bingen
/
rpi_docker_home_server
Suivre 1
Ajouter aux favoris 0
Bifurcation 0
Code Tickets 0 Demandes d'ajout 0 Versions 0 Wiki Activité
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
48 Révisions
6 Branches
Aborescence: 6fb2fbf693
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '6fb2fbf693'
${ noResults }
rpi_docker_home_server/setup.sh

217 lines
7.9KB
Brut Annotations Historique 

  1. #!/bin/bash

  2. 

  3. DEFAULT_VOLUMES=/media/volumes

  4. PWD_GEN='< /dev/urandom tr -dc _A-Z-a-z-0-9 | head -c${1:-32};echo;'

  5. #PWD_GEN='openssl rand -base64 20'

  6. DEFAULT_LDAP_MAIL_UID='mail'

  7. DEFAULT_LDAP_NEXTCLOUD_UID='nextcloud'

  8. DEFAULT_LDAP_GOGS_UID='gogs'

  9. 

  10. read -p "Main domain: " domain

  11. while [[ ! $domain =~ ^.*\.[a-z]{2,}$ ]]; do

  12.     read -p "Please Enter a valid domain: " domain

  13. done

  14. # TODO: more than 1 level domains

  15. org=`echo $domain | cut -f1 -d'.'`

  16. ext=`echo $domain | cut -f2 -d'.'`

  17. 

  18. read -p "Volumes path ($DEFAULT_VOLUMES): " volumes

  19. if [[ ${#volumes} -eq 0 ]]; then

  20.     volumes=$DEFAULT_VOLUMES

  21. fi

  22. 

  23. read -p "DB admin password (a random one will be generated if empty): " db_pwd

  24. if [[ ${#db_pwd} -eq 0 ]]; then

  25.     db_pwd=`eval "$PWD_GEN"`

  26. fi

  27. 

  28. read -p "LDAP admin password (a random one will be generated if empty): " ldap_pwd

  29. if [[ ${#ldap_pwd} -eq 0 ]]; then

  30.     ldap_pwd=`eval "$PWD_GEN"`

  31. fi

  32. 

  33. read -p "LDAP Mail Bind DN uid ($DEFAULT_LDAP_MAIL_UID): " ldap_mail_uid

  34. if [[ ${#ldap_mail_uid} -eq 0 ]]; then

  35.     ldap_mail_uid=$DEFAULT_LDAP_MAIL_UID

  36. fi

  37. 

  38. read -p "LDAP Mail Bind DN Pwd (a random one will be generated if empty): " ldap_mail_pwd

  39. if [[ ${#ldap_mail_pwd} -eq 0 ]]; then

  40.     ldap_mail_pwd=`eval "$PWD_GEN"`

  41. fi

  42. 

  43. read -p "LDAP Nextcloud Bind DN uid ($DEFAULT_LDAP_NEXTCLOUD_UID): " ldap_nextcloud_uid

  44. if [[ ${#ldap_nextcloud_uid} -eq 0 ]]; then

  45.     ldap_nextcloud_uid=$DEFAULT_LDAP_NEXTCLOUD_UID

  46. fi

  47. 

  48. read -p "LDAP Nextcloud Bind DN Pwd (a random one will be generated if empty): " ldap_nextcloud_pwd

  49. if [[ ${#ldap_nextcloud_pwd} -eq 0 ]]; then

  50.     ldap_nextcloud_pwd=`eval "$PWD_GEN"`

  51. fi

  52. 

  53. read -p "LDAP Gogs Bind DN uid ($DEFAULT_LDAP_GOGS_UID): " ldap_gogs_uid

  54. if [[ ${#ldap_gogs_uid} -eq 0 ]]; then

  55.     ldap_gogs_uid=$DEFAULT_LDAP_GOGS_UID

  56. fi

  57. 

  58. read -p "LDAP Gogs Bind DN Pwd (a random one will be generated if empty): " ldap_gogs_pwd

  59. if [[ ${#ldap_gogs_pwd} -eq 0 ]]; then

  60.     ldap_gogs_pwd=`eval "$PWD_GEN"`

  61. fi

  62. 

  63. read -p "Nextcloud Admin User Pwd (a random one will be generated if empty): " nextcloud_admin_pwd

  64. if [[ ${#nextcloud_admin_pwd} -eq 0 ]]; then

  65.     nextcloud_admin_pwd=`eval "$PWD_GEN"`

  66. fi

  67. 

