123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153 |
- echo -e '\033[35m
- __ __
- _ __/ /_ ____ _____/ /_
- | | / / __ \/ __ \/ ___/ __/
- | |/ / / / / /_/ (__ ) /_
- |___/_/ /_/\____/____/\__/
- \033[0m'
- echo -e "\033[35;1mNginx VHOST install \033[0m"
- while [ "$vh" != "y" ] && [ "$vh" != "n" ]
- do
- echo -n "Should we install a vhost? [y|n] "
- read vh
- # vh=${vh:-y}
- done
- if [ "$vh" = "y" ]; then
- # get the current position
- _cwd="$(pwd)"
- # check for assets forlder
- _assets="$_cwd/assets"
- if [ ! -d "$_assets" ]; then
- _assets="$_cwd/../assets"
- if [ ! -d "$_assets" ]; then
- echo "!! can't find assets directory !!"
- exit
- fi
- fi
- while [ "$_domain" = "" ]
- do
- read -p "enter a domain name ? " _domain
- if [ "$_domain" != "" ]; then
- read -p "is domain $_domain correcte [y|n] " validated
- if [ "$validated" = "y" ]; then
- break
- else
- _domain=""
- fi
- fi
- done
- # ask for simple php conf or drupal conf
- while [ "$_drupal" != "yes" ] && [ "$_drupal" != "no" ]
- do
- echo -n "Is your site is a drupal one? [yes|no] "
- read _drupal
- done
- # ask for let's encrypt
- while [ "$_letsencrypt" != "yes" ] && [ "$_letsencrypt" != "no" ]
- do
- echo -e "\033[35;1mLet's encrypt \033[0m"
- echo "Let's encrypt needs a public registered domain name with proper DNS records ( A records or CNAME records for subdomains pointing to your server)."
- echo -n "Should we install let's encrypt certificate with $_domain? [yes|no] "
- read _letsencrypt
- done
- systemctl stop nginx
- # lets'encrypt
- # https://certbot.eff.org/lets-encrypt/debianstretch-nginx
- if [ "$_letsencrypt" = "yes" ]; then
- apt-get --yes install certbot
- certbot certonly --standalone -d "$_domain" --cert-name "$_domain"
- # TODO stop the whole process if letsencrypt faile
- mkdir -p /etc/nginx/ssl/certs/"$_domain"
- openssl dhparam -out /etc/nginx/ssl/certs/"$_domain"/dhparam.pem 2048
- # renewing
- touch /var/spool/cron/crontabs/root
- crontab -l > mycron
- echo "0 3 * * * certbot renew --pre-hook 'systemctl stop nginx' --post-hook 'systemctl start nginx' --cert-name $_domain" >> mycron
- crontab mycron
- rm mycron
- fi
- if [ "$_drupal" = "yes" ]; then
- if [ "$_letsencrypt" = "yes" ]; then
- _conffile="drupal-ssl.nginxconf"
- else
- _conffile="drupal.nginxconf"
- fi
- else
- if [ "$_letsencrypt" = "yes" ]; then
- _conffile="simple-phpfpm-ssl.nginxconf"
- else
- _conffile="simple-phpfpm.nginxconf"
- fi
- fi
- cp "$_assets/$_conffile" /etc/nginx/sites-available/"$_domain".conf
- sed -i -r "s/DOMAIN\.LTD/$_domain/g" /etc/nginx/sites-available/"$_domain".conf
- mkdir -p /var/www/"$_domain"/public_html
- mkdir /var/www/"$_domain"/log
- cp "$_assets/index.php" /var/www/"$_domain"/public_html/
- sed -i -r "s/DOMAIN\.LTD/$_domain/g" /var/www/"$_domain"/public_html/index.php
- #set proper right to user will handle the app
- chown -R root:admin /var/www/"$_domain"/
- chmod -R g+w /var/www/"$_domain"/
- chmod -R g+r /var/www/"$_domain"/
- # create a shortcut to the site
- echo -n "Should we install a shortcut for a user? [Y|n] "
- read yn
- yn=${yn:-y}
- if [ "$yn" = "Y" ] || [ "$yn" = "y" ]; then
- # if $user var does not exists (vhost.sh ran directly) ask for it
- if [ -z ${user+x} ]; then
- while [ "$user" = "" ]
- do
- read -p "enter an existing user name ? " user
- if [ "$user" != "" ]; then
- # check if user already exists
- if id "$user" >/dev/null 2>&1; then
- read -p "is user name $user correcte [y|n] " validated
- if [ "$validated" = "y" ]; then
- break
- else
- user=""
- fi
- else
- echo "user $user doesn't exists, you must provide an existing user"
- user=""
- fi
- fi
- done
- fi
- echo "shortcut will be installed for '$user'";
- sleep 3
- mkdir /home/"$user"/www/
- chown "$user":admin /home/"$user"/www/
- ln -s /var/www/"$_domain" /home/"$user"/www/"$_domain"
- chown "$user":admin /home/"$user"/www/"$_domain"
- else
- echo 'no shortcut installed'
- fi
- # activate the vhost
- ln -s /etc/nginx/sites-available/"$_domain".conf /etc/nginx/sites-enabled/"$_domain".conf
- # restart nginx
- systemctl start nginx
- echo -e "\033[92;1mvhost $_domain configured \033[Om"
- else
- echo "Vhost installation aborted"
- fi
|