bingen
/
rpi_docker_home_server
Observar 1
Favorito 0
Fork 0
Código Issues 0 Pull requests 0 Versões 0 Wiki Atividade
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
105 Commits
6 Branches
Tag: 39a2343e77
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 39a2343e77
${ noResults }
rpi_docker_home_server/setup.sh

375 linhas
13KB
Original Anotar Histórico 

  1. #!/usr/bin/env bash

  2. 

  3. NON_INTERACTIVE=false

  4. # params

  5. # non interactive

  6. while getopts y opt; do

  7.     case $opt in

  8.         y) NON_INTERACTIVE=true ;;

  9.         *) echo 'error in command line parsing' >&2

  10.            exit 1

  11.     esac

  12. done

  13. shift $(expr $OPTIND - 1)

  14. 

  15. DEFAULT_VOLUMES=/media/volumes

  16. PWD_GEN='< /dev/urandom tr -dc _A-Z-a-z-0-9 | head -c${1:-32};echo;'

  17. #PWD_GEN='openssl rand -base64 20'

  18. DEFAULT_LDAP_MAIL_UID='mail'

  19. DEFAULT_LDAP_NEXTCLOUD_UID='nextcloud'

  20. DEFAULT_LDAP_GITEA_UID='git'

  21. DEFAULT_LDAP_HAUK_UID='hauk'

  22. 

  23. # main domain

  24. read -p "Add main domain: " domain

  25. while [[ ! $domain =~ ^.*\.[a-z]{2,}$ ]]; do

  26.     read -p "Add domain (empty to finish): " domain

  27. done

  28. # TODO: more than 1 level domains

  29. org=`echo ${domain} | cut -f1 -d'.'`

  30. ext=`echo ${domain} | cut -f2 -d'.'`

  31. 

  32. # additional domain

  33. virtual_domains=()

  34. while :; do

  35.     read -p "Add additional domains (empty to finish): " virtual_domain

  36.     if [[ -z $virtual_domain ]]; then

  37.         break;

  38.     elif [[ ! $virtual_domain =~ ^.*\.[a-z]{2,}$ ]]; then

  39.         echo "Please Enter a valid domain";

  40.     else

  41.         virtual_domains+=($virtual_domain);

  42.     fi

  43. done

  44. 

  45. if [[ ${NON_INTERACTIVE} = false ]]; then

  46.     read -p "Volumes path ($DEFAULT_VOLUMES): " volumes

  47. fi

  48. if [[ ${#volumes} -eq 0 ]]; then

  49.     volumes=$DEFAULT_VOLUMES

  50. fi

  51. 

  52. if [[ ${NON_INTERACTIVE} = false ]]; then

  53.     read -p "DB admin password (a random one will be generated if empty): " db_pwd

  54. fi

  55. if [[ ${#db_pwd} -eq 0 ]]; then

  56.     db_pwd=`eval "$PWD_GEN"`

  57. fi

  58. 

  59. if [[ ${NON_INTERACTIVE} = false ]]; then

  60.     read -p "LDAP admin password (a random one will be generated if empty): " ldap_pwd

  61. fi

  62. if [[ ${#ldap_pwd} -eq 0 ]]; then

  63.     ldap_pwd=`eval "$PWD_GEN"`

  64. fi

  65. 

  66. if [[ ${NON_INTERACTIVE} = false ]]; then

  67.     read -p "LDAP Mail Bind DN uid ($DEFAULT_LDAP_MAIL_UID): " ldap_mail_uid

  68. fi

  69. if [[ ${#ldap_mail_uid} -eq 0 ]]; then

  70.     ldap_mail_uid=$DEFAULT_LDAP_MAIL_UID

  71. fi

  72. 

  73. if [[ ${NON_INTERACTIVE} = false ]]; then

  74.     read -p "LDAP Mail Bind DN Pwd (a random one will be generated if empty): " ldap_mail_pwd

  75. fi

  76. if [[ ${#ldap_mail_pwd} -eq 0 ]]; then

  77.     ldap_mail_pwd=`eval "$PWD_GEN"`

  78. fi

  79. 

  80. if [[ ${NON_INTERACTIVE} = false ]]; then

  81.     read -p "LDAP Nextcloud Bind DN uid ($DEFAULT_LDAP_NEXTCLOUD_UID): " ldap_nextcloud_uid

  82. fi

  83. if [[ ${#ldap_nextcloud_uid} -eq 0 ]]; then

  84.     ldap_nextcloud_uid=$DEFAULT_LDAP_NEXTCLOUD_UID

  85. fi

  86. 

