bingen
/
rpi_docker_home_server
Segui 1
Vota 0
Forka 0
Codice Problemi 0 Pull Requests 0 Rilasci 0 Wiki Attività
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
83 Commit
6 Rami (Branch)
Ramo (Branch): hauk
Rami (Branch) Tag
${ item.name }
Crea branch ${ searchTerm }
da 'hauk'
${ noResults }
rpi_docker_home_server/setup.sh

264 lines
9.8KB
Originale Permalink Blame Cronologia 

  1. #!/bin/bash

  2. 

  3. DEFAULT_VOLUMES=/media/volumes

  4. PWD_GEN='< /dev/urandom tr -dc _A-Z-a-z-0-9 | head -c${1:-32};echo;'

  5. #PWD_GEN='openssl rand -base64 20'

  6. DEFAULT_LDAP_MAIL_UID='mail'

  7. DEFAULT_LDAP_NEXTCLOUD_UID='nextcloud'

  8. DEFAULT_LDAP_GITEA_UID='git'

  9. DEFAULT_LDAP_HAUK_UID='hauk'

  10. 

  11. read -p "Main domain: " domain

  12. while [[ ! $domain =~ ^.*\.[a-z]{2,}$ ]]; do

  13.     read -p "Please Enter a valid domain: " domain

  14. done

  15. # TODO: more than 1 level domains

  16. org=`echo $domain | cut -f1 -d'.'`

  17. ext=`echo $domain | cut -f2 -d'.'`

  18. 

  19. read -p "Volumes path ($DEFAULT_VOLUMES): " volumes

  20. if [[ ${#volumes} -eq 0 ]]; then

  21.     volumes=$DEFAULT_VOLUMES

  22. fi

  23. 

  24. read -p "DB admin password (a random one will be generated if empty): " db_pwd

  25. if [[ ${#db_pwd} -eq 0 ]]; then

  26.     db_pwd=`eval "$PWD_GEN"`

  27. fi

  28. 

  29. read -p "LDAP admin password (a random one will be generated if empty): " ldap_pwd

  30. if [[ ${#ldap_pwd} -eq 0 ]]; then

  31.     ldap_pwd=`eval "$PWD_GEN"`

  32. fi

  33. 

  34. read -p "LDAP Mail Bind DN uid ($DEFAULT_LDAP_MAIL_UID): " ldap_mail_uid

  35. if [[ ${#ldap_mail_uid} -eq 0 ]]; then

  36.     ldap_mail_uid=$DEFAULT_LDAP_MAIL_UID

  37. fi

  38. 

  39. read -p "LDAP Mail Bind DN Pwd (a random one will be generated if empty): " ldap_mail_pwd

  40. if [[ ${#ldap_mail_pwd} -eq 0 ]]; then

  41.     ldap_mail_pwd=`eval "$PWD_GEN"`

  42. fi

  43. 

  44. read -p "LDAP Nextcloud Bind DN uid ($DEFAULT_LDAP_NEXTCLOUD_UID): " ldap_nextcloud_uid

  45. if [[ ${#ldap_nextcloud_uid} -eq 0 ]]; then

  46.     ldap_nextcloud_uid=$DEFAULT_LDAP_NEXTCLOUD_UID

  47. fi

  48. 

  49. read -p "LDAP Nextcloud Bind DN Pwd (a random one will be generated if empty): " ldap_nextcloud_pwd

  50. if [[ ${#ldap_nextcloud_pwd} -eq 0 ]]; then

  51.     ldap_nextcloud_pwd=`eval "$PWD_GEN"`

  52. fi

  53. 

  54. read -p "LDAP Gitea Bind DN uid ($DEFAULT_LDAP_GITEA_UID): " ldap_gitea_uid

  55. if [[ ${#ldap_gitea_uid} -eq 0 ]]; then

  56.     ldap_gitea_uid=$DEFAULT_LDAP_GITEA_UID

  57. fi

  58. 

  59. read -p "LDAP Gitea Bind DN Pwd (a random one will be generated if empty): " ldap_gitea_pwd

  60. if [[ ${#ldap_gitea_pwd} -eq 0 ]]; then

  61.     ldap_gitea_pwd=`eval "$PWD_GEN"`

  62. fi

  63. 

