2017-12-14 11:58:23 +01:00
#!/bin/bash
2019-12-30 17:34:15 +01:00
DOMAINS = ( )
2019-12-31 10:11:16 +01:00
welcome_message( )
{
2020-01-06 16:44:18 +01:00
clear
echo "#======================================================================#"
echo -e "#\e[31m ____ __ ____ _ _ __ __ _ __ ___ ____ ____ \e[0m#"
2020-01-07 10:12:02 +01:00
echo -e "#\e[31m ( __)/ _\ ( _ \ ___ ( \/ ) / _\ ( ( \ / _\ / __)( __)( _ \ \e[0m#"
2020-01-06 16:44:18 +01:00
echo -e "#\e[31m ) _)/ \ ) _ ((___)/ \/ \/ \/ // \( (_ \ ) _) ) / \e[0m#"
echo -e "#\e[31m (__) \_/\_/(____/ \_)(_/\_/\_/\_)__)\_/\_/ \___/(____)(__\_) \e[0m#"
echo "# #"
echo "#======================================================================#"
2020-02-26 10:19:43 +01:00
printf "\n Welcome to Fab-manager's setup assistant\n\n\n"
echo "Thank you for installing Fab-manager."
printf "This script will guide you through the installation process of Fab-manager\n\n"
2022-06-27 14:48:12 +02:00
echo -e "Please report any \e[1mfeedback or improvement request\e[0m on https://feedback.fab-manager.com/"
echo -e "For \e[1mbug reports\e[0m, please open a new issue on https://github.com/sleede/fab-manager/issues"
echo -e "You can call for \e[1mcommunity assistance\e[0m on https://forum.fab-manager.com/"
2019-12-31 10:11:16 +01:00
printf "\nYou can interrupt this installation at any time by pressing Ctrl+C\n"
2022-06-27 14:48:12 +02:00
printf "If you do not feel confortable with this installation, you can \e[4msubscribe to our hosting offers\e[0m:\nhttps://www.fab-manager.com/saas-offer\n\n"
2019-12-31 11:21:34 +01:00
read -rp "Continue? (Y/n) " confirm </dev/tty
2019-12-31 10:11:16 +01:00
if [ [ " $confirm " = "n" ] ] ; then exit 1; fi
}
2019-12-30 17:34:15 +01:00
system_requirements( )
{
2021-03-24 09:47:22 +01:00
if is_root; then
2019-12-30 17:34:15 +01:00
echo "It is not recommended to run this script as root. As a normal user, elevation will be prompted if needed."
read -rp "Continue anyway? (Y/n) " confirm </dev/tty
if [ [ " $confirm " = "n" ] ] ; then exit 1; fi
else
2021-03-24 09:47:22 +01:00
if [ " $( has_sudo) " = 'no_sudo' ] ; then
echo " You are not allowed to sudo. Please add $( whoami) to the sudoers before continuing. "
exit 1
fi
local _groups = ( "docker" )
2019-12-30 17:34:15 +01:00
for _group in " ${ _groups [@] } " ; do
2020-01-06 16:44:18 +01:00
echo -e " detecting group $_group for current user... "
2019-12-30 17:34:15 +01:00
if ! groups | grep " $_group " ; then
echo " Please add your current user to the $_group group. "
echo " You can run the following as root: \"usermod -aG $_group $( whoami) \", then logout and login again "
2020-01-06 16:44:18 +01:00
echo -e "\e[91m[ ❌ ] current user is misconfigured, exiting...\e[39m" && exit 1
2019-12-30 17:34:15 +01:00
fi
done
fi
2022-05-23 16:29:10 +02:00
local _commands = ( "sudo" "curl" "sed" "openssl" "docker" "systemctl" )
2019-12-30 17:34:15 +01:00
for _command in " ${ _commands [@] } " ; do
echo " detecting $_command ... "
if ! command -v " $_command "
then
echo " Please install $_command before running this script. "
2020-01-06 16:44:18 +01:00
echo -e " \e[91m[ ❌ ] $_command was not found, exiting...\e[39m " && exit 1
2019-12-30 17:34:15 +01:00
fi
done
2022-06-27 15:19:53 +02:00
echo "detecting docker version..."
