bingen
/
rpi_docker_home_server
Beobachten 1
Favorisieren 0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 0 Wiki Aktivität
Du kannst nicht mehr als 25 Themen auswählen Themen müssen entweder mit einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
56 Commits
6 Branches
Struktur: 0008caa574
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „0008caa574“
${ noResults }
rpi_docker_home_server/setup.sh

236 Zeilen
8.7KB
Originalformat Blame Verlauf 

  1. #!/bin/bash

  2. 

  3. DEFAULT_VOLUMES=/media/volumes

  4. PWD_GEN='< /dev/urandom tr -dc _A-Z-a-z-0-9 | head -c${1:-32};echo;'

  5. #PWD_GEN='openssl rand -base64 20'

  6. DEFAULT_LDAP_MAIL_UID='mail'

  7. DEFAULT_LDAP_NEXTCLOUD_UID='nextcloud'

  8. DEFAULT_LDAP_GOGS_UID='gogs'

  9. 

  10. read -p "Main domain: " domain

  11. while [[ ! $domain =~ ^.*\.[a-z]{2,}$ ]]; do

  12.     read -p "Please Enter a valid domain: " domain

  13. done

  14. # TODO: more than 1 level domains

  15. org=`echo $domain | cut -f1 -d'.'`

  16. ext=`echo $domain | cut -f2 -d'.'`

  17. 

  18. read -p "Volumes path ($DEFAULT_VOLUMES): " volumes

  19. if [[ ${#volumes} -eq 0 ]]; then

  20.     volumes=$DEFAULT_VOLUMES

  21. fi

  22. 

  23. read -p "DB admin password (a random one will be generated if empty): " db_pwd

  24. if [[ ${#db_pwd} -eq 0 ]]; then

  25.     db_pwd=`eval "$PWD_GEN"`

  26. fi

  27. 

  28. read -p "LDAP admin password (a random one will be generated if empty): " ldap_pwd

  29. if [[ ${#ldap_pwd} -eq 0 ]]; then

  30.     ldap_pwd=`eval "$PWD_GEN"`

  31. fi

  32. 

  33. read -p "LDAP Mail Bind DN uid ($DEFAULT_LDAP_MAIL_UID): " ldap_mail_uid

  34. if [[ ${#ldap_mail_uid} -eq 0 ]]; then

  35.     ldap_mail_uid=$DEFAULT_LDAP_MAIL_UID

  36. fi

  37. 

  38. read -p "LDAP Mail Bind DN Pwd (a random one will be generated if empty): " ldap_mail_pwd

  39. if [[ ${#ldap_mail_pwd} -eq 0 ]]; then

  40.     ldap_mail_pwd=`eval "$PWD_GEN"`

  41. fi

  42. 

  43. read -p "LDAP Nextcloud Bind DN uid ($DEFAULT_LDAP_NEXTCLOUD_UID): " ldap_nextcloud_uid

  44. if [[ ${#ldap_nextcloud_uid} -eq 0 ]]; then

  45.     ldap_nextcloud_uid=$DEFAULT_LDAP_NEXTCLOUD_UID

  46. fi

  47. 

  48. read -p "LDAP Nextcloud Bind DN Pwd (a random one will be generated if empty): " ldap_nextcloud_pwd

  49. if [[ ${#ldap_nextcloud_pwd} -eq 0 ]]; then

  50.     ldap_nextcloud_pwd=`eval "$PWD_GEN"`

  51. fi

  52. 

  53. read -p "LDAP Gogs Bind DN uid ($DEFAULT_LDAP_GOGS_UID): " ldap_gogs_uid

  54. if [[ ${#ldap_gogs_uid} -eq 0 ]]; then

  55.     ldap_gogs_uid=$DEFAULT_LDAP_GOGS_UID

  56. fi

  57. 

  58. read -p "LDAP Gogs Bind DN Pwd (a random one will be generated if empty): " ldap_gogs_pwd

  59. if [[ ${#ldap_gogs_pwd} -eq 0 ]]; then

  60.     ldap_gogs_pwd=`eval "$PWD_GEN"`

  61. fi

  62. 

  63. read -p "Nextcloud Admin User Pwd (a random one will be generated if empty): " nextcloud_admin_pwd

  64. if [[ ${#nextcloud_admin_pwd} -eq 0 ]]; then

  65.     nextcloud_admin_pwd=`eval "$PWD_GEN"`

  66. fi

  67. 

  68. read -p "Gogs Admin User Pwd (a random one will be generated if empty): " gogs_admin_pwd

  69. if [[ ${#gogs_admin_pwd} -eq 0 ]]; then

  70.     gogs_admin_pwd=`eval "$PWD_GEN"`

  71. fi

  72. 

  73. read -p "Pi-Hole Web User Pwd (a random one will be generated if empty): " pihole_web_pwd

  74. if [[ ${#pihole_web_pwd} -eq 0 ]]; then

  75.     pihole_web_pwd=`eval "$PWD_GEN"`

  76. fi

  77. 

