2017-08-31 17:40:24 +00:00
#!/bin/bash
2017-08-31 19:49:18 +00:00
2018-05-16 23:11:36 +00:00
SETTINGS_LOCAL_FILE = 're2o/settings_local.py'
SETTINGS_EXAMPLE_FILE = 're2o/settings_local.example.py'
2018-05-15 23:28:45 +00:00
2018-05-21 14:48:58 +00:00
APT_REQ_FILE = "apt_requirements.txt"
2019-09-01 14:04:53 +00:00
APT_RADIUS_REQ_FILE = "apt_requirements_radius.txt"
2018-05-21 14:48:58 +00:00
PIP_REQ_FILE = "pip_requirements.txt"
LDIF_DB_FILE = "install_utils/db.ldiff"
LDIF_SCHEMA_FILE = "install_utils/schema.ldiff"
2019-09-01 14:57:25 +00:00
FREERADIUS_CLIENTS = "freeradius_utils/freeradius3/clients.conf"
FREERADIUS_AUTH = "freeradius_utils/auth.py"
FREERADIUS_RADIUSD = "freeradius_utils/freeradius3/radiusd.conf"
FREERADIUS_MOD_PYTHON = "freeradius_utils/freeradius3/mods-enabled/python"
FREERADIUS_MOD_EAP = "freeradius_utils/freeradius3/mods-enabled/eap"
FREERADIUS_SITE_DEFAULT = "freeradius_utils/freeradius3/sites-enabled/default"
FREERADIUS_SITE_INNER_TUNNEL = "freeradius_utils/freeradius3/sites-enabled/inner-tunnel"
2017-08-31 19:49:18 +00:00
2018-05-17 20:45:41 +00:00
VALUE = # global value used to return values by some functions
_ask_value( ) {
### Usage _ask_value <text> [<option1> [<option2> ... ] ]
#
# This function is a utility function to force a user to enter a value
# available in a set of options.
#
# Parameters:
# * text: The text to display
# * option#: A possible option for the user. If no option is specifed,
# all inputs are considered valid
#
2018-05-20 12:01:52 +00:00
# Echo: The value entered by the user. Should be one of the choices if
2018-05-17 20:45:41 +00:00
# not ommited
###
shopt -s extglob
input_text = " $1 "
shift
if [ " $# " -ne 0 ] ; then
choices = "("
while [ " $# " -ne 1 ] ; do
2018-05-17 22:51:29 +00:00
choices += " $1 | "
2018-05-17 20:45:41 +00:00
shift
done
2018-05-17 22:51:29 +00:00
choices += " $1 ) "
input_text += " $choices : "
choices = " @ $choices "
2018-05-17 20:45:41 +00:00
else
input_text += ": "
choices = "@(*)"
fi
while true; do
read -p " $input_text " choice
case " $choice " in
$choices ) break; ;
* ) echo "Invalid option" ; ;
esac
done
VALUE = " $choice "
}
2017-08-31 19:49:18 +00:00
2018-05-16 19:44:11 +00:00
install_requirements( ) {
2019-01-03 18:52:06 +00:00
### Usage: install_requirements
2018-05-16 19:44:11 +00:00
#
# This function will install the required packages from APT repository
2018-05-20 12:01:52 +00:00
# and Pypi repository. Those packages are all required for Re2o to work
2018-05-16 19:44:11 +00:00
# properly.
###
echo "Setting up the required packages ..."
2018-05-21 14:48:58 +00:00
cat $APT_REQ_FILE | xargs apt-get -y install
pip3 install -r $PIP_REQ_FILE
2018-05-16 19:44:11 +00:00
echo "Setting up the required packages: Done"
}
2019-09-01 14:04:53 +00:00
install_radius_requirements( ) {
2019-09-01 14:57:25 +00:00
### Usage: install_radius_requirements
2019-09-01 14:04:53 +00:00
#
# This function will install the required packages from APT repository
# and Pypi repository. Those packages are all required for Re2o to work
# properly.
###
echo "Setting up the required packages ..."
cat $APT_RADIUS_REQ_FILE | xargs apt-get -y install
python -m pip install -r $PIP_REQ_FILE
echo "Setting up the required packages: Done"
}
2019-09-01 14:57:25 +00:00
configure_radius( ) {
### Usage: configure_radius
#
# This function configures freeradius.
###
echo "Configuring Freeradius ..."