DOCKER_VERSION = $( docker -v | grep -oP "([0-9]{1,}\.)+[0-9]{1,}" )
if verlt " $DOCKER_VERSION " 20.10; then
echo -e " \e[91m[ ❌ ] The installed docker version ( $DOCKER_VERSION ) is lower than the minimum required version (20.10). Exiting...\e[39m " && exit 1
fi
2022-05-23 16:29:10 +02:00
echo "detecting docker-compose..."
docker-compose version
2020-01-06 16:44:18 +01:00
printf "\e[92m[ ✔ ] All requirements successfully checked.\e[39m \n\n"
2019-12-30 17:34:15 +01:00
}
2022-06-27 15:19:53 +02:00
# compare versions utilities
# https://stackoverflow.com/a/4024263/1039377
verlte( ) {
[ " $1 " = " $( echo -e " $1 \n $2 " | sort -V | head -n1) " ]
}
verlt( ) {
[ " $1 " = " $2 " ] && return 1 || verlte " $1 " " $2 "
}
2022-05-23 16:29:10 +02:00
docker-compose( )
{
if ! docker compose version 1>/dev/null 2>/dev/null
then
2022-05-25 09:53:25 +02:00
if ! command docker-compose version 1>/dev/null 2>/dev/null
2022-05-23 16:29:10 +02:00
then
echo -e "\e[91m[ ❌ ] docker-compose was not found, exiting...\e[39m" && exit 1
else
2022-05-25 09:53:25 +02:00
command docker-compose " $@ "
2022-05-23 16:29:10 +02:00
fi
else
docker compose " $@ "
fi
}
2021-03-24 09:47:22 +01:00
is_root( )
{
return $( id -u)
}
has_sudo( )
{
local prompt
prompt = $( sudo -nv 2>& 1)
if [ $? -eq 0 ] ; then
echo "has_sudo__pass_set"
elif echo $prompt | grep -q '^sudo:' ; then
echo "has_sudo__needs_pass"
else
echo "no_sudo"
fi
}
elevate_cmd( )
{
local cmd = $@
HAS_SUDO = $( has_sudo)
case " $HAS_SUDO " in
has_sudo__pass_set)
sudo $cmd
; ;
has_sudo__needs_pass)
echo " Please supply sudo password for the following command: sudo $cmd "
sudo $cmd
; ;
*)
echo " Please supply root password for the following command: su -c \" $cmd \" "
su -c " $cmd "
; ;
esac
}
2019-12-31 12:30:31 +01:00
read_email( )
{
local email
2022-06-06 17:23:02 +02:00
read -rep "Please input a valid email address > " email </dev/tty
2019-12-31 12:30:31 +01:00
if [ [ " $email " = = *"@" *"." * ] ] ; then
EMAIL = " $email "
else
read_email
fi
}
2019-12-30 17:34:15 +01:00
config( )
{
2021-03-08 09:57:11 +01:00
SERVICE = "fabmanager"
2022-06-13 17:03:35 +02:00
# http_proxy should have been exported externally
# shellcheck disable=SC2154
if [ " $http_proxy " != "" ] ; then
read -rp "You seems to be behind a proxy. Do you want to configure a custom CA certificate? (Y/n) " confirm </dev/tty
if [ [ " $confirm " != "n" ] ] ; then
echo "Paste the certificate below and terminate with an empty line:"
2022-06-13 17:54:57 +02:00
CERTIFICATE = $( sed '/^$/q' </dev/tty)
2022-06-13 17:03:35 +02:00
fi
fi
2020-02-26 10:19:43 +01:00
echo 'We recommend nginx to serve the application over the network (internet). You can use your own solution or let this script install and configure nginx for Fab-manager.'
2021-06-07 15:45:58 +02:00
printf 'If you want to install Fab-manager behind a reverse proxy, you may not need to install the integrated nginx.\n'
2019-12-30 17:34:15 +01:00
read -rp 'Do you want install nginx? (Y/n) ' NGINX </dev/tty
if [ " $NGINX " != "n" ] ; then
# if the user doesn't want nginx, let him use its own solution for HTTPS
2021-03-10 12:47:01 +01:00
printf "\n\nWe highly recommend to secure the application with HTTPS. You can use your own certificate or let this script install and configure let's encrypt for Fab-manager."
