beenull/power-mailinabox
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
power-mailinabox/setup/management.sh

161 lines
6 KiB
Bash
Raw Normal View History

move management into a daemon service running as root * Created a new Python/flask-based management daemon. * Moved the mail user management core code from tools/mail.py to the new daemon. * tools/mail.py is a wrapper around the daemon and can be run as a non-root user. * Adding a new initscript for the management daemon. * Moving dns_update.sh to the management daemon, called via curl'ing the daemon's API. This also now runs the DNS update after mail users and aliases are added/removed, which sets up new domains' DNS as needed.
2014-06-03 13:24:48 +00:00
#!/bin/bash
source setup/functions.sh
Update to latest cryptography Python package, add missing source at top of management.sh so it can run standalone (needs STORAGE_ROOT)
2022-06-19 10:48:55 +00:00
source /etc/mailinabox.conf # load global vars
move management into a daemon service running as root * Created a new Python/flask-based management daemon. * Moved the mail user management core code from tools/mail.py to the new daemon. * tools/mail.py is a wrapper around the daemon and can be run as a non-root user. * Adding a new initscript for the management daemon. * Moving dns_update.sh to the management daemon, called via curl'ing the daemon's API. This also now runs the DNS update after mail users and aliases are added/removed, which sets up new domains' DNS as needed.
2014-06-03 13:24:48 +00:00
silence all of the installing/already installed package messages on installation Querying dpkg for each package is slow, and we have way too much output on installation because of it.
2015-08-19 19:58:35 +00:00
echo "Installing Mail-in-a-Box system management daemon..."
fix pip breaking due to setuptools/pip/cryptography problem pip<6.1 + setuptools>=34 have a problem with packages that try to update setuptools during installation, like cryptography. See https://github.com/pypa/pip/issues/4253. The Ubuntu 14.04 package versions are pip 1.5.4 and setuptools 3.3. When we install cryptography under those versions, it tries to update setuptools to version 34, which became available about 10 days ago, and then pip gets permanently broken with errors like "ImportError: No module named 'packaging'". The easiest work-around on systems that aren't already broken is to upgrade pip and setuptools individually before we install any package that tries to update setuptools. Also try to detect a broken system and forcibly remove setuptools first before trying to install/upgrade pip. fixes #1080, fixes #1081, fixes #1086 see #1083 see https://discourse.mailinabox.email/t/error-with-pip-and-python/1880 see https://discourse.mailinabox.email/t/error-installing-mib/1875
2017-02-01 14:14:01 +00:00
# DEPENDENCIES
Fixes #1437 - package python-virtualenv is now called just virtualenv (#1452)
2018-10-24 21:20:48 +00:00
# virtualenv is used to isolate the Python 3 packages we
cryptography is now distributed as a wheel and no longer needs system development packages to be installed or pip/setuptools workarounds
2018-05-12 15:32:54 +00:00
# install via pip from the system-installed packages.
replace free_tls_certificates with certbot
2018-05-13 00:02:25 +00:00
#
# certbot installs EFF's certbot which we use to
# provision free TLS certificates.
Alternative duplicity installation (build from pip)
2022-10-16 18:21:07 +00:00
#
# gcc and build tools are required to install the latest version
# of duplicity
apt_install python3-pip python3-gpg virtualenv certbot rsync librsync2 python3-fasteners python3-future python3-lockfile \
gettext is a build dependency for duplicity * Fixes #81
2022-10-18 19:36:18 +00:00
gcc python3-dev librsync-dev gettext
Implement Backblaze for Backup (#1812) * Installing b2sdk for b2 support * Added Duplicity PPA so the most recent version is used * Implemented list_target_files for b2 * Implemented b2 in frontend * removed python2 boto package
2020-11-26 12:13:31 +00:00
Alternative duplicity installation (build from pip)
2022-10-16 18:21:07 +00:00
apt_get_quiet remove --autoremove --purge duplicity || /bin/true
# Duplicity does the actual backups.
Enable Backblaze B2 backups This reverts commit b1d703a5e717c086aea0e37e9b14f78150181880 and adds python3-setuptools per the first version of #1899 which fixes an installation error for the b2sdk Python package.