cat $FREERADIUS_CLIENTS >> /etc/freeradius/3.0/clients.conf
ln -fs $( pwd ) /$FREERADIUS_AUTH /etc/freeradius/3.0/auth.py
ln -fs $( pwd ) /$FREERADIUS_RADIUSD /etc/freeradius/3.0/radiusd.conf
ln -fs $( pwd ) /$FREERADIUS_MOD_PYTHON /etc/freeradius/3.0/mods-enabled/python
ln -fs $( pwd ) /$FREERADIUS_MOD_EAP /etc/freeradius/3.0/mods-enabled/eap
ln -fs $( pwd ) /$FREERADIUS_SITE_DEFAULT /etc/freeradius/3.0/sites-enabled/default
ln -fs $( pwd ) /$FREERADIUS_SITE_INNER_TUNNEL /etc/freeradius/3.0/sites-enabled/inner-tunnel
_ask_value "Edit clients.conf ?" "yes"
$EDITOR /etc/freeradius/3.0/clients.conf
echo "Configuring Freeradius: Done"
}
2019-09-01 14:04:53 +00:00
2018-05-16 19:44:11 +00:00
install_database( ) {
### Usage: install_database <engine_type> <local_setup> <db_name> <username> <password>
#
# This function will install the database by downloading the correct APT packages
# and initiating the database schema.
#
# Parameters:
# * engine_type: The DB engine to use.
# 1 = mysql
# 2 = postgresql
# * local_setup: Should the database be installed locally
# 1 = yes
# 2 = no
# * db_name: The name of the database itself
# * username: The username to access the database
# * password: The password of the user to access the database
###
echo "Setting up the database ..."
2018-05-17 20:45:41 +00:00
engine_type = " $1 "
local_setup = " $2 "
db_name = " $3 "
username = " $4 "
password = " $5 "
2018-05-16 19:44:11 +00:00
2018-05-17 20:45:41 +00:00
if [ " $engine_type " = = 1 ] ; then
2018-05-16 19:44:11 +00:00
echo "Installing MySQL client ..."
apt-get -y install python3-mysqldb mysql-client
echo "Installing MySQL client: Done"
mysql_command = " CREATE DATABASE $db_name collate='utf8_general_ci';
CREATE USER '$username' @'localhost' IDENTIFIED BY '$password' ;
GRANT ALL PRIVILEGES ON $db_name .* TO '$username' @'localhost' ;
FLUSH PRIVILEGES; "
2018-05-17 20:45:41 +00:00
if [ " $local_setup " = = 1 ] ; then
2018-05-16 19:44:11 +00:00
echo "Setting up local MySQL server ..."
apt-get -y install mysql-server
mysql -u root --execute= " $mysql_command "
echo "Setting up local MySQL server: Done"
else
echo "Please execute the following command on the remote SQL server and then continue"
echo " $mysql_command "
2018-05-20 12:01:52 +00:00
_ask_value "Continue" "yes" "no" ; if [ " $VALUE " = = "no" ] ; then exit; fi
2018-05-16 19:44:11 +00:00
fi
else
echo "Installing PostgreSQL client ..."
apt-get -y install postgresql-client python3-psycopg2
echo "Installing PostgreSQL client: Done"
pgsql_command1 = " CREATE DATABASE $db_name ENCODING 'UTF8' LC_COLLATE='fr_FR.UTF-8' LC_CTYPE='fr_FR.UTF-8'; "
pgsql_command2 = " CREATE USER $username with password ' $password '; "
pgsql_command3 = " ALTER DATABASE $db_name owner to $username ; "
2018-05-17 20:45:41 +00:00
if [ " $local_setup " = = 1 ] ; then
2018-05-16 19:44:11 +00:00
echo "Setting up local PostgreSQL server ..."
apt-get -y install postgresql
sudo -u postgres psql --command= " $pgsql_command1 "
sudo -u postgres psql --command= " $pgsql_command2 "
sudo -u postgres psql --command= " $pgsql_command3 "
echo "Setting up local PostgreSQL server: Done"
else
echo "Please execute the following commands on the remote SQL server and then continue"
echo " sudo -u postgres psql $pgsql_command1 "
echo " sudo -u postgres psql $pgsql_command2 "
echo " sudo -u postgres psql $pgsql_command3 "
2018-05-20 12:01:52 +00:00
_ask_value "Continue" "yes" "no" ; if [ " $VALUE " = = "no" ] ; then exit; fi
2018-05-16 19:44:11 +00:00
fi
fi
echo "Setting up the database: Done"
}
2018-05-17 20:45:41 +00:00
install_ldap( ) {
### Usage: install_ldap <local_setup> <password> <domain>
2018-05-16 19:44:11 +00:00
#
2018-05-17 20:45:41 +00:00
# This function will install the LDAP
2018-05-16 19:44:11 +00:00
#
# Parameters:
2018-05-17 20:45:41 +00:00
# * local_setup: Should the LDAP be installed locally ?
2018-05-16 19:44:11 +00:00
# 1 = yes
# 2 = no
# * password: the clear password for the admin user of the LDAP
# * domain: the domain extension to use for the LDAP structure in LDAP notation
###
2018-05-17 20:45:41 +00:00
echo "Setting up the LDAP ..."
2018-05-16 19:44:11 +00:00
2018-05-17 20:45:41 +00:00
local_setup = " $1 "
password = " $2 "
domain = " $3 "
2018-05-16 19:44:11 +00:00
2018-05-17 20:45:41 +00:00
if [ " $local_setup " = = 1 ] ; then
2018-05-16 19:44:11 +00:00
2018-05-16 23:11:36 +00:00
echo "Installing slapd package ..."
apt-get -y install slapd
echo "Installing slapd package: Done"
echo "Hashing the LDAP password ..."
