Compare commits
30 Commits
6876c9351b
...
1.1.3
| Author | SHA1 | Date | |
|---|---|---|---|
|
779f28a5f7 | ||
|
|
9878fa9ce3 | ||
|
|
aeb679a898 | ||
| e40b900750 | |||
| ae83abef53 | |||
| 0e05eaa531 | |||
|
|
8c345020f7 | ||
|
|
10a6bc704c | ||
|
|
ba921a53a2 | ||
|
|
7bb96a1863 | ||
|
|
d0f65b8841 | ||
|
|
72e14d7199 | ||
|
|
566aed3752 | ||
| 3ab1b3ff54 | |||
| dafd8f345a | |||
|
|
56e2f6f05d | ||
|
|
e343bc2cb5 | ||
|
|
6d267dfd04 | ||
|
|
b049833844 | ||
| fbf15c52b5 | |||
| 3e1fee6022 | |||
|
|
27c5be7964 | ||
|
|
7b2ac2e56a | ||
| 9407f7caaf | |||
| 12cfe301e3 | |||
|
|
c2a1fbd9d8 | ||
|
|
d43536b67b | ||
|
|
da5521295d | ||
|
|
e39e1033c6 | ||
|
|
ec9d4c6e4f |
@@ -3,8 +3,23 @@
|
|||||||
cd /scripts
|
cd /scripts
|
||||||
DEBUG_MODE=${DEBUG_MODE:-false}
|
DEBUG_MODE=${DEBUG_MODE:-false}
|
||||||
|
|
||||||
|
VERSION="1.1.3"
|
||||||
|
|
||||||
#DOCKER_REGISTRY_URL=${DOCKER_REGISTRY_URL:-registry.format.hu}
|
#DOCKER_REGISTRY_URL=${DOCKER_REGISTRY_URL:-registry.format.hu}
|
||||||
DOCKER_REGISTRY_URL=${DOCKER_REGISTRY_URL:-safebox}
|
DOCKER_REGISTRY_URL=${DOCKER_REGISTRY_URL:-safebox}
|
||||||
|
DOCKER_REGISTRY_USERNAME=$DOCKER_REGISTRY_USERNAME
|
||||||
|
DOCKER_REGISTRY_PASSWORD=$DOCKER_REGISTRY_PASSWORD
|
||||||
|
|
||||||
|
if [ -n "$DOCKER_REGISTRY_USERNAME" ] && [ -n "$DOCKER_REGISTRY_PASSWORD" ]; then
|
||||||
|
echo "Logging in to Docker registry $DOCKER_REGISTRY_URL"
|
||||||
|
echo "$DOCKER_REGISTRY_PASSWORD" | docker login $DOCKER_REGISTRY_URL --username $DOCKER_REGISTRY_USERNAME --password-stdin
|
||||||
|
DOCKER_REGISTRY_ENVS="--env DOCKER_REGISTRY_USERNAME=$DOCKER_REGISTRY_USERNAME --env DOCKER_REGISTRY_PASSWORD=$DOCKER_REGISTRY_PASSWORD"
|
||||||
|
|
||||||
|
else
|
||||||
|
echo "No Docker registry credentials provided, skipping login."
|
||||||
|
fi
|
||||||
|
|
||||||
|
|
||||||
USER_INIT_PATH=$USER_INIT_PATH
|
USER_INIT_PATH=$USER_INIT_PATH
|
||||||
GLOBAL_VERSION=${GLOBAL_VERSION:-latest}
|
GLOBAL_VERSION=${GLOBAL_VERSION:-latest}
|
||||||
SERVICE_DIR=${SERVICE_DIR:-/etc/user/config/services}
|
SERVICE_DIR=${SERVICE_DIR:-/etc/user/config/services}
|
||||||
@@ -19,6 +34,14 @@ FRAMEWORK_SCHEDULER_NETWORK_SUBNET=${FRAMEWORK_SCHEDULER_NETWORK_SUBNET:-"172.19
|
|||||||
FRAMEWORK_SCHEDULER_VERSION=${FRAMEWORK_SCHEDULER_VERSION:-latest}
|
FRAMEWORK_SCHEDULER_VERSION=${FRAMEWORK_SCHEDULER_VERSION:-latest}
|
||||||
RUN_FORCE=${RUN_FORCE:-false}
|
RUN_FORCE=${RUN_FORCE:-false}
|
||||||
|
|
||||||
|
if [ "$DEBUG_MODE" == "true" ]; then
|
||||||
|
DOCKER_START="--entrypoint=sh $DOCKER_REGISTRY_URL/$FRAMEWORK_SCHEDULER_IMAGE:$FRAMEWORK_SCHEDULER_VERSION -c 'sleep 86400'"