  87. if [[ ${NON_INTERACTIVE} = false ]]; then

  88.     read -p "LDAP Nextcloud Bind DN Pwd (a random one will be generated if empty): " ldap_nextcloud_pwd

  89. fi

  90. if [[ ${#ldap_nextcloud_pwd} -eq 0 ]]; then

  91.     ldap_nextcloud_pwd=`eval "$PWD_GEN"`

  92. fi

  93. 

  94. if [[ ${NON_INTERACTIVE} = false ]]; then

  95.     read -p "LDAP Gitea Bind DN uid ($DEFAULT_LDAP_GITEA_UID): " ldap_gitea_uid

  96. fi

  97. if [[ ${#ldap_gitea_uid} -eq 0 ]]; then

  98.     ldap_gitea_uid=$DEFAULT_LDAP_GITEA_UID

  99. fi

  100. 

  101. if [[ ${NON_INTERACTIVE} = false ]]; then

  102.     read -p "LDAP Gitea Bind DN Pwd (a random one will be generated if empty): " ldap_gitea_pwd

  103. fi

  104. if [[ ${#ldap_gitea_pwd} -eq 0 ]]; then

  105.     ldap_gitea_pwd=`eval "$PWD_GEN"`

  106. fi

  107. 

  108. if [[ ${NON_INTERACTIVE} = false ]]; then

  109.     read -p "LDAP Hauk Bind DN uid ($DEFAULT_LDAP_HAUK_UID): " ldap_hauk_uid

  110. fi

  111. if [[ ${#ldap_hauk_uid} -eq 0 ]]; then

  112.     ldap_hauk_uid=$DEFAULT_LDAP_HAUK_UID

  113. fi

  114. 

  115. if [[ ${NON_INTERACTIVE} = false ]]; then

  116.     read -p "LDAP Hauk Bind DN Pwd (a random one will be generated if empty): " ldap_hauk_pwd

  117. fi

  118. if [[ ${#ldap_hauk_pwd} -eq 0 ]]; then

  119.     ldap_hauk_pwd=`eval "$PWD_GEN"`

  120. fi

  121. 

  122. if [[ ${NON_INTERACTIVE} = false ]]; then

  123.     read -p "Nextcloud Admin User Pwd (a random one will be generated if empty): " nextcloud_admin_pwd

  124. fi

  125. if [[ ${#nextcloud_admin_pwd} -eq 0 ]]; then

  126.     nextcloud_admin_pwd=`eval "$PWD_GEN"`

  127. fi

  128. 

  129. if [[ ${NON_INTERACTIVE} = false ]]; then

  130.     read -p "Gitea Admin User Pwd (a random one will be generated if empty): " gitea_admin_pwd

  131. fi

  132. if [[ ${#gitea_admin_pwd} -eq 0 ]]; then

  133.     gitea_admin_pwd=`eval "$PWD_GEN"`

  134. fi

  135. 

  136. if [[ ${NON_INTERACTIVE} = false ]]; then

  137.     read -p "Hauk Server Pwd (a random one will be generated if empty): " hauk_server_pwd

  138. fi

  139. if [[ ${#hauk_server_pwd} -eq 0 ]]; then

  140.     hauk_server_pwd=`eval "$PWD_GEN"`

  141. fi

  142. 

  143. if [[ ${NON_INTERACTIVE} = false ]]; then

  144.     read -p "Pi-Hole Web User Pwd (a random one will be generated if empty): " pihole_web_pwd

  145. fi

  146. if [[ ${#pihole_web_pwd} -eq 0 ]]; then

  147.     pihole_web_pwd=`eval "$PWD_GEN"`

  148. fi

  149. 

  150. if [[ ${NON_INTERACTIVE} = false ]]; then

  151.     read -p "Admin E-mail, used for Let's Encrypt account and more (admin@${domain}): " admin_email

  152. fi

  153. if [[ ${#admin_email} -eq 0 ]]; then

  154.     admin_email=admin@${domain}

  155. fi

  156. 

  157. echo "If you have a password salt and a secret from a previous installation, provide them here."

  158. echo "They are used by Passman and need to remain the same for the vaults to be accessible"

  159. if [[ ${NON_INTERACTIVE} = false ]]; then

  160.     read -p "Nextcloud Pwd Salt (a random one will be generated by NC if empty): " nextcloud_salt

  161. fi

  162. if [[ ${NON_INTERACTIVE} = false ]]; then

  163.     read -p "Nextcloud Secret (a random one will be generated by NC if empty): " nextcloud_secret

  164. fi

  165. 