2018-05-17 21:27:21 +00:00
hashed_ldap_passwd = " $( slappasswd -s $password ) "
2018-05-16 23:11:36 +00:00
echo " Hash of the password: $hashed_ldap_passwd "
echo "Building the LDAP config files ..."
2018-05-21 14:48:58 +00:00
sed 's|dc=example,dc=net|' " $domain " '|g' $LDIF_DB_FILE | sed 's|FILL_IT|' " $hashed_ldap_passwd " '|g' > /tmp/db
sed 's|dc=example,dc=net|' " $domain " '|g' $LDIF_SCHEMA_FILE | sed 's|FILL_IT|' " $hashed_ldap_passwd " '|g' > /tmp/schema
2018-05-16 23:11:36 +00:00
echo "Building the LDAP config files: Done"
echo "Stopping slapd service ..."
service slapd stop
echo "Stopping slapd service: Done"
echo "Deleting exisitng LDAP configuration ..."
rm -rf /etc/ldap/slapd.d/*
rm -rf /var/lib/ldap/*
echo "Deleting existing LDAP configuration: Done"
echo "Setting up the new LDAP configuration ..."
slapadd -n 0 -l /tmp/schema -F /etc/ldap/slapd.d/
slapadd -n 1 -l /tmp/db
echo "Setting up the new LDAP configuration: Done"
echo "Fixing the LDAP files permissions ..."
chown -R openldap:openldap /etc/ldap/slapd.d
chown -R openldap:openldap /var/lib/ldap
echo "Fixing the LDAP files permissions: Done"
echo "Starting slapd service ..."
service slapd start
echo "Starting slapd service: Done"
2018-05-16 19:44:11 +00:00
else
echo "Please execute the following command on the remote LDAP server and then continue"
2018-05-16 23:11:36 +00:00
echo " ./install_re2o.sh setup-ldap $password $domain "
2018-05-20 12:01:52 +00:00
_ask_value "Continue" "yes" "no" ; if [ " $VALUE " = = "no" ] ; then exit; fi
2018-05-16 19:44:11 +00:00
fi
2018-05-17 20:45:41 +00:00
echo "Setting up the LDAP: Done"
2018-05-16 19:44:11 +00:00
}
write_settings_file( ) {
### Usage: write_settings_file <db_engine_type> <sql_hostname> <sql_db_name> <sql_username> <sql_password>
# <ldap_cn> <ldap_tls> <ldap_password> <ldap_hostname> <ldap_domain>
# <email_hostname> <email_port> <extension> <url>
#
# This function will write a clean local settings file based on the example.
#
# Parameters:
# * db_engine_type: The engine for the database
# 1 = MySQL
# 2 = PostgreSQL
# * sql_hostname: The hostname for contacting the database
# * sql_db_name: The name of the database itself
# * sql_username: The user to use to access the database
# * sql_password: The password to use to access the database
2018-05-17 20:45:41 +00:00
# * ldap_cn: The CN entry for the LDAP admin in LDAP notation
# * ldap_tls: Should the TLS be activated to contact the LDAP
2018-05-16 19:44:11 +00:00
# 1 = yes
# 2 = no
2018-05-17 20:45:41 +00:00
# * ldap_password: The password to use to connect to the LDAP
# * ldap_hostname: The hostname for contacting the LDAP
# * ldap_domain: The local domain for the LDAP in LDAP notation
2018-05-16 19:44:11 +00:00
# * email_hostname: The hostname for contacting the mail server
# * email_port: The port for contacting the mail server
# * extension: The extension to use
# * url: The main URL to use for Re2o
###
echo "Writing of the settings_local.py file ..."
2018-05-17 20:45:41 +00:00
db_engine_type = " $1 "
sql_hostname = " $2 "
sql_db_name = " $3 "
sql_username = " $4 "
sql_password = " $5 "
ldap_cn = " $6 "
ldap_tls = " $7 "
ldap_password = " $8 "
ldap_hostname = " $9 "
ldap_domain = " ${ 10 } "
email_hostname = " ${ 11 } "
email_port = " ${ 12 } "
extension = " ${ 13 } "
url = " ${ 14 } "
cp " $SETTINGS_EXAMPLE_FILE " " $SETTINGS_LOCAL_FILE "
django_secret_key = " $( python -c "import random; print(''.join([random.SystemRandom().choice('abcdefghijklmnopqrstuvwxyz0123456789%=+') for i in range(50)]))" ) "
aes_key = " $( python -c "import random; print(''.join([random.SystemRandom().choice('abcdefghijklmnopqrstuvwxyz0123456789%=+') for i in range(32)]))" ) "
2019-01-03 18:52:06 +00:00
2018-05-17 20:45:41 +00:00
if [ " $db_engine_type " = = 1 ] ; then
sed -i 's/db_engine/django.db.backends.mysql/g' " $SETTINGS_LOCAL_FILE "
2018-05-16 19:44:11 +00:00
else
2018-05-17 20:45:41 +00:00
sed -i 's/db_engine/django.db.backends.postgresql_psycopg2/g' " $SETTINGS_LOCAL_FILE "
2018-05-16 19:44:11 +00:00
fi
2018-05-17 20:45:41 +00:00
sed -i 's/SUPER_SECRET_KEY/' " $django_secret_key " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/SUPER_SECRET_DB/' " $sql_password " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/A_SECRET_AES_KEY/' " $aes_key " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/db_name_value/' " $sql_db_name " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/db_user_value/' " $sql_username " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/db_host_value/' " $sql_hostname " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/ldap_dn/' " $ldap_cn " '/g' " $SETTINGS_LOCAL_FILE "
