free
/
freedombone
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
2449 Commits
5 Branches
Tree: 69225e70c4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '69225e70c4'
${ noResults }
freedombone/src/freedombone-controlpanel

freedombone-controlpanel 28KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910 
  1. #!/bin/bash

  2. #

  3. # .---.                  .              .

  4. # |                      |              |

  5. # |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.

  6. # |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'

  7. # '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'

  8. #

  9. #                    Freedom in the Cloud

  10. #

  11. # Administrator control panel for the Freedombone system

  12. #

  13. # License

  14. # =======

  15. #

  16. # Copyright (C) 2015 Bob Mottram <bob@robotics.uk.to>

  17. #

  18. # This program is free software: you can redistribute it and/or modify

  19. # it under the terms of the GNU General Public License as published by

  20. # the Free Software Foundation, either version 3 of the License, or

  21. # (at your option) any later version.

  22. #

  23. # This program is distributed in the hope that it will be useful,

  24. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  25. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

  26. # GNU General Public License for more details.

  27. #

  28. # You should have received a copy of the GNU General Public License

  29. # along with this program. If not, see <http://www.gnu.org/licenses/>.

  30. 

  31. PROJECT_NAME='freedombone'

  32. 

  33. export TEXTDOMAIN=${PROJECT_NAME}-controlpanel

  34. export TEXTDOMAINDIR="/usr/share/locale"

  35. 

  36. COMPLETION_FILE=$HOME/freedombone-completed.txt

  37. SELECTED_USERNAME=

  38. SIP_CONFIG_FILE=/etc/sipwitch.conf

  39. ADMIN_USER=

  40. UPGRADE_SCRIPT_NAME="${PROJECT_NAME}-upgrade"

  41. 

  42. function any_key {

  43.     echo ' '

  44.     read -n1 -r -p "Press any key to continue..." key

  45. }

  46. 

  47. function check_for_updates {

  48.     if [ ! -f /etc/cron.weekly/$UPGRADE_SCRIPT_NAME ]; then

  49.         dialog --title $"Check for updates" \

  50.                --msgbox $"Upgrade script was not found" 6 40

  51.         return

  52.     fi

  53. 

  54.     clear

  55.     . /etc/cron.weekly/$UPGRADE_SCRIPT_NAME

  56.     any_key

  57. }

  58. 

  59. function add_user {

  60.     data=$(tempfile 2>/dev/null)

  61.     trap "rm -f $data" 0 1 2 5 15

  62.     dialog --backtitle $"Freedombone Control Panel" \

  63.            --title $"Add new user" \

  64.            --form "\n" 8 40 3 \

  65.               $"Username:" 1 1 "" 1 11 16 15 \

  66.               $"ssh public key (optional):" 2 1 "" 3 1 40 10000 \

  67.               2> $data

  68.     sel=$?

  69.     case $sel in

  70.         1) return;;

  71.         255) return;;

  72.     esac

  73.     new_user_username=$(cat $data | sed -n 1p)

  74.     new_user_ssh_public_key=$(cat $data | sed -n 2p)

  75.     if [ ${#new_user_username} -lt 2 ]; then

  76.         dialog --title $"New username" \

  77.                --msgbox $"No username was given" 6 40

  78.         return

  79.     fi

  80.     if [[ "$new_user_username" == *" "* ]]; then

  81.         dialog --title $"Invalid username" \

  82.                --msgbox $"The username should not contain any spaces" 6 40

  83.         return

  84.     fi

  85.     if [ ${#new_user_ssh_public_key} -lt 20 ]; then

  86.         clear

  87.         freedombone-adduser "$new_user_username"

  88.         any_key

  89.     else

  90.         if [[ "$new_user_ssh_public_key" == "ssh-"* ]]; then

  91.             clear

  92.             freedombone-adduser "$new_user_username" "$new_user_ssh_public_key"

  93.             any_key

  94.         else

  95.             dialog --title $"ssh public key" \

  96.                    --msgbox $"This does not look like an ssh public key" 6 40

  97.         fi

  98.     fi

  99. }

  100. 

  101. function show_sip_extensions {

  102.     if [ ! -f $SIP_CONFIG_FILE ]; then

  103.         return;

  104.     fi

  105.     clear

  106.     echo $"SIP phone extensions:"

  107.     echo " "

  108.     while read ext; do

  109.         if [[ $ext == *"user id"* ]]; then

  110.             echo -n "    "

  111.             echo -n $(echo "$ext" | awk -F '"' '{print $2}' | awk -F '"' '{print $1}')

  112.             echo -n " "

  113.         fi

  114.         if [[ $ext == *"extension"* ]]; then

  115.             echo $(echo "$ext" | awk -F '>' '{print $2}' | awk -F '<' '{print $1}')

  116.         fi

  117.     done < $SIP_CONFIG_FILE

  118.     any_key

  119. }

  120. 