printf "\nIf this server is publicly available on the internet, you can use Let's encrypt to automatically generate and renew a valid SSL certificate for free.\n"
2019-12-30 17:34:15 +01:00
read -rp "Do you want install let's encrypt? (Y/n) " LETSENCRYPT </dev/tty
if [ " $LETSENCRYPT " != "n" ] ; then
2020-01-06 16:44:18 +01:00
printf "\n\nLet's encrypt requires an email address to receive notifications about certificate expiration.\n"
2019-12-31 12:30:31 +01:00
read_email
2019-12-30 17:34:15 +01:00
fi
2021-03-10 12:47:01 +01:00
# if the user wants to install nginx, configure the domains
2020-01-06 16:44:18 +01:00
printf "\n\nWhat's the domain name where the instance will be active (eg. fab-manager.com)?\n"
2019-12-30 17:34:15 +01:00
read_domain
MAIN_DOMAIN = ( " ${ DOMAINS [0] } " )
OTHER_DOMAINS = ${ DOMAINS [*]/ $MAIN_DOMAIN }
2020-03-24 11:38:10 +01:00
else
LETSENCRYPT = "n"
2019-12-30 17:34:15 +01:00
fi
}
read_domain( )
{
2022-06-06 17:23:02 +02:00
read -rep 'Please input the domain name > ' domain </dev/tty
2019-12-31 12:30:31 +01:00
if [ [ " $domain " = = *"." * ] ] ; then
DOMAINS += ( " $domain " )
else
echo "The domain name entered is invalid"
read_domain
return
fi
2021-06-16 11:01:55 +02:00
read -rp 'Do you have any other domain (eg. a www. alias)? (y/N) ' confirm </dev/tty
2019-12-30 17:34:15 +01:00
if [ " $confirm " = = "y" ] ; then
read_domain
fi
}
prepare_files( )
2017-12-14 11:58:23 +01:00
{
2017-12-14 12:02:50 +01:00
FABMANAGER_PATH = ${ 1 :- /apps/fabmanager }
2017-12-14 11:58:23 +01:00
2020-04-06 15:47:43 +02:00
echo -e " Fab-Manager will be installed in \e[31m $FABMANAGER_PATH \e[0m "
read -rp "Continue? (Y/n) " confirm </dev/tty
if [ [ " $confirm " = "n" ] ] ; then exit 1; fi
2022-06-07 15:12:07 +02:00
elevate_cmd mkdir -p " $FABMANAGER_PATH "
2022-08-24 10:29:11 +02:00
elevate_cmd chown -R " $( whoami) " " $FABMANAGER_PATH "
2019-12-31 11:21:34 +01:00
2022-06-07 15:12:07 +02:00
# create folders before starting the containers, otherwise root will own them
local folders = ( accounting config elasticsearch/config exports imports invoices log payment_schedules plugins postgresql \
2023-02-13 17:31:57 +01:00
supporting_document_files public/packs public/uploads)
2022-06-07 15:12:07 +02:00
for folder in " ${ folders [@] } " ; do
mkdir -p " $FABMANAGER_PATH / $folder "
done
2017-12-14 11:58:23 +01:00
2020-02-26 10:19:43 +01:00
# Fab-manager environment variables
2019-12-24 16:19:44 +01:00
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/env.example > " $FABMANAGER_PATH /config/env "
2017-12-14 11:58:23 +01:00
2023-04-12 15:06:29 +02:00
# Fab-manager auth provider configuration file
touch " $FABMANAGER_PATH /config/auth_provider.yml "
2017-12-14 11:58:23 +01:00
# nginx configuration
2019-12-31 17:55:41 +01:00
if [ " $NGINX " != "n" ] ; then
2019-12-30 17:34:15 +01:00
mkdir -p " $FABMANAGER_PATH /config/nginx "
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/nginx_with_ssl.conf.example > " $FABMANAGER_PATH /config/nginx/fabmanager.conf.ssl "
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/nginx.conf.example > " $FABMANAGER_PATH /config/nginx/fabmanager.conf "
fi
2017-12-14 11:58:23 +01:00
# let's encrypt configuration
2019-12-31 17:55:41 +01:00
if [ " $LETSENCRYPT " != "n" ] ; then
2020-01-06 16:44:18 +01:00
mkdir -p " $FABMANAGER_PATH /letsencrypt/etc/config "
2019-12-30 17:34:15 +01:00