2021-02-28 12:54:55 +00:00
# b2sdk is used for backblaze backups.
Setup fixes for Ubuntu 22.04 Nextcloud: * The Nextcloud user_external 1.0.0 package for Nextcloud 21.0.7 isn't available from Nextcloud's releases page, but it's not needed in an intermediate upgrade step (hopefully), so we can skip it. * Nextcloud updgrade steps should not be elifs because multiple intermediate upgrades may be needed. * Continue if the user_external backend migration fails. Maybe it's not necessary. It gives a scary error message though. * Remove a line that removes an old file that hasn't been in use since 2019 and the expectation is that Ubuntu 22.04 installations are on fresh machines. Backups: * For duplicity, we now need boto3 for AWS.
2022-09-03 11:50:36 +00:00
# boto3 is used for amazon aws backups.
Implement Backblaze for Backup (#1812) * Installing b2sdk for b2 support * Added Duplicity PPA so the most recent version is used * Implemented list_target_files for b2 * Implemented b2 in frontend * removed python2 boto package
2020-11-26 12:13:31 +00:00
# Both are installed outside the pipenv, so they can be used by duplicity
Alternative duplicity installation (build from pip)
2022-10-16 18:21:07 +00:00
hide_output pip3 install --upgrade b2sdk boto3 duplicity
Add comment regarding the use of pip instead of pip3
2015-07-27 19:56:08 +00:00
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
# Create a virtualenv for the installation of Python 3 packages
# used by the management daemon.
inst_dir=/usr/local/lib/mailinabox
mkdir -p $inst_dir
venv=$inst_dir/env
if [ ! -d $venv ]; then
hide virtualenv output (#1578)
2019-05-15 18:59:32 +00:00
hide_output virtualenv -ppython3 $venv
Recreate Python env after an in-place OS upgrade Fixes #42
2022-01-24 01:48:34 +00:00
elif [ ! -f $venv/.oscode ]; then
echo "Re-creating Python environment..."
rm -rf $venv
hide_output virtualenv -ppython3 $venv
elif [ "$(cat $venv/.oscode)" != $(get_os_code) ]; then
echo "Existing management environment is from an earlier version of the OS you're running."
echo "Re-creating Python environment..."
rm -rf $venv
hide_output virtualenv -ppython3 $venv
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
fi
clean up apt_install lines and comments in setup/management.sh
2016-02-18 11:59:38 +00:00
cryptography is now distributed as a wheel and no longer needs system development packages to be installed or pip/setuptools workarounds
2018-05-12 15:32:54 +00:00
# Upgrade pip because the Ubuntu-packaged version is out of date.
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
hide_output $venv/bin/pip install --upgrade pip
fix pip breaking due to setuptools/pip/cryptography problem pip<6.1 + setuptools>=34 have a problem with packages that try to update setuptools during installation, like cryptography. See https://github.com/pypa/pip/issues/4253. The Ubuntu 14.04 package versions are pip 1.5.4 and setuptools 3.3. When we install cryptography under those versions, it tries to update setuptools to version 34, which became available about 10 days ago, and then pip gets permanently broken with errors like "ImportError: No module named 'packaging'". The easiest work-around on systems that aren't already broken is to upgrade pip and setuptools individually before we install any package that tries to update setuptools. Also try to detect a broken system and forcibly remove setuptools first before trying to install/upgrade pip. fixes #1080, fixes #1081, fixes #1086 see #1083 see https://discourse.mailinabox.email/t/error-with-pip-and-python/1880 see https://discourse.mailinabox.email/t/error-installing-mib/1875
