_CONFIG_VOLUME_PATH}

  286. sudo mkdir -p ${LDAP_CERTS_VOLUME_PATH}

  287. # db

  288. sudo mkdir -p ${DB_DATA_VOLUME_PATH}

  289. #sudo mkdir -p ${DB_CONFIG_VOLUME_PATH}

  290. # mail

  291. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}

  292. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}/getmail

  293. #sudo mkdir -p ${MAIL_STATE_VOLUME_PATH}

  294. # nextcloud

  295. sudo mkdir -p ${NEXTCLOUD_DATA_VOLUME_PATH}

  296. sudo mkdir -p ${NEXTCLOUD_BACKUP_VOLUME_PATH}

  297. # paperless

  298. sudo mkdir -p ${PAPERLESS_DATA_VOLUME_PATH}

  299. sudo mkdir -p ${PAPERLESS_MEDIA_VOLUME_PATH}

  300. sudo mkdir -p ${PAPERLESS_CONSUMPTION_VOLUME_PATH}

  301. sudo mkdir -p ${PAPERLESS_EXPORT_VOLUME_PATH}

  302. # gitea

  303. sudo mkdir -p ${GITEA_DATA_VOLUME_PATH}

  304. # blogs

  305. sudo mkdir -p ${BLOG_1_VOLUME_PATH}

  306. # Pi-Hole

  307. sudo mkdir -p ${PIHOLE_CONFIG_VOLUME_PATH}

  308. sudo mkdir -p ${PIHOLE_DNSMASQ_VOLUME_PATH}

  309. # let's Encrypt

  310. sudo mkdir -p ${LETSENCRYPT_VOLUME_PATH}

  311. 

  312. echo "Copying getmail confs"

  313. cp images/email/getmail/getmailrc-* ${MAIL_DATA_VOLUME_PATH}/getmail/