2018-05-16 19:44:11 +00:00
if [ $ldap_tls = = 2 ] ; then
2018-05-17 20:45:41 +00:00
sed -i "s/'TLS': True,/# 'TLS': True,/g" " $SETTINGS_LOCAL_FILE "
2018-05-16 19:44:11 +00:00
fi
2018-05-17 20:45:41 +00:00
sed -i 's/SUPER_SECRET_LDAP/' " $ldap_password " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/ldap_host_ip/' " $ldap_hostname " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/dc=example,dc=net/' " $ldap_domain " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/example.net/' " $extension " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/MY_EMAIL_HOST/' " $email_hostname " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/MY_EMAIL_PORT/' " $email_port " '/g' " $SETTINGS_LOCAL_FILE "
sed -i 's/URL_SERVER/' " $url " '/g' " $SETTINGS_LOCAL_FILE "
2018-05-16 19:44:11 +00:00
echo "Writing of the settings_local.py file: Done"
}
2018-05-16 23:11:36 +00:00
update_django( ) {
### Usage: update_django
#
# This function will update the Django project by applying the migrations
# and collecting the statics
###
echo "Applying Django migrations ..."
python3 manage.py migrate
echo "Applying Django migrations: Done"
echo "Collecting web frontend statics ..."
python3 manage.py collectstatic --noinput
echo "Collecting web frontend statics: Done"
2018-12-10 12:14:56 +00:00
echo "Generating locales ..."
python3 manage.py compilemessages
echo "Generating locales: Done"
2018-05-16 23:11:36 +00:00
}
2019-01-03 18:52:06 +00:00
copy_templates_files( ) {
### Usage: copy_templates_files
#
# This will copy LaTeX templates in the media root.
echo "Copying LaTeX templates ..."
mkdir -p media/templates/
2019-01-10 23:39:16 +00:00
cp cotisations/templates/cotisations/factures.tex media/templates/default_invoice.tex
cp cotisations/templates/cotisations/voucher.tex media/templates/default_voucher.tex
2019-01-20 18:32:29 +00:00
chown -R www-data:www-data media/templates/
2019-01-03 18:52:06 +00:00
echo "Copying LaTeX templates: Done"
}
2018-05-16 23:11:36 +00:00
create_superuser( ) {
### Usage: create_superuser
#
# This will create a user with the superuser rights for the project.
echo "Creating a superuser ..."
python3 manage.py createsuperuser
echo "Creating a superuser: Done"
}
2018-05-16 19:44:11 +00:00
install_webserver( ) {
### Usage: install_webserver <engine_type> <tls> <url>
#
# This function will install the web server by installing the correct APT packages
# and configure it
#
# Parameters:
# * engine_type: The engine to use as a web server
# 1 = Apache2
# 2 = NginX
# * tls: Should the TLS (with LE) be generated and activated
# 1 = yes
# 2 = no
# * url: The url to access Re2o. This parameter is only used if TLS is activated
# for generating the certifcate with the right domain name
###
echo "Setting up web server ..."
2018-05-17 20:45:41 +00:00
engine_type = " $1 "
tls = " $2 "
url = " $3 "
2018-05-16 19:44:11 +00:00
2018-05-17 20:45:41 +00:00
if [ " $engine_type " = = 1 ] ; then
2018-05-16 19:44:11 +00:00
echo "Setting up Apache2 web server ..."
apt-get -y install apache2 libapache2-mod-wsgi-py3
a2enmod ssl
a2enmod wsgi
a2enconf javascript-common
2018-05-17 20:45:41 +00:00
if [ " $tls " = = 1 ] ; then
2018-05-16 19:44:11 +00:00
echo "Setting up TLS with LE for Apache2 web server ..."
cp install_utils/apache2/re2o-tls.conf /etc/apache2/sites-available/re2o.conf
apt-get -y install certbot
apt-get -y install python-certbot-apache
2018-05-17 20:45:41 +00:00
certbot certonly --rsa-key-size 4096 --apache -d " $url "
2018-05-16 19:44:11 +00:00
sed -i 's/LE_PATH/' " $url " '/g' /etc/apache2/sites-available/re2o.conf
echo "Setting up TLS with LE for Apache2 web server: Done"
else
cp install_utils/apache2/re2o.conf /etc/apache2/sites-available/re2o.conf
fi
rm /etc/apache2/sites-enabled/000-default.conf
sed -i 's|URL_SERVER|' " $url " '|g' /etc/apache2/sites-available/re2o.conf
2018-05-17 20:45:41 +00:00
sed -i 's|PATH|' " $( pwd ) " '|g' /etc/apache2/sites-available/re2o.conf
2018-05-16 19:44:11 +00:00
a2ensite re2o
echo "Setting up Apache2 web server: Done"
echo "Reloading Apache2 service ..."
service apache2 reload
echo "Reloading Apache2 service: Done"
else
echo "Nginx automatic setup is not supported. Please configure it manually."
