134 lines
4.8 KiB
Bash
134 lines
4.8 KiB
Bash
#!/bin/sh
|
|
|
|
set -e
|
|
set -x
|
|
|
|
. /usr/share/debconf/confmodule
|
|
|
|
restore_config_if_modified() {
|
|
local new="$1"
|
|
local backup="$1.bak.upgrade_package"
|
|
|
|
if [ -f "$backup" ]; then
|
|
if ! cmp -s "$new" "$backup"; then
|
|
echo ">>> Archivo modificado por el usuario detectado en $new"
|
|
echo " - Guardando archivo nuevo como ${new}.new"
|
|
mv -f "$new" "${new}.new"
|
|
echo " - Restaurando archivo anterior desde backup"
|
|
mv -f "$backup" "$new"
|
|
else
|
|
echo ">>> El archivo $new no ha cambiado desde la última versión, eliminando backup"
|
|
rm -f "$backup"
|
|
fi
|
|
fi
|
|
}
|
|
|
|
|
|
# Cargar variables de configuración
|
|
db_get opengnsys/ogrepository_ogrepoIp
|
|
OGREPO_IP="$RET"
|
|
db_get opengnsys/ogrepository_ogcoreIp
|
|
OGCORE_IP="$RET"
|
|
db_get opengnsys/ogrepository_sambaUser
|
|
SAMBA_USER="$RET"
|
|
db_get opengnsys/ogrepository_sambaUserPass
|
|
SAMBA_PASS="$RET"
|
|
|
|
# Asegurarse de que el usuario exista
|
|
USER="opengnsys"
|
|
|
|
|
|
# Provisionar base de datos si es necesario en caso de instalación.
|
|
|
|
if [ "$1" = "configure" ] && [ -z "$2" ]; then
|
|
|
|
|
|
sed -i "s/%%OGREPOSITORY_USER%%/$SAMBA_USER/g" /etc/systemd/system/ogrepo-api.service
|
|
sed -i "s/%%OGREPOSITORY_USER%%/$SAMBA_USER/g" /etc/samba/ogrepo-smb.conf
|
|
|
|
# Install ssh keys on opengnsys user
|
|
# Get opengnsys home directory
|
|
OPENGNSYS_HOME=$(getent passwd opengnsys | cut -d: -f6)
|
|
# Create .ssh directory
|
|
mkdir -p $OPENGNSYS_HOME/.ssh
|
|
# Copy ssh keys
|
|
cp /opt/opengnsys/ogrepository/etc/opengnsys $OPENGNSYS_HOME/.ssh/id_ed25519
|
|
cp /opt/opengnsys/ogrepository/etc/opengnsys.pub $OPENGNSYS_HOME/.ssh/id_ed25519.pub
|
|
# Change permissions
|
|
chmod 700 $OPENGNSYS_HOME/.ssh
|
|
chmod 600 $OPENGNSYS_HOME/.ssh/id_ed25519
|
|
chmod 644 $OPENGNSYS_HOME/.ssh/id_ed25519.pub
|
|
# Genera authorized_keys
|
|
cat $OPENGNSYS_HOME/.ssh/id_ed25519.pub >> $OPENGNSYS_HOME/.ssh/authorized_keys
|
|
chmod 600 $OPENGNSYS_HOME/.ssh/authorized_keys
|
|
chown -R opengnsys:opengnsys $OPENGNSYS_HOME/.ssh
|
|
|
|
if [ -f /etc/samba/smb.conf ]; then
|
|
dpkg-divert --package ogrepository --add --rename --divert /etc/samba/smb.conf.orig /etc/samba/smb.conf
|
|
cp /etc/samba/smb.conf.orig /etc/samba/smb.conf
|
|
if ! grep -q "include = /etc/samba/ogrepo-smb.conf" /etc/samba/smb.conf; then
|
|
echo "include = /etc/samba/ogrepo-smb.conf" >> /etc/samba/smb.conf
|
|
fi
|
|
(echo "$SAMBA_PASS"; echo "$SAMBA_PASS") | smbpasswd -a $SAMBA_USER
|
|
fi