  121. function select_user {

  122.     SELECTED_USERNAME=

  123.     data=$(tempfile 2>/dev/null)

  124.     trap "rm -f $data" 0 1 2 5 15

  125.     dialog --title "Select a user" \

  126.            --backtitle $"Freedombone Control Panel" \

  127.            --dselect "/home/" 14 40 2> $data

  128.     sel=$?

  129.     case $sel in

  130.         0) SELECTED_USERNAME=$(cat $data | awk -F '/' '{print $3}');;

  131.         1) return;;

  132.         255) return;;

  133.     esac

  134.     if [ ${#SELECTED_USERNAME} -lt 2 ]; then

  135.         SELECTED_USERNAME=

  136.     fi

  137.     if [ ! -d /home/$SELECTED_USERNAME/Maildir ]; then

  138.         dialog --title $"User directory check" \

  139.                --msgbox $"This does not look like a user directory" 6 40

  140.         SELECTED_USERNAME=

  141.     fi

  142. }

  143. 

  144. function delete_user {

  145.     select_user

  146.     if [ ! $SELECTED_USERNAME ]; then

  147.         return

  148.     fi

  149.     if grep -Fxq "Admin user:$SELECTED_USERNAME" $COMPLETION_FILE; then

  150.         dialog --title $"Administrator user" \

  151.                --msgbox $"You can't delete the administrator user" 6 40

  152.         return

  153.     fi

  154.     clear

  155.     freedombone-rmuser $SELECTED_USERNAME

  156.     any_key

  157. }

  158. 

  159. function configure_remote_backups {

  160.     if ! grep -Fxq "Admin user:$SELECTED_USERNAME" $COMPLETION_FILE; then

  161.         dialog --title $"Administrator user" \

  162.                --msgbox $"No Administrator user found. Check $COMPLETION_FILE" 6 40

  163.         return

  164.     fi

  165.     if [ ${#ADMIN} -lt 2 ]; then

  166.         dialog --title $"Administrator user" \

  167.                --msgbox $"Username not found" 6 40

  168.         return

  169.     fi

  170.     if [ ! -d /home/$ADMIN_USER ]; then

  171.         dialog --title $"Administrator user" \

  172.                --msgbox $"Home directory not found" 6 40

  173.         return

  174.     fi

  175.     freedombone-remote -u $ADMIN_USER

  176. }

  177. 

  178. function change_password {

  179.     select_user

  180.     if [ ! $SELECTED_USERNAME ]; then

  181.         return

  182.     fi

  183.     clear

  184.     echo -n $"Change password for"

  185.     echo " $SELECTED_USERNAME"

  186.     echo ""

  187.     su -c "passwd" - $SELECTED_USERNAME

  188.     any_key

  189. }

  190. 

  191. function change_ssh_public_key {

  192.     select_user

  193.     if [ ! $SELECTED_USERNAME ]; then

  194.         return

  195.     fi

  196. 

  197.     if grep -Fxq "Admin user:$SELECTED_USERNAME" $COMPLETION_FILE; then

  198.         dialog --title $"Change ssh public key" \

  199.                --backtitle $"Freedombone Control Panel" \

  200.                --defaultno \

  201.                --yesno $"\nThis is the administrator user.\n\nAre you sure you want to change the ssh public key for the administrator?" 10 60

  202.         sel=$?

  203.         case $sel in

  204.             1) return;;

  205.             255) return;;

  206.         esac

  207.     fi

  208. 

  209.     data=$(tempfile 2>/dev/null)

  210.     trap "rm -f $data" 0 1 2 5 15

  211.     dialog --title $"Change ssh public key for $SELECTED_USERNAME" \

  212.            --backtitle $"Freedombone Control Panel" \

  213.            --inputbox $"Paste the ssh public key below" 8 60 2>$data

  214.     sel=$?

  215.     case $sel in

  216.         0)

  217.             SSH_PUBLIC_KEY=$(<$data)

  218.             if [ "$SSH_PUBLIC_KEY" ]; then

  219.                 if [ ${#SSH_PUBLIC_KEY} -gt 5 ]; then

  220.                     if [ -f "$SSH_PUBLIC_KEY" ]; then

  221.                         if [ ! -d /home/$SELECTED_USERNAME/.ssh ]; then

  222.                             mkdir /home/$SELECTED_USERNAME/.ssh

  223.                         fi

  224.                         cp $SSH_PUBLIC_KEY \

  225.                            /home/$SELECTED_USERNAME/.ssh/authorized_keys

  226.                         chown -R $SELECTED_USERNAME:$SELECTED_USERNAME \

  227.                               /home/$SELECTED_USERNAME/.ssh

  228.                         dialog --title $"Change ssh public key" \

  229.                                --msgbox $"ssh public key was installed" 6 40

