freedombone-app-fedwiki 19KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511
  1. #!/bin/bash
  2. #
  3. # .---. . .
  4. # | | |
  5. # |--- .--. .-. .-. .-.| .-. .--.--. |.-. .-. .--. .-.
  6. # | | (.-' (.-' ( | ( )| | | | )( )| | (.-'
  7. # ' ' --' --' -' - -' ' ' -' -' -' ' - --'
  8. #
  9. # Freedom in the Cloud
  10. #
  11. # Federated wiki
  12. #
  13. # The wiki itself looks ok, but there is no straightforward way for a
  14. # user to authenticate which isn't proprietary
  15. #
  16. # License
  17. # =======
  18. #
  19. # Copyright (C) 2017-2018 Bob Mottram <bob@freedombone.net>
  20. #
  21. # This program is free software: you can redistribute it and/or modify
  22. # it under the terms of the GNU Affero General Public License as published by
  23. # the Free Software Foundation, either version 3 of the License, or
  24. # (at your option) any later version.
  25. #
  26. # This program is distributed in the hope that it will be useful,
  27. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  28. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  29. # GNU Affero General Public License for more details.
  30. #
  31. # You should have received a copy of the GNU Affero General Public License
  32. # along with this program. If not, see <http://www.gnu.org/licenses/>.
  33. VARIANTS='full full-vim writer'
  34. IN_DEFAULT_INSTALL=0
  35. SHOW_ON_ABOUT=1
  36. FEDWIKI_DOMAIN_NAME=
  37. FEDWIKI_CODE=
  38. FEDWIKI_VERSION='0.13.0'
  39. FEDWIKI_ONION_PORT=8131
  40. FEDWIKI_PORT=3053
  41. FEDWIKI_DATA=/var/lib/fedwiki
  42. FEDWIKI_COOKIE=
  43. fedwiki_variables=(FEDWIKI_DOMAIN_NAME
  44. FEDWIKI_CODE
  45. FEDWIKI_COOKIE
  46. FEDWIKI_ADMIN_PASSWORD
  47. ONION_ONLY
  48. DDNS_PROVIDER
  49. MY_USERNAME
  50. MY_EMAIL_ADDRESS)
  51. function fedwiki_remove_bad_links {
  52. if [[ $ONION_ONLY == 'no' ]]; then
  53. sed -i "s|link[href='https://maxcdn.bootstrapcdn.com.*|link[href='https://${FEDWIKI_DOMAIN_NAME}/fonts-font-awesome/css/font-awesome.min.css']\").length) {|g" /usr/local/lib/node_modules/wiki/node_modules/wiki-security-friends/client/security.js
  54. sed -i "s|\$('<link rel=\"stylesheet\" href=\"https://maxcdn.bootstrapcdn.com.*|\$('<link rel=\"stylesheet\" href=\"https://${FEDWIKI_DOMAIN_NAME}/fonts-font-awesome/css/font-awesome.min.css\">').appendTo(\"head\");|g" /usr/local/lib/node_modules/wiki/node_modules/wiki-security-friends/client/security.js
  55. else
  56. FEDWIKI_ONION_HOSTNAME=$(cat /var/lib/tor/hidden_service_fedwiki/hostname)
  57. sed -i "s|link[href='https://maxcdn.bootstrapcdn.com.*|link[href='http://${FEDWIKI_ONION_HOSTNAME}/fonts-font-awesome/css/font-awesome.min.css']\").length) {|g" /usr/local/lib/node_modules/wiki/node_modules/wiki-security-friends/client/security.js
  58. sed -i "s|\$('<link rel=\"stylesheet\" href=\"https://maxcdn.bootstrapcdn.com.*|\$('<link rel=\"stylesheet\" href=\"http://${FEDWIKI_ONION_HOSTNAME}/fonts-font-awesome/css/font-awesome.min.css\">').appendTo(\"head\");|g" /usr/local/lib/node_modules/wiki/node_modules/wiki-security-friends/client/security.js
  59. fi
  60. if [ -f /usr/local/lib/node_modules/wiki/node_modules/localforage/docs/theme/style.css ]; then
  61. sed -i '/googleapi/d' /usr/local/lib/node_modules/wiki/node_modules/localforage/docs/theme/style.css
