mirror of
https://gitlab2.federez.net/re2o/re2o
synced 2025-01-23 00:24:30 +00:00
Creation de fonctions pour l'install distante
This commit is contained in:
parent
58c4fcdcbf
commit
1e432e7f1a
2 changed files with 114 additions and 24 deletions
105
install_re2o.sh
105
install_re2o.sh
|
@ -1,4 +1,33 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
|
|
||||||
|
setup_ldap() {
|
||||||
|
apt-get -y install slapd
|
||||||
|
|
||||||
|
echo "Hashage du mot de passe ldap..."
|
||||||
|
hashed_ldap_passwd=$(slappasswd -s $1)
|
||||||
|
|
||||||
|
echo $hashed_ldap_passwd
|
||||||
|
echo "Formatage des fichiers de config ldap"
|
||||||
|
sed 's|dc=example,dc=org|'"$2"'|g' install_utils/db.ldiff | sed 's|FILL_IT|'"$hashed_ldap_passwd"'|g' > /tmp/db
|
||||||
|
sed 's|dc=example,dc=org|'"$2"'|g' install_utils/schema.ldiff | sed 's|FILL_IT|'"$hashed_ldap_passwd"'|g' > /tmp/schema
|
||||||
|
|
||||||
|
echo "Destruction config ldap existante"
|
||||||
|
service slapd stop
|
||||||
|
rm -rf /etc/ldap/slapd.d/*
|
||||||
|
rm -rf /var/lib/ldap/*
|
||||||
|
|
||||||
|
echo "Ecriture de la configuration actuelle"
|
||||||
|
slapadd -n 0 -l /tmp/schema -F /etc/ldap/slapd.d/
|
||||||
|
slapadd -n 1 -l /tmp/db
|
||||||
|
|
||||||
|
echo "Reparation des permissions et redémarage de slapd"
|
||||||
|
chown -R openldap:openldap /etc/ldap/slapd.d
|
||||||
|
chown -R openldap:openldap /var/lib/ldap
|
||||||
|
service slapd start
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
install_re2o_server() {
|
||||||
echo "Installation de Re2o !
|
echo "Installation de Re2o !
|
||||||
Cet utilitaire va procéder à l'installation initiale de re2o. Le serveur présent doit être vierge.
|
Cet utilitaire va procéder à l'installation initiale de re2o. Le serveur présent doit être vierge.
|
||||||
Preconfiguration..."
|
Preconfiguration..."
|
||||||
|
@ -177,33 +206,12 @@ fi
|
||||||
|
|
||||||
if [ $ldap_is_local == 1 ]
|
if [ $ldap_is_local == 1 ]
|
||||||
then
|
then
|
||||||
apt-get -y install slapd
|
|
||||||
|
|
||||||
echo "Hashage du mot de passe ldap..."
|
setup_ldap $ldap_password $ldap_dn
|
||||||
hashed_ldap_passwd=$(slappasswd -s $ldap_password)
|
|
||||||
|
|
||||||
echo $hashed_ldap_passwd
|
|
||||||
echo "Formatage des fichiers de config ldap"
|
|
||||||
sed 's|dc=example,dc=org|'"$ldap_dn"'|g' install_utils/db.ldiff | sed 's|FILL_IT|'"$hashed_ldap_passwd"'|g' > /tmp/db
|
|
||||||
sed 's|dc=example,dc=org|'"$ldap_dn"'|g' install_utils/schema.ldiff | sed 's|FILL_IT|'"$hashed_ldap_passwd"'|g' > /tmp/schema
|
|
||||||
|
|
||||||
echo "Destruction config ldap existante"
|
|
||||||
service slapd stop
|
|
||||||
rm -rf /etc/ldap/slapd.d/*
|
|
||||||
rm -rf /var/lib/ldap/*
|
|
||||||
|
|
||||||
echo "Ecriture de la configuration actuelle"
|
|
||||||
slapadd -n 0 -l /tmp/schema -F /etc/ldap/slapd.d/
|
|
||||||
slapadd -n 1 -l /tmp/db
|
|
||||||
|
|
||||||
echo "Reparation des permissions et redémarage de slapd"
|
|
||||||
chown -R openldap:openldap /etc/ldap/slapd.d
|
|
||||||
chown -R openldap:openldap /var/lib/ldap
|
|
||||||
service slapd start
|
|
||||||
|
|
||||||
else
|
else
|
||||||
echo "Vous devrez manuellement effectuer les opérations de setup de la base ldap sur le serveurs distant.
|
echo "Vous devrez manuellement effectuer les opérations de setup de la base ldap sur le serveurs distant.
|
||||||
Le mot de passe ldap a été placé dans le fichier re2o/settings_local"
|
Lancez la commande : ./install_re2o.sh ldap $ldap_password $ldap_dn"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
echo "Ecriture de settings_local"
|
echo "Ecriture de settings_local"
|
||||||
|
@ -250,11 +258,36 @@ url_server=$(dialog --title "$TITLE" \
|
||||||
2>&1 >/dev/tty)
|
2>&1 >/dev/tty)
|
||||||
clear
|
clear
|
||||||
|
|
||||||
|
TITLE="Utiliser tls et générer automatiquement le certificat LE ?"