|
||||||
|
SET_DEBUG_MODE="--env DEBUG_MODE=true"
|
||||||
|
else
|
||||||
|
DOCKER_START="$DOCKER_REGISTRY_URL/$FRAMEWORK_SCHEDULER_IMAGE:$FRAMEWORK_SCHEDULER_VERSION"
|
||||||
|
SET_DEBUG_MODE=""
|
||||||
|
fi
|
||||||
|
|
||||||
WEB_SERVER=${WEB_SERVER:-webserver}
|
WEB_SERVER=${WEB_SERVER:-webserver}
|
||||||
WEB_IMAGE=${WEB_IMAGE:-web-installer}
|
WEB_IMAGE=${WEB_IMAGE:-web-installer}
|
||||||
WEBSERVER_PORT=${WEBSERVER_PORT:-8080}
|
WEBSERVER_PORT=${WEBSERVER_PORT:-8080}
|
||||||
@@ -80,6 +103,8 @@ $VOLUME_MOUNTS \
|
|||||||
--env SETUP_VERSION=$SETUP_VERSION \
|
--env SETUP_VERSION=$SETUP_VERSION \
|
||||||
--env GLOBAL_VERSION=$GLOBAL_VERSION \
|
--env GLOBAL_VERSION=$GLOBAL_VERSION \
|
||||||
--env HOST_FILE=$HOST_FILE \
|
--env HOST_FILE=$HOST_FILE \
|
||||||
|
$SET_DEBUG_MODE \
|
||||||
|
$DOCKER_REGISTRY_ENVS \
|
||||||
$DOCKER_REGISTRY_URL$SETUP:$SETUP_VERSION"
|
$DOCKER_REGISTRY_URL$SETUP:$SETUP_VERSION"
|
||||||
|
|
||||||
DEBUG=1
|
DEBUG=1
|
||||||
@@ -99,7 +124,9 @@ add_json_target(){
|
|||||||
TASK="upgrade-$TASK_NAME"
|
TASK="upgrade-$TASK_NAME"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
install -m 664 -g 65534 /dev/null $SHARED/output/$TASK.json
|
if [ ! -f $SHARED/output/$TASK.json ]; then
|
||||||
|
install -m 664 -g 65534 /dev/null $SHARED/output/$TASK.json
|
||||||
|
fi
|
||||||
echo $JSON_TARGET | base64 -d >$SHARED/output/$TASK.json
|
echo $JSON_TARGET | base64 -d >$SHARED/output/$TASK.json
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -109,22 +136,168 @@ backup_query_state() {
|
|||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
generate_backup_server_secrets () {
|
||||||
|
|
||||||
|
mkdir -p $SECRET_DIR/backup/server
|
||||||
|
|
||||||
|
echo '{
|
||||||
|
"backupserver":{
|
||||||
|
"SSH_USER":"'$SSH_USER'",
|
||||||
|
"SSH_PORT":"'$SSH_PORT'",
|
||||||
|
"SSH_PASSWORD":"'$SSH_PASSWORD'",
|
||||||
|
"PASSWORD":"'$PASSWORD'",
|
||||||
|
"PERIOD":"'$PERIOD'",
|
||||||
|
"COMPRESSION":"'$COMPRESSION'",
|
||||||
|
"DIRECTORIES":"'$DIRECTORIES'",
|
||||||
|
"SERVICES":"'$SERVICES'",
|
||||||
|
"BACKUP_LOCAL_CLIENTS":"'$BACKUP_LOCAL_CLIENTS'",
|
||||||
|
"BACKUP_VPN_CLIENTS":"'$BACKUP_VPN_CLIENTS'"
|
||||||
|
}
|
||||||
|
}' | jq -r . > $SECRET_DIR/backup/server/backup.json
|
||||||
|
}
|
||||||
|
|
||||||
|
create_backup_service () {
|
||||||
|
|
||||||
|
ADDITIONAL=""
|
||||||
|
ADDITIONAL='"EXTRA":"--rm","PRE_START":[],"DEPEND": [],"CMD":""'
|
||||||
|
|
||||||
|
BACKUP_SERVER='{
|
||||||
|
"main": {
|
||||||
|
"SERVICE_NAME": "backup-server"
|
||||||
|
},
|
||||||
|
"containers": [
|
||||||
|