2017-02-01 14:14:01 +00:00
clean up apt_install lines and comments in setup/management.sh
2016-02-18 11:59:38 +00:00
# Install other Python 3 packages used by the management daemon.
# The first line is the packages that Josh maintains himself!
# NOTE: email_validator is repeated in setup/questions.sh, so please keep the versions synced.
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
hide_output $venv/bin/pip install --upgrade \
replace free_tls_certificates with certbot
2018-05-13 00:02:25 +00:00
rtyaml "email_validator>=1.0.0" "exclusiveprocess" \
Replace Flask built-in WSGI server with gunicorn (#2158)
2022-09-17 12:03:16 +00:00
flask dnspython python-dateutil expiringdict gunicorn \
Replace HMAC-based session API keys with tokens stored in memory in the daemon process Since the session cache clears keys after a period of time, this fixes #1821. Based on https://github.com/mail-in-a-box/mailinabox/pull/2012, and so: Co-Authored-By: NewbieOrange <NewbieOrange@users.noreply.github.com> Also fixes #2029 by not revealing through the login failure error message whether a user exists or not.
2021-08-22 20:07:16 +00:00
qrcode[pil] pyotp \
Confirm boto3 installation
2022-10-16 19:46:04 +00:00
"idna>=2.0.0" "cryptography==2.2.2" boto psutil postfix-mta-sts-resolver boto3 b2sdk
new backup script, see #11
2014-06-03 20:21:17 +00:00
Add pgp keyring management (#5) This PR adds into the admin panel a front-end to manage PGP keys. Possibilities are many.
2020-10-04 15:35:59 +00:00
# Make the venv use the packaged gpgme bindings (the ones pip provides are severely out-of-date)
if [ ! -d $venv/lib/python$(python_version)/site-packages/gpg/ ]; then
ln -s /usr/lib/python3/dist-packages/gpg/ $venv/lib/python$(python_version)/site-packages/
fi
Recreate Python env after an in-place OS upgrade Fixes #42
2022-01-24 01:48:34 +00:00
echo $(get_os_code) > $venv/.oscode
fix pip breaking due to setuptools/pip/cryptography problem pip<6.1 + setuptools>=34 have a problem with packages that try to update setuptools during installation, like cryptography. See https://github.com/pypa/pip/issues/4253. The Ubuntu 14.04 package versions are pip 1.5.4 and setuptools 3.3. When we install cryptography under those versions, it tries to update setuptools to version 34, which became available about 10 days ago, and then pip gets permanently broken with errors like "ImportError: No module named 'packaging'". The easiest work-around on systems that aren't already broken is to upgrade pip and setuptools individually before we install any package that tries to update setuptools. Also try to detect a broken system and forcibly remove setuptools first before trying to install/upgrade pip. fixes #1080, fixes #1081, fixes #1086 see #1083 see https://discourse.mailinabox.email/t/error-with-pip-and-python/1880 see https://discourse.mailinabox.email/t/error-installing-mib/1875
2017-02-01 14:14:01 +00:00
# CONFIGURATION
new backup script, see #11
2014-06-03 20:21:17 +00:00
# Create a backup directory and a random key for encrypting backups.
mkdir -p $STORAGE_ROOT/backup
if [ ! -f $STORAGE_ROOT/backup/secret_key.txt ]; then
Fix permissions of backup secret according to Josh's comment at https://github.com/mail-in-a-box/mailinabox/pull/150#issuecomment-53120156
2014-08-22 21:23:56 +00:00
$(umask 077; openssl rand -base64 2048 > $STORAGE_ROOT/backup/secret_key.txt)
new backup script, see #11
2014-06-03 20:21:17 +00:00
fi
move management into a daemon service running as root * Created a new Python/flask-based management daemon. * Moved the mail user management core code from tools/mail.py to the new daemon. * tools/mail.py is a wrapper around the daemon and can be run as a non-root user. * Adding a new initscript for the management daemon. * Moving dns_update.sh to the management daemon, called via curl'ing the daemon's API. This also now runs the DNS update after mail users and aliases are added/removed, which sets up new domains' DNS as needed.