  166. # if [[ ${NON_INTERACTIVE} = false ]]; then

  167.     # read -p "Paperless Web Server User (paperless): " paperless_webserver_user

  168. # fi

  169. # if [[ ${#paperless_webserver_user} -eq 0 ]]; then

  170. #     paperless_webserver_user=paperless

  171. # fi

  172. 

  173. # if [[ ${NON_INTERACTIVE} = false ]]; then

  174.     # read -p "Paperless Web Server Pwd (a random one will be generated if empty): " paperless_webserver_pwd

  175. #  fi

  176. # if [[ ${#paperless_webserver_pwd} -eq 0 ]]; then

  177. #     paperless_webserver_pwd=`eval "$PWD_GEN"`

  178. # fi

  179. 

  180. # if [[ ${NON_INTERACTIVE} = false ]]; then

  181.     # read -p "Paperless Encryption Passphrase (a random one will be generated if empty): " paperless_passphrase

  182. # fi

  183. # if [[ ${#paperless_passphrase} -eq 0 ]]; then

  184. #     paperless_=`eval "$PWD_GEN"`

  185. # fi

  186. 

  187. if [[ ${NON_INTERACTIVE} = false ]]; then

  188.     read -p "SFTP User - SFTP server is used by paperless (consume): " paperless_ftp_user

  189. fi

  190. if [[ ${#paperless_ftp_user} -eq 0 ]]; then

  191.     paperless_ftp_user=consume

  192. fi

  193. 

  194. if [[ ${NON_INTERACTIVE} = false ]]; then

  195.     read -p "SFTP Pwd (a random one will be generated if empty): " paperless_ftp_pwd

  196. fi

  197. if [[ ${#paperless_ftp_pwd} -eq 0 ]]; then

  198.     paperless_ftp_pwd=`eval "$PWD_GEN"`

  199. fi

  200. 

  201. if [[ ${NON_INTERACTIVE} = false ]]; then

  202.     read -p "Blog 1 URL (https://blog.${domain})" blog_1_url

  203. fi

  204. if [[ ${#blog_1_url} -eq 0 ]]; then

  205.     #blog_1_url=https://blog.${domain}

  206.     blog_1_url=blog.${domain}

  207. fi

  208. 

  209. echo $'\E[33m'

  210. echo "//////////////////////////////////////////////////"

  211. echo "///////////////// PLEASE CONFIRM /////////////////"

  212. echo "//////////////////////////////////////////////////"

  213. echo $'\E[1;30m'

  214. 

  215. echo Your main domain is:                  ${domain}

  216. echo Your virtual domains are:             ${virtual_domains[*]}

  217. echo Your Volumes path is:                 $volumes

  218. echo Your LDAP Mail Bind DN Uid is:        $ldap_mail_uid

  219. echo Your LDAP Nextcloud Bind DN Uid is:   $ldap_nextcloud_uid

  220. echo Your LDAP Gitea Bind DN Uid is:       $ldap_gitea_uid

  221. echo Your LDAP Hauk Bind DN Uid is:        $ldap_hauk_uid

  222. echo Your Admin email. Let\'s Encrypt...:  $admin_email

  223. echo Your Paperless Web Server User:       $paperless_webserver_user

  224. echo Your SFTP User:                       $paperless_ftp_user

  225. echo Your Blog 1 URL:                      $blog_1_url

  226. 

  227. echo $'\E[1;37m'

  228. read -p "Are These Settings Correct? Yes (y), No (n): " confirm

  229. while [[ ! $confirm =~ ^[yYnN]{1}$ ]]; do

  230.     read -p "Please Enter 'y' or 'n' To Confirm Settings: " confirm

  231. done

  232. 

  233. if [[ $confirm != [yY] ]]; then

  234.     exit 1

  235. fi

  236. 

  237. echo $'\E[33m'

  238. echo "//////////////////////////////////////////////////"

  239. echo "///////////// COPYING TEMPLATE FILES /////////////"

  240. echo "//////////////////////////////////////////////////"

  241. echo $'\E[1;30m'

  242. 

  243. cp env.template .env

  244. cp mariadb.env.template mariadb.env

  245. cp openldap.env.template openldap.env

  246. cp mail.env.template mail.env

  247. cp nextcloud.env.template nextcloud.env

  248. cp haproxy.env.template haproxy.env

  249. cp paperless.env.template paperless.env

  250. cp sftp.env.template sftp.env

  251. cp gitea.env.template gitea.env

  252. cp hauk.env.template hauk.env

  253. cp pihole.env.template pihole.env

  254. chmod 600 *.env

  255. 