mkdir -p " $FABMANAGER_PATH /letsencrypt/systemd "
mkdir -p " $FABMANAGER_PATH /letsencrypt/etc/webrootauth "
2020-01-06 16:44:18 +01:00
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/webroot.ini.example > " $FABMANAGER_PATH /letsencrypt/etc/config/webroot.ini "
2019-12-30 17:34:15 +01:00
# temp systemd files
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/letsencrypt.service > " $FABMANAGER_PATH /letsencrypt/systemd/letsencrypt.service "
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/letsencrypt.timer > " $FABMANAGER_PATH /letsencrypt/systemd/letsencrypt.timer "
fi
2017-12-14 11:58:23 +01:00
2018-12-03 16:06:08 +01:00
# ElasticSearch configuration files
2019-12-24 16:19:44 +01:00
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/elasticsearch.yml > " $FABMANAGER_PATH /elasticsearch/config/elasticsearch.yml "
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/log4j2.properties > " $FABMANAGER_PATH /elasticsearch/config/log4j2.properties "
2018-12-03 16:06:08 +01:00
2017-12-14 11:58:23 +01:00
# docker-compose
2019-12-24 16:19:44 +01:00
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/docker-compose.yml > " $FABMANAGER_PATH /docker-compose.yml "
2022-06-13 17:03:35 +02:00
# proxy
if [ " $CERTIFICATE " != "" ] ; then
mkdir -p " $FABMANAGER_PATH /config/proxy "
echo " $CERTIFICATE " > " $FABMANAGER_PATH /config/proxy/certificate.pem "
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/proxy/.npmrc > " $FABMANAGER_PATH /config/proxy/.npmrc "
\c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/setup/proxy/gitconfig > " $FABMANAGER_PATH /config/proxy/gitconfig "
fi
2017-12-14 11:58:23 +01:00
}
2020-04-07 10:34:58 +02:00
yq( ) {
2021-11-16 17:17:08 +01:00
docker run --rm -i -v " ${ FABMANAGER_PATH } :/workdir " --user " $UID " mikefarah/yq:4 " $@ "
2020-04-07 10:34:58 +02:00
}
2022-06-27 14:48:12 +02:00
bat( ) {
docker run --rm -i -v " ${ PWD } :/workdir " --user " $UID " sleede/bat:latest " $@ "
}
2019-12-30 17:34:15 +01:00
prepare_nginx( )
{
if [ " $NGINX " != "n" ] ; then
sed -i.bak " s/MAIN_DOMAIN/ ${ MAIN_DOMAIN [0] } /g " " $FABMANAGER_PATH /config/nginx/fabmanager.conf "
sed -i.bak " s/MAIN_DOMAIN/ ${ MAIN_DOMAIN [0] } /g " " $FABMANAGER_PATH /config/nginx/fabmanager.conf.ssl "
sed -i.bak " s/ANOTHER_DOMAIN_1/ $OTHER_DOMAINS /g " " $FABMANAGER_PATH /config/nginx/fabmanager.conf.ssl "
2019-12-31 11:21:34 +01:00
sed -i.bak " s/URL_WITH_PROTOCOL_HTTPS/https:\/\/ ${ MAIN_DOMAIN [0] } /g " " $FABMANAGER_PATH /config/nginx/fabmanager.conf.ssl "
2020-03-24 12:26:43 +01:00
else
# if nginx is not installed, remove its associated block from docker-compose.yml
2020-04-06 15:47:43 +02:00
echo "Removing nginx..."
2021-02-24 17:00:33 +01:00
yq -i eval 'del(.services.nginx)' docker-compose.yml
2021-03-10 12:47:01 +01:00
printf "The two following configurations are useful if you want to install Fab-manager behind a reverse proxy...\n"
2021-03-24 09:50:22 +01:00
read -rp "- Do you want to map the Fab-manager's service to an external network? (Y/n) " confirm </dev/tty
2020-04-07 10:34:58 +02:00
if [ " $confirm " != "n" ] ; then
2022-06-06 17:23:02 +02:00
read -rep "Please input the name of the external network (default: web) " network </dev/tty
2021-06-07 15:45:58 +02:00
if [ " $network " = "" ] ; then network = "web" ; fi
2020-04-07 10:34:58 +02:00
echo "Adding a network configuration to the docker-compose.yml file..."