2014-06-03 13:24:48 +00:00
download jQuery and Bootstrap during setup and serve locally so that we don't rely on a CDN which is blocked in some parts of the world (#1167) (#1171)
2017-05-08 11:25:16 +00:00
# Download jQuery and Bootstrap local files
# Make sure we have the directory to save to.
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
assets_dir=$inst_dir/vendor/assets
fetch whole bootstrap - fixes missing icons in admin (#1185)
2017-05-31 11:36:17 +00:00
rm -rf $assets_dir
download jQuery and Bootstrap during setup and serve locally so that we don't rely on a CDN which is blocked in some parts of the world (#1167) (#1171)
2017-05-08 11:25:16 +00:00
mkdir -p $assets_dir
# jQuery CDN URL
Software Updates * Nextcloud to 24.0.6 * * Contacts to 4.2.2 * JQuery to 3.6.1 * Bootstrap to 5.2.2 * FontAwesome to 6.2.0
2022-10-17 01:56:03 +00:00
jquery_version=3.6.1
Software Updates * FontAwesome to v6.2.1
2022-11-21 02:04:28 +00:00
jquery_url=https://code.jquery.com # Check this link for new versions
download jQuery and Bootstrap during setup and serve locally so that we don't rely on a CDN which is blocked in some parts of the world (#1167) (#1171)
2017-05-08 11:25:16 +00:00
# Get jQuery
Software Updates * Nextcloud to 24.0.6 * * Contacts to 4.2.2 * JQuery to 3.6.1 * Bootstrap to 5.2.2 * FontAwesome to 6.2.0
2022-10-17 01:56:03 +00:00
wget_verify $jquery_url/jquery-$jquery_version.min.js ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 $assets_dir/jquery.min.js
download jQuery and Bootstrap during setup and serve locally so that we don't rely on a CDN which is blocked in some parts of the world (#1167) (#1171)
2017-05-08 11:25:16 +00:00
# Bootstrap CDN URL
Software Updates * FontAwesome to v6.2.1
2022-11-21 02:04:28 +00:00
# See https://github.com/twbs/bootstrap/releases to check for new versions
Software Updates * Nextcloud to 24.0.6 * * Contacts to 4.2.2 * JQuery to 3.6.1 * Bootstrap to 5.2.2 * FontAwesome to 6.2.0
2022-10-17 01:56:03 +00:00
bootstrap_version=5.2.2
fetch whole bootstrap - fixes missing icons in admin (#1185)
2017-05-31 11:36:17 +00:00
bootstrap_url=https://github.com/twbs/bootstrap/releases/download/v$bootstrap_version/bootstrap-$bootstrap_version-dist.zip
download jQuery and Bootstrap during setup and serve locally so that we don't rely on a CDN which is blocked in some parts of the world (#1167) (#1171)
2017-05-08 11:25:16 +00:00
# Get Bootstrap
Software Updates * Nextcloud to 24.0.6 * * Contacts to 4.2.2 * JQuery to 3.6.1 * Bootstrap to 5.2.2 * FontAwesome to 6.2.0
2022-10-17 01:56:03 +00:00
wget_verify $bootstrap_url 740b34c22cef5c2f12a34f084b813ea308fedf74 /tmp/bootstrap.zip
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
unzip -q /tmp/bootstrap.zip -d $assets_dir
mv $assets_dir/bootstrap-$bootstrap_version-dist $assets_dir/bootstrap
fetch whole bootstrap - fixes missing icons in admin (#1185)
2017-05-31 11:36:17 +00:00
rm -f /tmp/bootstrap.zip
download jQuery and Bootstrap during setup and serve locally so that we don't rely on a CDN which is blocked in some parts of the world (#1167) (#1171)
2017-05-08 11:25:16 +00:00
Replace dead glyphicons (with FontAwesome alternative)
2020-11-21 02:27:52 +00:00
# FontAwesome CDN URL
Software Updates * FontAwesome to v6.2.1
2022-11-21 02:04:28 +00:00
# See https://github.com/FortAwesome/Font-Awesome/releases to check for new versions
fontawesome_version=6.2.1
Replace dead glyphicons (with FontAwesome alternative)
2020-11-21 02:27:52 +00:00
fontawesome_url=https://github.com/FortAwesome/Font-Awesome/releases/download/$fontawesome_version/fontawesome-free-$fontawesome_version-web.zip
# Get FontAwesome
Software Updates * FontAwesome to v6.2.1
2022-11-21 02:04:28 +00:00
wget_verify $fontawesome_url cd0f2bcc9653b56e3e2dd82d6598aa6bbca8d796 /tmp/fontawesome.zip
Replace dead glyphicons (with FontAwesome alternative)