  256. # Passwords

  257. echo MYSQL_ROOT_PWD=$db_pwd >> mariadb.env

  258. echo MYSQL_ROOT_PWD=$db_pwd >> nextcloud.env

  259. 

  260. echo LDAP_ADMIN_PWD=$ldap_pwd >> openldap.env

  261. echo LDAP_MAIL_PWD=$ldap_mail_pwd >> openldap.env

  262. echo LDAP_NEXTCLOUD_PWD=$ldap_nextcloud_pwd >> openldap.env

  263. echo LDAP_GITEA_PWD=$ldap_gitea_pwd >> openldap.env

  264. echo LDAP_HAUK_PWD=$ldap_hauk_pwd >> openldap.env

  265. echo LDAP_BIND_PWD=$ldap_mail_pwd >> mail.env

  266. echo LDAP_BIND_PWD=$ldap_nextcloud_pwd >> nextcloud.env

  267. echo LDAP_BIND_PWD=$ldap_gitea_pwd >> gitea.env

  268. echo LDAP_BIND_PWD=$ldap_hauk_pwd >> hauk.env

  269. 

  270. echo NEXTCLOUD_ADMIN_PWD=$nextcloud_admin_pwd >> nextcloud.env

  271. echo NEXTCLOUD_SALT=$nextcloud_salt >> nextcloud.env

  272. echo NEXTCLOUD_SECRET=$nextcloud_secret >> nextcloud.env

  273. 

  274. #echo PAPERLESS_WEBSERVER_PWD=$paperless_webserver_pwd >> paperless.env

  275. #echo PAPERLESS_PASSPHRASE=$paperless_passphrase >> paperless.env

  276. echo PAPERLESS_FTP_PWD=$paperless_ftp_pwd >> sftp.env

  277. echo GITEA_ADMIN_PWD=$gitea_admin_pwd >> gitea.env

  278. echo HAUK_SERVER_PWD=$hauk_server_pwd >> hauk.env

  279. #echo $pihole_web_pwd | docker secret create pihole_web_pwd -

  280. sed -i "s/\${PIHOLE_WEB_PWD}/${pihole_web_pwd}/g" pihole.env

  281. 

  282. # IP for Pi-Hole

  283. IP_LOOKUP="$(ip route get 8.8.8.8 | awk '{ print $NF; exit }')"  # May not work for VPN / tun0

  284. #IPv6_LOOKUP="$(ip -6 route get 2001:4860:4860::8888 | awk '{for(i=1;i<=NF;i++) if ($i=="src") print $(i+1)}')"  # May not work for VPN / tun0

  285. 

  286. for i in `ls *.env .env`; do

  287.     sed -i "s/\${DOMAIN}/${domain}/g" $i

  288.     sed -i "s/\${VIRTUAL_DOMAINS}/${virtual_domains[*]}/g" $i

  289.     sed -i "s/\${ORGANIZATION}/${org}/g" $i

  290.     sed -i "s/\${EXTENSION}/${ext}/g" $i

  291.     sed -i "s/\${VOLUMES_PATH}/${volumes//\//\\/}/g" $i

  292.     sed -i "s/\${LDAP_MAIL_UID}/${ldap_mail_uid}/g" $i

  293.     sed -i "s/\${LDAP_NEXTCLOUD_UID}/${ldap_nextcloud_uid}/g" $i

  294.     sed -i "s/\${LDAP_GITEA_UID}/${ldap_gitea_uid}/g" $i

  295.     sed -i "s/\${LDAP_HAUK_UID}/${ldap_hauk_uid}/g" $i

  296.     sed -i "s/\${ADMIN_EMAIL}/${admin_email}/g" $i

  297.     sed -i "s/\${PAPERLESS_WEBSERVER_USER}/${paperless_webserver_user}/g" $i

  298.     sed -i "s/\${PAPERLESS_FTP_USER}/${paperless_ftp_user}/g" $i

  299.     sed -i "s/\${IP_LOOKUP}/${IP_LOOKUP}/g" $i

  300.     #sed -i "s/\${IPv6_LOOKUP}/${IPv6_LOOKUP}/g" $i

  301.     sed -i "s/\${BLOG_1_URL}/${blog_1_url}/g" $i

  302.     #sed -i "s/\${}/${}/g" $i

  303. done;

  304. 

