We use cookies to ensure you get the best experience on our website
Sākums Izpētīt Palīdzība
Reģistrēties Pierakstīties
0ct0pu5
/
runtipi
1
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Koks: 2faa38dd43
Atzari Tagi
runtipi
/
scripts
/
start.sh

start.sh 6.1 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222 
  1. #!/usr/bin/env bash
    2. 

  2. set -e # Exit immediately if a command exits with a non-zero status.
    3. 

  3. 

  4. # use greadlink instead of readlink on osx
    5. 

  5. if [[ "$(uname)" == "Darwin" ]]; then
    6. 

  6.   readlink=greadlink
    7. 

  7. else
    8. 

  8.   readlink=readlink
    9. 

  9. fi
    10. 

  10. 

  11. NGINX_PORT=80
    12. 

  12. PROXY_PORT=8080
    13. 

  13. 

  14. while [ -n "$1" ]; do # while loop starts
    15. 

  15.   case "$1" in
    16. 

  16.   --rc) rc="true" ;;
    17. 

  17.   --ci) ci="true" ;;
    18. 

  18.   --port)
    19. 

  19.     port="$2"
    20. 

  20. 

  21.     if [[ "${port}" =~ ^[0-9]+$ ]]; then
    22. 

  22.       NGINX_PORT="${port}"
    23. 

  23.     else
    24. 

  24.       echo "--port must be a number"
    25. 

  25.       exit 1
    26. 

  26.     fi
    27. 

  27.     shift
    28. 

  28.     ;;
    29. 

  29.   --proxy-port)
    30. 

  30.     proxy_port="$2"
    31. 

  31. 

  32.     if [[ "${proxy_port}" =~ ^[0-9]+$ ]]; then
    33. 

  33.       PROXY_PORT="${proxy_port}"
    34. 

  34.     else
    35. 

  35.       echo "--proxy-port must be a number"
    36. 

  36.       exit 1
    37. 

  37.     fi
    38. 

  38.     shift
    39. 

  39.     ;;
    40. 

  40.   --)
    41. 

  41.     shift # The double dash makes them parameters
    42. 

  42.     break
    43. 

  43.     ;;
    44. 

  44.   *) echo "Option $1 not recognized" && exit 1 ;;
    45. 

  45.   esac
    46. 

  46.   shift
    47. 

  47. done
    48. 

  48. 

  49. # Check we are on linux
    50. 

  50. if [[ "$(uname)" != "Linux" ]]; then
    51. 

  51.   echo "Tipi only works on Linux"
    52. 

  52.   exit 1
    53. 

  53. fi
    54. 

  54. 

  55. ROOT_FOLDER="$($readlink -f $(dirname "${BASH_SOURCE[0]}")/..)"
    56. 

  56. STATE_FOLDER="${ROOT_FOLDER}/state"
    57. 

  57. SED_ROOT_FOLDER="$(echo $ROOT_FOLDER | sed 's/\//\\\//g')"
    58. 

  58. 

  59. NETWORK_INTERFACE="$(ip route | grep default | awk '{print $5}')"
    60. 

  60. INTERNAL_IP="$(ip addr show "${NETWORK_INTERFACE}" | grep "inet " | awk '{print $2}' | cut -d/ -f1)"
    61. 

  61. # INTERNAL_IP="$(hostname -I | awk '{print $1}')"
    62. 

  62. DNS_IP=9.9.9.9 # Default to Quad9 DNS
    63. 

  63. ARCHITECTURE="$(uname -m)"
    64. 

  64. 

  65. if [[ "$ARCHITECTURE" == "aarch64" ]]; then
    66. 

  66.   ARCHITECTURE="arm64"
    67. 

  67. fi
    68. 

  68. 

  69. if [[ $UID != 0 ]]; then
    70. 

  70.   echo "Tipi must be started as root"
    71. 

  71.   echo "Please re-run this script as"
    72. 

  72.   echo "  sudo ./scripts/start"
    73. 

  73.   exit 1
    74. 

  74. fi
    75. 

  75. 

  76. # Configure Tipi if it isn't already configured
    77. 

  77. if [[ ! -f "${STATE_FOLDER}/configured" ]]; then
    78. 

  78.   "${ROOT_FOLDER}/scripts/configure.sh"
    79. 

