WiP on install scripts

2018-12-24 15:41:10 +00:00 · 2018-12-24 15:41:10 +00:00 · a6c7e6327b
commit a6c7e6327b
parent dcc5b18058
3 changed files with 467 additions and 0 deletions
--- a/setup/install-centos7-https.sh
+++ b/setup/install-centos7-https.sh
@ -0,0 +1,52 @@
+#!/bin/bash
+
+# This installation script works on CentOS 7
+# Run as root!
+
+if [[ $EUID -ne 0 ]]; then
+   echo "This script must be run as root" 1>&2
+   exit 1
+fi
+
+set -e
+
+SCRIPT_PATH=$(dirname $(realpath -s $0))
+. $SCRIPT_PATH/functions
+cd $SCRIPT_PATH/..
+
+
+# Help function
+function HELP {
+cat << EOF
+
+Basic usage: install-centos7-https.sh <trusted host> <sandbox host> <public host> <email>
+
+Installs Mailtrain 2 on CentOS 7. This performs installation for external use. It installs Mailtrain, sets up
+a reverse HTTPS proxy using Apache HTTPD, sets up firewall rules, and obtains a certificate from Letsencrypt.
+
+You have to allocate three endpoints for Mailtrain - trusted (admin UI), sandbox (editors for templates), public (subscription forms and archive).
+These endpoints have to differ in hostname. It's fine to host them all from one IP address.
+
+The email is needed by certbot. Please note that by running the script, you agree with Letsencrypt's conditions.
+
+Example: install-centos7-https.sh mailtrain.example.com sbox.mailtrain.example.com mail.example.com admin@example.com
+EOF
+
+  exit 1
+}
+
+if [ $# -lt 4 ]; then
+        echo "Error: incorrect number of parameters."
+        HELP
+fi
+
+hostTrusted="$1"
+hostSandbox="$2"
+hostPublic="$3"
+email="$4"
+
+createCertificates "${hostTrusted}" "${hostSandbox}" "${hostPublic}" "${email}"
+
+installHttps "${hostTrusted}" 443 "${hostSandbox}" 443 "${hostPublic}" 443 "/etc/letsencrypt/live/${hostPublic}/cert.pem" "/etc/letsencrypt/live/${hostPublic}/privkey.pem" "/etc/letsencrypt/live/${hostPublic}/chain.pem" ""
+
+installBase "https://${hostTrusted}" "https://${hostSandbox}" "https://${hostPublic}" "${email}"