Initial commit

3 files changed, 461 insertions, 0 deletions

diff --git a/scripts/.fonctions b/scripts/.fonctions
new file mode 100644
index 0000000..4557512
--- /dev/null
+++ b/scripts/.fonctions
@@ -0,0 +1,192 @@
+#!/bin/bash
+
+ynh_version="2.4"
+
+YNH_VERSION () {	# Returns the version number of the Yunohost moulinette
+	ynh_version=$(sudo yunohost -v | grep "moulinette:" | cut -d' ' -f2 | cut -d'.' -f1,2)
+}
+
+CHECK_VAR () {	# Verifies that the variable is not empty.
+	# $1 = Variable to be checked
+	# $2 = Display text on error
+	test -n "$1" || (echo "$2" >&2 && false)
+}
+
+EXIT_PROPERLY () {	# Causes the script to stop in the event of an error. And clean the residue.
+	trap '' ERR
+	echo -e "\e[91m \e[1m"	# Shell in light red bold
+	echo -e "!!\n  $app install's script has encountered an error. Installation was cancelled.\n!!" >&2
+
+	if type -t CLEAN_SETUP > /dev/null; then	# Checks the existence of the function before executing it.
+		CLEAN_SETUP	# Call the specific cleanup function of the install script.
+	fi
+
+	# Compensates the ssowat bug that does not remove the app's input in case of installation error.
+	sudo sed -i "\@\"$domain$path/\":@d" /etc/ssowat/conf.json
+
+	if [ "$ynh_version" = "2.2" ]; then
+		/bin/bash $script_dir/remove
+	fi
+
+	ynh_die
+}
+
+TRAP_ON () {	# Activate signal capture
+	trap EXIT_PROPERLY ERR	# Capturing exit signals on error
+}
+
+TRAP_OFF () {	# Ignoring signal capture until TRAP_ON
+	trap '' ERR	# Ignoring exit signals
+}
+
+CHECK_USER () {	# Check the validity of the user admin
+	# $1 = User admin variable
+	ynh_user_exists "$1" || (echo "Wrong admin" >&2 && false)
+}
+
+CHECK_PATH () {	# Checks / at the beginning of the path. And his absence at the end.
+	if [ "${path:0:1}" != "/" ]; then    # If the first character is not /
+		path="/$path"    # Add / at the beginning of path
+	fi
+	if [ "${path:${#path}-1}" == "/" ] && [ ${#path} -gt 1 ]; then    # If the last character is a / and it is not the only character.
+		path="${path:0:${#path}-1}"	# Delete last character
+	fi
+}
+
+CHECK_DOMAINPATH () {	# Checks the availability of the path and domain.
+	sudo yunohost app checkurl $domain$path -a $app
+}
+
+CHECK_FINALPATH () {	# Checks that the destination folder is not already in use.
+	final_path=/opt/$app
+	if [ -e "$final_path" ]
+	then
+		echo "This path already contains a folder" >&2
+		false
+	fi
+}
+
+STORE_MD5_CONFIG () {	# Saves the checksum of the config file
+	# $1 = Name of the conf file for storage in settings.yml
+	# $2 = Full name and path of the conf file.
+	ynh_app_setting_set $app $1_file_md5 $(sudo md5sum "$2" | cut -d' ' -f1)
+}
+
+CHECK_MD5_CONFIG () {	# Created a backup of the config file if it was changed.
+	# $1 = Name of the conf file for storage in settings.yml
+	# $2 = Full name and path of the conf file.onf.
+	if [ "$(ynh_app_setting_get $app $1_file_md5)" != $(sudo md5sum "$2" | cut -d' ' -f1) ]; then
+		sudo cp -a "$2" "$2.backup.$(date '+%d.%m.%y_%Hh%M,%Ss')"	# Si le fichier de config a été modifié, créer un backup.
+	fi
+}
+
+FIND_PORT () {	# Search free port
+	# $1 = Port number to start the search.