2018-05-20 12:01:52 +00:00
echo "Please confirm you have acknowledged this message."
_ask_value "Acknowledged" "yes"
2018-05-16 19:44:11 +00:00
fi
echo "Setting up web server: Done"
}
interactive_guide( ) {
### Usage: interactive_guide
2018-05-15 23:28:45 +00:00
#
# This function will guide through the automated setup of Re2o by asking
# the user for some informations and some installation choices. It will
# then proceed to setup and configuration of the required tools according
# to the user choices.
###
echo "Re2o setup !"
echo "This tool will help you setup re2o. It is highly recommended to use a Debian clean server for this operation."
echo "Installing basic packages required for this script to work ..."
apt-get -y install sudo dialog
echo "Installing basic packages required for this script to work: Done"
# Common setup for the dialog prompts
export DEBIAN_FRONTEND = noninteractive
2018-05-15 23:39:02 +00:00
HEIGHT = 20
WIDTH = 60
2018-05-15 23:28:45 +00:00
CHOICE_HEIGHT = 4
#############
## Welcome ##
#############
BACKTITLE = "Re2o setup"
# Welcome prompt
TITLE = "Welcome"
MSGBOX = "This tool will help you setup re2o. It is highly recommended to use a Debian clean server for this operation."
2018-05-17 20:45:41 +00:00
init = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --msgbox " $MSGBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
######################
## Database options ##
######################
BACKTITLE = "Re2o setup - configuration of the database"
# Prompt for choosing the database engine
TITLE = "Database engine"
MENU = "Which engine should be used as the database ?"
OPTIONS = ( 1 "mysql"
2 "postgresql" )
2018-05-17 20:45:41 +00:00
sql_bdd_type = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --menu " $MENU " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH $CHOICE_HEIGHT " ${ OPTIONS [@] } " 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
# Prompt for choosing the database location
TITLE = "SQL location"
MENU = " Where to install the SQL database ?
* 'Local' will setup everything automatically but is not recommended for production
2018-05-15 23:39:02 +00:00
* 'Remote' will ask you to manually perform some setup commands on the remote server"
2018-05-15 23:28:45 +00:00
OPTIONS = ( 1 "Local"
2 "Remote" )
2018-05-17 20:45:41 +00:00
sql_is_local = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --menu " $MENU " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH $CHOICE_HEIGHT " ${ OPTIONS [@] } " 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
if [ $sql_is_local = = 2 ] ; then
# Prompt to enter the remote database hostname
TITLE = "SQL hostname"
INPUTBOX = "The hostname of the remote SQL database"
2018-05-17 20:45:41 +00:00
sql_host = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to enter the remote database name
TITLE = "SQL database name"
INPUTBOX = "The name of the remote SQL database"
2018-05-17 20:45:41 +00:00
sql_name = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
# Prompt to enter the remote database username
TITLE = "SQL username"
INPUTBOX = "The username to access the remote SQL database"
2018-05-17 20:45:41 +00:00
sql_login = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
clear
else
# Use of default values for local setup
sql_name = "re2o"
sql_login = "re2o"
sql_host = "localhost"
fi
2018-05-15 20:09:08 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to enter the database password
TITLE = "SQL password"
INPUTBOX = "The password to access the SQL database"
2018-05-17 20:45:41 +00:00
sql_password = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
2018-05-17 20:45:41 +00:00
##################
## LDAP options ##
##################
2018-05-15 23:28:45 +00:00
2018-05-17 20:45:41 +00:00
BACKTITLE = "Re2o setup - configuration of the LDAP"
2018-05-15 23:28:45 +00:00
# Prompt to choose the LDAP location
TITLE = "LDAP location"
MENU = " Where would you like to install the LDAP ?
* 'Local' will setup everything automatically but is not recommended for production
2018-05-15 23:39:02 +00:00
* 'Remote' will ask you to manually perform some setup commands on the remote server"
2018-05-15 23:28:45 +00:00
OPTIONS = ( 1 "Local"
2 "Remote" )
2018-05-17 20:45:41 +00:00
ldap_is_local = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --menu " $MENU " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH $CHOICE_HEIGHT " ${ OPTIONS [@] } " 2>& 1 >/dev/tty) "
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to enter the LDAP domain extension
TITLE = "Domain extension"
INPUTBOX = "The local domain extension to use (e.g. 'example.net'). This is used in the LDAP configuration."
2018-05-17 20:45:41 +00:00
extension_locale = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Building the DN of the LDAP from the extension
IFS = '.' read -a extension_locale_array <<< $extension_locale
for i in " ${ extension_locale_array [@] } "
do
ldap_dn += " dc= $i , "
done
2018-05-17 20:45:41 +00:00
ldap_dn = " ${ ldap_dn : :- 1 } "
2018-05-15 23:28:45 +00:00
2018-05-17 20:45:41 +00:00
if [ " $ldap_is_local " = = 2 ] ; then
2018-05-15 23:28:45 +00:00
# Prompt to enter the remote LDAP hostname
TITLE = "LDAP hostname"
INPUTBOX = "The hostname of the remote LDAP"
2018-05-17 20:45:41 +00:00
ldap_host = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to choose if TLS should be activated or not for the LDAP
TITLE = "TLS on LDAP"
MENU = "Would you like to activate TLS for communicating with the remote LDAP ?"
