bridgehead/lib/install-bridgehead.sh

#!/bin/bash -e

source lib/functions.sh

exitIfNotRoot

if [ $# -eq 0 ]; then
    log "ERROR" "Please provide a Project as argument"
    exit 1
fi

export PROJECT=$1

checkRequirements noprivkey

log "INFO" "Allowing the bridgehead user to start/stop the bridgehead."

cat <<EOF > /etc/sudoers.d/bridgehead-"${PROJECT}"
# This has been added by the Bridgehead installer. Remove with bridgehead uninstall.
Cmnd_Alias BRIDGEHEAD${PROJECT^^} = \\
    /bin/systemctl start bridgehead@${PROJECT}.service, \\
    /bin/systemctl stop bridgehead@${PROJECT}.service, \\
    /bin/systemctl restart bridgehead@${PROJECT}.service, \\
    /bin/systemctl restart bridgehead@*.service, \\
    /bin/chown -R bridgehead /etc/bridgehead /srv/docker/bridgehead, \\
    /usr/bin/chown -R bridgehead /etc/bridgehead /srv/docker/bridgehead

bridgehead ALL= NOPASSWD: BRIDGEHEAD${PROJECT^^}
EOF

# TODO: Determine whether this should be located in setup-bridgehead (triggered through bridgehead install) or in update bridgehead (triggered every hour)
if [ -z "$LDM_AUTH" ]; then
  log "INFO" "Now generating basic auth for the local data management (see adduser in bridgehead for more information). "
  generated_passwd="$(cat /proc/sys/kernel/random/uuid | sed 's/[-]//g' | head -c 32)"
  add_basic_auth_user $PROJECT $generated_passwd "LDM_AUTH" $PROJECT
fi

if [ ! -z "$NNGM_CTS_APIKEY" ] && [ -z "$NNGM_AUTH" ]; then
  log "INFO" "Now generating basic auth for nNGM upload API (see adduser in bridgehead for more information). "
  generated_passwd="$(cat /proc/sys/kernel/random/uuid | sed 's/[-]//g' | head -c 32)"
  add_basic_auth_user "nngm" $generated_passwd "NNGM_AUTH" $PROJECT
fi

log "INFO" "Registering system units for bridgehead and bridgehead-update"
cp -v \
    lib/systemd/bridgehead\@.service \
    lib/systemd/bridgehead-update\@.service \
    lib/systemd/bridgehead-update\@.timer \
    /etc/systemd/system/

systemctl daemon-reload

log INFO "Trying to update your bridgehead ..."

systemctl start bridgehead-update@"${PROJECT}".service

log "INFO" "Enabling autostart of bridgehead@${PROJECT}.service"
systemctl enable bridgehead@"${PROJECT}".service

log "INFO" "Enabling auto-updates for bridgehead@${PROJECT}.service ..."
systemctl enable --now bridgehead-update@"${PROJECT}".timer

STR="\n\n            systemctl start bridgehead@${PROJECT}.service\n\nor by rebooting your machine."
if [ -e /etc/bridgehead/pki/${SITE_ID}.priv.pem ]; then
  STR="Success. Next, start your bridgehead by running$STR"
else
  STR="Success. Next, enroll into the $PROJECT broker by creating a cryptographic certificate. To do so, run\n\n            /srv/docker/bridgehead/bridgehead enroll $PROJECT\n\nThen, you may start the bridgehead by running$STR"
fi

log "INFO" "$STR"
Update install scripts and prereqs (sudo) 2022-09-30 15:25:09 +02:00			`#!/bin/bash -e`
Added files for running a gbn project 2021-12-21 13:48:28 +01:00
Don't do sudo 2022-01-10 15:31:07 +01:00			`source lib/functions.sh`

			`exitIfNotRoot`

Cleanup of earlier merge 2022-05-04 13:50:33 +02:00			`if [ $# -eq 0 ]; then`
refactor: Ensured Usage of Log Function This should ensure a more consistent script output 2022-05-17 15:55:25 +02:00			`log "ERROR" "Please provide a Project as argument"`
Cleanup of earlier merge 2022-05-04 13:50:33 +02:00			`exit 1`
			`fi`

Fixed naming Update the git config repo 2022-05-11 10:30:18 +02:00			`export PROJECT=$1`
Cleanup of earlier merge 2022-05-04 13:50:33 +02:00
Shorten installation by including some installation steps into a shell script 2022-05-17 18:04:15 +02:00			`checkRequirements noprivkey`
Added files for running a gbn project 2021-12-21 13:48:28 +01:00
Update install scripts and prereqs (sudo) 2022-09-30 15:25:09 +02:00			`log "INFO" "Allowing the bridgehead user to start/stop the bridgehead."`