|
||||||
|
OPTIONS=(1 "Oui"
|
||||||
|
2 "Non")
|
||||||
|
|
||||||
|
is_tls=$(dialog --clear \
|
||||||
|
--backtitle "$BACKTITLE" \
|
||||||
|
--title "$TITLE" \
|
||||||
|
--menu "$MENU" \
|
||||||
|
$HEIGHT $WIDTH $CHOICE_HEIGHT \
|
||||||
|
"${OPTIONS[@]}" \
|
||||||
|
2>&1 >/dev/tty)
|
||||||
|
|
||||||
|
clear
|
||||||
|
|
||||||
|
|
||||||
if [ $web_serveur == 1 ]
|
if [ $web_serveur == 1 ]
|
||||||
then
|
then
|
||||||
apt-get -y install apache2 libapache2-mod-wsgi-py3
|
apt-get -y install apache2 libapache2-mod-wsgi-py3
|
||||||
|
a2enmod ssl
|
||||||
|
if [ $is_tls == 1 ]
|
||||||
|
then
|
||||||
|
cp install_utils/apache2/re2o-tls.conf /etc/apache2/sites-available/re2o.conf
|
||||||
|
apt-get -y install certbot
|
||||||
|
apt-get -y install python-certbot-apache
|
||||||
|
certbot certonly --rsa-key-size 4096 --apache -d $url_server
|
||||||
|
sed -i 's/LE_PATH/'"$url_server"'/g' /etc/apache2/sites-available/re2o-tls.conf
|
||||||
|
else
|
||||||
cp install_utils/apache2/re2o.conf /etc/apache2/sites-available/re2o.conf
|
cp install_utils/apache2/re2o.conf /etc/apache2/sites-available/re2o.conf
|
||||||
sed -i 's/URL_SERVER/'"$url_server"'/g' /etc/apache2/sites-available/re2o.conf
|
fi
|
||||||
|
sed -i 's|URL_SERVER|'"$url_server"'|g' /etc/apache2/sites-available/re2o.conf
|
||||||
current_path=$(pwd)
|
current_path=$(pwd)
|
||||||
sed -i 's|PATH|'"$current_path"'|g' /etc/apache2/sites-available/re2o.conf
|
sed -i 's|PATH|'"$current_path"'|g' /etc/apache2/sites-available/re2o.conf
|
||||||
a2ensite re2o
|
a2ensite re2o
|
||||||
|
@ -263,3 +296,27 @@ else
|
||||||
echo "Nginx non supporté, vous devrez installer manuellement"
|
echo "Nginx non supporté, vous devrez installer manuellement"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
python3 manage.py createsuperuser
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
main_function() {
|
||||||
|
if [ ! -z "$1" ]
|
||||||
|
then
|
||||||
|
if [ $1 == ldap ]
|
||||||
|
then
|
||||||
|
if [ ! -z "$2" ]
|
||||||
|
then
|
||||||
|
echo Installation du ldap
|
||||||
|
setup_ldap $2 $3
|
||||||
|
else
|
||||||
|
echo Arguments invalides !
|
||||||
|
exit
|
||||||
|
fi
|
||||||
|
fi
|
||||||
|
else
|
||||||
|
install_re2o_server
|
||||||
|
fi
|
||||||
|
}
|
||||||
|
|
||||||
|
main_function $1 $2 $3
|
||||||
|
|
33
install_utils/apache2/re2o-tls.conf
Normal file
33
install_utils/apache2/re2o-tls.conf
Normal file
|
@ -0,0 +1,33 @@
|
||||||
|
<VirtualHost *:80>
|
||||||
|
ServerName URL_SERVER
|
||||||
|
|
||||||
|
Redirect "/" "https://URL_SERVER/"
|
||||||
|
|
||||||
|
</VirtualHost>
|
||||||
|
|
||||||
|
<VirtualHost *:443>
|
||||||
|
ServerName URL_SERVER
|
||||||
|
|
||||||
|
LogLevel warn
|
||||||
|
ErrorLog ${APACHE_LOG_DIR}/re2o-error.log
|
||||||
|
CustomLog ${APACHE_LOG_DIR}/re2o-access.log combined
|
||||||
|
|
||||||
|
<Directory />
|
||||||
|
AuthType Basic
|
||||||
|
AuthName "Password Required"
|
||||||
|
AuthUserFile /usr/local/password
|
||||||
|
Require valid-user
|
||||||
|
#Require all granted
|
||||||
|
</Directory>
|
||||||
|
|
||||||
|
Alias /static PATH/static_files
|
||||||
|
|
||||||
|
WSGIScriptAlias / PATH/re2o/wsgi.py
|
||||||
|
WSGIProcessGroup re2o
|
||||||
|
WSGIDaemonProcess re2o processes=2 threads=16 maximum-requests=1000 display-name=re2o
|
||||||
|
|
||||||
|
SSLCertificateFile /etc/letsencrypt/live/LE_PATH/fullchain.pem
|
||||||
|
SSLCertificateKeyFile /etc/letsencrypt/live/LE_PATH/privkey.pem
|
||||||
|
Include /etc/letsencrypt/options-ssl-apache.conf
|
||||||
|
|
||||||
|
</VirtualHost>
|
Loading…
Reference in a new issue