  305. # read variables

  306. . .env

  307. # repeated env variables

  308. # domains available for all, just in case

  309. for i in `ls *.env`; do

  310.     echo "" >> $i

  311.     echo "# Domains" >> $i

  312.     echo "DOMAIN=${DOMAIN}" >> $i

  313.     echo "VIRTUAL_DOMAINS=\"${VIRTUAL_DOMAINS}\"" >> $i

  314.     echo "DOMAINS=\"${DOMAINS}\"" >> $i

  315. done

  316. 

  317. echo "" >> mail.env

  318. echo "MAIL_DATA_PATH=${MAIL_DATA_PATH}" >> mail.env

  319. echo "" >> nextcloud.env

  320. echo "NEXTCLOUD_SERVER_NAME=${NEXTCLOUD_SERVER_NAME}" >> nextcloud.env

  321. echo "NEXTCLOUD_DB_BACKUP=${NEXTCLOUD_DATA_PATH}/nextcloud_db_backup.sql" >> nextcloud.env

  322. echo "NEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}" >> nextcloud.env

  323. echo "NEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}" >> nextcloud.env

  324. echo "" >> gitea.env

  325. echo "GITEA_SERVER_NAME=${GITEA_SERVER_NAME}" >> gitea.env

  326. echo "GITEA_HTTP_PORT=${GITEA_HTTP_PORT}" >> gitea.env

  327. echo "" >> paperless.env

  328. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> paperless.env

  329. echo "PAPERLESS_EXPORT_DIR=${PAPERLESS_EXPORT_PATH}" >> paperless.env

  330. echo "" >> sftp.env

  331. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> sftp.env

  332. echo "" >> haproxy.env

  333. echo "NEXTCLOUD_SERVER_NAME=${NEXTCLOUD_SERVER_NAME}" >> haproxy.env

  334. echo "GITEA_SERVER_NAME=${GITEA_SERVER_NAME}" >> haproxy.env

  335. echo "BLOG_1_SERVER_NAME=${BLOG_1_SERVER_NAME}" >> haproxy.env

  336. echo "HAUK_SERVER_NAME=${HAUK_SERVER_NAME}" >> haproxy.env

  337. 

  338. echo $'\E[33m'

  339. echo "//////////////////////////////////////////////////"

  340. echo "//////////////// CREATING FOLDERS ////////////////"

  341. echo "//////////////////////////////////////////////////"

  342. echo $'\E[1;30m'

  343. 

  344. # openldap

  345. sudo mkdir -p ${LDAP_DATA_VOLUME_PATH}

  346. sudo mkdir -p ${LDAP_CONFIG_VOLUME_PATH}

  347. sudo mkdir -p ${LDAP_CERTS_VOLUME_PATH}

  348. # db

  349. sudo mkdir -p ${DB_DATA_VOLUME_PATH}

  350. #sudo mkdir -p ${DB_CONFIG_VOLUME_PATH}

  351. # mail

  352. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}

  353. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}/getmail

  354. #sudo mkdir -p ${MAIL_STATE_VOLUME_PATH}

  355. # nextcloud

  356. sudo mkdir -p ${NEXTCLOUD_DATA_VOLUME_PATH}

  357. sudo mkdir -p ${NEXTCLOUD_BACKUP_VOLUME_PATH}

  358. # paperless

  359. sudo mkdir -p ${PAPERLESS_DATA_VOLUME_PATH}

  360. sudo mkdir -p ${PAPERLESS_MEDIA_VOLUME_PATH}

  361. sudo mkdir -p ${PAPERLESS_CONSUMPTION_VOLUME_PATH}

  362. sudo mkdir -p ${PAPERLESS_EXPORT_VOLUME_PATH}

  363. # gitea

  364. sudo mkdir -p ${GITEA_DATA_VOLUME_PATH}

  365. # blogs

  366. sudo mkdir -p ${BLOG_1_VOLUME_PATH}

  367. # Pi-Hole

  368. sudo mkdir -p ${PIHOLE_CONFIG_VOLUME_PATH}

  369. sudo mkdir -p ${PIHOLE_DNSMASQ_VOLUME_PATH}

  370. # let's Encrypt

  371. sudo mkdir -p ${LETSENCRYPT_VOLUME_PATH}

  372. 

  373. echo "Copying getmail confs"

  374. cp images/email/getmail/getmailrc-* ${MAIL_DATA_VOLUME_PATH}/getmail/