@drumee/setup-infra 1.0.0

package/congigure/start

@@ -0,0 +1,29 @@
+#!/bin/sh
+set -e
+. /usr/share/debconf/confmodule
+
+echo "Installing Drumee Team Meta Package"
+script_dir=`dirname $(readlink -f $0)`
+. $script_dir/utils/functions
+. $script_dir/utils/prompt.sh
+
+check_installation
+if [ "$RET" = "maiden" ]; then
+  select_installation_mode
+  if [ "$RET" = "menu" ]; then
+    $script_dir/menu-install
+  fi
+  $script_dir/prepare
+else 
+  should_reinstall
+  if [ "$RET" = "remove" ]; then
+    export FORCE_INSTALL=yes
+    service mariadb stop
+    echo rm -rf $DRUMEE_DB_DIR
+    echo rm -rf $DRUMEE_DATA_DIR
+    $script_dir/menu-install
+    $script_dir/prepare
+  else
+    echo updating
+  fi
+done

package/congigure/utils/configure

@@ -0,0 +1,56 @@
+#!/bin/bash
+
+set -e
+echo "Configuring Drumee Infrastructure"
+script_dir=$(dirname $(readlink -f $0))
+
+export infra_helper=$(dirname $script_dir)
+
+$infra_helper/bin/init-mail
+
+# Prepare config files
+node $infra_helper/index.js
+source /etc/drumee/drumee.sh
+
+
+if [ -d /etc/cron.d/drumee ]; then 
+  crontab /etc/cron.d/drumee
+fi 
+
+source $infra_helper/bin/env
+source $infra_helper/bin/jitsi
+
+install_jitsi
+
+protect_dir $DRUMEE_RUNTIME_DIR "no" "mkdir"
+protect_dir $DRUMEE_DATA_DIR "yes" "mkdir"
+cd $DRUMEE_DATA_DIR
+
+for d in mfs tmp; do
+  protect_dir "$DRUMEE_DATA_DIR/$d" "yes"
+done
+
+
+LOG_DIR=$DRUMEE_SERVER_HOME/.pm2/logs
+
+touch $DRUMEE_DATA_DIR/mfs/dont-remove-this-dir
+chmod a-w $DRUMEE_DATA_DIR/mfs/dont-remove-this-dir
+
+protect_dir $DRUMEE_STATIC_DIR 
+protect_dir /etc/drumee
+protect_dir $LOG_DIR "yes"
+protect_dir $DRUMEE_CACHE_DIR
+protect_dir $DRUMEE_TMP_DIR "yes"
+protect_dir $DRUMEE_SERVER_HOME
+protect_dir $DRUMEE_EXPORT_DIR
+protect_dir $DRUMEE_IMPORT_DIR
+
+$infra_helper/bin/init-named
+$infra_helper/bin/init-acme
+
+clean_vendor_files
+setup_dirs
+setup_prosody
+write_version
+
+echo "Drumee infrastructure done !"