{
|
||||||
|
"IMAGE": "alpine:latest",
|
||||||
|
"NAME": "backup-init",
|
||||||
|
"NETWORK": "host",
|
||||||
|
"UPDATE": "true",
|
||||||
|
"MEMORY": "64M",
|
||||||
|
"EXTRA": "--rm",
|
||||||
|
"VOLUMES":[
|
||||||
|
{
|
||||||
|
"SOURCE": "USER_DATA",
|
||||||
|
"DEST": "/etc/user/data/",
|
||||||
|
"TYPE": "rw"
|
||||||
|
}
|
||||||
|
],
|
||||||
|
"ENTRYPOINT": "sh -c",
|
||||||
|
"CMD": "mkdir -p /etc/user/data/backup/server/ssh",
|
||||||
|
"POST_START": []
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"IMAGE": "safebox/backup-server:latest",
|
||||||
|
"NAME": "backupserver",
|
||||||
|
"NETWORK": "'$NETWORK'",
|
||||||
|
"UPDATE": "true",
|
||||||
|
"MEMORY": "64M",
|
||||||
|
"VOLUMES":[
|
||||||
|
{
|
||||||
|
"SOURCE": "USER_DATA",
|
||||||
|
"DEST": "/etc/user/data/",
|
||||||
|
"TYPE": "ro"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"SOURCE": "USER_CONFIG",
|
||||||
|
"DEST": "/etc/user/config/",
|
||||||
|
"TYPE": "ro"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"SOURCE": "USER_SECRET",
|
||||||
|
"DEST": "/etc/user/secret/",
|
||||||
|
"TYPE": "ro"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"SOURCE": "/etc/user/data/backup/server/ssh",
|
||||||
|
"DEST": "/home/'$SSH_USER'/",
|
||||||
|
"TYPE": "rw"
|
||||||
|
}
|
||||||
|
],
|
||||||
|
"ENV_FILES":["/etc/user/secret/backup/server/backup.json"],
|
||||||
|
'$ADDITIONAL',
|
||||||
|
"POST_START": []
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}'
|
||||||
|
# create backup server secrets from variables
|
||||||
|
generate_backup_server_secrets
|
||||||
|
}
|
||||||
|
|
||||||
backup_set_service() {
|
backup_set_service() {
|
||||||
|
|
||||||
echo "backup_set_service"
|
|
||||||
|
local PASSWORD="$1"
|
||||||
|
local PERIOD="$2"
|
||||||
|
local COMPRESSION="$3"
|
||||||
|
|
||||||
|
local PLANNED_TIME="$(echo "$4" | base64 -d)"
|
||||||
|
local DIRECTRIES="$5"
|
||||||
|
local SERVICES="$6"
|
||||||
|
local BACKUP_LOCAL_CLIENTS="$7"
|
||||||
|
local BACKUP_VPN_CLIENTS="$8"
|
||||||
|
|
||||||
|
local VPN="$9"
|
||||||
|
local SSH_PORT="${10:-20022}"
|
||||||
|
local SSH_USER="${11:-"backup"}"
|
||||||
|
local SSH_PASSWORD="${12:-"backup"}"
|
||||||
|
local OPERATION="${13}"
|
||||||
|
|
||||||
|
if [ "$OPERATION" == "DELETE" ]; then
|
||||||
|
|
||||||
|
sed -i '/service-backup/d' /etc/user/data/cron/crontab.txt
|
||||||
|
# delete service
|
||||||
|
rm -f /etc/user/config/services/service-backup-server*
|
||||||
|
rm -rf /etc/user/data/backup/server
|
||||||
|
rm -rf /etc/user/secret/backup/server
|
||||||
|
debug "Service backup server service deleted."