  78. read -p "Admin E-mail, used for Let's Encrypt account and more (admin@${domain}): " admin_email

  79. if [[ ${#admin_email} -eq 0 ]]; then

  80.     admin_email=admin@${domain}

  81. fi

  82. 

  83. echo "If you have a password salt and a secret from a previous installation, provide them here."

  84. echo "They are used by Passman and need to remain the same for the vaults to be accessible"

  85. read -p "Nextcloud Pwd Salt (a random one will be generated by NC if empty): " nextcloud_salt

  86. read -p "Nextcloud Secret (a random one will be generated by NC if empty): " nextcloud_secret

  87. 

  88. read -p "Paperless Web Server User (paperless): " paperless_webserver_user

  89. if [[ ${#paperless_webserver_user} -eq 0 ]]; then

  90.     paperless_webserver_user=paperless

  91. fi

  92. 

  93. read -p "Paperless Web Server Pwd (a random one will be generated if empty): " paperless_webserver_pwd

  94. if [[ ${#paperless_webserver_pwd} -eq 0 ]]; then

  95.     paperless_webserver_pwd=`eval "$PWD_GEN"`

  96. fi

  97. 

  98. read -p "Paperless Encryption Passphrase (a random one will be generated if empty): " paperless_passphrase

  99. if [[ ${#paperless_passphrase} -eq 0 ]]; then

  100.     paperless_=`eval "$PWD_GEN"`

  101. fi

  102. 

  103. read -p "SFTP User - SFTP server is used by paperless (consume): " paperless_ftp_user

  104. if [[ ${#paperless_ftp_user} -eq 0 ]]; then

  105.     paperless_ftp_user=consume

  106. fi

  107. 

  108. read -p "SFTP Pwd (a random one will be generated if empty): " paperless_ftp_pwd

  109. if [[ ${#paperless_ftp_pwd} -eq 0 ]]; then

  110.     paperless_ftp_pwd=`eval "$PWD_GEN"`

  111. fi

  112. 

  113. echo $'\E[33m'

  114. echo "//////////////////////////////////////////////////"

  115. echo "///////////////// PLEASE CONFIRM /////////////////"

  116. echo "//////////////////////////////////////////////////"

  117. echo $'\E[1;30m'

  118. 

  119. echo Your domain is:                       $domain

  120. echo Your Volumes path is:                 $volumes

  121. echo Your LDAP Mail Bind DN Uid is:        $ldap_mail_uid

  122. echo Your LDAP Nextcloud Bind DN Uid is:   $ldap_nextcloud_uid

  123. echo Your LDAP Gogs Bind DN Uid is:        $ldap_gogs_uid

  124. echo Your Admin email. Let\'s Encrypt...:  $admin_email

  125. echo Your Paperless Web Server User:       $paperless_webserver_user

  126. echo Your SFTP User:                       $paperless_ftp_user

  127. 

  128. echo $'\E[1;37m'

  129. read -p "Are These Settings Correct? Yes (y), No (n): " confirm

  130. while [[ ! $confirm =~ ^[yYnN]{1}$ ]]; do

  131.     read -p "Please Enter 'y' or 'n' To Confirm Settings: " confirm

  132. done

  133. 

  134. if [[ $confirm != [yY] ]]; then

  135.     exit 1

  136. fi

  137. 

  138. # Generate docker secrets

  139. echo $db_pwd | docker secret create db_pwd -

  140. echo $ldap_pwd | docker secret create ldap_pwd -

  141. echo $ldap_mail_pwd | docker secret create ldap_mail_pwd -

  142. echo $ldap_nextcloud_pwd | docker secret create ldap_nextcloud_pwd -

  143. echo $ldap_gogs_pwd | docker secret create ldap_gogs_pwd -

  144. echo $nextcloud_admin_pwd | docker secret create nextcloud_admin_pwd -

  145. echo $nextcloud_salt | docker secret create nextcloud_salt -

  146. echo $nextcloud_secret | docker secret create nextcloud_secret -

  147. echo $paperless_webserver_pwd | docker secret create paperless_webserver_pwd -

  148. echo $paperless_passphrase | docker secret create paperless_passphrase -

  149. echo $paperless_ftp_pwd | docker secret create paperless_ftp_pwd -

  150. echo $gogs_admin_pwd | docker secret create gogs_admin_pwd -

  151. #echo $pihole_web_pwd | docker secret create pihole_web_pwd -

  152. sed -i "s/\${PIHOLE_WEB_PWD}/${pihole_web_pwd}/g" pihole.env

  153. 

  154. echo $'\E[33m'

  155. echo "//////////////////////////////////////////////////"

  156. echo "///////////// COPYING TEMPLATE FILES /////////////"

  157. echo "//////////////////////////////////////////////////"

  158. echo $'\E[1;30m'

  159. 

  160. cp env.template .env

  161. cp openldap.env.template openldap.env

  162. cp mail.env.template mail.env

  163. cp nextcloud.env.template nextcloud.env

  164. cp haproxy.env.template haproxy.env

  165. cp paperless.env.template paperless.env

  166. cp sftp.env.template sftp.env

  167. cp gogs.env.template gogs.env

  168. cp pihole.env.template pihole.env

  169. 