+	port=$1
+	while ! sudo yunohost app checkport $port ; do
+		port=$((port+1))
+	done
+	CHECK_VAR "$port" "port empty"
+}
+
+
+### REMOVE SCRIPT
+
+REMOVE_NGINX_CONF () {	# Delete nginx configuration
+	if [ -e "/etc/nginx/conf.d/$domain.d/$app.conf" ]; then	# Delete nginx config
+		echo "Delete nginx config"
+		sudo rm "/etc/nginx/conf.d/$domain.d/$app.conf"
+		sudo systemctl reload nginx
+	fi
+}
+
+REMOVE_LOGROTATE_CONF () {	# Delete logrotate configuration
+	if [ -e "/etc/logrotate.d/$app" ]; then
+		echo "Delete logrotate config"
+		sudo rm "/etc/logrotate.d/$app"
+	fi
+}
+
+SECURE_REMOVE () {      # Deleting a folder with variable verification
+	chaine="$1"	# The argument must be given between simple quotes '', to avoid interpreting the variables.
+	no_var=0
+	while (echo "$chaine" | grep -q '\$')	# Loop as long as there are $ in the string
+	do
+		no_var=1
+		global_var=$(echo "$chaine" | cut -d '$' -f 2)	# Isole the first variable found.
+		only_var=\$$(expr "$global_var" : '\([A-Za-z0-9_]*\)')	# Isole completely the variable by adding the $ at the beginning and keeping only the name of the variable. Mostly gets rid of / and a possible path behind.
+		real_var=$(eval "echo ${only_var}")		# `eval "echo ${var}` Allows to interpret a variable contained in a variable.
+		if test -z "$real_var" || [ "$real_var" = "/" ]; then
+			echo "Variable $only_var is empty, suppression of $chaine cancelled." >&2
+			return 1
+		fi
+		chaine=$(echo "$chaine" | sed "s@$only_var@$real_var@")	# Replaces variable with its value in the string.
+	done
+	if [ "$no_var" -eq 1 ]
+	then
+		if [ -e "$chaine" ]; then
+			echo "Delete directory $chaine"
+			sudo rm -r "$chaine"
+		fi
+		return 0
+	else
+		echo "No detected variable." >&2
+		return 1
+	fi
+}
+
+REMOVE_BDD () {	# Delete database and users
+	# $1 = Database name
+	# Uses '$app' as user name and database
+	db_user=$1
+	if mysqlshow -u root -p$(sudo cat $MYSQL_ROOT_PWD_FILE) | grep -q "^| $db_user"; then
+		echo "Delete db"
+		ynh_mysql_drop_db $db_user
+		ynh_mysql_drop_user $db_user
+	fi
+}
+
+
+# Create a user
+#
+# usage: ynh_mysql_create_user user pwd [host]
+# | arg: user - the user name to create
+# | arg: pwd - the password to identify user by
+ynh_psql_create_user() {
+        sudo su -c "psql" postgres <<< \
+        "CREATE USER ${1} WITH PASSWORD '${2}';"
+}
+
+# Create a database and grant optionnaly privilegies to a user
+#
+# usage: ynh_mysql_create_db db [user [pwd]]
+# | arg: db - the database name to create
+# | arg: user - the user to grant privilegies
+# | arg: pwd - the password to identify user by
+ynh_psql_create_db() {
+    db=$1
+    # grant all privilegies to user
+    if [[ $# -gt 1 ]]; then
+        ynh_psql_create_user ${2} "${3}"
+        sudo su -c "createdb -O ${2} $db" postgres
+    else
+        sudo su -c "createdb $db" postgres
+    fi
+
+}
+
+# Drop a database
+#
+# usage: ynh_mysql_drop_db db
+# | arg: db - the database name to drop
+ynh_psql_drop_db() {
+    sudo su -c "dropdb ${1}" postgres
+}
+
+# Drop a user
+#
+# usage: ynh_mysql_drop_user user
+# | arg: user - the user name to drop
+ynh_psql_drop_user() {
+    sudo su -c "dropuser ${1}" postgres
+}
\ No newline at end of file
diff --git a/scripts/install b/scripts/install
new file mode 100644
index 0000000..cfee5b2
--- /dev/null
+++ b/scripts/install
@@ -0,0 +1,181 @@
+#!/bin/bash
+
+# Exit on command errors and treat unset variables as an error
+set -eu
+
+source .fonctions	# Loads the generic functions usually used in the script
+source /usr/share/yunohost/helpers # Source app helpers
+
+CLEAN_SETUP () {
+	# Clean installation residues that are not supported by the remove script.