OPTIONS = ( 1 "Yes"
2 "No" )
2018-05-17 20:45:41 +00:00
ldap_tls = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --MENU " $MENU " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH $CHOICE_HEIGHT " ${ OPTIONS [@] } " 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
# Prompt to enter the admin's CN of the remote LDAP
TITLE = "CN of amdin user"
INPUTBOX = "The CN entry for the admin user of the remote LDAP"
2018-05-17 20:45:41 +00:00
ldap_cn = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
else
ldap_cn = "cn=admin,"
2018-05-17 20:45:41 +00:00
ldap_cn += " $ldap_dn "
2018-05-15 23:28:45 +00:00
ldap_host = "localhost"
ldap_tls = 2
fi
2018-05-15 20:09:08 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to enter the LDAP password
TITLE = "LDAP password"
INPUTBOX = "The password to access the LDAP"
2018-05-17 20:45:41 +00:00
ldap_password = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
#########################
## Mail server options ##
#########################
BACKTITLE = "Re2o setup - configuration of the mail server"
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to enter the hostname of the mail server
TITLE = "Mail server hostname"
INPUTBOX = "The hostname of the mail server to use"
2018-05-17 20:45:41 +00:00
email_host = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $TITLE " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
2019-01-03 18:52:06 +00:00
# Prompt to choose the port of the mail server
2018-05-15 23:28:45 +00:00
TITLE = "Mail server port"
MENU = "Which port (thus which protocol) to use to contact the mail server"
OPTIONS = ( 25 "SMTP"
465 "SMTPS"
587 "Submission" )
2018-05-17 20:45:41 +00:00
email_port = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --menu " $MENU " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH $CHOICE_HEIGHT " ${ OPTIONS [@] } " 2>& 1 >/dev/tty) "
2018-05-15 23:28:45 +00:00
########################
## Web server options ##
########################
BACKTITLE = "Re2o setup - configuration of the web server"
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to choose the web server
TITLE = "Web server to use"
MENU = "Which web server to install for accessing Re2o web frontend (automatic setup of nginx is not supported) ?"
OPTIONS = ( 1 "apache2"
2 "nginx" )
2018-05-17 20:45:41 +00:00
web_serveur = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --menu " $MENU " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH $CHOICE_HEIGHT " ${ OPTIONS [@] } " 2>& 1 >/dev/tty) "
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to enter the requested URL for the web frontend
TITLE = "Web URL"
INPUTBOX = "URL for accessing the web server (e.g. re2o.example.net). Be sure that this URL is accessible and correspond to a DNS entry (if applicable)."
2018-05-17 20:45:41 +00:00
url_server = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --inputbox " $INPUTBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2019-01-03 18:52:06 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to choose if the TLS should be setup or not for the web server
TITLE = "TLS on web server"
MENU = "Would you like to activate the TLS (with Let'Encrypt) on the web server ?"
OPTIONS = ( 1 "Yes"
2 "No" )
2018-05-17 20:45:41 +00:00
is_tls = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --menu " $MENU " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH $CHOICE_HEIGHT " ${ OPTIONS [@] } " 2>& 1 >/dev/tty) "
2018-05-15 20:09:08 +00:00
2017-08-31 17:40:24 +00:00
2018-05-15 23:28:45 +00:00
###############################
## End of configuration step ##
###############################
2017-08-31 17:40:24 +00:00
2018-05-15 23:28:45 +00:00
BACKTITLE = "Re2o setup"
2017-08-31 17:40:24 +00:00
2018-05-15 23:28:45 +00:00
# Prompt to inform the config setup is over
TITLE = "End of configuration step"
MSGBOX = " The configuration step is now finished. The script will now perform the following actions:
* Install the required packages
* Install and setup the requested database if 'local' has been selected
* Install and setup the ldap if 'local' has been selected
* Write a local version of 'settings_local.py' file with the previously given informations
* Apply the Django migrations for the project
* Collect the statics for the web interface
* Install and setup the requested web server
* Install and setup a TLS certificate for the web server if requested"
2018-05-17 20:45:41 +00:00
end_config = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-15 23:28:45 +00:00
--title " $TITLE " --msgbox " $MSGBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2017-08-31 17:40:24 +00:00
2018-05-15 21:27:06 +00:00
clear
2018-05-15 20:09:08 +00:00
2018-05-15 21:27:06 +00:00
2017-09-08 19:19:32 +00:00
2018-05-16 19:44:11 +00:00
################################
## Perform the actual actions ##
################################
2018-05-15 23:28:45 +00:00