  62. fi
  63. if [ -f /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/addAlternativeDialog.html ]; then
  64. sed -i '/googleapi/d' /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/addAlternativeDialog.html
  65. fi
  66. if [ -f /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/done.html ]; then
  67. sed -i '/googleapi/d' /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/done.html
  68. fi
  69. if [ -f /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/personaDialog.html ]; then
  70. sed -i '/googleapi/d' /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/personaDialog.html
  71. fi
  72. if [ -f /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/securityDialog.html ]; then
  73. sed -i '/googleapi/d' /usr/local/lib/node_modules/wiki/node_modules/wiki-security-passportjs/views/securityDialog.html
  74. fi
  75. if [ -d /usr/local/lib/node_modules/wiki/node_modules/passport-google-oauth20 ]; then
  76. rm -rf /usr/local/lib/node_modules/wiki/node_modules/passport-google-oauth20
  77. fi
  78. if [ -d /usr/local/lib/node_modules/wiki/node_modules/passport-oauth2 ]; then
  79. rm -rf /usr/local/lib/node_modules/wiki/node_modules/passport-oauth2
  80. fi
  81. if [ -d /usr/local/lib/node_modules/wiki/node_modules/passport-twitter ]; then
  82. rm -rf /usr/local/lib/node_modules/wiki/node_modules/passport-twitter
  83. fi
  84. if [ -d /usr/local/lib/node_modules/wiki/node_modules/passport-github ]; then
  85. rm -rf /usr/local/lib/node_modules/wiki/node_modules/passport-github
  86. fi
  87. }
  88. function logging_on_fedwiki {
  89. echo -n ''
  90. }
  91. function logging_off_fedwiki {
  92. echo -n ''
  93. }
  94. function remove_user_fedwiki {
  95. remove_username="$1"
  96. }
  97. function add_user_fedwiki {
  98. if [[ $(app_is_installed fedwiki) == "0" ]]; then
  99. echo '0'
  100. return
  101. fi
  102. new_username="$1"
  103. new_user_password="$2"
  104. echo '0'
  105. }
  106. function install_interactive_fedwiki {
  107. if [ ! $ONION_ONLY ]; then
  108. ONION_ONLY='no'
  109. fi
  110. if [[ $ONION_ONLY != "no" ]]; then
  111. FEDWIKI_DOMAIN_NAME='fedwiki.local'
  112. write_config_param "FEDWIKI_DOMAIN_NAME" "$FEDWIKI_DOMAIN_NAME"
  113. else
  114. function_check interactive_site_details
  115. interactive_site_details "fedwiki" "FEDWIKI_DOMAIN_NAME" "FEDWIKI_CODE"
  116. fi
  117. APP_INSTALLED=1
  118. }
  119. function change_password_fedwiki {
  120. FEDWIKI_USERNAME="$1"
  121. FEDWIKI_PASSWORD="$2"
  122. if [ ${#FEDWIKI_PASSWORD} -lt 8 ]; then
  123. echo $'Fedwiki password is too short'
  124. return
  125. fi
  126. ${PROJECT_NAME}-pass -u $FEDWIKI_USERNAME -a fedwiki -p "$FEDWIKI_PASSWORD"
  127. sed -i "s|--cookieSecret .*|--cookieSecret '${FEDWIKI_PASSWORD}'|g" /etc/systemd/system/fedwiki.service
  128. sed -i "s|\"secret\":.*|\"secret\": \"${FEDWIKI_PASSWORD}\"|g" ${FEDWIKI_DATA}/status/owner.json
  129. systemctl daemon-reload
  130. systemctl restart fedwiki
  131. write_config_param "FEDWIKI_COOKIE" "$FEDWIKI_PASSWORD"
  132. }
  133. function reconfigure_fedwiki {
  134. echo -n ''
  135. }
  136. function upgrade_fedwiki {
  137. CURR_FEDWIKI_VERSION=$(get_completion_param "fedwiki version")
  138. if [[ "$CURR_FEDWIKI_VERSION" == "$FEDWIKI_VERSION" ]]; then