  170. # IP for Pi-Hole

  171. IP_LOOKUP="$(ip route get 8.8.8.8 | awk '{ print $NF; exit }')"  # May not work for VPN / tun0

  172. IPv6_LOOKUP="$(ip -6 route get 2001:4860:4860::8888 | awk '{for(i=1;i<=NF;i++) if ($i=="src") print $(i+1)}')"  # May not work for VPN / tun0

  173. 

  174. for i in `ls *.env .env`; do

  175.     sed -i "s/\${DOMAIN}/${domain}/g" $i

  176.     sed -i "s/\${ORGANIZATION}/${org}/g" $i

  177.     sed -i "s/\${EXTENSION}/${ext}/g" $i

  178.     sed -i "s/\${VOLUMES_PATH}/${volumes//\//\\/}/g" $i

  179.     sed -i "s/\${LDAP_MAIL_UID}/${ldap_mail_uid}/g" $i

  180.     sed -i "s/\${LDAP_NEXTCLOUD_UID}/${ldap_nextcloud_uid}/g" $i

  181.     sed -i "s/\${LDAP_GOGS_UID}/${ldap_gogs_uid}/g" $i

  182.     sed -i "s/\${ADMIN_EMAIL}/${admin_email}/g" $i

  183.     sed -i "s/\${PAPERLESS_WEBSERVER_USER}/${paperless_webserver_user}/g" $i

  184.     sed -i "s/\${PAPERLESS_FTP_USER}/${paperless_ftp_user}/g" $i

  185.     sed -i "s/\${IP_LOOKUP}/${IP_LOOKUP}/g" $i

  186.     sed -i "s/\${IPv6_LOOKUP}/${IPv6_LOOKUP}/g" $i

  187.     #sed -i "s/\${}/${}/g" $i

  188. done;

  189. 

  190. # read variables

  191. . .env

  192. # repeated env variables

  193. echo "\nMAIL_DATA_PATH=${MAIL_DATA_PATH}" >> mail.env

  194. echo "\nNEXTCLOUD_DB_BACKUP=${NEXTCLOUD_DATA_PATH}/nextcloud_db_backup.sql" >> nextcloud.env

  195. echo "\nNEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}" >> nextcloud.env

  196. echo "\nNEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}" >> nextcloud.env

  197. echo "\nPAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> paperless.env

  198. echo "\nPAPERLESS_EXPORT_DIR=${PAPERLESS_EXPORT_PATH}" >> paperless.env

  199. echo "\nPAPERLESS_CONSUMPTION_DIR=${PAPERLESS_CONSUMPTION_PATH}" >> sftp.env

  200. 

  201. echo $'\E[33m'

  202. echo "//////////////////////////////////////////////////"

  203. echo "//////////////// CREATING FOLDERS ////////////////"

  204. echo "//////////////////////////////////////////////////"

  205. echo $'\E[1;30m'

  206. 

  207. # openldap

  208. sudo mkdir -p ${LDAP_DATA_VOLUME_PATH}

  209. sudo mkdir -p ${LDAP_CONFIG_VOLUME_PATH}

  210. sudo mkdir -p ${LDAP_CERTS_VOLUME_PATH}

  211. # db

  212. sudo mkdir -p ${DB_DATA_VOLUME_PATH}

  213. #sudo mkdir -p ${DB_CONFIG_VOLUME_PATH}

  214. # mail

  215. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}

  216. sudo mkdir -p ${MAIL_DATA_VOLUME_PATH}/getmail

  217. #sudo mkdir -p ${MAIL_STATE_VOLUME_PATH}

  218. # nextcloud

  219. sudo mkdir -p ${NEXTCLOUD_DATA_VOLUME_PATH}

  220. sudo mkdir -p ${NEXTCLOUD_BACKUP_VOLUME_PATH}

  221. # paperless

  222. sudo mkdir -p ${PAPERLESS_DATA_VOLUME_PATH}

  223. sudo mkdir -p ${PAPERLESS_MEDIA_VOLUME_PATH}

  224. sudo mkdir -p ${PAPERLESS_CONSUMPTION_VOLUME_PATH}

  225. sudo mkdir -p ${PAPERLESS_EXPORT_VOLUME_PATH}

  226. # gogs

  227. sudo mkdir -p ${GOGS_DATA_VOLUME_PATH}

  228. # Pi-Hole

  229. sudo mkdir -p ${PIHOLE_CONFIG_VOLUME_PATH}

  230. sudo mkdir -p ${PIHOLE_DNSMASQ_VOLUME_PATH}

  231. # let's Encrypt

  232. sudo mkdir -p ${LETSENCRYPT_VOLUME_PATH}

  233. 

  234. echo "Copying getmail confs"

  235. cp images/rpi-email/getmail/getmailrc-* ${MAIL_DATA_VOLUME_PATH}/getmail/