|
||||||
|
|
||||||
|
elif [ "$OPERATION" == "MODIFY" ]; then
|
||||||
|
|
||||||
|
# modify only secrets for backup server, it will be affected at the next cron job
|
||||||
|
generate_backup_server_secrets
|
||||||
|
|
||||||
|
else
|
||||||
|
|
||||||
|
if [ -z "$SSH_PORT" ] ; then
|
||||||
|
SSH_PORT=20022
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ "$VPN" == "true" ]; then
|
||||||
|
NETWORK=$VPN_NETWORK
|
||||||
|
create_backup_service
|
||||||
|
else
|
||||||
|
NETWORK="host"
|
||||||
|
create_backup_service
|
||||||
|
fi
|
||||||
|
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [ -n "$PLANNED_TIME" ]; then
|
||||||
|
if [ "$VPN" == "true" ]; then
|
||||||
|
if [ -n "$BACKUP_SERVER" ] ; then
|
||||||
|
echo "$BACKUP_SERVER" | jq -r . >/etc/user/config/services/service-backup-server-vpn.json
|
||||||
|
fi
|
||||||
|
echo "'$PLANNED_TIME' service service-backup-server-vpn" >> /etc/user/data/cron/crontab.txt
|
||||||
|
else
|
||||||
|
if [ -n "$BACKUP_SERVER" ] ; then
|
||||||
|
echo "$BACKUP_SERVER" | jq -r . >/etc/user/config/services/service-backup-server-local.json
|
||||||
|
fi
|
||||||
|
echo "'$PLANNED_TIME' service service-backup-server-local" >> /etc/user/data/cron/crontab.txt
|
||||||
|
fi
|
||||||
|
fi
|
||||||
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
backup_set_client() {
|
backup_set_client() {
|
||||||
|
|
||||||
NAME="$1"
|
local NAME="$1"
|
||||||
SIZE="$2"
|
local SIZE="$2"
|
||||||
VPN="$3"
|
local VPN="$3"
|
||||||
SSH_PORT="$4"
|
local SSH_PORT="${4:-20022}"
|
||||||
SSH_USER="$5"
|
local SSH_USER="${5:-"backup"}"
|
||||||
SSH_PASSWORD="$6"
|
local SSH_PASSWORD="${6:-"backup"}"
|
||||||
OPERATION="$7"
|
local OPERATION="$7"
|
||||||
VPN_KEY="$8"
|
local VPN_KEY="$8"
|
||||||
|
|
||||||
if [ "$OPERATION" == "DELETE" ]; then
|
if [ "$OPERATION" == "DELETE" ]; then
|
||||||
# delete service
|
# delete service
|
||||||
@@ -152,7 +325,7 @@ backup_set_client() {
|
|||||||
fi
|
fi
|
||||||
|
|
||||||
ADDITIONAL=""
|
ADDITIONAL=""
|
||||||
ADDITIONAL='"EXTRA": "--label logging=promtail_user --label logging_jobname=containers --restart=always", "PRE_START": [], "DEPEND": [], "CMD": ""'
|
ADDITIONAL='"EXTRA":"--restart=always","PRE_START":[],"DEPEND":[],"CMD": ""'
|
||||||
ENVS='"ENVS": [{"SSH_USER":"'$SSH_USER'"},{"SSH_PORT":"'$SSH_PORT'"},{"SSH_PASSWORD":"'$SSH_PASSWORD'"},{"VPN_CLIENT_KEY":"'$VPN_KEY'"}],'
|
ENVS='"ENVS": [{"SSH_USER":"'$SSH_USER'"},{"SSH_PORT":"'$SSH_PORT'"},{"SSH_PASSWORD":"'$SSH_PASSWORD'"},{"VPN_CLIENT_KEY":"'$VPN_KEY'"}],'
|
||||||
|
|
||||||
echo '{
|
echo '{
|
||||||
@@ -163,6 +336,7 @@ backup_set_client() {
|
|||||||
{
|
{
|
||||||
"IMAGE": "alpine:latest",
|
"IMAGE": "alpine:latest",
|
||||||
"NAME": "'$NAME'-init",
|
"NAME": "'$NAME'-init",
|
||||||
|
"NETWORK": "host",
|
||||||
"UPDATE": "true",
|
"UPDATE": "true",
|
||||||
"MEMORY": "64M",
|
"MEMORY": "64M",
|
||||||
"EXTRA": "--rm",
|
"EXTRA": "--rm",
|
||||||
@@ -174,7 +348,7 @@ backup_set_client() {
|
|||||||
}
|
}
|
||||||
],
|
],
|
||||||
"ENTRYPOINT": "sh -c",
|
"ENTRYPOINT": "sh -c",
|
||||||
"CMD": "mkdir -p /etc/user/data/backup/clients/'$NAME'/backup && /etc/user/data/backup/clients/'$NAME'/ssh",
|