  139. return
  140. fi
  141. systemctl stop fedwiki
  142. npm upgrade -g wiki@$FEDWIKI_VERSION
  143. fedwiki_remove_bad_links
  144. chown -R fedwiki:fedwiki $FEDWIKI_DATA
  145. systemctl start fedwiki
  146. set_completion_param "fedwiki version" "$FEDWIKI_VERSION"
  147. }
  148. function backup_local_fedwiki {
  149. FEDWIKI_DOMAIN_NAME='fedwiki.local'
  150. if grep -q "fedwiki domain" $COMPLETION_FILE; then
  151. FEDWIKI_DOMAIN_NAME=$(get_completion_param "fedwiki domain")
  152. fi
  153. systemctl stop fedwiki
  154. suspend_site ${FEDWIKI_DOMAIN_NAME}
  155. fedwiki_path=$FEDWIKI_DATA
  156. if [ -d $fedwiki_path ]; then
  157. backup_directory_to_usb $fedwiki_path fedwiki
  158. fi
  159. restart_site
  160. systemctl start fedwiki
  161. }
  162. function restore_local_fedwiki {
  163. FEDWIKI_DOMAIN_NAME='fedwiki.local'
  164. if grep -q "fedwiki domain" $COMPLETION_FILE; then
  165. FEDWIKI_DOMAIN_NAME=$(get_completion_param "fedwiki domain")
  166. fi
  167. if [ $FEDWIKI_DOMAIN_NAME ]; then
  168. suspend_site ${FEDWIKI_DOMAIN_NAME}
  169. systemctl stop fedwiki
  170. temp_restore_dir=/root/tempfedwiki
  171. function_check restore_directory_from_usb
  172. restore_directory_from_usb $temp_restore_dir fedwiki
  173. if [ -d $temp_restore_dir ]; then
  174. if [ -d $temp_restore_dir$FEDWIKI_DATA ]; then
  175. cp -r $temp_restore_dir$FEDWIKI_DATA/* $FEDWIKI_DATA/
  176. else
  177. cp -r $temp_restore_dir/* $FEDWIKI_DATA/
  178. fi
  179. chown -R fedwiki:fedwiki $FEDWIKI_DATA
  180. rm -rf $temp_restore_dir
  181. fi
  182. FEDWIKI_PASSWORD=$(cat ${FEDWIKI_DATA}/status/owner.json | grep secret | awk -F '"' '{print $4}')
  183. ${PROJECT_NAME}-pass -u $FEDWIKI_USERNAME -a fedwiki -p "$FEDWIKI_PASSWORD"
  184. sed -i "s|--cookieSecret .*|--cookieSecret '${FEDWIKI_PASSWORD}'|g" /etc/systemd/system/fedwiki.service
  185. write_config_param "FEDWIKI_COOKIE" "$FEDWIKI_PASSWORD"
  186. systemctl daemon-reload
  187. systemctl start fedwiki
  188. restart_site
  189. fi
  190. }
  191. function backup_remote_fedwiki {
  192. FEDWIKI_DOMAIN_NAME='fedwiki.local'
  193. if grep -q "fedwiki domain" $COMPLETION_FILE; then
  194. FEDWIKI_DOMAIN_NAME=$(get_completion_param "fedwiki domain")
  195. fi
  196. systemctl stop fedwiki
  197. suspend_site ${FEDWIKI_DOMAIN_NAME}
  198. temp_backup_dir=$FEDWIKI_DATA
  199. if [ -d $temp_backup_dir ]; then
  200. backup_directory_to_friend $temp_backup_dir fedwiki
  201. else
  202. echo $"Fedwiki domain specified but not found in $temp_backup_dir"
  203. exit 63542852
  204. fi
  205. restart_site
  206. systemctl start fedwiki
  207. }
  208. function restore_remote_fedwiki {
  209. FEDWIKI_DOMAIN_NAME='fedwiki.local'
  210. if grep -q "fedwiki domain" $COMPLETION_FILE; then
  211. FEDWIKI_DOMAIN_NAME=$(get_completion_param "fedwiki domain")
  212. fi
  213. systemctl stop fedwiki
  214. suspend_site ${FEDWIKI_DOMAIN_NAME}
  215. temp_restore_dir=/root/tempfedwiki
  216. function_check restore_directory_from_friend
  217. restore_directory_from_friend $temp_restore_dir fedwiki
  218. if [ -d $temp_restore_dir ]; then
  219. if [ -d $temp_restore_dir$FEDWIKI_DATA ]; then
  220. cp -r $temp_restore_dir$FEDWIKI_DATA/* $FEDWIKI_DATA/
  221. else