2023-04-12 15:06:29 +02:00
yq -i eval " .networks. $network .external = true " docker-compose.yml
2021-06-04 18:26:20 +02:00
yq -i eval '.networks.db = "" | .networks.db tag="!!null"' docker-compose.yml
2021-02-24 17:00:33 +01:00
yq -i eval '.services.fabmanager.networks += ["web"]' docker-compose.yml
yq -i eval '.services.fabmanager.networks += ["db"]' docker-compose.yml
yq -i eval '.services.postgres.networks += ["db"]' docker-compose.yml
2021-05-21 10:13:31 +02:00
yq -i eval '.services.elasticsearch.networks += ["db"]' docker-compose.yml
2021-02-24 17:00:33 +01:00
yq -i eval '.services.redis.networks += ["db"]' docker-compose.yml
2021-06-07 15:45:58 +02:00
if ! docker network inspect " $network " 1>/dev/null; then
echo " Creating the external network $network ... "
docker network create " $network "
fi
2020-04-07 10:34:58 +02:00
fi
2021-03-24 09:50:22 +01:00
read -rp "- Do you want to rename the Fab-manager's service? (Y/n) " confirm </dev/tty
2021-03-02 09:37:34 +01:00
if [ " $confirm " != "n" ] ; then
current = " $( yq eval '.services.*.image | select(. == "sleede/fab-manager*") | path | .[-2]' docker-compose.yml) "
printf "=======================\n- \e[1mCurrent value: %s\e[21m\n- New value? (leave empty to keep the current value)\n" " $current "
2022-06-06 17:23:02 +02:00
read -rep " > " value </dev/tty
2021-03-02 09:37:34 +01:00
echo "======================="
if [ " $value " != "" ] ; then
escaped = $( printf '%s\n' " $value " | iconv -f utf8 -t ascii//TRANSLIT//IGNORE | sed -e 's/[^a-zA-Z0-9-]/_/g' )
yq -i eval " .services. $escaped = .services. $current | del(.services. $current ) " docker-compose.yml
2021-03-08 09:57:11 +01:00
SERVICE = " $escaped "
2021-03-02 09:37:34 +01:00
fi
fi
2019-12-30 17:34:15 +01:00
fi
}
2019-12-31 17:55:41 +01:00
function join_by { local IFS = " $1 " ; shift; echo " $* " ; }
2019-12-30 17:34:15 +01:00
prepare_letsencrypt( )
{
2019-12-31 17:55:41 +01:00
if [ " $LETSENCRYPT " != "n" ] ; then
2020-01-07 10:12:02 +01:00
if ! openssl dhparam -in " $FABMANAGER_PATH /config/nginx/ssl/dhparam.pem " -check; then
2020-01-06 16:44:18 +01:00
mkdir -p " $FABMANAGER_PATH /config/nginx/ssl "
printf "\n\nNow, we will generate a Diffie-Hellman (DH) 4096 bits encryption key, to encrypt connections. This will take a moment, please wait...\n"
openssl dhparam -out " $FABMANAGER_PATH /config/nginx/ssl/dhparam.pem " 4096
fi
sed -i.bak " s/REPLACE_WITH_YOUR@EMAIL.COM/ $EMAIL /g " " $FABMANAGER_PATH /letsencrypt/etc/config/webroot.ini "
sed -i.bak " s/MAIN_DOMAIN, ANOTHER_DOMAIN_1/ $( join_by , " ${ DOMAINS [@] } " ) /g " " $FABMANAGER_PATH /letsencrypt/etc/config/webroot.ini "
2019-12-31 10:11:16 +01:00
echo "Now downloading and configuring the certificate signing bot..."
2019-12-30 17:34:15 +01:00
docker pull certbot/certbot:latest
sed -i.bak " s:/apps/fabmanager: $FABMANAGER_PATH :g " " $FABMANAGER_PATH /letsencrypt/systemd/letsencrypt.service "
2021-03-24 09:47:22 +01:00
elevate_cmd cp " $FABMANAGER_PATH /letsencrypt/systemd/letsencrypt.service " /etc/systemd/system/letsencrypt.service
elevate_cmd cp " $FABMANAGER_PATH /letsencrypt/systemd/letsencrypt.timer " /etc/systemd/system/letsencrypt.timer
elevate_cmd systemctl daemon-reload
2019-12-31 10:11:16 +01:00
fi
2019-12-30 17:34:15 +01:00
}
prepare_docker( )
{
2020-01-06 16:44:18 +01:00
if [ " $( docker ps | wc -l) " -gt 1 ] ; then
printf "\n\nIf you have previously interrupted the installer, it is recommended to stop any existing docker container before continuing.\n"
echo "Here's a list of all existing containers:"
docker ps -a
read -rp "Force remove all containers? (y/N) " confirm </dev/tty
if [ " $confirm " = "y" ] ; then
# shellcheck disable=SC2046
docker rm -f $( docker ps -q)
fi
fi
2022-06-13 14:11:43 +02:00
# set the current user in the docker-compose.yml, as the owner of the process
sed -i.bak " s/USER_ID/ $( id -u) : $( id -g) /g " " $FABMANAGER_PATH /docker-compose.yml "
2022-06-13 17:03:35 +02:00
# if a certificate was provided, modify the docker-compose.yml file to use it
if [ " $CERTIFICATE " != "" ] ; then
echo "Using the certificate provided..."