  68. read -p "Gogs Admin User Pwd (a random one will be generated if empty): " gogs_admin_pwd

  69. if [[ ${#gogs_admin_pwd} -eq 0 ]]; then

  70.     gogs_admin_pwd=`eval "$PWD_GEN"`

  71. fi

  72. 

  73. read -p "Admin E-mail, used for Let's Encrypt account and more (admin@${domain}): " admin_email

  74. if [[ ${#admin_email} -eq 0 ]]; then

  75.     admin_email=admin@${domain}

  76. fi

  77. 

  78. echo "If you have a password salt and a secret from a previous installation, provide them here."

  79. echo "They are used by Passman and need to remain the same for the vaults to be accessible"

  80. read -p "Nextcloud Pwd Salt (a random one will be generated by NC if empty): " nextcloud_salt

  81. read -p "Nextcloud Secret (a random one will be generated by NC if empty): " nextcloud_secret

  82. 

  83. read -p "Paperless Web Server User (paperless): " paperless_webserver_user

  84. if [[ ${#paperless_webserver_user} -eq 0 ]]; then

  85.     paperless_webserver_user=paperless

  86. fi

  87. 

  88. read -p "Paperless Web Server Pwd (a random one will be generated if empty): " paperless_webserver_pwd

  89. if [[ ${#paperless_webserver_pwd} -eq 0 ]]; then

  90.     paperless_webserver_pwd=`eval "$PWD_GEN"`

  91. fi

  92. 

  93. read -p "Paperless Encryption Passphrase (a random one will be generated if empty): " paperless_passphrase

  94. if [[ ${#paperless_passphrase} -eq 0 ]]; then

  95.     paperless_=`eval "$PWD_GEN"`

  96. fi

  97. 

  98. read -p "SFTP User - SFTP server is used by paperless (consume): " paperless_ftp_user

  99. if [[ ${#paperless_ftp_user} -eq 0 ]]; then

  100.     paperless_ftp_user=consume

  101. fi

  102. 

  103. read -p "SFTP Pwd (a random one will be generated if empty): " paperless_ftp_pwd

  104. if [[ ${#paperless_ftp_pwd} -eq 0 ]]; then

  105.     paperless_ftp_pwd=`eval "$PWD_GEN"`

  106. fi

  107. 

  108. echo $'\E[33m'

  109. echo "//////////////////////////////////////////////////"

  110. echo "///////////////// PLEASE CONFIRM /////////////////"

  111. echo "//////////////////////////////////////////////////"

  112. echo $'\E[1;30m'

  113. 

  114. echo Your domain is:                       $domain

  115. echo Your Volumes path is:                 $volumes

  116. echo Your LDAP Mail Bind DN Uid is:        $ldap_mail_uid

  117. echo Your LDAP Nextcloud Bind DN Uid is:   $ldap_nextcloud_uid

  118. echo Your LDAP Gogs Bind DN Uid is:        $ldap_gogs_uid

  119. echo Your Admin email. Let\'s Encrypt...:  $admin_email

  120. echo Your Paperless Web Server User:       $paperless_webserver_user

  121. echo Your SFTP User:                       $paperless_ftp_user

  122. 

  123. echo $'\E[1;37m'

  124. read -p "Are These Settings Correct? Yes (y), No (n): " confirm

  125. while [[ ! $confirm =~ ^[yYnN]{1}$ ]]; do

  126.     read -p "Please Enter 'y' or 'n' To Confirm Settings: " confirm

  127. done

  128. 

  129. if [[ $confirm != [yY] ]]; then

  130.     exit 1

  131. fi

  132. 

  133. # Generate docker secrets

  134. echo $db_pwd | docker secret create db_pwd -

  135. echo $ldap_pwd | docker secret create ldap_pwd -

  136. echo $ldap_mail_pwd | docker secret create ldap_mail_pwd -

  137. echo $ldap_nextcloud_pwd | docker secret create ldap_nextcloud_pwd -

  138. echo $ldap_gogs_pwd | docker secret create ldap_gogs_pwd -

  139. echo $nextcloud_admin_pwd | docker secret create nextcloud_admin_pwd -

  140. echo $nextcloud_salt | docker secret create nextcloud_salt -

  141. echo $nextcloud_secret | docker secret create nextcloud_secret -

  142. echo $gogs_admin_pwd | docker secret create gogs_admin_pwd -

  143. echo $paperless_webserver_pwd | docker secret create paperless_webserver_pwd -

  144. echo $paperless_passphrase | docker secret create paperless_passphrase -

  145. echo $paperless_ftp_pwd | docker secret create paperless_ftp_pwd -

  146. 