  230.                     else

  231.                         if [[ "$SSH_PUBLIC_KEY" == "ssh-"* ]]; then

  232.                             if [ ! -d /home/$SELECTED_USERNAME/.ssh ]; then

  233.                                 mkdir /home/$SELECTED_USERNAME/.ssh

  234.                             fi

  235.                             echo "$SSH_PUBLIC_KEY" > \

  236.                                  /home/$SELECTED_USERNAME/.ssh/authorized_keys

  237.                             chown -R $SELECTED_USERNAME:$SELECTED_USERNAME \

  238.                                   /home/$SELECTED_USERNAME/.ssh

  239.                             dialog --title $"Change ssh public key" \

  240.                                    --msgbox $"ssh public key was installed" 6 40

  241.                         fi

  242.                     fi

  243.                 fi

  244.             fi

  245.             ;;

  246.     esac

  247. }

  248. 

  249. function add_to_mailing_list {

  250.     select_user

  251.     if [ ! $SELECTED_USERNAME ]; then

  252.         return

  253.     fi

  254.     data=$(tempfile 2>/dev/null)

  255.     trap "rm -f $data" 0 1 2 5 15

  256.     dialog --backtitle $"Freedombone Control Panel" \

  257.            --title $"Subscribe $SELECTED_USERNAME to a mailing list" \

  258.            --form "\n" 8 68 4 \

  259.               $"List folder name:" 1 1 "" 1 35 26 25 \

  260.               $"Name between [] on subject line:" 2 1 "" 2 35 26 25 \

  261.               $"List email address:" 3 1 "" 3 35 26 25 \

  262.               2> $data

  263.     sel=$?

  264.     case $sel in

  265.         1) return;;

  266.         255) return;;

  267.     esac

  268.     LIST_NAME=$(cat $data | sed -n 1p)

  269.     LIST_SUBJECT=$(cat $data | sed -n 2p)

  270.     LIST_EMAIL=$(cat $data | sed -n 3p)

  271. 

  272.     if [ ${#LIST_NAME} -lt 2 ]; then

  273.         dialog --title $"Add mailing list" \

  274.                --msgbox $"No mailing list name was given" 6 40

  275.         return

  276.     fi

  277.     if [ ${#LIST_SUBJECT} -lt 2 ]; then

  278.         dialog --title $"Add mailing list" \

  279.                --msgbox $"No mailing list subject was given" 6 40

  280.         return

  281.     fi

  282.     if [ ${#LIST_EMAIL} -lt 2 ]; then

  283.         dialog --title $"Add mailing list" \

  284.                --msgbox $"No mailing list email address was given" 6 40

  285.         return

  286.     fi

  287.     if [[ "$LIST_EMAIL" != *"@"* || "$LIST_EMAIL" != *"."* ]]; then

  288.         dialog --title $"Add mailing list" \

  289.                --msgbox $"Unrecognised email address" 6 40

  290.         return

  291.     fi

  292. 

  293.     freedombone-addlist -u $SELECTED_USERNAME -l "$LIST_NAME" \

  294.                         -s "$LIST_SUBJECT" -e "$LIST_EMAIL"

  295.     dialog --title $"Add mailing list" \

  296.            --msgbox $"$LIST_NAME list was added" 6 40

  297. }

  298. 

  299. function email_rule {

  300.     select_user

  301.     if [ ! $SELECTED_USERNAME ]; then

  302.         return

  303.     fi

  304.     data=$(tempfile 2>/dev/null)

  305.     trap "rm -f $data" 0 1 2 5 15

  306.     dialog --backtitle $"Freedombone Control Panel" \

  307.            --title $"Email rule for user $SELECTED_USERNAME" \

  308.            --form "\n" 8 65 3 \

  309.               $"When email arrives from address:" 1 1 "" 1 35 24 28 \

  310.               $"Move to folder:" 2 1 "" 2 35 24 28 \

  311.               2> $data

  312.     sel=$?

  313.     case $sel in

  314.         1) return;;

  315.         255) return;;

  316.     esac

  317.     RULE_EMAIL=$(cat $data | sed -n 1p)

  318.     RULE_FOLDER=$(cat $data | sed -n 2p)

  319. 

  320.     if [ ${#RULE_EMAIL} -lt 2 ]; then

  321.         dialog --title $"Add email rule" \

  322.                --msgbox $"No email address was given" 6 40

  323.         return

  324.     fi

  325.     if [ ${#RULE_FOLDER} -lt 2 ]; then

  326.         dialog --title $"Add email rule" \

  327.                --msgbox $"No folder name was given" 6 40

  328.         return

  329.     fi

  330.     if [[ "$RULE_EMAIL" != *"@"* || "$RULE_EMAIL" != *"."* ]]; then

  331.         dialog --title $"Add email rule" \

  332.                --msgbox $"Unrecognised email address" 6 40

  333.         return

  334.     fi

  335. 