package/congigure/utils/dependencies

@@ -0,0 +1,90 @@
+
+# Install postfix
+ensure_postfix () {
+  debconf-set-selections $1
+  DEBIAN_FRONTEND="noninteractive" apt install -y libopendkim11 opendkim-tools libmail-dkim-perl opendkim postfix mailutils spamass-milter postfix-mysql
+}
+
+# Install Jitsi packages
+ensure_jitsi () {
+  installed=$(dpkg -l | egrep "^ii +jitsi-meet")
+  if [ "$installed" != "" ]; then
+    echo Already have jitsi-meet.
+  else
+    debconf-set-selections $1
+    curl -sS https://download.jitsi.org/jitsi-key.gpg.key | gpg --dearmor | tee /etc/apt/trusted.gpg.d/jitsi-key.gpg
+    echo "deb https://download.jitsi.org stable/" | tee /etc/apt/sources.list.d/jitsi-stable.list
+
+    apt update
+    apt install -y prosody
+    DEBIAN_FRONTEND="noninteractive" apt install -y jitsi-meet
+  fi
+}
+
+ensure_mariadb () {
+  v=$(which mariadb)
+  if [ "$v" = "" ]; then
+    v=0
+  else
+    v=$(mariadb --version | awk '{print $5}' | sed -E "s/\..+$//")
+  fi
+  if (($v > 9)); then
+    echo "Already have MariaDb"
+  else
+    if [ ! -f /etc/apt/sources.list.d/mariadb.list ]; then
+      curl -sS https://downloads.mariadb.com/MariaDB/mariadb_repo_setup | bash
+    fi
+    apt install -y --no-install-recommends mariadb-server mariadb-client mariadb-backup
+  fi
+  service mariadb stop
+}
+
+
+#
+node_version () {
+  v=$(which node)
+  if [ -z $v ]; then
+    echo "0"
+  else
+    v=$(node -v | sed -E "s/^v//" | sed -E "s/\..+$//")
+    echo $v
+  fi
+}
+
+# Install Node packages dependencies
+ensure_node_packages () {
+  echo Installing Node packages dependencies...
+  version=$(node_version)
+  if (($version < 20)); then
+    curl -s https://deb.nodesource.com/setup_20.x | bash && apt-get update && apt-get install nodejs -y
+  fi
+
+  node -v
+  npm -v
+
+  npm install -g moment minimist shelljs jsonfile readline-sync pm2 pm2-logrotate lodash node-gyp node-pre-gyp coffeescript sass
+}
+
+check_installation () {
+  if [ -f /etc/drumee/drumee.sh ]; then
+    source /etc/drumee/drumee.sh
+    yp=$(mysql yp -e "select main_domain() mydomain")
+    if [ "$yp" = "" ]; then
+      RET=maiden
+    else
+      RET=exists
+    fi
+  else
+    RET=exists
+  fi
+}
+
+select_installation_mode () {
+  for i in DRUMEE_DOMAIN_NAME PUBLIC_IP4 PUBLIC_IP6 ADMIN_EMAIL DRUMEE_DB_DIR DRUMEE_DATA_DIR; do
+    if [ "${!i}" = "" ]; then
+      RET=menu
+      break
+    fi
+  done
+  RET=auto
+}