2018-05-16 19:44:11 +00:00
install_requirements
2018-05-15 23:28:45 +00:00
2018-05-17 20:45:41 +00:00
install_database " $sql_bdd_type " " $sql_is_local " " $sql_name " " $sql_login " " $sql_password "
2018-05-15 20:09:08 +00:00
2018-05-17 20:45:41 +00:00
install_ldap " $ldap_is_local " " $ldap_password " " $ldap_dn "
2018-05-15 20:09:08 +00:00
2018-05-17 20:45:41 +00:00
write_settings_file " $sql_bdd_type " " $sql_host " " $sql_name " " $sql_login " " $sql_password " \
" $ldap_cn " " $ldap_tls " " $ldap_password " " $ldap_host " " $ldap_dn " \
" $email_host " " $email_port " " $extension_locale " " $url_server "
2018-05-15 20:09:08 +00:00
2018-05-16 23:11:36 +00:00
update_django
create_superuser
2019-01-03 18:52:06 +00:00
2018-05-17 20:45:41 +00:00
install_webserver " $web_serveur " " $is_tls " " $url_server "
2018-05-16 00:17:10 +00:00
2018-05-15 23:28:45 +00:00
###########################
## End of the setup step ##
###########################
BACKTITLE = "Re2o setup"
# Prompt to inform the installation process is over
TITLE = "End of the setup"
2018-05-20 12:01:52 +00:00
MSGBOX = " You can now visit $url_server and connect with the credentials you just entered. This user has the superuser rights, meaning he can access and do everything. "
2018-05-17 20:45:41 +00:00
end = " $( dialog --clear --backtitle " $BACKTITLE " \
2018-05-17 21:38:46 +00:00
--title " $TITLE " --msgbox " $MSGBOX " \
2018-05-17 20:45:41 +00:00
$HEIGHT $WIDTH 2>& 1 >/dev/tty) "
2017-08-31 19:49:18 +00:00
}
2018-05-12 19:21:00 +00:00
2018-05-16 23:11:36 +00:00
interactive_update_settings( ) {
### Usage: interactvie_update_settings
#
# This function will take the parameters in the example settings file, retrieve the
# existing parameters from the local settings file and ask the user for the missing parameters
###
2018-05-17 20:45:41 +00:00
_ask_value "Database engine" "mysql" "postgresql" ; if [ " $VALUE " = = "mysql" ] ; then db_engine_type = 1; else db_engine_type = 2; fi
_ask_value "Database hostname" ; sql_hostname = " $VALUE "
_ask_value "Database name" ; sql_db_name = " $VALUE "
_ask_value "Database username" ; sql_username = " $VALUE "
_ask_value "Database password" ; sql_password = " $VALUE "
_ask_value "LDAP hostname" ; ldap_hostname = " $VALUE "
_ask_value "Activate TLS on LDAP" "yes" "no" ; if [ " $VALUE " = = "mysql" ] ; then ldap_tls = 1; else ldap_tls = 2; fi
_ask_value "LDAP domain (e.g. 'dc=example,dc=net')" ; ldap_domain = " $VALUE "
_ask_value "LDAP admin CN entry (e.g. 'cn=admin,dc=example,dc=net')" ; ldap_cn = " $VALUE "
_ask_value "LDAP password" ; ldap_password = " $VALUE "
_ask_value "Mail server hostname" ; email_hostname = " $VALUE "
_ask_value "Mail server port" "25" "465" "587" ; email_port = " $VALUE "
_ask_value "Extension de domain (e.g. 'example.net')" ; extension = " $VALUE "
_ask_value "Main URL" ; url = " $VALUE "
write_settings_file " $db_engine_type " " $sql_hostname " " $sql_db_name " " $sql_username " " $sql_password " \
" $ldap_cn " " $ldap_tls " " $ldap_password " " $ldap_hostname " " $ldap_domain " \
" $email_hostname " " $email_port " " $extension " " $url "
2018-05-16 23:11:36 +00:00
}
2017-08-31 19:49:18 +00:00
main_function( ) {
2018-05-17 22:51:29 +00:00
### Usage: main_function [subcommand [options]]
2018-05-15 23:28:45 +00:00
#
# This function will parse the arguments to determine which part of the tool to start.
2018-05-17 22:51:29 +00:00
# Refer to the help message below for the details of the parameters
2018-05-15 23:28:45 +00:00
###
2018-05-17 22:51:29 +00:00
if [ -z " $1 " ] || [ " $1 " = = "help" ] ; then
echo ""
echo "Usage: install_re2o [subcommand [options]]"
echo ""
echo "The 'install_re2o' script is a utility script to setup, configure, reset and update"
echo "some components of re2o. Please refer to the following details for more."
echo ""
echo "Sub-commands:"
echo " * [no subcommand] - Display this quick usage documentation"
echo " * {help} ---------- Display this quick usage documentation"
echo " * {setup} --------- Launch the full interactive guide to setup entirely"
echo " re2o from scratch"
2019-01-03 18:52:06 +00:00
echo " * {update} -------- Collect frontend statics, install the missing APT and copy LaTeX templates files"
2018-05-20 00:17:23 +00:00
echo " and pip packages and apply the migrations to the DB"
echo " * {update-django} - Apply Django migration and collect frontend statics"
2019-01-03 18:52:06 +00:00
echo " * {copy-template-files} - Copy LaTeX templates files to media/templates"
2018-05-17 22:51:29 +00:00
echo " * {update-packages} Install the missing APT and pip packages"
echo " * {update-settings} Interactively rewrite the settings file"
echo " * {reset-db} ------ Erase the previous local database, setup a new empty"
2018-05-17 22:58:25 +00:00
echo " one and apply the Django migrations on it and collect"
echo " Django statics."