2022-06-13 17:54:57 +02:00
yq -i eval " .services. $SERVICE .volumes += [\"./config/proxy/certificate.pem:/etc/ssl/certs/ca-cert-proxy.pem\"] " docker-compose.yml
yq -i eval " .services. $SERVICE .volumes += [\"./config/proxy/.npmrc:/usr/src/app/.npmrc\"] " docker-compose.yml
yq -i eval " .services. $SERVICE .volumes += [\"./config/proxy/gitconfig:/etc/gitconfig\"] " docker-compose.yml
2022-06-13 17:03:35 +02:00
fi
2019-12-30 17:34:15 +01:00
cd " $FABMANAGER_PATH " && docker-compose pull
}
get_md_anchor( )
{
local md_file = " $1 "
local anchor = " $2 "
2019-12-31 12:30:31 +01:00
local section lastline
2019-12-30 17:34:15 +01:00
section = $( echo " $md_file " | sed -n " /<a name=\" $anchor /,/<a name=/p " | tail -n +2)
2019-12-31 12:30:31 +01:00
lastline = $( echo " $section " | tail -n -1)
if [ [ " $lastline " = = *"<a name=" * ] ] ; then
section = $( echo " $section " | head -n -1)
2019-12-30 17:34:15 +01:00
fi
echo " $section "
}
configure_env_file( )
{
2022-06-13 10:37:04 +02:00
# pre-configure the main domain
if [ " ${ MAIN_DOMAIN [0] } " != "" ] ; then
sed -i.bak " s/DEFAULT_HOST=.*/DEFAULT_HOST= ${ MAIN_DOMAIN [0] } /g " " $FABMANAGER_PATH /config/env "
fi
2023-04-12 15:06:29 +02:00
# we automatically generate the SECRET_KEY_BASE
secret = $( docker-compose -f " $FABMANAGER_PATH /docker-compose.yml " run --rm " $SERVICE " bundle exec rake secret)
sed -i.bak " s/SECRET_KEY_BASE=/SECRET_KEY_BASE= $secret /g " " $FABMANAGER_PATH /config/env "
2020-01-06 16:44:18 +01:00
printf "\n\nWe will now configure the environment variables.\n"
2020-02-26 10:19:43 +01:00
echo "This allows you to customize Fab-manager's appearance and behavior."
2019-12-31 12:30:31 +01:00
read -rp "Proceed? (Y/n) " confirm </dev/tty
2019-12-30 17:34:15 +01:00
if [ " $confirm " = "n" ] ; then return ; fi
2019-12-31 11:21:34 +01:00
local doc variables secret
2019-12-30 17:34:15 +01:00
doc = $( \c url -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/doc/environment.md)
2020-06-15 12:44:43 +02:00
variables = ( DEFAULT_HOST DEFAULT_PROTOCOL DELIVERY_METHOD SMTP_ADDRESS SMTP_PORT SMTP_USER_NAME SMTP_PASSWORD SMTP_AUTHENTICATION \
2023-02-13 17:31:57 +01:00
SMTP_ENABLE_STARTTLS_AUTO SMTP_OPENSSL_VERIFY_MODE SMTP_TLS LOG_LEVEL MAX_IMAGE_SIZE MAX_CAO_SIZE MAX_IMPORT_SIZE MAX_SUPPORTING_DOCUMENT_FILE_SIZE \
2021-04-14 15:04:41 +02:00
ADMINSYS_EMAIL APP_LOCALE RAILS_LOCALE MOMENT_LOCALE SUMMERNOTE_LOCALE ANGULAR_LOCALE FULLCALENDAR_LOCALE INTL_LOCALE INTL_CURRENCY\
2023-02-13 17:31:57 +01:00
POSTGRESQL_LANGUAGE_ANALYZER TIME_ZONE WEEK_STARTING_DAY D3_DATE_FORMAT UIB_DATE_FORMAT EXCEL_DATE_FORMAT DISK_SPACE_MB_ALERT)
2019-12-30 17:34:15 +01:00
for variable in " ${ variables [@] } " ; do
2019-12-31 11:21:34 +01:00
local var_doc current
2019-12-30 17:34:15 +01:00
var_doc = $( get_md_anchor " $doc " " $variable " )
2020-01-06 16:44:18 +01:00
current = $( grep " $variable = " " $FABMANAGER_PATH /config/env " )
2022-06-27 14:48:12 +02:00
echo " $var_doc " | bat --file-name " $variable " --language md --color= always