package/congigure/utils/jitsi

@@ -0,0 +1,122 @@
+#!/bin/bash
+
+
+#-------------------
+function setup_dirs() {
+  echo Configuring directories permissions
+
+  ca_dir=/usr/local/share/ca-certificates
+  mkdir -p $ca_dir
+
+  cert_file="${ACME_CERTS_DIR}/${JITSI_DOMAIN}_ecc/${JITSI_DOMAIN}"
+  target="${ca_dir}/auth.${JITSI_DOMAIN}"
+
+  if [ -f "${cert_file}.cer" ]; then
+    ln -sf "${cert_file}.cer" "${target}.cer"
+  fi
+
+  if [ -f "${cert_file}.key" ]; then
+    chmod g+r "${cert_file}.key"
+    ln -sf "${cert_file}.key" "${target}.key"
+  fi
+
+  mkdir -p $DRUMEE_RUNTIME_DIR/prosody
+  chown -R prosody:prosody $DRUMEE_RUNTIME_DIR/prosody
+
+  auth=$(echo auth.${JITSI_DOMAIN} | sed -e "s/\./\%2e/g" | sed -e "s/\-/\%2d/g" | sed -e "s/\_/\%5f/g")
+  mkdir -p "/etc/drumee/credential/prosody/data/${auth}"
+  chown -R prosody:prosody /etc/drumee/credential/prosody
+}
+
+#-------------------
+function addUser() {
+  user=$1
+  secret=$2
+  host=$3
+  # user_exists=$(prosodyctl adduser ${user}@${host} < /dev/null || true)
+  # if [ "$user_exists" = "That user already exists" ]; then
+  # fi
+  prosodyctl deluser ${user}@${host}
+  prosodyctl register ${user} ${host} $secret
+}
+
+
+#-------------------
+function setup_prosody() {
+  echo Configuring prosody creadentials
+
+  # Ensure prosody start before using prosodyctl
+  service prosody restart
+  host="auth.${JITSI_DOMAIN}"
+  #jic_pw=$(grep password /etc/jitsi/jicofo/jicofo.conf | awk '{print $3}' | sed -e s/\"//g)
+  #jvb_pw=$(grep PASSWORD /etc/jitsi/videobridge/jvb.conf | awk '{print $3}' | sed -e s/\"//g)
+  addUser focus $JICOFO_PASSWORD $host
+  addUser jvb $JVB_PASSWORD $host
+  addUser $APP_ID $APP_PASSWORD $JITSI_DOMAIN
+
+  pub_ip=$(grep public-address /etc/jitsi/videobridge/jvb.conf | awk '{print $3}' | sed -e s/\"//g)
+  if [ "$pub_ip" != "" ]; then
+    o=$(grep ${pub_ip} /etc/hosts)
+    if [ "$o" == "" ]; then
+      echo "${pub_ip} ${JITSI_DOMAIN}" >>/etc/hosts
+    fi
+  fi
+  echo Subscribing roster command for focus."${JITSI_DOMAIN}" focus@${host}
+  prosodyctl mod_roster_command subscribe focus."${JITSI_DOMAIN}" focus@${host}
+  #echo prosodyctl mod_roster_command subscribe focus."${JITSI_DOMAIN}" focus@${host}
+  echo Prosody creadentials done
+}
+
+#-------------------
+function clean_vendor_files() {
+  echo Removing native files installed by jitsi-meet package
+  rm -f /etc/nginx/sites-enabled/default
+  rm -f /etc/prosody/conf.d/jitsi.meet.cfg.lua
+  rm -f /etc/jitsi/videobridge/sip-communicator.properties
+  rm -f /etc/prosody/conf.avail/example.com.cfg.lua
+  rm -f /etc/prosody/conf.avail/jaas.cfg.lua
+  rm -f /etc/prosody/conf.avail/jitsi.meet.cfg.lua
+  rm -rf /etc/prosody/certs/*
+}
+
+#-------------------
+function restart_prosody() {
+  if [ -f /var/run/prosody/prosody.pid ]; then
+    set +e
+    ppid=$(cat /var/run/prosody/prosody.pid)
+    echo "Prosody PID =$ppid"
+  fi
+}
+
+#-------------------
+function write_version() {
+  echo Creating versions file
+  mkdir -p /etc/jitsi
+  dest=/etc/jitsi/versions.js
+  echo "module.exports={" >$dest
+  dpkg -l | egrep "ii +jitsi" | awk '{print  "\"", $2, "\"", ":", "\"", $3, "\"", ","}' | sed -E "s/ +//g" >>$dest
+  echo "}" >>$dest
+  echo Versions file created
+}
+
+#-------------------
+function install_jitsi() {
+  # Jitsi package
+  echo Checking jitsi-meet packages
+  installed=$(dpkg -l | egrep "^ii +jitsi-meet ")
+  if [ "$installed" = "" ]; then
+    key=/etc/apt/trusted.gpg.d/jitsi-key.gpg
+    if [ ! -f $key ]; then
+      curl -sS https://download.jitsi.org/jitsi-key.gpg.key | gpg --dearmor | tee j$key >/dev/null 2>&1
+    fi
+
+    source=/etc/apt/sources.list.d/jitsi-stable.list
+    if [ ! -f $jitsi_source ]; then
+      echo "deb https://download.jitsi.org stable/" | tee $source
+      apt update
+    fi
+    DEBIAN_FRONTEND="noninteractive" apt install -y jitsi-meet
+  else
+    echo "Jitsi package alreay installed. Skipped."
+  fi
+}