  222. cp -r $temp_restore_dir/* $FEDWIKI_DATA/
  223. fi
  224. chown -R fedwiki: $FEDWIKI_DATA
  225. rm -rf $temp_restore_dir
  226. fi
  227. FEDWIKI_PASSWORD=$(cat ${FEDWIKI_DATA}/status/owner.json | grep secret | awk -F '"' '{print $4}')
  228. ${PROJECT_NAME}-pass -u $FEDWIKI_USERNAME -a fedwiki -p "$FEDWIKI_PASSWORD"
  229. sed -i "s|--cookieSecret .*|--cookieSecret '${FEDWIKI_PASSWORD}'|g" /etc/systemd/system/fedwiki.service
  230. write_config_param "FEDWIKI_COOKIE" "$FEDWIKI_PASSWORD"
  231. systemctl daemon-reload
  232. systemctl start fedwiki
  233. restart_site
  234. }
  235. function remove_fedwiki {
  236. if [ ${#FEDWIKI_DOMAIN_NAME} -eq 0 ]; then
  237. return
  238. fi
  239. systemctl stop fedwiki
  240. systemctl disable fedwiki
  241. rm /etc/systemd/system/fedwiki.service
  242. systemctl daemon-reload
  243. npm uninstall -g wiki-security-friends
  244. npm uninstall -g wiki
  245. function_check remove_nodejs
  246. remove_nodejs fedwiki
  247. read_config_param "FEDWIKI_DOMAIN_NAME"
  248. nginx_dissite $FEDWIKI_DOMAIN_NAME
  249. remove_certs ${FEDWIKI_DOMAIN_NAME}
  250. if [ -f /etc/nginx/sites-available/$FEDWIKI_DOMAIN_NAME ]; then
  251. rm -f /etc/nginx/sites-available/$FEDWIKI_DOMAIN_NAME
  252. fi
  253. if [ -d /var/www/$FEDWIKI_DOMAIN_NAME ]; then
  254. rm -rf /var/www/$FEDWIKI_DOMAIN_NAME
  255. fi
  256. remove_config_param FEDWIKI_DOMAIN_NAME
  257. remove_config_param FEDWIKI_CODE
  258. function_check remove_onion_service
  259. remove_onion_service fedwiki ${FEDWIKI_ONION_PORT}
  260. remove_completion_param "install_fedwiki"
  261. sed -i '/fedwiki/d' $COMPLETION_FILE
  262. groupdel -f fedwiki
  263. userdel -r fedwiki
  264. if [ -d $FEDWIKI_DATA ]; then
  265. rm -rf $FEDWIKI_DATA
  266. fi
  267. function_check remove_ddns_domain
  268. remove_ddns_domain $FEDWIKI_DOMAIN_NAME
  269. }
  270. function fedwiki_setup_web {
  271. fedwiki_nginx_file=/etc/nginx/sites-available/$FEDWIKI_DOMAIN_NAME
  272. if [[ $ONION_ONLY == "no" ]]; then
  273. echo 'server {' > $fedwiki_nginx_file
  274. echo ' listen 80;' >> $fedwiki_nginx_file
  275. echo ' listen [::]:80;' >> $fedwiki_nginx_file
  276. echo " server_name $FEDWIKI_DOMAIN_NAME;" >> $fedwiki_nginx_file
  277. echo ' rewrite ^ https://$server_name$request_uri? permanent;' >> $fedwiki_nginx_file
  278. echo '}' >> $fedwiki_nginx_file
  279. echo '' >> $fedwiki_nginx_file
  280. echo 'server {' >> $fedwiki_nginx_file
  281. echo ' listen 443 ssl;' >> $fedwiki_nginx_file
  282. echo ' listen [::]:443 ssl;' >> $fedwiki_nginx_file
  283. echo " server_name $FEDWIKI_DOMAIN_NAME;" >> $fedwiki_nginx_file
  284. echo '' >> $fedwiki_nginx_file
  285. function_check nginx_ssl
  286. nginx_ssl $FEDWIKI_DOMAIN_NAME mobile
  287. sed -i '/Content-Security-Policy/d' $fedwiki_nginx_file
  288. sed -i '/X-XSS-Protection/d' $fedwiki_nginx_file
  289. sed -i '/X-Robots-Tag/d' $fedwiki_nginx_file
  290. sed -i '/X-Download-Options/d' $fedwiki_nginx_file
  291. sed -i '/X-Permitted-Cross-Domain-Policies/d' $fedwiki_nginx_file
  292. echo ' add_header X-Robots-Tag none;' >> $fedwiki_nginx_file
  293. echo ' add_header X-Download-Options noopen;' >> $fedwiki_nginx_file
  294. echo ' add_header X-Frame-Options DENY;' >> $fedwiki_nginx_file