"CMD": "mkdir -p /etc/user/data/backup/clients/'$NAME'/backup && mkdir -p /etc/user/data/backup/clients/'$NAME'/ssh && chmod -R '$SSH_USER':'$SSH_USER' /etc/user/data/backup/clients/'$NAME'",
|
||||||
"POST_START": []
|
"POST_START": []
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
@@ -189,13 +363,12 @@ backup_set_client() {
|
|||||||
"VOLUMES":[
|
"VOLUMES":[
|
||||||
{
|
{
|
||||||
"SOURCE": "/etc/user/data/backup/clients/'$NAME'/backup",
|
"SOURCE": "/etc/user/data/backup/clients/'$NAME'/backup",
|
||||||
"DEST": "/backup",
|
"DEST": "/home/'$SSH_USER'/backup",
|
||||||
"TYPE": "rw"
|
"TYPE": "rw"
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"SOURCE": "/etc/user/data/backup/clients/'$NAME'/ssh",
|
"SOURCE": "/etc/user/data/backup/clients/'$NAME'/ssh",
|
||||||
"DEST": "/home/'$SSH_USER'/",
|
"DEST": "/home/'$SSH_USER'/.ssh",
|
||||||
"TYPE": "rw"
|
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"POST_START": []
|
"POST_START": []
|
||||||
@@ -203,8 +376,8 @@ backup_set_client() {
|
|||||||
]
|
]
|
||||||
}' | jq -r . >/etc/user/config/services/service-backup-client-$NAME.json
|
}' | jq -r . >/etc/user/config/services/service-backup-client-$NAME.json
|
||||||
|
|
||||||
debug "service-backup-client-$NAME.json stop force dns-remove"
|
debug "service-backup-client-$NAME.json start info"
|
||||||
$service_exec service-backup-client-$NAME.json start &
|
$service_exec service-backup-client-$NAME.json start info &
|
||||||
|
|
||||||
fi
|
fi
|
||||||
|
|
||||||
@@ -363,6 +536,10 @@ get_repositories() {
|
|||||||
local TREES=""
|
local TREES=""
|
||||||
local REPO
|
local REPO
|
||||||
|
|
||||||
|
if [ ! -f "/etc/user/config/repositories.json" ]; then
|
||||||
|
create_repositories_json
|
||||||
|
fi
|
||||||
|
|
||||||
REPOS=$(jq -r .repositories[] /etc/user/config/repositories.json) # list of repos, delimiter by space
|
REPOS=$(jq -r .repositories[] /etc/user/config/repositories.json) # list of repos, delimiter by space
|
||||||
for REPO in $REPOS; do
|
for REPO in $REPOS; do
|
||||||
|
|
||||||
@@ -371,7 +548,8 @@ get_repositories() {
|
|||||||
GIT_HTTP_CONNECT_TIMEOUT=10 GIT_HTTP_TIMEOUT=30 git clone $REPO /tmp/$BASE >/dev/null
|
GIT_HTTP_CONNECT_TIMEOUT=10 GIT_HTTP_TIMEOUT=30 git clone $REPO /tmp/$BASE >/dev/null
|
||||||
else
|
else
|
||||||
cd /tmp/$BASE
|
cd /tmp/$BASE
|
||||||
GIT_HTTP_CONNECT_TIMEOUT=10 GIT_HTTP_TIMEOUT=30 git pull >/dev/null
|
date >> /tmp/pull.log
|
||||||
|
GIT_HTTP_CONNECT_TIMEOUT=10 GIT_HTTP_TIMEOUT=30 git pull >> /tmp/pull.log
|
||||||
fi
|
fi
|
||||||
if [ -f "/tmp/$BASE/applications-tree.json" ]; then
|
if [ -f "/tmp/$BASE/applications-tree.json" ]; then
|
||||||
TREES=$TREES" /tmp/$BASE/applications-tree.json"
|
TREES=$TREES" /tmp/$BASE/applications-tree.json"
|
||||||
@@ -387,6 +565,9 @@ check_volumes() {
|
|||||||
if [ ! -d "/var/tmp/shared" ]; then
|
if [ ! -d "/var/tmp/shared" ]; then
|
||||||
/usr/bin/docker volume create SHARED
|
/usr/bin/docker volume create SHARED
|
||||||
RET=0
|
RET=0
|
||||||
|
else
|
||||||
|
rm -rf /var/tmp/shared/input/*
|
||||||
|
rm -rf /var/tmp/shared/output/*
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if [ ! -d "/etc/system/data/" ]; then
|
if [ ! -d "/etc/system/data/" ]; then
|
||||||
@@ -715,14 +896,6 @@ upgrade_scheduler() {
|
|||||||
debug "Upgrading framework scheduler..."
|
debug "Upgrading framework scheduler..."