  64. read -p "LDAP Hauk Bind DN uid ($DEFAULT_LDAP_HAUK_UID): " ldap_hauk_uid

  65. if [[ ${#ldap_hauk_uid} -eq 0 ]]; then

  66.     ldap_hauk_uid=$DEFAULT_LDAP_HAUK_UID

  67. fi

  68. 

  69. read -p "LDAP Hauk Bind DN Pwd (a random one will be generated if empty): " ldap_hauk_pwd

  70. if [[ ${#ldap_hauk_pwd} -eq 0 ]]; then

  71.     ldap_hauk_pwd=`eval "$PWD_GEN"`

  72. fi

  73. 

  74. read -p "Nextcloud Admin User Pwd (a random one will be generated if empty): " nextcloud_admin_pwd

  75. if [[ ${#nextcloud_admin_pwd} -eq 0 ]]; then

  76.     nextcloud_admin_pwd=`eval "$PWD_GEN"`

  77. fi

  78. 

  79. read -p "Gitea Admin User Pwd (a random one will be generated if empty): " gitea_admin_pwd

  80. if [[ ${#gitea_admin_pwd} -eq 0 ]]; then

  81.     gitea_admin_pwd=`eval "$PWD_GEN"`

  82. fi

  83. 

  84. read -p "Pi-Hole Web User Pwd (a random one will be generated if empty): " pihole_web_pwd

  85. if [[ ${#pihole_web_pwd} -eq 0 ]]; then

  86.     pihole_web_pwd=`eval "$PWD_GEN"`

  87. fi

  88. 

  89. read -p "Admin E-mail, used for Let's Encrypt account and more (admin@${domain}): " admin_email

  90. if [[ ${#admin_email} -eq 0 ]]; then

  91.     admin_email=admin@${domain}

  92. fi

  93. 

  94. echo "If you have a password salt and a secret from a previous installation, provide them here."

  95. echo "They are used by Passman and need to remain the same for the vaults to be accessible"

  96. read -p "Nextcloud Pwd Salt (a random one will be generated by NC if empty): " nextcloud_salt

  97. read -p "Nextcloud Secret (a random one will be generated by NC if empty): " nextcloud_secret

  98. 

  99. # read -p "Paperless Web Server User (paperless): " paperless_webserver_user

  100. # if [[ ${#paperless_webserver_user} -eq 0 ]]; then

  101. #     paperless_webserver_user=paperless

  102. # fi

  103. 

  104. # read -p "Paperless Web Server Pwd (a random one will be generated if empty): " paperless_webserver_pwd

  105. # if [[ ${#paperless_webserver_pwd} -eq 0 ]]; then

  106. #     paperless_webserver_pwd=`eval "$PWD_GEN"`

  107. # fi

  108. 

  109. # read -p "Paperless Encryption Passphrase (a random one will be generated if empty): " paperless_passphrase

  110. # if [[ ${#paperless_passphrase} -eq 0 ]]; then

  111. #     paperless_=`eval "$PWD_GEN"`

  112. # fi

  113. 

  114. read -p "SFTP User - SFTP server is used by paperless (consume): " paperless_ftp_user

  115. if [[ ${#paperless_ftp_user} -eq 0 ]]; then

  116.     paperless_ftp_user=consume

  117. fi

  118. 

  119. read -p "SFTP Pwd (a random one will be generated if empty): " paperless_ftp_pwd

  120. if [[ ${#paperless_ftp_pwd} -eq 0 ]]; then

  121.     paperless_ftp_pwd=`eval "$PWD_GEN"`

  122. fi

  123. 

  124. echo $'\E[33m'

  125. echo "//////////////////////////////////////////////////"

  126. echo "///////////////// PLEASE CONFIRM /////////////////"

  127. echo "//////////////////////////////////////////////////"

  128. echo $'\E[1;30m'

  129. 

  130. echo Your domain is:                       $domain

  131. echo Your Volumes path is:                 $volumes

  132. echo Your LDAP Mail Bind DN Uid is:        $ldap_mail_uid

  133. echo Your LDAP Nextcloud Bind DN Uid is:   $ldap_nextcloud_uid

  134. echo Your LDAP Gitea Bind DN Uid is:       $ldap_gitea_uid

  135. echo Your LDAP Hauk Bind DN Uid is:        $ldap_hauk_uid

  136. echo Your Admin email. Let\'s Encrypt...:  $admin_email

  137. echo Your Paperless Web Server User:       $paperless_webserver_user

  138. echo Your SFTP User:                       $paperless_ftp_user

  139. 