2018-05-17 22:51:29 +00:00
echo " Parameters:"
echo " * <db_password> -- the clear-text password to connect to the database"
echo " * [db_engine_type] the SQL engine to use ('mysql' or 'postgresql')."
echo " Default is 'mysql'."
echo " * [db_name] ------ the name of the database itself."
echo " Default is 're2o'."
echo " * [db_username] -- the username to connect to the database."
echo " Default is 're2o'."
echo " * {reset-ldap} ---- Erase the previous local LDAP and setup a new empty one"
echo " Parameters:"
echo " * <ldap_password> the clear-text password for the admin user of the"
echo " LDAP"
echo " * <local_domain> the domain extension to use for the LDAP structure"
echo " in LDAP notation"
echo ""
else
2018-05-17 20:45:41 +00:00
subcmd = " $1 "
2018-05-16 23:11:36 +00:00
case " $subcmd " in
2018-05-17 22:51:29 +00:00
setup )
interactive_guide
; ;
2018-05-16 23:11:36 +00:00
update )
install_requirements
2019-01-03 18:52:06 +00:00
copy_templates_files
2019-01-20 17:53:25 +00:00
update_django
2019-01-03 18:52:06 +00:00
; ;
2019-09-01 14:04:53 +00:00
radius )
install_radius_requirements
2019-09-01 14:57:25 +00:00
configure_radius
2019-09-01 14:04:53 +00:00
; ;
2019-01-03 18:52:06 +00:00
copy-templates-files )
copy_templates_files
2018-05-17 20:45:41 +00:00
; ;
2018-05-16 23:11:36 +00:00
update-django )
update_django
2018-05-17 20:45:41 +00:00
; ;
2018-05-16 23:11:36 +00:00
update-packages )
install_requirements
2018-05-17 20:45:41 +00:00
; ;
2018-05-16 23:11:36 +00:00
update-settings )
interactive_update_settings
2018-05-17 20:45:41 +00:00
; ;
2018-05-16 23:11:36 +00:00
reset-db )
2018-05-15 23:28:45 +00:00
if [ ! -z " $2 " ] ; then
2018-05-17 20:45:41 +00:00
db_password = " $2 "
2019-01-03 18:52:06 +00:00
case " $3 " in
2018-05-17 20:45:41 +00:00
mysql )
db_engine_type = 1; ;
2018-05-16 23:11:36 +00:00
postresql )
2018-05-17 20:45:41 +00:00
db_engine_type = 2; ;
2018-05-16 23:11:36 +00:00
* )
2018-05-17 20:45:41 +00:00
db_engine_type = 1; ;
2018-05-16 23:11:36 +00:00
esac
2018-05-17 20:45:41 +00:00
if [ ! -z " $4 " ] ; then
db_name = " $4 "
else
db_name = "re2o"
fi
if [ ! -z " $5 " ] ; then
db_username = " $5 "
else
db_username = "re2o"
fi
install_database " $db_engine_type " 1 " $db_name " " $db_username " " $db_password "
2018-05-17 22:58:25 +00:00
update-django
2018-05-15 20:09:08 +00:00
else
2018-05-16 23:11:36 +00:00
echo "Invalid arguments !"
2018-05-17 22:51:29 +00:00
echo "Usage: install_re2o setup-db <db_password> [<db_engine_type>] [<db_name>] [<db_username>]"
echo "See 'install_re2o help' for further help"
2018-05-15 20:09:08 +00:00
fi
2018-05-17 20:45:41 +00:00
; ;
2018-05-16 23:11:36 +00:00
reset-ldap )
if [ ! -z " $2 " ] && [ ! -z " $3 " ] ; then
2018-05-17 20:45:41 +00:00
ldap_password = " $2 "
local_domain = " $3 "
install_ldap 1 " $ldap_password " " $local_domain "
2018-05-16 23:11:36 +00:00
else
echo "Invalid arguments !"
2018-05-17 22:51:29 +00:00
echo "Usage: install_re2o setup-ldap <ldap_password> <local_domain>"
echo "See 'install_re2o help' for further help"
2018-05-16 23:11:36 +00:00
fi
2018-05-17 20:45:41 +00:00
; ;
2018-05-16 23:11:36 +00:00
* )
2018-05-17 22:51:29 +00:00
echo " Unknown subcommand: $subcmd "
echo "Use 'install_re2o help' to display some help"
2018-05-17 20:45:41 +00:00
; ;
2018-05-16 23:11:36 +00:00
esac
2018-05-15 20:09:08 +00:00
fi
2017-08-31 19:49:18 +00:00
}
2018-05-16 23:11:36 +00:00
main_function " $@ "