  336.     freedombone-addemail -u $SELECTED_USERNAME -e "$RULE_EMAIL" \

  337.                          -g "$RULE_FOLDER"

  338.     dialog --title $"Add email rule" \

  339.            --msgbox $"Email rule for $RULE_EMAIL was added" 6 40

  340. }

  341. 

  342. function block_unblock_email {

  343.     select_user

  344.     if [ ! $SELECTED_USERNAME ]; then

  345.         return

  346.     fi

  347.     blockstr=$"Block/Unblock email going to"

  348.     data=$(tempfile 2>/dev/null)

  349.     trap "rm -f $data" 0 1 2 5 15

  350.     dialog --backtitle $"Freedombone Control Panel" \

  351.            --title "$blockstr $SELECTED_USERNAME" \

  352.            --form "\n" 8 65 3 \

  353.               $"When email arrives from address:" 1 1 "" 1 35 24 28 \

  354.               $"Block it:" 2 1 "yes" 2 35 4 4 \

  355.               2> $data

  356.     sel=$?

  357.     case $sel in

  358.         1) return;;

  359.         255) return;;

  360.     esac

  361.     BLOCK_EMAIL=$(cat $data | sed -n 1p)

  362.     BLOCK=$(cat $data | sed -n 2p)

  363.     if [ ${#BLOCK_EMAIL} -lt 2 ]; then

  364.         dialog --title $"Block/Unblock an email" \

  365.                --msgbox $"No email address was given" 6 40

  366.         return

  367.     fi

  368.     if [[ "$BLOCK_EMAIL" != *"@"* || "$BLOCK_EMAIL" != *"."* ]]; then

  369.         dialog --title $"Block/Unblock an email" \

  370.                --msgbox $"Unrecognised email address" 6 40

  371.         return

  372.     fi

  373.     if [[ $BLOCK == "y"* || $BLOCK == "Y"* ]]; then

  374.         freedombone-ignore -u $SELECTED_USERNAME -e "$BLOCK_EMAIL"

  375.         dialog --title $"Block an email" \

  376.                --msgbox "Email from $BLOCK_EMAIL to $SELECTED_USERNAME blocked" 6 40

  377.     else

  378.         freedombone-unignore -u $SELECTED_USERNAME -e "$BLOCK_EMAIL"

  379.         dialog --title $"Unblock an email" \

  380.                --msgbox "Email from $BLOCK_EMAIL to $SELECTED_USERNAME unblocked" 6 40

  381.     fi

  382. }

  383. 

  384. function block_unblock_subject {

  385.     select_user

  386.     if [ ! $SELECTED_USERNAME ]; then

  387.         return

  388.     fi

  389.     blockstr=$"Block/Unblock email going to"

  390.     data=$(tempfile 2>/dev/null)

  391.     trap "rm -f $data" 0 1 2 5 15

  392.     dialog --backtitle $"Freedombone Control Panel" \

  393.            --title "$blockstr $SELECTED_USERNAME" \

  394.            --form "\n" 8 70 3 \

  395.               $"When email arrives with subject text:" 1 1 "" 1 40 24 28 \

  396.               $"Block it:" 2 1 "yes" 2 40 4 4 \

  397.               2> $data

  398.     sel=$?

  399.     case $sel in

  400.         1) return;;

  401.         255) return;;

  402.     esac

  403.     BLOCK_SUBJECT=$(cat $data | sed -n 1p)

  404.     BLOCK=$(cat $data | sed -n 2p)

  405.     if [ ${#BLOCK_SUBJECT} -lt 2 ]; then

  406.         dialog --title $"Block/Unblock an email" \

  407.                --msgbox $"No subject was given" 6 40

  408.         return

  409.     fi

  410.     if [[ $BLOCK == "y"* || $BLOCK == "Y"* ]]; then

  411.         freedombone-ignore -u $SELECTED_USERNAME -t "$BLOCK_SUBJECT"

  412.         dialog --title $"Block an email" \

  413.                --msgbox "Email with subject $BLOCK_SUBJECT to $SELECTED_USERNAME blocked" 6 40

  414.     else

  415.         freedombone-unignore -u $SELECTED_USERNAME -t "$BLOCK_SUBJECT"

  416.         dialog --title $"Unblock an email" \

  417.                --msgbox "Email with subject $BLOCK_SUBJECT to $SELECTED_USERNAME unblocked" 6 40

  418.     fi

  419. }

  420. 