+	# Clean hosts
+	sudo sed -i '/#MASTODON/d' /etc/hosts
+}
+TRAP_ON	# Active trap to stop the script if an error is detected.
+
+domain=$YNH_APP_ARG_DOMAIN
+path=$YNH_APP_ARG_PATH
+admin_mastodon=$YNH_APP_ARG_ADMIN
+is_public=$YNH_APP_ARG_IS_PUBLIC
+#language=$YNH_APP_ARG_LANGUAGE
+
+app=$YNH_APP_INSTANCE_NAME
+
+CHECK_VAR "$app" "app name not set"
+
+CHECK_USER "$admin_mastodon"
+
+CHECK_PATH
+
+CHECK_DOMAINPATH
+
+CHECK_FINALPATH
+
+ynh_app_setting_set $app domain $domain
+ynh_app_setting_set $app path $path
+ynh_app_setting_set $app admin $admin_mastodon
+ynh_app_setting_set $app is_public $is_public
+# ynh_app_setting_set $app language $language
+
+# Create user unix
+sudo adduser $app --home /opt/$app --gecos "First Last,RoomNumber,WorkPhone,HomePhone" --disabled-password --disabled-login
+
+# Install debian package
+ynh_package_install imagemagick libpq-dev libxml2-dev libxslt1-dev file curl
+
+# Install redis package
+ynh_package_install redis-server redis-tools
+
+# Install postgresql
+ynh_package_install postgresql postgresql-contrib
+
+# Install Ruby
+ynh_package_install autoconf bison build-essential libssl-dev libyaml-dev libreadline6-dev zlib1g-dev libncurses5-dev libffi-dev libgdbm3 libgdbm-dev
+
+# Install debian package backports
+sudo cp ../conf/backports.list /etc/apt/sources.list.d/ 
+ynh_package_update
+sudo apt-get -t jessie-backports -y install ffmpeg
+
+# Creates the destination directory and stores its location.
+ynh_app_setting_set $app final_path $final_path
+
+# Install de Node.js
+pushd /opt
+curl -sL https://deb.nodesource.com/setup_4.x | bash -
+sudo apt-get -y install nodejs
+npm install -g yarn
+
+## Install postgresql database
+dbname=$app
+dbuser=$app
+# Generate random password
+dbpass=$(ynh_string_random)
+ynh_psql_create_db "$dbname" "$dbuser" "$dbpass"
+# sudo su -c "psql" postgres <<< \
+#         "CREATE EXTENSION mastodon;"
+
+# Download all Ruby source
+sudo git clone https://github.com/rbenv/rbenv.git $final_path/.rbenv
+git clone https://github.com/rbenv/ruby-build.git $final_path/.rbenv/plugins/ruby-build
+git clone https://github.com/tootsuite/mastodon.git $final_path/live
+sudo chown -R $app: "${final_path}"
+
+# Install de rbenv
+# Install ruby-build
+# Install Mastodon
+sudo su - $app <<COMMANDS
+pushd ~/.rbenv
+src/configure && make -C src
+echo 'export PATH="/opt/mastodon/.rbenv/bin:$PATH"' >> ~/.bash_profile
+echo 'export PATH="/opt/mastodon/.rbenv/bin:$PATH" 
+eval "$(/opt/mastodon/.rbenv/bin/rbenv init -)"' >> ~/.bashrc
+type /opt/mastodon/.rbenv/bin/rbenv
+
+/opt/mastodon/.rbenv/bin/rbenv init
+
+/opt/mastodon/.rbenv/bin/rbenv install 2.3.1
+/opt/mastodon/.rbenv/versions/2.3.1/bin/ruby -v
+
+/opt/mastodon/.rbenv/versions/2.3.1/bin/gem install bundler
+/opt/mastodon/live/bin/bundle install --deployment --without development test
+yarn install
+COMMANDS
+
+## Generate a new environnement
+# Generate secret key
+# Adjust Mastodon config
+# Create database
+# Preconfig CSS & JS
+sudo su - $app <<ENDCOMMANDS