  295. echo ' add_header X-Content-Type-Options nosniff;' >> $fedwiki_nginx_file
  296. echo ' add_header Strict-Transport-Security max-age=15768000;' >> $fedwiki_nginx_file
  297. echo '' >> $fedwiki_nginx_file
  298. echo ' location /fonts-font-awesome/ {' >> $fedwiki_nginx_file
  299. echo ' alias /usr/share/fonts-font-awesome/;' >> $fedwiki_nginx_file
  300. echo ' }' >> $fedwiki_nginx_file
  301. echo '' >> $fedwiki_nginx_file
  302. echo ' location / {' >> $fedwiki_nginx_file
  303. echo " proxy_pass http://localhost:${FEDWIKI_PORT};" >> $fedwiki_nginx_file
  304. echo ' proxy_set_header X-Real-IP $remote_addr;' >> $fedwiki_nginx_file
  305. echo ' proxy_set_header Host $host;' >> $fedwiki_nginx_file
  306. echo ' proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;' >> $fedwiki_nginx_file
  307. echo ' client_max_body_size 1M;' >> $fedwiki_nginx_file
  308. echo ' }' >> $fedwiki_nginx_file
  309. echo '}' >> $fedwiki_nginx_file
  310. echo '' >> $fedwiki_nginx_file
  311. else
  312. echo -n '' > $fedwiki_nginx_file
  313. fi
  314. echo 'server {' >> $fedwiki_nginx_file
  315. echo " listen 127.0.0.1:$FEDWIKI_ONION_PORT default_server;" >> $fedwiki_nginx_file
  316. echo " server_name $FEDWIKI_ONION_HOSTNAME;" >> $fedwiki_nginx_file
  317. echo '' >> $fedwiki_nginx_file
  318. echo ' add_header X-Robots-Tag none;' >> $fedwiki_nginx_file
  319. echo ' add_header X-Download-Options noopen;' >> $fedwiki_nginx_file
  320. echo ' add_header X-Frame-Options DENY;' >> $fedwiki_nginx_file
  321. echo ' add_header X-Content-Type-Options nosniff;' >> $fedwiki_nginx_file
  322. echo '' >> $fedwiki_nginx_file
  323. echo ' location /fonts-font-awesome/ {' >> $fedwiki_nginx_file
  324. echo ' alias /usr/share/fonts-font-awesome/;' >> $fedwiki_nginx_file
  325. echo ' }' >> $fedwiki_nginx_file
  326. echo '' >> $fedwiki_nginx_file
  327. echo ' location / {' >> $fedwiki_nginx_file
  328. echo " proxy_pass http://localhost:${FEDWIKI_PORT};" >> $fedwiki_nginx_file
  329. echo ' proxy_set_header X-Real-IP $remote_addr;' >> $fedwiki_nginx_file
  330. echo ' proxy_set_header Host $host;' >> $fedwiki_nginx_file
  331. echo ' proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;' >> $fedwiki_nginx_file
  332. echo ' client_max_body_size 1M;' >> $fedwiki_nginx_file
  333. echo ' }' >> $fedwiki_nginx_file
  334. echo '}' >> $fedwiki_nginx_file
  335. function_check create_site_certificate
  336. create_site_certificate $FEDWIKI_DOMAIN_NAME 'yes'
  337. function_check nginx_ensite
  338. nginx_ensite $FEDWIKI_DOMAIN_NAME
  339. }
  340. function install_fedwiki {
  341. if [[ $VARIANT == "mesh"* ]]; then
  342. return
  343. fi
  344. if [ ! $ONION_ONLY ]; then
  345. ONION_ONLY='no'
  346. fi
  347. if [ ! $FEDWIKI_DOMAIN_NAME ]; then
  348. echo $'The fedwiki domain name was not specified'
  349. exit 893635
  350. fi
  351. if [ ! -d /var/www/$FEDWIKI_DOMAIN_NAME/htdocs ]; then
  352. mkdir -p /var/www/$FEDWIKI_DOMAIN_NAME/htdocs
  353. fi
  354. if [ ! -d $FEDWIKI_DATA ]; then
  355. mkdir -p $FEDWIKI_DATA
  356. fi
  357. groupadd fedwiki
  358. useradd -c "Fedwiki system account" -d $FEDWIKI_DATA -m -r -g fedwiki fedwiki
  359. if [ -d $FEDWIKI_DATA/Maildir ]; then
  360. rm -rf $FEDWIKI_DATA/Maildir
  361. fi
  362. function_check install_nodejs
  363. install_nodejs fedwiki