|
||||||
/usr/bin/docker pull "$DOCKER_REGISTRY_URL/$FRAMEWORK_SCHEDULER_IMAGE:$FRAMEWORK_SCHEDULER_VERSION"
|
/usr/bin/docker pull "$DOCKER_REGISTRY_URL/$FRAMEWORK_SCHEDULER_IMAGE:$FRAMEWORK_SCHEDULER_VERSION"
|
||||||
|
|
||||||
if [ "$DEBUG_MODE" == "true" ]; then
|
|
||||||
DOCKER_START="--entrypoint=sh $DOCKER_REGISTRY_URL/$FRAMEWORK_SCHEDULER_IMAGE:$FRAMEWORK_SCHEDULER_VERSION -c 'sleep 86400'"
|
|
||||||
SET_DEBUG_MODE="--env DEBUG_MODE=true"
|
|
||||||
else
|
|
||||||
DOCKER_START="$DOCKER_REGISTRY_URL/$FRAMEWORK_SCHEDULER_IMAGE:$FRAMEWORK_SCHEDULER_VERSION"
|
|
||||||
SET_DEBUG_MODE=""
|
|
||||||
fi
|
|
||||||
|
|
||||||
FRAMEWORK_SCHEDULER_NAME="$FRAMEWORK_SCHEDULER_NAME-$(head /dev/urandom | tr -dc '0-9' | head -c 6)"
|
FRAMEWORK_SCHEDULER_NAME="$FRAMEWORK_SCHEDULER_NAME-$(head /dev/urandom | tr -dc '0-9' | head -c 6)"
|
||||||
|
|
||||||
DOCKER_RUN="/usr/bin/docker run -d \
|
DOCKER_RUN="/usr/bin/docker run -d \
|
||||||
@@ -736,12 +909,14 @@ upgrade_scheduler() {
|
|||||||
-v USER_SECRET:/etc/user/secret \
|
-v USER_SECRET:/etc/user/secret \
|
||||||
--restart=always \
|
--restart=always \
|
||||||
--name $FRAMEWORK_SCHEDULER_NAME \
|
--name $FRAMEWORK_SCHEDULER_NAME \
|
||||||
|
$DOCKER_REGISTRY_ENVS \
|
||||||
$SET_DEBUG_MODE \
|
$SET_DEBUG_MODE \
|
||||||
--env WEBSERVER_PORT=$WEBSERVER_PORT \
|
--env WEBSERVER_PORT=$WEBSERVER_PORT \
|
||||||
--network $FRAMEWORK_SCHEDULER_NETWORK \
|
--network $FRAMEWORK_SCHEDULER_NETWORK \
|
||||||
--env RUN_FORCE=$RUN_FORCE \
|
--env RUN_FORCE=$RUN_FORCE \
|
||||||
--env DOCKER_REGISTRY_URL=$DOCKER_REGISTRY_URL \
|
--env DOCKER_REGISTRY_URL=$DOCKER_REGISTRY_URL \
|
||||||
$DOCKER_START"
|
$DOCKER_START"
|
||||||
|
echo "DOCKER RUN: $DOCKER_RUN"
|
||||||
eval "$DOCKER_RUN"
|
eval "$DOCKER_RUN"
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -1093,15 +1268,17 @@ execute_task() {
|
|||||||
|
|
||||||
VPN_STATUS="0"
|
VPN_STATUS="0"
|
||||||
VPN_RESULT=""
|
VPN_RESULT=""
|
||||||
CONTAINERS=$(docker ps -a --format '{{.Names}} {{.Status}}' | grep -w wireguardproxy)
|
if [ -f $SECRET_DIR/vpn-proxy/wg0.conf ]; then
|
||||||
if [ "$CONTAINERS" != "" ]; then
|
CONTAINERS=$(docker ps -a --format '{{.Names}} {{.Status}}' | grep -w wireguardproxy)
|
||||||
UP=$(echo $CONTAINERS | grep -w 'Up')
|
if [ "$CONTAINERS" != "" ]; then
|
||||||
if [ "$UP" != "" ]; then
|
UP=$(echo $CONTAINERS | grep -w 'Up')
|
||||||
VPN_STATUS="2"
|
if [ "$UP" != "" ]; then
|
||||||
else
|
VPN_STATUS="1"
|
||||||
VPN_STATUS="1"
|
else
|
||||||
|
VPN_STATUS="2"
|
||||||
|
fi
|
||||||
|
VPN_RESULT=$(echo "$CONTAINERS" | base64 -w0)
|
||||||
fi
|
fi
|
||||||
VPN_RESULT=$(echo "$CONTAINERS" | base64 -w0)
|
|
||||||
fi
|
fi
|
||||||
JSON_TARGET=$(echo '{ "DATE": "'$DATE'", "STATUS": "'$VPN_STATUS'", "RESULT": "'$VPN_RESULT'" }' | jq -r . | base64 -w0)
|
JSON_TARGET=$(echo '{ "DATE": "'$DATE'", "STATUS": "'$VPN_STATUS'", "RESULT": "'$VPN_RESULT'" }' | jq -r . | base64 -w0)
|
||||||
|
|
||||||
@@ -1136,13 +1313,29 @@ execute_task() {
|
|||||||
|
|
||||||
elif [ "$TASK_NAME" == "backup" ]; then
|
elif [ "$TASK_NAME" == "backup" ]; then
|
||||||
|
|
||||||
TASK_TYPE=$(echo $B64_JSON | base64 -d | jq -r '.TASK_TYPE)')
|
TASK_TYPE=$(echo $B64_JSON | base64 -d | jq -r '.TASK_TYPE')
|
||||||
|
|
||||||
if [ "$TASK_TYPE" == "backup_query_state" ]; then
|
if [ "$TASK_TYPE" == "backup_query_state" ]; then
|
||||||
echo "task type is backup_query_state"
|
echo "task type is backup_query_state"
|
||||||
|
|
||||||
elif [ "$TASK_TYPE" == "backup_set_service" ]; then
|
elif [ "$TASK_TYPE" == "backup_set_service" ]; then
|
||||||
|
|