  79. fi
    80. 

  80. 

  81. # Get field from json file
    82. 

  82. function get_json_field() {
    83. 

  83.   local json_file="$1"
    84. 

  84.   local field="$2"
    85. 

  85. 

  86.   echo $(jq -r ".${field}" "${json_file}")
    87. 

  87. }
    88. 

  88. 

  89. # Deterministically derives 128 bits of cryptographically secure entropy
    90. 

  90. function derive_entropy() {
    91. 

  91.   SEED_FILE="${STATE_FOLDER}/seed"
    92. 

  92.   identifier="${1}"
    93. 

  93.   tipi_seed=$(cat "${SEED_FILE}") || true
    94. 

  94. 

  95.   if [[ -z "$tipi_seed" ]] || [[ -z "$identifier" ]]; then
    96. 

  96.     echo >&2 "Missing derivation parameter, this is unsafe, exiting."
    97. 

  97.     exit 1
    98. 

  98.   fi
    99. 

  99. 

  100.   # We need `sed 's/^.* //'` to trim the "(stdin)= " prefix from some versions of openssl
    101. 

  101.   printf "%s" "${identifier}" | openssl dgst -sha256 -hmac "${tipi_seed}" | sed 's/^.* //'
    102. 

  102. }
    103. 

  103. 

  104. TZ="$(cat /etc/timezone | sed 's/\//\\\//g' || echo "Europe/Berlin")"
    105. 

  105. 

  106. # Copy the app state if it isn't here
    107. 

  107. if [[ ! -f "${STATE_FOLDER}/apps.json" ]]; then
    108. 

  108.   cp "${ROOT_FOLDER}/templates/apps-sample.json" "${STATE_FOLDER}/apps.json"
    109. 

  109. fi
    110. 

  110. 

  111. # Copy the user state if it isn't here
    112. 

  112. if [[ ! -f "${STATE_FOLDER}/users.json" ]]; then
    113. 

  113.   cp "${ROOT_FOLDER}/templates/users-sample.json" "${STATE_FOLDER}/users.json"
    114. 

  114. fi
    115. 

  115. 

  116. # Get current dns from host
    117. 

  117. if [[ -f "/etc/resolv.conf" ]]; then
    118. 

  118.   TEMP=$(cat /etc/resolv.conf | grep -E -o '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' | head -n 1)
    119. 

  119. fi
    120. 

  120. 

  121. # Get dns ip if pihole is installed
    122. 

  122. str=$(get_json_field ${STATE_FOLDER}/apps.json installed)
    123. 

  123. 

  124. # Create seed file with cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1
    125. 

  125. if [[ ! -f "${STATE_FOLDER}/seed" ]]; then
    126. 

  126.   echo "Generating seed..."
    127. 

  127.   cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1 >"${STATE_FOLDER}/seed"
    128. 

  128. fi
    129. 

  129. 

  130. export DOCKER_CLIENT_TIMEOUT=240
    131. 

  131. export COMPOSE_HTTP_TIMEOUT=240
    132. 

  132. 

  133. echo "Generating config files..."
    134. 

  134. # Remove current .env file
    135. 

  135. [[ -f "${ROOT_FOLDER}/.env" ]] && rm -f "${ROOT_FOLDER}/.env"
    136. 

  136. [[ -f "${ROOT_FOLDER}/packages/system-api/.env" ]] && rm -f "${ROOT_FOLDER}/packages/system-api/.env"
    137. 

  137. 

  138. # Store paths to intermediary config files
    139. 

  139. ENV_FILE=$(mktemp)
    140. 

  140. 

  141. # Copy template configs to intermediary configs
    142. 

  142. [[ -f "$ROOT_FOLDER/templates/env-sample" ]] && cp "$ROOT_FOLDER/templates/env-sample" "$ENV_FILE"
    143. 

  143. 

  144. JWT_SECRET=$(derive_entropy "jwt")
    145. 

  145. 

  146. for template in "${ENV_FILE}"; do
    147. 

  147.   sed -i "s/<dns_ip>/${DNS_IP}/g" "${template}"
    148. 

  148.   sed -i "s/<internal_ip>/${INTERNAL_IP}/g" "${template}"
    149. 