  140. echo $'\E[1;37m'

  141. read -p "Are These Settings Correct? Yes (y), No (n): " confirm

  142. while [[ ! $confirm =~ ^[yYnN]{1}$ ]]; do

  143.     read -p "Please Enter 'y' or 'n' To Confirm Settings: " confirm

  144. done

  145. 

  146. if [[ $confirm != [yY] ]]; then

  147.     exit 1

  148. fi

  149. 

  150. # Generate docker secrets

  151. echo $db_pwd | docker secret create db_pwd -

  152. echo $ldap_pwd | docker secret create ldap_pwd -

  153. echo $ldap_mail_pwd | docker secret create ldap_mail_pwd -

  154. echo $ldap_nextcloud_pwd | docker secret create ldap_nextcloud_pwd -

  155. echo $ldap_gitea_pwd | docker secret create ldap_gitea_pwd -

  156. echo $ldap_hauk_pwd | docker secret create ldap_hauk_pwd -

  157. echo $nextcloud_admin_pwd | docker secret create nextcloud_admin_pwd -

  158. echo $nextcloud_salt | docker secret create nextcloud_salt -

  159. echo $nextcloud_secret | docker secret create nextcloud_secret -

  160. #echo $paperless_webserver_pwd | docker secret create paperless_webserver_pwd -

  161. #echo $paperless_passphrase | docker secret create paperless_passphrase -

  162. echo $paperless_ftp_pwd | docker secret create paperless_ftp_pwd -

  163. echo $gitea_admin_pwd | docker secret create gitea_admin_pwd -

  164. #echo $pihole_web_pwd | docker secret create pihole_web_pwd -

  165. sed -i "s/\${PIHOLE_WEB_PWD}/${pihole_web_pwd}/g" pihole.env

  166. 

  167. echo $'\E[33m'

  168. echo "//////////////////////////////////////////////////"

  169. echo "///////////// COPYING TEMPLATE FILES /////////////"

  170. echo "//////////////////////////////////////////////////"

  171. echo $'\E[1;30m'

  172. 

  173. cp env.template .env

  174. cp openldap.env.template openldap.env

  175. cp mail.env.template mail.env

  176. cp nextcloud.env.template nextcloud.env

  177. cp haproxy.env.template haproxy.env

  178. cp paperless.env.template paperless.env

  179. cp sftp.env.template sftp.env

  180. cp gitea.env.template gitea.env

  181. cp hauk.env.template hauk.env

  182. cp pihole.env.template pihole.env

  183. 

  184. # IP for Pi-Hole

  185. IP_LOOKUP="$(ip route get 8.8.8.8 | awk '{ print $NF; exit }')"  # May not work for VPN / tun0

  186. IPv6_LOOKUP="$(ip -6 route get 2001:4860:4860::8888 | awk '{for(i=1;i<=NF;i++) if ($i=="src") print $(i+1)}')"  # May not work for VPN / tun0

  187. 

  188. for i in `ls *.env .env`; do

  189.     sed -i "s/\${DOMAIN}/${domain}/g" $i

  190.     sed -i "s/\${ORGANIZATION}/${org}/g" $i

  191.     sed -i "s/\${EXTENSION}/${ext}/g" $i

  192.     sed -i "s/\${VOLUMES_PATH}/${volumes//\//\\/}/g" $i

  193.     sed -i "s/\${LDAP_MAIL_UID}/${ldap_mail_uid}/g" $i

  194.     sed -i "s/\${LDAP_NEXTCLOUD_UID}/${ldap_nextcloud_uid}/g" $i

  195.     sed -i "s/\${LDAP_GITEA_UID}/${ldap_gitea_uid}/g" $i

  196.     sed -i "s/\${LDAP_HAUK_UID}/${ldap_hauk_uid}/g" $i

  197.     sed -i "s/\${ADMIN_EMAIL}/${admin_email}/g" $i

  198.     sed -i "s/\${PAPERLESS_WEBSERVER_USER}/${paperless_webserver_user}/g" $i

  199.     sed -i "s/\${PAPERLESS_FTP_USER}/${paperless_ftp_user}/g" $i

  200.     sed -i "s/\${IP_LOOKUP}/${IP_LOOKUP}/g" $i

  201.     sed -i "s/\${IPv6_LOOKUP}/${IPv6_LOOKUP}/g" $i

  202.     #sed -i "s/\${}/${}/g" $i

  203. done;

  204. 