2020-11-21 02:27:52 +00:00
unzip -q /tmp/fontawesome.zip -d $assets_dir
mv $assets_dir/fontawesome-free-$fontawesome_version-web $assets_dir/fontawesome
rm -f /tmp/fontawesome.zip
move management into a daemon service running as root * Created a new Python/flask-based management daemon. * Moved the mail user management core code from tools/mail.py to the new daemon. * tools/mail.py is a wrapper around the daemon and can be run as a non-root user. * Adding a new initscript for the management daemon. * Moving dns_update.sh to the management daemon, called via curl'ing the daemon's API. This also now runs the DNS update after mail users and aliases are added/removed, which sets up new domains' DNS as needed.
2014-06-03 13:24:48 +00:00
# Create an init script to start the management daemon and keep it
# running after a reboot.
Increase gunicorn's worker timeout since some /admin commands take a long time
2022-10-08 12:17:24 +00:00
# Set a long timeout since some commands take a while to run, matching
# the timeout we set for PHP (fastcgi_read_timeout in the nginx confs).
Replace Flask built-in WSGI server with gunicorn (#2158)
2022-09-17 12:03:16 +00:00
# Note: Authentication currently breaks with more than 1 gunicorn worker.
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
cat > $inst_dir/start <<EOF;
#!/bin/bash
Include en_US.UTF-8 locale in daemon startup (#1883) Fixes #1881.
2020-12-20 00:11:58 +00:00
# Set character encoding flags to ensure that any non-ASCII don't cause problems.
export LANGUAGE=en_US.UTF-8
export LC_ALL=en_US.UTF-8
export LANG=en_US.UTF-8
export LC_TYPE=en_US.UTF-8
Replace Flask built-in WSGI server with gunicorn (#2158)
2022-09-17 12:03:16 +00:00
mkdir -p /var/lib/mailinabox
tr -cd '[:xdigit:]' < /dev/urandom | head -c 32 > /var/lib/mailinabox/api.key
chmod 640 /var/lib/mailinabox/api.key
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
source $venv/bin/activate
Replace Flask built-in WSGI server with gunicorn (#2158)
2022-09-17 12:03:16 +00:00
export PYTHONPATH=$(pwd)/management
Increase gunicorn's worker timeout since some /admin commands take a long time
2022-10-08 12:17:24 +00:00
exec gunicorn -b localhost:10222 -w 1 --timeout 630 wsgi:app
install Python 3 packages in a virtualenv The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent. See #1298, see #1264.
2018-01-15 17:43:32 +00:00
EOF
chmod +x $inst_dir/start
Fix upgrade issue broken by 802e7a1f4d315a1bd10c1dfae259f6779f940ed0
2019-12-01 22:43:56 +00:00
cp --remove-destination conf/mailinabox.service /lib/systemd/system/mailinabox.service # target was previously a symlink so remove it first
Copy systemd service files before linking to avoid issue with order of mounting filesystems (#1688)
2019-12-01 21:15:04 +00:00
hide_output systemctl link -f /lib/systemd/system/mailinabox.service
minimal changeset to get things working on 18.04 @joshdata squashed pull request #1398, removed some comments, and added these notes: * The old init.d script for the management daemon is replaced with a systemd service. * A systemd service configuration is added to configure permissions for munin on startup. * nginx SSL settings are updated because nginx's options and defaults have changed, and we now enable http2. * Automatic SSHFP record generation is updated to know that 22 is the default SSH daemon port, since it is no longer explicit in sshd_config. * The dovecot-lucene package is dropped because the Mail-in-a-Box PPA where we built the package has not been updated for Ubuntu 18.04. * The stock postgrey package is installed instead of the one from our PPA (which we no longer support), which loses the automatic whitelisting of DNSWL.org-whitelisted senders. * Drop memcached and the status check for memcached, which we used to use with ownCloud long ago but are no longer installing. * Other minor changes.