  421. function create_keydrive_master {

  422.     select_user

  423.     if [ ! $SELECTED_USERNAME ]; then

  424.         return

  425.     fi

  426.     dialog --title $"USB Master Keydrive" \

  427.            --msgbox $"Plug in a LUKS encrypted USB drive" 6 40

  428.     clear

  429.     freedombone-keydrive -u $SELECTED_USERNAME --master 'yes'

  430.     any_key

  431. }

  432. 

  433. function create_keydrive_fragment {

  434.     select_user

  435.     if [ ! $SELECTED_USERNAME ]; then

  436.         return

  437.     fi

  438.     dialog --title $"USB Fragment Keydrive" \

  439.            --msgbox $"Plug in a LUKS encrypted USB drive" 6 40

  440.     clear

  441.     freedombone-keydrive -u $SELECTED_USERNAME

  442.     any_key

  443. }

  444. 

  445. function backup_data {

  446.     dialog --title $"Backup data to USB" \

  447.            --msgbox $"Plug in a LUKS encrypted USB drive" 6 40

  448.     clear

  449.     echo ' '

  450.     echo $'Enter the passphrase for your LUKS encrypted backup drive:'

  451.     backup

  452.     any_key

  453. }

  454. 

  455. function restore_data {

  456.     dialog --title $"Restore data from USB" \

  457.            --msgbox $"Plug in your backup USB drive" 6 40

  458.     clear

  459.     echo ' '

  460.     echo $'Enter the passphrase for your LUKS encrypted backup drive:'

  461.     restore

  462.     any_key

  463. }

  464. 

  465. function restore_data_remote {

  466.     if [ ! $ADMIN_USER ]; then

  467.         dialog --title $"Restore data from remote server" \

  468.                --msgbox $"Unknown admin user" 6 40

  469.         return

  470.     fi

  471.     data=$(tempfile 2>/dev/null)

  472.     trap "rm -f $data" 0 1 2 5 15

  473.     dialog --title $"Restore from remote server" \

  474.            --backtitle $"Freedombone Control Panel" \

  475.            --inputbox $"Enter the domain name of the server from which you wish to restore" 8 60 2>$data

  476.     sel=$?

  477.     case $sel in

  478.         0)

  479.             friend_server_domain_name=$(<$data)

  480. 

  481.             if [ ${#friend_server_domain_name} -lt 2 ]; then

  482.                 return

  483.             fi

  484. 

  485.             if [[ $friend_server_domain_name != *"."* ]]; then

  486.                 dialog --title $"Remote server domain name" \

  487.                        --msgbox $"Invalid domain name" 6 40

  488.                 return

  489.             fi

  490. 

  491.             restorefromfriend $friend_server_domain_name

  492.             any_key

  493.             ;;

  494.     esac

  495. }

  496. 

  497. function logging_on_off {

  498.     logging="no"

  499.     dialog --title $"Logging" \

  500.            --backtitle $"Freedombone Control Panel" \

  501.            --yesno $"\nDo you want to turn logging on?" 7 60

  502.     sel=$?

  503.     case $sel in

  504.         0) logging="yes";;

  505.         255) return;;

  506.     esac

  507. 

  508.     clear

  509.     echo ''

  510.     echo $'This may take a few seconds. Please wait...'

  511.     if [[ $logging == "no" ]]; then

  512.         freedombone-logging off

  513.     else

  514.         freedombone-logging on

  515.     fi

  516. }

  517. 

  518. function restore_gpg_key {

  519.     select_user

  520.     if [ ! $SELECTED_USERNAME ]; then

  521.         return

  522.     fi

  523.     restorestr=$"Restore GPG key for user"

  524.     dialog --title "$restorestr $SELECTED_USERNAME" \

  525.            --msgbox $"Plug in your USB keydrive" 6 40

  526.     clear

  527.     freedombone-recoverkey -u $SELECTED_USERNAME

  528.     any_key

  529. }

  530. 

  531. function security_settings {

  532.     freedombone-sec

  533.     any_key

  534. }

  535. 

  536. function reset_tripwire {

  537.   clear

  538.   echo $'Resetting the Tripwire...'

  539.   echo ' '

  540.   echo '

  541. 

  542. ' | reset-tripwire

  543.   any_key

  544. }

  545. 

  546. function hubzilla_renew_cert {

  547.     dialog --title $"Renew SSL certificate" \

  548.            --backtitle $"Freedombone Control Panel" \

  549.            --yesno $"\nThis will renew a letsencrypt certificate. Select 'yes' to continue" 16 60

  550.     sel=$?