package/congigure/utils/misc

@@ -0,0 +1,77 @@
+
+export log_dir=/var/log/drumee
+export log_file="${log_dir}/info.log"
+
+if [ ! -d $log_dir ]; then
+  mkdir -p $log_dir
+fi
+
+# log
+log () {
+  echo $(date "+%Y:%m:%d[%H:%M:%s]") $* | tee $log_file
+}
+
+#answer
+answer () {
+  stdin="${1:-/dev/stdin}"
+  while read line; do
+    break
+  done <$stdin
+  echo $line$()
+}
+
+# Ensure there won't be confilcting ports
+check_ports () {
+  set +
+  echo Scanning ports in use. This may take a while
+  netstat -alpute | awk 'BEGIN { FS=" " } {print $4}' | egrep -E ".+:.+" >/tmp/netstat.log
+  ports="53 10000 3478 5222 5269 5280 5281 5282 5283 5349 8888 9090 domain xmpp-client xmpp-server"
+
+  for i in $ports; do
+    port=$(grep -w $i /tmp/netstat.log)
+    if [ ! -z "$port" ]; then
+      echo port $i is already in used
+    fi
+  done
+}
+
+
+#-------------------
+log () {
+  echo $(date "+%Y:%m:%d[%H:%M:%s]") $* | tee $log_file
+}
+
+
+##-------------------
+protect_dir () {
+  dir=$1
+  conidential=$2
+  if [ -z $dir ]; then
+    if [ "$3" = "mkdir" ]; then
+       mkdir -p $dir
+    else
+      echo "No directory to protect. Skipped"
+    fi
+  else
+    mkdir -p $dir
+    chown -R $DRUMEE_SYSTEM_USER:$DRUMEE_SYSTEM_GROUP $dir
+    if [ "$confidential" = "yes" ]; then
+      chmod -R go-rwx $dir
+    fi
+    chmod -R u+rwx $dir
+  fi
+}
+
+check_installation() {
+  if [ -f /etc/drumee/drumee.sh ]; then
+    source /etc/drumee/drumee.sh 
+    yp=$(mysql yp -e  "select main_domaissn() mydomain");
+    if [ "$yp" = "" ]; then
+      RET=maiden
+    else 
+      RET=exists
+    fi
+  else
+    RET=maiden
+  fi
+}

package/congigure/utils/prompt.sh

@@ -0,0 +1,35 @@
+
+
+# 
+prompt () {
+  name=$1
+  pattern=$2
+  toggle=$3
+  db_input high $name || true
+  db_get $name  
+  is_valid=$(echo $RET | grep -E "$pattern")
+  if ["$toggle" = "" ]; then
+    while [ "$is_valid" = "" ]
+    do
+      db_input high $name || true
+      db_get $name
+      is_valid=$(echo $RET | grep -E "$pattern")
+    done 
+  else 
+    while [ "$is_valid" != "" ]
+    do
+      db_input high $name || true
+      db_get $name
+      is_valid=$(echo $RET | grep -E "$pattern")
+    done 
+  fi
+}
+
+should_reinstall () {
+  db_input high drumee/reinstall || true
+  db_go
+  db_get drumee/reinstall
+  if [ "$RET" = "quit" ]; then
+    exit 0
+  fi
+}

package/congigure/utils/setup-versions

@@ -0,0 +1,7 @@
+#!/bin/bash
+base="$(dirname "$(readlink -f "$0")")"
+mkdir -p /etc/jitsi
+dest=/etc/jitsi/versions.js
+echo "module.exports={" > $dest
+dpkg -l | egrep "ii +jitsi" | awk '{print  "\"", $2, "\"", ":", "\"", $3, "\"", ","}'  | sed -E "s/ +//g" >> $dest
+echo "}" >>  $dest