  147. echo $'\E[33m'

  148. echo "//////////////////////////////////////////////////"

  149. echo "///////////// COPYING TEMPLATE FILES /////////////"

  150. echo "//////////////////////////////////////////////////"

  151. echo $'\E[1;30m'

  152. 

  153. cp env.template .env

  154. cp openldap.env.template openldap.env

  155. cp mail.env.template mail.env

  156. cp nextcloud.env.template nextcloud.env

  157. cp haproxy.env.template haproxy.env

  158. cp paperless.env.template paperless.env

  159. cp sftp.env.template sftp.env

  160. cp gogs.env.template gogs.env

  161. 

  162. for i in `ls *.env .env`; do

  163.     sed -i "s/\${DOMAIN}/${domain}/g" $i

  164.     sed -i "s/\${ORGANIZATION}/${org}/g" $i

  165.     sed -i "s/\${EXTENSION}/${ext}/g" $i

  166.     sed -i "s/\${VOLUMES_PATH}/${volumes//\//\\/}/g" $i

  167.     sed -i "s/\${LDAP_MAIL_UID}/${ldap_mail_uid}/g" $i

  168.     sed -i "s/\${LDAP_NEXTCLOUD_UID}/${ldap_nextcloud_uid}/g" $i

  169.     sed -i "s/\${LDAP_GOGS_UID}/${ldap_gogs_uid}/g" $i

  170.     sed -i "s/\${ADMIN_EMAIL}/${admin_email}/g" $i

  171.     sed -i "s/\${PAPERLESS_WEBSERVER_USER}/${paperless_webserver_user}/g" $i

  172.     sed -i "s/\${PAPERLESS_FTP_USER}/${paperless_ftp_user}/g" $i

  173.     #sed -i "s/\${}/${}/g" $i

  174. done;

  175. 

  176. # read variables

  177. . .env

  178. # repeated env variables

  179. echo "\nMAIL_DATA_PATH=${MAIL_DATA_PATH}" >> mail.env

  180. echo "\nNEXTCLOUD_DB_BACKUP=${NEXTCLOUD_DATA_PATH}/nextcloud_db_backup.sql" >> nextcloud.env

  181. echo "\nNEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}" >> nextcloud.env

  182. echo "\nNEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}" >> nextcloud.env

  183. echo "\nPAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> paperless.env

  184. echo "\nPAPERLESS_EXPORT_DIR=${PAPERLESS_EXPORT_PATH}" >> paperless.env

  185. echo "\nPAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> sftp.env

  186. 

  187. echo $'\E[33m'

  188. echo "//////////////////////////////////////////////////"

  189. echo "//////////////// CREATING FOLDERS ////////////////"

  190. echo "//////////////////////////////////////////////////"

  191. echo $'\E[1;30m'

  192. 

  193. # openldap

  194. sudo mkdir -p ${LDAP_DATA_VOLUME_PATH}

  195. sudo mkdir -p ${LDAP_CONFIG_VOLUME_PATH}

  196. sudo mkdir -p ${LDAP_CERTS_VOLUME_PATH}

  197. # db

  198. sudo mkdir -p ${DB_DATA_VOLUME_PATH}

  199. #sudo mkdir -p ${DB_CONFIG_VOLUME_PATH}

  200. # mail

  201. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}

  202. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}/getmail

  203. #sudo mkdir -p ${MAIL_STATE_VOLUME_PATH}

  204. # nextcloud

  205. sudo mkdir -p ${NEXTCLOUD_DATA_VOLUME_PATH}

  206. sudo mkdir -p ${NEXTCLOUD_BACKUP_VOLUME_PATH}

  207. # paperless

  208. sudo mkdir -p ${PAPERLESS_DATA_VOLUME_PATH}

  209. sudo mkdir -p ${PAPERLESS_MEDIA_VOLUME_PATH}

  210. sudo mkdir -p ${PAPERLESS_CONSUMPTION_VOLUME_PATH}

  211. sudo mkdir -p ${PAPERLESS_EXPORT_VOLUME_PATH}

  212. # let's Encrypt

  213. sudo mkdir -p ${LETSENCRYPT_VOLUME_PATH}

  214. 

  215. echo "Copying getmail confs"

  216. cp images/rpi-email/getmail/getmailrc-* ${MAIL_DATA_VOLUME_PATH}/getmail/