  551.     case $sel in

  552.         1) return;;

  553.         255) return;;

  554.     esac

  555.     HUBZILLA_DOMAIN_NAME=$(cat $COMPLETION_FILE | grep "Hubzilla domain" | awk -F ':' '{print $2}')

  556.     if [ ! -d /var/www/$HUBZILLA_DOMAIN_NAME/htdocs ]; then

  557.        dialog --title $"Renew SSL certificate" \

  558.               --msgbox $"Hubzilla install directory not found" 6 40

  559.        return

  560.     fi

  561.     freedombone-renew-cert -h $HUBZILLA_DOMAIN_NAME -p 'letsencrypt'

  562.     if [ ! "$?" = "0" ]; then

  563.         any_key

  564.     else

  565.         dialog --title $"Renew SSL certificate" \

  566.                --msgbox $"Hubzilla certificate has been renewed" 6 40

  567.     fi

  568. }

  569. 

  570. function hubzilla_restore {

  571.     dialog --title $"Restore hubzilla from USB backup" \

  572.            --backtitle $"Freedombone Control Panel" \

  573.            --yesno $"\nInsert your USB backup drive and select 'yes' to continue" 16 60

  574.     sel=$?

  575.     case $sel in

  576.         1) return;;

  577.         255) return;;

  578.     esac

  579.     clear

  580.     echo $'Enter your backup drive password:'

  581.     restorehubzilla

  582. }

  583. 

  584. function hubzilla_channel_directory_server {

  585.     if ! grep -q "Hubzilla domain" $COMPLETION_FILE; then

  586.        dialog --title $"Hubzilla channel directory server" \

  587.               --msgbox $"Hubzilla is not installed on this system" 6 40

  588.        return

  589.     fi

  590.     HUBZILLA_DOMAIN_NAME=$(cat $COMPLETION_FILE | grep "Hubzilla domain" | awk -F ':' '{print $2}')

  591.     if [ ! -d /var/www/$HUBZILLA_DOMAIN_NAME/htdocs ]; then

  592.        dialog --title $"Hubzilla channel directory server" \

  593.               --msgbox $"Hubzilla install directory not found" 6 40

  594.        return

  595.     fi

  596. 

  597.     data=$(tempfile 2>/dev/null)

  598.     trap "rm -f $data" 0 1 2 5 15

  599.     dialog --title $"Hubzilla channel directory server" \

  600.            --backtitle $"Freedombone Control Panel" \

  601.            --inputbox $"When you click on 'channel directory' this is where Hubzilla will obtain its list from" 8 60 2>$data

  602.     sel=$?

  603.     case $sel in

  604.         0)

  605.             hubzilla_domain_server=$(<$data)

  606.             if [[ $hubzilla_domain_server != *"."* ]]; then

  607.                 return

  608.             fi

  609.             if [[ $hubzilla_domain_server != "https"* ]]; then

  610.                 dialog --title $"Hubzilla channel directory server" \

  611.                        --msgbox $"Invalid domain - include the https://" 6 40

  612.                 return

  613.             fi

  614.             ./var/www/$HUBZILLA_DOMAIN_NAME/htdocs/util/config system directory_server $hubzilla_domain_server

  615.             dialog --title $"Hubzilla channel directory server" \

  616.                    --msgbox $"Domain channel directory server changed to $hubzilla_domain_server" 6 40

  617.             ;;

  618.     esac

  619. }

  620. 

  621. function format_drive {

  622.     drive=

  623.     data=$(tempfile 2>/dev/null)

  624.     trap "rm -f $data" 0 1 2 5 15

  625.     dialog --backtitle $"Freedombone Control Panel" \

  626.            --title $"Format a USB drive (LUKS encrypted)" \

  627.            --radiolist $"Choose a drive:" 12 70 5 \

  628.            1 $"sda (Beaglebone Black)" off \

  629.            2 $"sdb" off \

  630.            3 $"sdc" off \

  631.            4 $"sdd" off \

  632.            5 $"Back to Backup and Restore menu" on 2> $data

  633.     sel=$?

  634.     case $sel in

  635.         1) return;;

  636.         255) return;;

  637.     esac

  638.     case $(cat $data) in

  639.         1) drive='sda';;

  640.         2) drive='sdb';;

  641.         3) drive='sdc';;

  642.         4) drive='sdd';;

  643.         5) return;;

  644.     esac

  645. 

  646.     dialog --title $"Format USB drive" \

  647.            --backtitle $"Freedombone Control Panel" \

  648.            --defaultno \

  649.            --yesno $"\nPlease confirm that you wish to format drive\n\n    ${drive}\n\nAll current data on the drive will be lost, and you will be prompted to give a password used to encrypt the drive.\n\nDANGER: If you screw up here and format the wrong drive it's your own fault!" 16 60

  650.     sel=$?

  651.     case $sel in

  652.         1) return;;

  653.         255) return;;

  654.     esac

  655. 

  656.     clear

  657.     freedombone-format $drive

  658.     any_key

  659. }

  660. 

  661. function shut_down_system {

  662.     dialog --title $"Power off the system" \

  663.            --backtitle $"Freedombone Control Panel" \

  664.            --defaultno \

  665.            --yesno $"\nPlease confirm that you wish to power off the system.\n\nWARNING: to power on again you will need to have physical access to the hardware." 10 60

  666.     sel=$?