			`cat <<EOF > /etc/sudoers.d/bridgehead-"${PROJECT}"`
			`# This has been added by the Bridgehead installer. Remove with bridgehead uninstall.`
Update deployment 2022-09-30 15:35:37 +02:00			`Cmnd_Alias BRIDGEHEAD${PROJECT^^} = \\`
			`/bin/systemctl start bridgehead@${PROJECT}.service, \\`
			`/bin/systemctl stop bridgehead@${PROJECT}.service, \\`
			`/bin/systemctl restart bridgehead@${PROJECT}.service, \\`
Monitoring for bridgehead startup and update (#22) 2022-10-06 10:45:50 +02:00			`/bin/systemctl restart bridgehead@*.service, \\`
refactor: Expect User to select a Backup Directory 2023-01-27 11:26:31 +01:00			`/bin/chown -R bridgehead /etc/bridgehead /srv/docker/bridgehead, \\`
			`/usr/bin/chown -R bridgehead /etc/bridgehead /srv/docker/bridgehead`
Update install scripts and prereqs (sudo) 2022-09-30 15:25:09 +02:00
Update deployment 2022-09-30 15:35:37 +02:00			`bridgehead ALL= NOPASSWD: BRIDGEHEAD${PROJECT^^}`
Update install scripts and prereqs (sudo) 2022-09-30 15:25:09 +02:00			`EOF`

Shorten installation by including some installation steps into a shell script 2022-05-17 18:04:15 +02:00			`# TODO: Determine whether this should be located in setup-bridgehead (triggered through bridgehead install) or in update bridgehead (triggered every hour)`
add generic bash function addBasicAuthUser 2023-07-27 15:38:29 +02:00			`if [ -z "$LDM_AUTH" ]; then`
refactor addUser to adduser - lowercase 2023-08-15 15:42:42 +02:00			`log "INFO" "Now generating basic auth for the local data management (see adduser in bridgehead for more information). "`
Make local passwords longer 2022-11-03 18:15:45 +01:00			`generated_passwd="$(cat /proc/sys/kernel/random/uuid \| sed 's/[-]//g' \| head -c 32)"`
add generic bash function addBasicAuthUser 2023-07-27 15:38:29 +02:00			`add_basic_auth_user $PROJECT $generated_passwd "LDM_AUTH" $PROJECT`
			`fi`
fix: LDM Password is now generated at Installation 2022-10-25 15:30:14 +02:00
add migration for old credentials 2023-08-15 13:55:07 +02:00			`if [ ! -z "$NNGM_CTS_APIKEY" ] && [ -z "$NNGM_AUTH" ]; then`
refactor addUser to adduser - lowercase 2023-08-15 15:42:42 +02:00			`log "INFO" "Now generating basic auth for nNGM upload API (see adduser in bridgehead for more information). "`
add generic bash function addBasicAuthUser 2023-07-27 15:38:29 +02:00			`generated_passwd="$(cat /proc/sys/kernel/random/uuid \| sed 's/[-]//g' \| head -c 32)"`
			`add_basic_auth_user "nngm" $generated_passwd "NNGM_AUTH" $PROJECT`
fix: Moved LDM Password to /etc/bridgehead 2022-10-26 10:48:55 +02:00			`fi`
fix: LDM Password is now generated at Installation 2022-10-25 15:30:14 +02:00
Shorten installation by including some installation steps into a shell script 2022-05-17 18:04:15 +02:00			`log "INFO" "Registering system units for bridgehead and bridgehead-update"`
Don't do sudo 2022-01-10 15:31:07 +01:00			`cp -v \`
Rename "convenience" systemd units 2022-01-10 16:42:13 +01:00			`lib/systemd/bridgehead\@.service \`
			`lib/systemd/bridgehead-update\@.service \`
			`lib/systemd/bridgehead-update\@.timer \`
Uniform dktk and c4 docker-compose files 2022-01-11 14:40:16 +01:00			`/etc/systemd/system/`
Added files for running a gbn project 2021-12-21 13:48:28 +01:00
Don't do sudo 2022-01-10 15:31:07 +01:00			`systemctl daemon-reload`
Added files for running a gbn project 2021-12-21 13:48:28 +01:00
Update install scripts and prereqs (sudo) 2022-09-30 15:25:09 +02:00			`log INFO "Trying to update your bridgehead ..."`

			`systemctl start bridgehead-update@"${PROJECT}".service`

			`log "INFO" "Enabling autostart of bridgehead@${PROJECT}.service"`
			`systemctl enable bridgehead@"${PROJECT}".service`

			`log "INFO" "Enabling auto-updates for bridgehead@${PROJECT}.service ..."`
			`systemctl enable --now bridgehead-update@"${PROJECT}".timer`
Several fixes to shell scripts 2022-01-10 16:31:48 +01:00
Shorten installation by including some installation steps into a shell script 2022-05-17 18:04:15 +02:00			`STR="\n\n systemctl start bridgehead@${PROJECT}.service\n\nor by rebooting your machine."`
			`if [ -e /etc/bridgehead/pki/${SITE_ID}.priv.pem ]; then`
			`STR="Success. Next, start your bridgehead by running$STR"`
			`else`
			`STR="Success. Next, enroll into the $PROJECT broker by creating a cryptographic certificate. To do so, run\n\n /srv/docker/bridgehead/bridgehead enroll $PROJECT\n\nThen, you may start the bridgehead by running$STR"`
			`fi`

feature: Added automated Backups for PostgreSQL 2022-12-13 16:51:32 +01:00			`log "INFO" "$STR"`