2023-02-20 15:45:53 +01:00
printf -- "- \e[1mCurrent value: %s\e[0m\n- New value? (leave empty to keep the current value)\n" " $current "
2022-06-06 17:23:02 +02:00
read -rep " > " value </dev/tty
2019-12-30 17:34:15 +01:00
if [ " $value " != "" ] ; then
2021-04-14 11:37:42 +02:00
esc_val = $( printf '%s\n' " $value " | sed -e 's/\//\\\//g' )
esc_curr = $( printf '%s\n' " $current " | sed -e 's/\//\\\//g' )
sed -i.bak " s/ $esc_curr / $variable = $esc_val /g " " $FABMANAGER_PATH /config/env "
2019-12-30 17:34:15 +01:00
fi
done
2022-06-13 15:35:52 +02:00
# if DEFAULT_PROTOCOL was set to http, ALLOW_INSECURE_HTTP is probably required
2022-06-13 17:54:57 +02:00
if grep " ^DEFAULT_PROTOCOL=http $" " $FABMANAGER_PATH /config/env " 1>/dev/null; then
2022-06-27 14:48:12 +02:00
get_md_anchor " $doc " "ALLOW_INSECURE_HTTP" | bat --file-name "ALLOW_INSECURE_HTTP" --language md --color= always
2023-02-20 15:45:53 +01:00
printf "You have set \e[1mDEFAULT_PROTOCOL\e[0m to \e[1mhttp\e[21m.\n"
2022-06-13 17:54:57 +02:00
read -rp "Do you want to allow insecure HTTP? (Y/n) " confirm </dev/tty
if [ " $confirm " != "n" ] ; then
2022-06-13 15:35:52 +02:00
sed -i.bak "s/ALLOW_INSECURE_HTTP=.*/ALLOW_INSECURE_HTTP=true/g" " $FABMANAGER_PATH /config/env "
fi
fi
2019-12-30 17:34:15 +01:00
}
read_password( )
{
2019-12-31 11:21:34 +01:00
local password confirmation
2019-12-31 17:55:41 +01:00
>& 2 echo "Please input a password for this administrator's account"
2019-12-31 12:30:31 +01:00
read -rsp " > " password </dev/tty
2022-08-23 17:35:12 +02:00
if [ ${# password } -lt 12 ] ; then
>& 2 printf "\nError: password is too short (minimal length: 12 characters)\n"
password = $( read_password 'no-confirm' )
fi
if [ [ ! $password = ~ [ 0-9] || ! $password = ~ [ a-z] || ! $password = ~ [ A-Z] || ! $password = ~ [ [ :punct:] ] ] ] ; then
>& 2 printf "\nError: password is too weak (should contain uppercases, lowercases, digits and special characters)\n"
2020-05-11 17:17:26 +02:00
password = $( read_password 'no-confirm' )
fi
if [ " $1 " != 'no-confirm' ] ; then
>& 2 printf "\nConfirm the password\n"
read -rsp " > " confirmation </dev/tty
if [ " $password " != " $confirmation " ] ; then
>& 2 printf "\nError: passwords mismatch\n"
password = $( read_password)
fi
2019-12-30 17:34:15 +01:00
fi
echo " $password "
}
setup_assets_and_databases( )
{
2020-01-06 16:44:18 +01:00
printf "\n\nWe will now setup the database.\n"
2019-12-31 17:55:41 +01:00
read -rp "Continue? (Y/n) " confirm </dev/tty
2019-12-30 17:34:15 +01:00
if [ " $confirm " = "n" ] ; then return ; fi
2023-04-12 15:06:29 +02:00
# create the database
docker-compose -f " $FABMANAGER_PATH/docker-compose.yml " run --rm " $SERVICE " bundle exec rails db:create </dev/tty
docker-compose -f " $FABMANAGER_PATH /docker-compose.yml " run --rm " $SERVICE " bundle exec rails db:schema:load </dev/tty
2019-12-30 17:34:15 +01:00
# prompt default admin email/password
2020-02-26 10:19:43 +01:00
printf "\n\nWe will now create the default administrator of Fab-manager.\n"