||||||
|
PASSWORD="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_SERVER_PASSWORD')"
|
||||||
|
PERIOD="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_PERIOD')"
|
||||||
|
COMPRESSION="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_COMPRESSION')"
|
||||||
|
PLANNED_TIME="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_PLANNED_TIME')"
|
||||||
|
DIRECTRIES="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_DIRECTORIES')"
|
||||||
|
SERVICES="$(echo $B64_JSON | base64 -d | jq -r '.SERVICES')"
|
||||||
|
BACKUP_LOCAL_CLIENTS="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_LOCAL_CLIENTS')"
|
||||||
|
BACKUP_VPN_CLIENTS="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_VPN_CLIENTS')"
|
||||||
|
VPN="$(echo $B64_JSON | base64 -d | jq -r '.VPN')"
|
||||||
|
SSH_PORT="$(echo $B64_JSON | base64 -d | jq -r '.SSH_PORT')"
|
||||||
|
SSH_USER="$(echo $B64_JSON | base64 -d | jq -r '.SSH_USER')"
|
||||||
|
SSH_PASSWORD="$(echo $B64_JSON | base64 -d | jq -r '.SSH_PASSWORD')"
|
||||||
|
OPERATION="$(echo $B64_JSON | base64 -d | jq -r '.OPERATION')"
|
||||||
|
|
||||||
echo "task type is backup_set_service"
|
echo "task type is backup_set_service"
|
||||||
|
backup_set_service "$PASSWORD" "$PERIOD" "$COMPRESSION" "$PLANNED_TIME" "$DIRECTRIES" "$SERVICES" "$BACKUP_LOCAL_CLIENTS" "$BACKUP_VPN_CLIENTS" "$VPN" "$SSH_PORT" "$SSH_USER" "$SSH_PASSWORD" "$OPERATION"
|
||||||
|
|
||||||
elif [ "$TASK_TYPE" == "backup_set_client" ]; then
|
elif [ "$TASK_TYPE" == "backup_set_client" ]; then
|
||||||
|
|
||||||
@@ -1153,14 +1346,8 @@ execute_task() {
|
|||||||
SSH_USER="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_CLIENT_SSH_USER')"
|
SSH_USER="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_CLIENT_SSH_USER')"
|
||||||
SSH_PASSWORD="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_CLIENT_SSH_PASSWORD')"
|
SSH_PASSWORD="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_CLIENT_SSH_PASSWORD')"
|
||||||
OPERATION="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_CLIENT_OPERATION')"
|
OPERATION="$(echo $B64_JSON | base64 -d | jq -r '.BACKUP_CLIENT_OPERATION')"
|
||||||
debug "task type is backup_set_client for $NAME"
|
|
||||||
debug " size: $SIZE"
|
|
||||||
debug " vpn: $VPN"
|
|
||||||
debug " ssh_port: $SSH_PORT"
|
|
||||||
debug " ssh_user: $SSH_USER"
|
|
||||||
debug " ssh_password: $SSH_PASSWORD"
|
|
||||||
debug " operation: $OPERATION"
|
|
||||||
|
|
||||||
|
debug "task type is backup_set_client for $NAME"
|
||||||
backup_set_client "$NAME" "$SIZE" "$VPN" "$SSH_PORT" "$SSH_USER" "$SSH_PASSWORD" "$OPERATION"
|
backup_set_client "$NAME" "$SIZE" "$VPN" "$SSH_PORT" "$SSH_USER" "$SSH_PASSWORD" "$OPERATION"
|
||||||
|
|
||||||
elif [ "$TASK_TYPE" == "backup_challenge_clients" ]; then
|
elif [ "$TASK_TYPE" == "backup_challenge_clients" ]; then
|
||||||
@@ -1180,24 +1367,21 @@ execute_task() {
|
|||||||
JSON="$(echo $B64_JSON | base64 -d)"
|
JSON="$(echo $B64_JSON | base64 -d)"
|
||||||
NAME=$(echo "$JSON" | jq -r .NAME | awk '{print tolower($0)}')
|
NAME=$(echo "$JSON" | jq -r .NAME | awk '{print tolower($0)}')
|
||||||
if [ "$NAME" == "framework" ]; then
|
if [ "$NAME" == "framework" ]; then
|
||||||
JSON_TARGET=$(echo '{"DATE":"'$DATE'","INSTALL_STATUS":0}' | jq -r . | base64 -w0)
|
JSON_TARGET=$(echo '{"DATE":"'$DATE'","STATUS":1}' | jq -r . | base64 -w0)
|
||||||
add_json_target $NAME
|
add_json_target $NAME
|
||||||
echo "Upgrading service: webserver"
|
echo "Upgrading service: webserver"
|
||||||
upgrade webserver
|
upgrade webserver
|
||||||
|
|
||||||
echo "Upgrading framework scheduler..."