+type /opt/mastodon/.rbenv/bin/rbenv
+/opt/mastodon/.rbenv/bin/rbenv init
+
+bundle_paperclip_secret=$(/opt/mastodon/live/bin/bundle exec rake secret)
+bundle_secret_key_base=$(/opt/mastodon/live/bin/bundle exec rake secret)
+bundle_otp_secret=$(/opt/mastodon/live/bin/bundle exec rake secret)
+
+pushd ~/live/
+cp .env.production.sample .env.production
+sed -i "s@REDIS_HOST=localhost@REDIS_HOST=localhost@g" "${final_path}/live/.env.production"
+sed -i "s@DB_HOST=db@DB_HOST=/var/run/postgresql@g" "${final_path}/live/.env.production"
+sed -i "s@DB_USER=mastodon@DB_USER=${dbuser}@g" "${final_path}/live/.env.production"
+sed -i "s@DB_NAME=mastodon@DB_NAME=${dbuser}@g" "${final_path}/live/.env.production"
+sed -i "s@LOCAL_DOMAIN=domainedevotreinstance.tld@LOCAL_DOMAIN=${domain}@g" "${final_path}/live/.env.production"
+
+sed -i "s@PAPERCLIP_SECRET=@PAPERCLIP_SECRET=${bundle_paperclip_secret}@g" "${final_path}/live/.env.production"
+sed -i "s@SECRET_KEY_BASE=@SECRET_KEY_BASE=${bundle_secret_key_base}@g" "${final_path}/live/.env.production"
+sed -i "s@OTP_SECRET=@OTP_SECRET=${bundle_otp_secret}@g" "${final_path}/live/.env.production"
+
+sed -i "s@SMTP_SERVER=smtp.mailgun.org@SMTP_SERVER=localhost@g" "${final_path}/live/.env.production"
+sed -i "s@SMTP_FROM_ADDRESS=notifications@example.com@SMTP_FROM_ADDRESS=${user}@${domain}@g" "${final_path}/live/.env.production"
+
+RAILS_ENV=production bundle exec rails db:setup
+
+RAILS_ENV=production bundle exec rails assets:precompile
+ENDCOMMANDS
+
+# Add Services
+pushd /var/cache/yunohost/from_file/scripts
+
+sudo cp ../conf/mastodon-web.service /etc/systemd/system/mastodon-web.service
+sudo chown root: /etc/systemd/system/mastodon-web.service
+sudo cp ../conf/mastodon-web.service /etc/systemd/system/mastodon-sidekiq.service
+sudo chown root: /etc/systemd/system/mastodon-sidekiq.service
+sudo cp ../conf/mastodon-web.service /etc/systemd/system/mastodon-streaming.service
+sudo chown root: /etc/systemd/system/mastodon-streaming.service
+
+sudo systemctl enable /etc/systemd/system/mastodon-*.service
+sudo systemctl start mastodon-web.service mastodon-sidekiq.service mastodon-streaming.service
+# debug
+sudo systemctl status mastodon-web.service mastodon-sidekiq.service mastodon-streaming.service
+
+# Copy nginx config
+sudo cp ../conf/nginx.conf /etc/nginx/conf.d/$domain.d/$app.conf
+sudo sed -i "s@__PATH__@$path@g" /etc/nginx/conf.d/$domain.d/$app.conf
+
+# Install crontab
+sudo cp ../conf/crontab_mastodon /etc/cron.d/$app
+sudo sed -i "s@__AP__@$app@g" /etc/cron.d/$app
+
+# Private or not
+if [ "$is_public" = "Yes" ];
+then
+	sudo sed -i "s@#--PRIVATE--@@g" /etc/nginx/conf.d/$domain.d/$app.conf
+fi
+
+# Setup SSOwat
+ynh_app_setting_set "$app" is_public "$is_public"
+if [ "$is_public" = "Yes" ];
+then
+  ynh_app_setting_set "$app" unprotected_uris "/"
+fi
+
+# Reload SSOwat configuration
+sudo yunohost app ssowatconf
+
+# Reload Nginx and regenerate SSOwat conf
+sudo systemctl reload nginx
+
+# Nettoyer hosts