  667.     case $sel in

  668.         1) return;;

  669.         255) return;;

  670.     esac

  671.     shutdown now

  672. }

  673. 

  674. function restart_system {

  675.     dialog --title $"Restart the system" \

  676.            --backtitle $"Freedombone Control Panel" \

  677.            --defaultno \

  678.            --yesno $"\nPlease confirm that you wish to restart the system.\n\nWARNING: If you are using full disk encryption then you will need physical access to the hardware to type in the password" 10 60

  679.     sel=$?

  680.     case $sel in

  681.         1) return;;

  682.         255) return;;

  683.     esac

  684.     reboot

  685. }

  686. 

  687. function change_system_name {

  688.     data=$(tempfile 2>/dev/null)

  689.     trap "rm -f $data" 0 1 2 5 15

  690.     dialog --title $"Change the name of this system" \

  691.            --backtitle $"Freedombone Control Panel" \

  692.            --inputbox $'Enter a new name for this system on your local network\n\nIt will appear as newname.local' 10 60 2>$data

  693.     sel=$?

  694.     case $sel in

  695.         0) NEW_SYSTEM_NAME=$(<$data)

  696.            if [ "$NEW_SYSTEM_NAME" ]; then

  697.                if [ ${#NEW_SYSTEM_NAME} -gt 1 ]; then

  698.                    sed -i "s|host-name=.*|host-name=$NEW_SYSTEM_NAME|g" /etc/avahi/avahi-daemon.conf

  699.                    systemctl restart avahi-daemon

  700.                    if grep -q "host-name=$NEW_SYSTEM_NAME" /etc/avahi/avahi-daemon.conf; then

  701.                        dialog --title $"New local network name" \

  702.                               --msgbox $"The name of this system on your local network was changed successfully" 6 70

  703.                    fi

  704.                fi

  705.            fi

  706.            ;;

  707.     esac

  708. }

  709. 

  710. function menu_backup_restore {

  711.     while true

  712.     do

  713.         data=$(tempfile 2>/dev/null)

  714.         trap "rm -f $data" 0 1 2 5 15

  715.         dialog --backtitle $"Freedombone Control Panel" \

  716.                --title $"Backup and Restore" \

  717.                --radiolist $"Choose an operation:" 17 70 10 \

  718.                1 $"Backup data to USB drive" off \

  719.                2 $"Restore GPG key from USB keydrive" off \

  720.                3 $"Restore data from USB drive" off \

  721.                4 $"Restore Hubzilla data from USB drive" off \

  722.                5 $"Configure remote backups" off \

  723.                6 $"Restore from remote backup" off \

  724.                7 $"Backup GPG key to USB (master keydrive)" off \

  725.                8 $"Backup GPG key to USB (fragment keydrive)" off \

  726.                9 $"Format a USB drive (LUKS encrypted)" off \

  727.                10 $"Back to main menu" on 2> $data

  728.         sel=$?

  729.         case $sel in

  730.             1) break;;

  731.             255) break;;

  732.         esac

  733.         case $(cat $data) in

  734.             1) backup_data;;

  735.             2) restore_gpg_key;;

  736.             3) restore_data;;

  737.             4) hubzilla_restore;;

  738.             5) configure_remote_backups;;

  739.             6) restore_data_remote;;

  740.             7) create_keydrive_master;;

  741.             8) create_keydrive_fragment;;

  742.             9) format_drive;;

  743.             10) break;;

  744.         esac

  745.     done

  746. }

  747. 

  748. function menu_email {

  749.     while true

  750.     do

  751.         data=$(tempfile 2>/dev/null)

  752.         trap "rm -f $data" 0 1 2 5 15

  753.         dialog --backtitle $"Freedombone Control Panel" \

  754.                --title $"Email Filtering Rules" \

  755.                --radiolist $"Choose an operation:" 12 70 5 \

  756.                1 $"Add a user to a mailing list" off \

  757.                2 $"Add an email rule" off \

  758.                3 $"Block/Unblock an email address" off \

  759.                4 $"Block/Unblock email with subject text" off \

  760.                5 $"Back to main menu" on 2> $data

  761.         sel=$?

  762.         case $sel in

  763.             1) break;;

  764.             255) break;;

  765.         esac

  766.         case $(cat $data) in

  767.             1) add_to_mailing_list;;

  768.             2) email_rule;;

  769.             3) block_unblock_email;;

  770.             4) block_unblock_subject;;

  771.             5) break;;

  772.         esac

  773.     done

  774. }

  775. 