2019-12-31 12:30:31 +01:00
read_email
2019-12-30 17:34:15 +01:00
PASSWORD = $( read_password)
2021-04-01 10:37:52 +02:00
printf "\nOK. We will fill the database now...\n"
2022-06-14 13:43:07 +02:00
docker-compose -f " $FABMANAGER_PATH /docker-compose.yml " run --rm -e ADMIN_EMAIL = " $EMAIL " -e ADMIN_PASSWORD = " $PASSWORD " " $SERVICE " bundle exec rake db:seed </dev/tty # seed the database
2019-12-30 17:34:15 +01:00
# now build the assets
2022-06-14 13:43:07 +02:00
if ! docker-compose -f " $FABMANAGER_PATH /docker-compose.yml " run --user "0:0" --rm " $SERVICE " bundle exec rake assets:precompile </dev/tty; then
2022-05-23 16:59:52 +02:00
echo -e "\e[91m[ ❌ ] someting went wrong while compiling the assets, exiting...\e[39m" && exit 1
fi
2019-12-30 17:34:15 +01:00
# and prepare elasticsearch
2022-06-14 13:43:07 +02:00
docker-compose -f " $FABMANAGER_PATH /docker-compose.yml " run --rm " $SERVICE " bundle exec rake fablab:es:build_stats </dev/tty
2019-12-30 17:34:15 +01:00
}
2019-12-31 10:11:16 +01:00
stop( )
{
2022-06-06 17:23:02 +02:00
docker-compose -f " $FABMANAGER_PATH /docker-compose.yml " down
2019-12-31 10:11:16 +01:00
}
2019-12-30 17:34:15 +01:00
start( )
{
2022-06-06 17:23:02 +02:00
docker-compose -f " $FABMANAGER_PATH /docker-compose.yml " up -d
2019-12-30 17:34:15 +01:00
}
2019-12-31 10:11:16 +01:00
enable_ssl( )
{
2019-12-31 17:55:41 +01:00
if [ " $LETSENCRYPT " != "n" ] ; then
2019-12-31 10:11:16 +01:00
# generate certificate
2021-03-24 09:47:22 +01:00
elevate_cmd systemctl start letsencrypt.service
2019-12-31 10:11:16 +01:00
# serve http content over ssl
mv " $FABMANAGER_PATH /config/nginx/fabmanager.conf " " $FABMANAGER_PATH /config/nginx/fabmanager.conf.nossl "
mv " $FABMANAGER_PATH /config/nginx/fabmanager.conf.ssl " " $FABMANAGER_PATH /config/nginx/fabmanager.conf "
stop
start
2021-03-24 09:47:22 +01:00
elevate_cmd systemctl enable letsencrypt.timer
elevate_cmd systemctl start letsencrypt.timer
2019-12-31 10:11:16 +01:00
fi
}
final_message( )
{
2020-01-06 16:44:18 +01:00
printf "\n\e[92m[ ✔ ] Installation process in now complete.\e[39m \n\n"
echo "#========================#"
echo -e "#\e[5m 🥳 Congratulations! 🎉 \e[25m#"
echo "#========================#"
printf "\n\n"
2019-12-31 10:11:16 +01:00
echo -e "Please \e[1mkeep track of the logs\e[21m produced by this script and check that everything is running correctly."
echo "You can call for the community assistance on https://forum.fab-manager.com"
2020-02-26 10:19:43 +01:00
echo -e "We wish you a pleasant use of \e[31mFab-manager\e[0m"
2019-12-31 10:11:16 +01:00
}
2019-12-24 16:19:44 +01:00
function trap_ctrlc( )
{
echo "Ctrl^C, exiting..."
exit 2
}
2019-12-30 17:34:15 +01:00
setup( )
{
trap "trap_ctrlc" 2 # SIGINT
2019-12-31 10:11:16 +01:00
welcome_message
2019-12-30 17:34:15 +01:00
system_requirements
config
prepare_files " $@ "
prepare_nginx
prepare_letsencrypt
prepare_docker
configure_env_file
setup_assets_and_databases
start
2019-12-31 10:11:16 +01:00
enable_ssl
final_message
2019-12-30 17:34:15 +01:00
}
setup " $@ "