  205. # read variables

  206. . .env

  207. # repeated env variables

  208. echo "" >> mail.env

  209. echo "MAIL_DATA_PATH=${MAIL_DATA_PATH}" >> mail.env

  210. echo "" >> nextcloud.env

  211. echo "NEXTCLOUD_DB_BACKUP=${NEXTCLOUD_DATA_PATH}/nextcloud_db_backup.sql" >> nextcloud.env

  212. echo "NEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}" >> nextcloud.env

  213. echo "NEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}" >> nextcloud.env

  214. echo "" >> gitea.env

  215. echo "GITEA_SERVER_NAME=${GITEA_SERVER_NAME}" >> gitea.env

  216. echo "GITEA_HTTP_PORT=${GITEA_HTTP_PORT}" >> gitea.env

  217. echo "" >> hauk.env

  218. echo "HAUK_SERVER_NAME=${HAUK_SERVER_NAME}" >> hauk.env

  219. echo "" >> paperless.env

  220. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> paperless.env

  221. echo "PAPERLESS_EXPORT_DIR=${PAPERLESS_EXPORT_PATH}" >> paperless.env

  222. echo "" >> sftp.env

  223. echo "PAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> sftp.env

  224. echo "" >> haproxy.env

  225. echo "NEXTCLOUD_SERVER_NAME=${NEXTCLOUD_SERVER_NAME}" >> haproxy.env

  226. echo "GITEA_SERVER_NAME=${GITEA_SERVER_NAME}" >> haproxy.env

  227. echo "HAUK_SERVER_NAME=${HAUK_SERVER_NAME}" >> haproxy.env

  228. 

  229. echo $'\E[33m'

  230. echo "//////////////////////////////////////////////////"

  231. echo "//////////////// CREATING FOLDERS ////////////////"

  232. echo "//////////////////////////////////////////////////"

  233. echo $'\E[1;30m'

  234. 

  235. # openldap

  236. sudo mkdir -p ${LDAP_DATA_VOLUME_PATH}

  237. sudo mkdir -p ${LDAP_CONFIG_VOLUME_PATH}

  238. sudo mkdir -p ${LDAP_CERTS_VOLUME_PATH}

  239. # db

  240. sudo mkdir -p ${DB_DATA_VOLUME_PATH}

  241. #sudo mkdir -p ${DB_CONFIG_VOLUME_PATH}

  242. # mail

  243. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}

  244. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}/getmail

  245. #sudo mkdir -p ${MAIL_STATE_VOLUME_PATH}

  246. # nextcloud

  247. sudo mkdir -p ${NEXTCLOUD_DATA_VOLUME_PATH}

  248. sudo mkdir -p ${NEXTCLOUD_BACKUP_VOLUME_PATH}

  249. # paperless

  250. sudo mkdir -p ${PAPERLESS_DATA_VOLUME_PATH}

  251. sudo mkdir -p ${PAPERLESS_MEDIA_VOLUME_PATH}

  252. sudo mkdir -p ${PAPERLESS_CONSUMPTION_VOLUME_PATH}

  253. sudo mkdir -p ${PAPERLESS_EXPORT_VOLUME_PATH}

  254. # gitea

  255. sudo mkdir -p ${GITEA_DATA_VOLUME_PATH}

  256. # Pi-Hole

  257. sudo mkdir -p ${PIHOLE_CONFIG_VOLUME_PATH}

  258. sudo mkdir -p ${PIHOLE_DNSMASQ_VOLUME_PATH}

  259. # let's Encrypt

  260. sudo mkdir -p ${LETSENCRYPT_VOLUME_PATH}

  261. 

  262. echo "Copying getmail confs"

  263. cp images/email/getmail/getmailrc-* ${MAIL_DATA_VOLUME_PATH}/getmail/