  776. function menu_users {

  777.     while true

  778.     do

  779.         data=$(tempfile 2>/dev/null)

  780.         trap "rm -f $data" 0 1 2 5 15

  781.         dialog --backtitle $"Freedombone Control Panel" \

  782.                --title $"Manage Users" \

  783.                --radiolist $"Choose an operation:" 12 70 5 \

  784.                1 $"Add a user" off \

  785.                2 $"Delete a user" off \

  786.                3 $"Change user password" off \

  787.                4 $"Change user ssh public key" off \

  788.                5 $"Back to main menu" on 2> $data

  789.         sel=$?

  790.         case $sel in

  791.             1) break;;

  792.             255) break;;

  793.         esac

  794.         case $(cat $data) in

  795.             1) add_user;;

  796.             2) delete_user;;

  797.             3) change_password;;

  798.             4) change_ssh_public_key;;

  799.             5) break;;

  800.         esac

  801.     done

  802. }

  803. 

  804. function menu_hubzilla {

  805.     while true

  806.     do

  807.         data=$(tempfile 2>/dev/null)

  808.         trap "rm -f $data" 0 1 2 5 15

  809.         dialog --backtitle $"Freedombone Control Panel" \

  810.                --title $"Hubzilla" \

  811.                --radiolist $"Choose an operation:" 13 70 4 \

  812.                1 $"Restore from usb backup" off \

  813.                2 $"Set channel directory server" off \

  814.                3 $"Renew SSL certificate" off \

  815.                4 $"Back to main menu" on 2> $data

  816.         sel=$?

  817.         case $sel in

  818.             1) break;;

  819.             255) break;;

  820.         esac

  821.         case $(cat $data) in

  822.             1) hubzilla_restore;;

  823.             2) hubzilla_channel_directory_server;;

  824.             3) hubzilla_renew_cert;;

  825.             4) break;;

  826.         esac

  827.     done

  828. }

  829. 

  830. function menu_media {

  831.     while true

  832.     do

  833.         data=$(tempfile 2>/dev/null)

  834.         trap "rm -f $data" 0 1 2 5 15

  835.         dialog --backtitle $"Freedombone Control Panel" \

  836.                --title $"Media Menu" \

  837.                --radiolist $"Choose an operation:" 13 70 2 \

  838.                1 $"Attach a drive containing playable media" off \

  839.                2 $"Remove a drive containing playable media" off \

  840.                3 $"Exit" on 2> $data

  841.         sel=$?

  842.         case $sel in

  843.             1) break;;

  844.             255) break;;

  845.         esac

  846.         case $(cat $data) in

  847.             1) remove-music

  848.                attach-music;;

  849.             2) remove-music;;

  850.             3) break;;

  851.         esac

  852.     done

  853. }

  854. 

  855. function menu_top_level {

  856.     while true

  857.     do

  858.         data=$(tempfile 2>/dev/null)

  859.         trap "rm -f $data" 0 1 2 5 15

  860.         dialog --backtitle $"Freedombone Control Panel" \

  861.                --title $"Control Panel" \

  862.                --radiolist $"Choose an operation:" 21 70 14 \

  863.                1 $"Backup and Restore" off \

  864.                2 $"Show SIP Phone Extensions" off \

  865.                3 $"Reset Tripwire" off \

  866.                4 $"Logging on/off" off \

  867.                5 $"Manage Users" off \

  868.                6 $"Email Filtering Rules" off \

  869.                7 $"Security Settings" off \

  870.                8 $"Hubzilla" off \

  871.                9 $"Media menu" off \

  872.                10 $"Change the name of this system" off \

  873.                11 $"Check for updates" off \

  874.                12 $"Power off the system" off \

  875.                13 $"Restart the system" off \

  876.                14 $"Exit" on 2> $data

  877.         sel=$?

  878.         case $sel in

  879.             1) exit 1;;

  880.             255) exit 1;;

  881.         esac

  882.         case $(cat $data) in

  883.             1) menu_backup_restore;;

  884.             2) show_sip_extensions;;

  885.             3) reset_tripwire;;

  886.             4) logging_on_off;;

  887.             5) menu_users;;

  888.             6) menu_email;;

  889.             7) security_settings;;

  890.             8) menu_hubzilla;;

  891.             9) menu_media;;

  892.             10) change_system_name;;

  893.             11) check_for_updates;;

  894.             12) shut_down_system;;

  895.             13) restart_system;;

  896.             14) break;;

  897.         esac

  898.     done

  899. }

  900. 

  901. if [ ! -f $COMPLETION_FILE ]; then

  902.     echo $'This command should only be run on an installed Freedombone system'

  903.     exit 1

  904. fi

  905. 

  906. ADMIN_USER=$(cat $COMPLETION_FILE | grep "Admin user" | awk -F ':' '{print $2}')

  907. menu_top_level

  908. clear

  909. cat /etc/motd

  910. exit 0