|
|
systemctl enable ogrepo-api
|
|
# Configure Repo
|
|
|
|
cp /opt/opengnsys/ogrepository/etc/ogAdmRepo.cfg.tmpl /opt/opengnsys/ogrepository/etc/ogAdmRepo.cfg
|
|
sed -i "s/SERVERIP/$OGREPO_IP/g" /opt/opengnsys/ogrepository/etc/ogAdmRepo.cfg
|
|
sed -i "s/OGCOREIP/$OGCORE_IP/g" /opt/opengnsys/ogrepository/etc/ogAdmRepo.cfg
|
|
|
|
# Copiar sudoers file ogrepository/etc/opengnsys-repository
|
|
cp /opt/opengnsys/ogrepository/etc/opengnsys-repository /etc/sudoers.d/opengnsys
|
|
elif [ "$1" = "configure" ] && [ -n "$2" ]; then
|
|
echo "Actualización desde la versión $2"
|
|
# Recopy static files without configuration
|
|
cp /opt/opengnsys/ogrepository/etc/opengnsys-repository /etc/sudoers.d/opengnsys-repository
|
|
OPENGNSYS_HOME=$(getent passwd opengnsys | cut -d: -f6)
|
|
# Create .ssh directory
|
|
mkdir -p $OPENGNSYS_HOME/.ssh
|
|
# Copy ssh keys
|
|
cp /opt/opengnsys/ogrepository/etc/opengnsys $OPENGNSYS_HOME/.ssh/id_ed25519
|
|
cp /opt/opengnsys/ogrepository/etc/opengnsys.pub $OPENGNSYS_HOME/.ssh/id_ed25519.pub
|
|
cat $OPENGNSYS_HOME/.ssh/id_ed25519.pub >> $OPENGNSYS_HOME/.ssh/authorized_keys
|
|
|
|
restore_config_if_modified "/opt/opengnsys/ogrepository/etc/ogAdmRepo.cfg"
|
|
restore_config_if_modified "/opt/opengnsys/ogrepository/etc/repoinfo.json"
|
|
restore_config_if_modified "/opt/opengnsys/ogrepository/etc/trashinfo.json"
|
|
restore_config_if_modified "/etc/samba/smb.conf"
|
|
restore_config_if_modified "/etc/samba/ogrepo-smb.conf"
|
|
restore_config_if_modified "/etc/sudoers.d/opengnsys-repository"
|
|
|
|
|
|
fi
|
|
|
|
# Cambiar la propiedad de los archivos al usuario especificado
|
|
chown opengnsys:www-data /opt/opengnsys/
|
|
chown -R opengnsys:www-data /opt/opengnsys/ogrepository
|
|
chmod 755 /opt/opengnsys
|
|
chmod 755 /opt/opengnsys/ogrepository/bin/*
|
|
|
|
# oggit -- these are from opengnsys-forgejo, and we're overwriting their
|
|
# permissions above.
|
|
#
|
|
# Check if the paths exist just in case the opengnsys-forgejo package
|
|
# stops being a dependency.
|
|
if [ -d "/opt/opengnsys/ogrepository/var/lib/forgejo/" ] ; then
|
|
chown -R oggit:oggit /opt/opengnsys/ogrepository/var/lib/forgejo/
|
|
fi
|
|
|
|
if [ -d "/opt/opengnsys/ogrepository/oggit/" ] ; then
|
|
chown -R oggit:oggit /opt/opengnsys/ogrepository/oggit/
|
|
fi
|
|
|
|
# Install http server stuff
|
|
# Reiniciar servicios si es necesario
|
|
# systemctl restart nombre_del_servicio
|
|
|
|
systemctl daemon-reload
|
|
systemctl enable ogrepo-api
|
|
systemctl restart ogrepo-api
|
|
systemctl restart smbd
|
|
|
|
exit 0
|