2018-07-07 18:41:41 +00:00
hide_output systemctl daemon-reload
hide_output systemctl enable mailinabox.service
move management into a daemon service running as root * Created a new Python/flask-based management daemon. * Moved the mail user management core code from tools/mail.py to the new daemon. * tools/mail.py is a wrapper around the daemon and can be run as a non-root user. * Adding a new initscript for the management daemon. * Moving dns_update.sh to the management daemon, called via curl'ing the daemon's API. This also now runs the DNS update after mail users and aliases are added/removed, which sets up new domains' DNS as needed.
2014-06-03 13:24:48 +00:00
clean up the backup time patch: dont choose timezone here, move status checks into the same 3am script
2015-12-26 13:39:22 +00:00
# Perform nightly tasks at 3am in system time: take a backup, run
# status checks and email the administrator any changes.
add timezone selection
2015-12-23 22:29:13 +00:00
Run nightly tasks on a random minute after 03:00 to avoid overload (#1754) - The MIAB version check regularly fails at 03:00, presumably because a large portion of installations is checking mailinabox.email at the same time. - At installation time, the time of the nightly clock is configured to run at a random minute after 03:00, but before 04:00. - Users might expect the nightly tasks to be over at a certain time and run their own custom tasks afterwards. This could thus interfere with custom backup routines. - This breaks reproducibility of the installation process. - Users might also be surprised by the nightly task time changing after updating MIAB.
2020-05-03 14:34:42 +00:00
minute=$((RANDOM % 60)) # avoid overloading mailinabox.email
clean up the backup time patch: dont choose timezone here, move status checks into the same 3am script
2015-12-26 13:39:22 +00:00
cat > /etc/cron.d/mailinabox-nightly << EOF;
run status checks each night and email the administrator with the changes from the previous day's results
2015-03-08 21:56:28 +00:00
# Mail-in-a-Box --- Do not edit / will be overwritten on update.
clean up the backup time patch: dont choose timezone here, move status checks into the same 3am script
2015-12-26 13:39:22 +00:00
# Run nightly tasks: backup, status checks.
Merge v0.54 from upstream
2021-06-27 21:24:26 +00:00
$minute 3 * * * root (cd $(pwd) && management/daily_tasks.sh)
run status checks each night and email the administrator with the changes from the previous day's results
2015-03-08 21:56:28 +00:00
EOF
provision and install free SSL certificates from Let's Encrypt
2015-10-10 22:03:55 +00:00
# Start the management server.
hide lots of unnecessary and scary output during setup
2014-07-16 13:06:45 +00:00
restart_service mailinabox
Automatically import existing local CA cerificates
2021-02-01 02:20:38 +00:00
# FOR DEVELOPMENT PURPOSES ONLY:
# If there is a CA certificate in the folder, install it.
# MIAB will only accept a manual certificate installation
# if it is signed by a CA trusted by it.
if [[ -f mailinabox-ca.crt ]]; then
echo "Custom CA certificate detected. Installing..."
rm -f /usr/local/share/ca-certificates/mailinabox-ca.crt
cp mailinabox-ca.crt /usr/local/share/ca-certificates/
Make output from setup scripts a little bit less noisy
2021-07-02 23:46:31 +00:00
hide_output update-ca-certificates --fresh
Automatically import existing local CA cerificates
2021-02-01 02:20:38 +00:00
fi
Reference in a new issue Copy permalink