  149.   sed -i "s/<tz>/${TZ}/g" "${template}"
    150. 

  150.   sed -i "s/<jwt_secret>/${JWT_SECRET}/g" "${template}"
    151. 

  151.   sed -i "s/<root_folder>/${SED_ROOT_FOLDER}/g" "${template}"
    152. 

  152.   sed -i "s/<tipi_version>/$(cat "${ROOT_FOLDER}/VERSION")/g" "${template}"
    153. 

  153.   sed -i "s/<architecture>/${ARCHITECTURE}/g" "${template}"
    154. 

  154.   sed -i "s/<nginx_port>/${NGINX_PORT}/g" "${template}"
    155. 

  155.   sed -i "s/<proxy_port>/${PROXY_PORT}/g" "${template}"
    156. 

  156. done
    157. 

  157. 

  158. mv -f "$ENV_FILE" "$ROOT_FOLDER/.env"
    159. 

  159. 

  160. # Run system-info.sh
    161. 

  161. echo "Running system-info.sh..."
    162. 

  162. bash "${ROOT_FOLDER}/scripts/system-info.sh"
    163. 

  163. 

  164. # Add crontab to run system-info.sh every minute
    165. 

  165. ! (crontab -l | grep -q "${ROOT_FOLDER}/scripts/system-info.sh") && (
    166. 

  166.   crontab -l
    167. 

  167.   echo "* * * * * ${ROOT_FOLDER}/scripts/system-info.sh"
    168. 

  168. ) | crontab -
    169. 

  169. 

  170. ## Don't run if config-only
    171. 

  171. if [[ ! $ci == "true" ]]; then
    172. 

  172. 

  173.   if [[ $rc == "true" ]]; then
    174. 

  174.     docker-compose -f docker-compose.rc.yml --env-file "${ROOT_FOLDER}/.env" pull
    175. 

  175.     # Run docker-compose
    176. 

  176.     docker-compose -f docker-compose.rc.yml --env-file "${ROOT_FOLDER}/.env" up --detach --remove-orphans --build || {
    177. 

  177.       echo "Failed to start containers"
    178. 

  178.       exit 1
    179. 

  179.     }
    180. 

  180.   else
    181. 

  181.     docker-compose --env-file "${ROOT_FOLDER}/.env" pull
    182. 

  182.     # Run docker-compose
    183. 

  183.     docker-compose --env-file "${ROOT_FOLDER}/.env" up --detach --remove-orphans --build || {
    184. 

  184.       echo "Failed to start containers"
    185. 

  185.       exit 1
    186. 

  186.     }
    187. 

  187.   fi
    188. 

  188. fi
    189. 

  189. 

  190. echo "Tipi is now running"
    191. 

  191. echo ""
    192. 

  192. cat <<"EOF"
    193. 

  193.        _,.
    194. 

  194.      ,` -.)
    195. 

  195.     '( _/'-\\-.               
    196. 

  196.    /,|`--._,-^|            ,     
    197. 

  197.    \_| |`-._/||          ,'|       
    198. 

  198.      |  `-, / |         /  /      
    199. 

  199.      |     || |        /  /       
    200. 

  200.       `r-._||/   __   /  /  
    201. 

  201.   __,-<_     )`-/  `./  /
    202. 

  202.  '  \   `---'   \   /  / 
    203. 

  203.      |           |./  /  
    204. 

  204.      /           //  /     
    205. 

  205.  \_/' \         |/  /         
    206. 

  206.   |    |   _,^-'/  /              
    207. 

  207.   |    , ``  (\/  /_        
    208. 

  208.    \,.->._    \X-=/^         
    209. 

  209.    (  /   `-._//^`  
    210. 

  210.     `Y-.____(__}              
    211. 

  211.      |     {__)           
    212. 

  212.            ()`     
    213. 

  213. EOF
    214. 

  214. 

  215. port_display=""
    216. 

  216. if [[ $NGINX_PORT != "80" ]]; then
    217. 

  217.   port_display=":${NGINX_PORT}"
    218. 

  218. fi
    219. 

  219. 

  220. echo ""
    221. 

  221. echo "Visit http://${INTERNAL_IP}${port_display}/ to view the dashboard"
    222. 

  222. echo ""
    223.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5