  364. apt-get -yq install fonts-font-awesome
  365. npm install -g wiki@$FEDWIKI_VERSION
  366. if [ ! "$?" = "0" ]; then
  367. echo $'Failed to install fedwiki'
  368. exit 6293523
  369. fi
  370. npm install -g wiki-security-friends@0.1.0
  371. if [ ! "$?" = "0" ]; then
  372. echo $'Failed to install wiki-security-friends'
  373. exit 783533
  374. fi
  375. if [ ! -f /usr/local/bin/wiki ]; then
  376. echo $'wiki was not installed'
  377. exit 5293524
  378. fi
  379. if [ ! -d /usr/local/lib/node_modules/wiki ]; then
  380. echo $'wiki directory not found /usr/local/lib/node_modules/wiki'
  381. exit 6285324
  382. fi
  383. FEDWIKI_ONION_HOSTNAME=$(add_onion_service fedwiki 80 ${FEDWIKI_ONION_PORT})
  384. if [ ! $FEDWIKI_COOKIE ]; then
  385. FEDWIKI_COOKIE="$(create_password 20)"
  386. fi
  387. echo '[Unit]' > /etc/systemd/system/fedwiki.service
  388. echo 'Description=Fedwiki federated wiki' >> /etc/systemd/system/fedwiki.service
  389. echo 'After=syslog.target' >> /etc/systemd/system/fedwiki.service
  390. echo 'After=network.target' >> /etc/systemd/system/fedwiki.service
  391. echo '' >> /etc/systemd/system/fedwiki.service
  392. echo '[Service]' >> /etc/systemd/system/fedwiki.service
  393. echo 'User=fedwiki' >> /etc/systemd/system/fedwiki.service
  394. echo 'Group=fedwiki' >> /etc/systemd/system/fedwiki.service
  395. echo "WorkingDirectory=/usr/local/lib/node_modules/wiki" >> /etc/systemd/system/fedwiki.service
  396. echo "ExecStart=/usr/local/bin/wiki --security_type friends --session_duration 7 --data $FEDWIKI_DATA -p $FEDWIKI_PORT --cookieSecret '${FEDWIKI_COOKIE}'" >> /etc/systemd/system/fedwiki.service
  397. echo 'StandardOutput=syslog' >> /etc/systemd/system/fedwiki.service
  398. echo 'StandardError=syslog' >> /etc/systemd/system/fedwiki.service
  399. echo 'SyslogIdentifier=fedwiki' >> /etc/systemd/system/fedwiki.service
  400. echo 'Restart=always' >> /etc/systemd/system/fedwiki.service
  401. echo "Environment=NODE_ENV=production" >> /etc/systemd/system/fedwiki.service
  402. echo '' >> /etc/systemd/system/fedwiki.service
  403. echo '[Install]' >> /etc/systemd/system/fedwiki.service
  404. echo 'WantedBy=multi-user.target' >> /etc/systemd/system/fedwiki.service
  405. if [ ! -d ${FEDWIKI_DATA}/status ]; then
  406. mkdir -p ${FEDWIKI_DATA}/status
  407. fi
  408. fedwiki_auth_file=${FEDWIKI_DATA}/status/owner.json
  409. echo '{' > $fedwiki_auth_file
  410. echo " \"name\": \"${MY_USERNAME}\"," >> $fedwiki_auth_file
  411. echo ' "friend": {' >> $fedwiki_auth_file
  412. echo " \"secret\": \"${FEDWIKI_COOKIE}\"" >> $fedwiki_auth_file
  413. echo ' }' >> $fedwiki_auth_file
  414. echo '}' >> $fedwiki_auth_file
  415. chown -R fedwiki:fedwiki $FEDWIKI_DATA
  416. fedwiki_setup_web
  417. ${PROJECT_NAME}-pass -u $MY_USERNAME -a fedwiki -p "$FEDWIKI_COOKIE"
  418. function_check add_ddns_domain
  419. add_ddns_domain $FEDWIKI_DOMAIN_NAME
  420. fedwiki_remove_bad_links
  421. systemctl enable fedwiki
  422. systemctl daemon-reload
  423. systemctl start fedwiki
  424. systemctl restart nginx
  425. set_completion_param "fedwiki domain" "$FEDWIKI_DOMAIN_NAME"
  426. set_completion_param "fedwiki version" "$FEDWIKI_VERSION"
  427. APP_INSTALLED=1
  428. }
  429. # NOTE: deliberately no exit 0