|
echo "Upgrading framework scheduler..."
|
||||||
echo "Cleaning temporary files..."
|
|
||||||
|
|
||||||
rm -rf /var/tmp/shared/input/*
|
|
||||||
rm -rf /var/tmp/shared/output/*
|
|
||||||
|
|
||||||
upgrade_scheduler
|
upgrade_scheduler
|
||||||
echo "Removing old framework scheduler container..."
|
echo "Removing old framework scheduler container..."
|
||||||
JSON_TARGET=$(echo '{"DATE":"'$DATE'","INSTALL_STATUS":1}' | jq -r . | base64 -w0)
|
JSON_TARGET=$(echo '{"DATE":"'$DATE'","STATUS":2,"VERSION":"'$VERSION'"}' | jq -r . | base64 -w0)
|
||||||
add_json_target $NAME
|
add_json_target $NAME
|
||||||
sleep 1
|
sleep 1
|
||||||
/usr/bin/docker rm -f $HOSTNAME
|
/usr/bin/docker rm -f $HOSTNAME
|
||||||
|
|
||||||
|
JSON_TARGET="" # do not create upgrade.json
|
||||||
|
|
||||||
#CONTAINERS=$(docker ps -a --format '{{.Names}} {{.Status}}' | grep -E 'framework-scheduler|webserver')
|
#CONTAINERS=$(docker ps -a --format '{{.Names}} {{.Status}}' | grep -E 'framework-scheduler|webserver')
|
||||||
else
|
else
|
||||||
echo "Upgrading service: $NAME"
|
echo "Upgrading service: $NAME"
|
||||||
@@ -1322,7 +1506,7 @@ fi
|
|||||||
#RS=$(docker ps | grep redis-server)
|
#RS=$(docker ps | grep redis-server)
|
||||||
WS=$(/usr/bin/docker ps | grep -o webserver)
|
WS=$(/usr/bin/docker ps | grep -o webserver)
|
||||||
|
|
||||||
if [ "$WS" == "" ]; then
|
if [ "$WS" == "" ] && [ ! -f $SHARED/output/upgrade-framework.json ]; then
|
||||||
# START SERVICES
|
# START SERVICES
|
||||||
echo "Starting webserver"
|
echo "Starting webserver"
|
||||||
$service_exec service-framework.containers.webserver start &
|
$service_exec service-framework.containers.webserver start &
|
||||||
@@ -1337,7 +1521,13 @@ DATE=$(date +%F-%H-%M-%S)
|
|||||||
DIR=$SHARED/input
|
DIR=$SHARED/input
|
||||||
|
|
||||||
# Triggers by certificate or domain config changes
|
# Triggers by certificate or domain config changes
|
||||||
|
# Set installed version number
|
||||||
|
echo '{}' | jq --arg VERSION "$VERSION" '.VERSION = $VERSION' > $SHARED/output/version.json
|
||||||
|
############################
|
||||||
|
|
||||||
|
if [ "$DEBUG_MODE" == "true" ]; then
|
||||||
|
rm $DIR/*
|
||||||
|
fi
|
||||||
unset IFS
|
unset IFS
|
||||||
|
|
||||||
inotifywait --exclude "\.(swp|tmp)" -m -e CREATE,CLOSE_WRITE,DELETE,MOVED_TO -r $DIR |
|
inotifywait --exclude "\.(swp|tmp)" -m -e CREATE,CLOSE_WRITE,DELETE,MOVED_TO -r $DIR |
|
||||||
|
|||||||
Reference in New Issue
Block a user