+sudo sed -i '/#MASTODON/d' /etc/hosts
\ No newline at end of file
diff --git a/scripts/remove b/scripts/remove
new file mode 100644
index 0000000..d4e896f
--- /dev/null
+++ b/scripts/remove
@@ -0,0 +1,88 @@
+#!/bin/bash
+
+# Exit on command errors and treat unset variables as an error
+set -u
+
+source .fonctions	# Loads the generic functions usually used in the script
+# Source app helpers
+source /usr/share/yunohost/helpers
+
+# Get multi-instances specific variables
+app=$YNH_APP_INSTANCE_NAME
+
+# Retrieve app settings
+domain=$(ynh_app_setting_get "$app" domain)
+
+# Stop mastodon-web
+if [ -e "/etc/systemd/system/mastodon-web.service" ]; then
+	echo "Delete systemd script"
+	sudo service mastodon-web.service stop
+	sudo rm "/etc/systemd/system/mastodon-web.service"
+	sudo systemctl disable mastodon-web.service
+fi
+
+# Stop mastodon-sidekiq
+if [ -e "/etc/systemd/system/mastodon-sidekiq.service" ]; then
+	echo "Delete systemd script"
+	sudo service mastodon-sidekiq.service stop
+	sudo rm "/etc/systemd/system/mastodon-sidekiq.service"
+	sudo systemctl disable mastodon-sidekiq.service
+fi
+
+# Stop mastodon-sidekiq
+if [ -e "/etc/systemd/system/mastodon-streaming.service" ]; then
+	echo "Delete systemd script"
+	sudo service mastodon-sidekiq.streaming stop
+	sudo rm "/etc/systemd/system/mastodon-streaming.service"
+	sudo systemctl disable mastodon-streaming.service
+fi
+
+# Delete service on Yunohost monitoring
+if sudo yunohost service status | grep -q mastodon-web
+then
+	echo "Remove mastodon-web service"
+	sudo yunohost service remove mastodon-web
+fi
+
+# Delete service on Yunohost monitoring
+if sudo yunohost service status | grep -q mastodon-sidekiq
+then
+	echo "Remove mastodon-sidekiq service"
+	sudo yunohost service remove mastodon-sidekiq
+fi
+
+# Delete service on Yunohost monitoring
+if sudo yunohost service status | grep -q mastodon-streaming
+then
+	echo "Remove mastodon-streaming service"
+	sudo yunohost service remove mastodon-streaming
+fi
+
+# delete postgresql database & user
+ynh_psql_drop_db $app
+ynh_psql_drop_user $app
+
+# Remove Debian package
+#sudo apt-get remove --purge -y imagemagick ffmpeg libpq-dev libxml2-dev libxslt1-dev file curl git
+# Delete redis package
+#sudo apt-get remove --purge -y redis-server redis-tools
+# Delete postgresql package
+#sudo apt-get remove --purge -y postgresql postgresql-contrib
+# Delete Ruby package
+#sudo apt-get remove --purge -y autoconf bison build-essential libssl-dev libyaml-dev libreadline6-dev zlib1g-dev libncurses5-dev libffi-dev libgdbm3 libgdbm-dev
+
+# Delete app directory and configurations
+SECURE_REMOVE '/opt/$app'
+[[ -n $domain ]] && sudo rm -f "/etc/nginx/conf.d/${domain}.d/${app}.conf"
+
+REMOVE_NGINX_CONF	# Suppression de la configuration nginx
+
+SECURE_REMOVE '/var/log/$app/'	# Suppression des log
+
+# Remove user
+sudo userdel -f $app
+
+# Reload services
+sudo service nginx reload
+
+echo -e "\e[0m"	# Restore normal color
\ No newline at end of file