Página inicial Explorar Ajuda
Registrar Entrar
cloudron
/
wordpress-app-alt2
2
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: e5d1d05a17
Branches Tags
wordpress-app-a...
/
start.sh

start.sh 6.1 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157 
  1. #!/bin/bash
    2. 

  2. 

  3. set -eu
    4. 

  4. 

  5. readonly WP="/app/code/wp --allow-root"
    6. 

  6. 

  7. # Detect the wordpress prefix from existing database
    8. 

  8. table_prefix=$(mysql --user=${MYSQL_USERNAME} --password=${MYSQL_PASSWORD} --host=${MYSQL_HOST} ${MYSQL_DATABASE} -e 'SHOW TABLES' --batch 2>/dev/null | sed -n 's/\(.*_\)usermeta/\1/p')
    9. 

  9. [[ -n "${table_prefix}" ]] || table_prefix="wp_"
    10. 

  10. echo "Using table prefix ${table_prefix}"
    11. 

  11. 

  12. # Settings to be updated on every run. Regenerating salts means users have to relogin
    13. 

  13. sed -e "s/##MYSQL_DATABASE/${MYSQL_DATABASE}/" \
    14. 

  14.     -e "s/##MYSQL_USERNAME/${MYSQL_USERNAME}/" \
    15. 

  15.     -e "s/##MYSQL_PASSWORD/${MYSQL_PASSWORD}/" \
    16. 

  16.     -e "s/##MYSQL_HOST/${MYSQL_HOST}:${MYSQL_PORT}/" \
    17. 

  17.     -e "s,##APP_ORIGIN,${APP_ORIGIN}," \
    18. 

  18.     -e "s/##AUTH_KEY/$(pwgen -1cns 64)/" \
    19. 

  19.     -e "s/##SECURE_AUTH_KEY/$(pwgen -1cns 64)/" \
    20. 

  20.     -e "s/##LOGGED_IN_KEY/$(pwgen -1cns 64)/" \
    21. 

  21.     -e "s/##NONCE_KEY/$(pwgen -1cns 64)/" \
    22. 

  22.     -e "s/##AUTH_SALT/$(pwgen -1cns 64)/" \
    23. 

  23.     -e "s/##SECURE_AUTH_SALT/$(pwgen -1cns 64)/" \
    24. 

  24.     -e "s/##LOGGED_IN_SALT/$(pwgen -1cns 64)/" \
    25. 

  25.     -e "s/##NONCE_SALT/$(pwgen -1cns 64)/" \
    26. 

  26.     -e "s/##TABLE_PREFIX/${table_prefix}/" \
    27. 

  27.     /app/code/wp-config.php.template > /run/wordpress/wp-config.php # sed -i seems to destroy symlink
    28. 

  28. 

  29. # Generate php.ini
    30. 

  30. memory_limit=$(cat /sys/fs/cgroup/memory/memory.limit_in_bytes) # this is the RAM. we have equal amount of swap
    31. 

  31. php_memory_limit_mb=$((memory_limit*2/1024/1024)) # we have 5 apache workers
    32. 

  32. 

  33. echo "Setting PHP memory limit to ${php_memory_limit_mb}M"
    34. 

  34. cp /etc/php/7.0/apache2/php.ini.orig /run/php.ini
    35. 

  35. crudini --set /run/php.ini PHP memory_limit "${php_memory_limit_mb}M"
    36. 

  36. 

  37. # Used for wp rewrite
    38. 

  38. touch /app/data/htaccess
    39. 

  39. 

  40. if [[ ! -f "/app/data/.dbsetup" ]]; then
    41. 

  41.     echo "Copying wp-content files on first run"
    42. 

  42.     mkdir -p /app/data/wp-content/mu-plugins
    43. 

  43.     cp -r /app/code/wp-content-vanilla/* /app/data/wp-content/
    44. 

  44. 

  45.     if [[ -n "${LDAP_SERVER:-}" ]]; then
    46. 

  46.         admin_password=$(pwgen -1y 16)
    47. 

  47.         admin_email=${MAIL_SMTP_USERNAME}@${MAIL_DOMAIN}
    48. 

  48.     else
    49. 

  49.         admin_password="changeme"
    50. 

  50.         admin_email=${MAIL_SMTP_USERNAME}@${MAIL_DOMAIN}
    51. 

  51.     fi
    52. 

  52. 

  53.     echo "Admin password is ${admin_password} and email is ${admin_email}"
    54. 

  54. 

  55.     # --skip-email is part of 0.23.0 https://github.com/wp-cli/wp-cli/pull/2345 and https://github.com/wp-cli/wp-cli/issues/1164
    56. 

  56.     $WP --url="${APP_ORIGIN}" --skip-email core install \
    57. 

  57.         --url="${APP_ORIGIN}" \
    58. 

  58.         --title="My blog" \
    59. 

  59.         --admin_user=admin \
    60. 

  60.         --admin_password="${admin_password}" \
    61. 

  61.         --admin_email="${admin_email}"
    62. 

  62.     echo "WP is now installed"
    63. 

  63. 

  64.     # Set default post structure to what most people want
    65. 

  65.     # Curiously, installing some plugins prevents .htaccess getting written
    66. 

  66.     $WP rewrite structure --hard '/%postname%/'
    67. 

  67. 

  68.     touch "/app/data/.dbsetup"
    69. 

  69. else
    70. 

  70.     # Update wordpress
    71. 

  71.     echo "Updating wordpress database"
    72. 

  72.     $WP core update-db
    73. 

  73. fi
    74. 

  74. 

  75. # install and backup the plugins. mu plugins are a "flat" structure
    76. 

  76. # sadly mu-plugins can still be re-configured, just not uninstallable
    77. 

  77. # We have to do this on every run to get plugin updates
    78. 

  78. if [[ ! -f "/run/wordpress/plugins_unpacked" ]]; then
    79. 

  79.     echo "Unpacking plugins"
    80. 

  80. 

  81.     # clear the directory, otherwise unzip/mv have to be forced
    82. 

  82.     rm -rf /app/data/wp-content/mu-plugins/*
    83. 

  83. 

  84.     rm -f /app/data/wp-content/mu-plugins/disable-updates.php # remove the old plugin we used
    85. 

  85.     unzip -d /app/data/wp-content/mu-plugins/ /app/code/disable-wordpress-core-update.zip
    86. 

  86.     mv /app/data/wp-content/mu-plugins/disable-wordpress-core-update/* /app/data/wp-content/mu-plugins/
    87. 

  87.     rm -rf /app/data/wp-content/mu-plugins/disable-wordpress-core-update/
    88. 

  88. 

  89.     unzip -d /app/data/wp-content/mu-plugins/ /app/code/wp-mail-smtp.zip
    90. 

  90.     mv /app/data/wp-content/mu-plugins/wp-mail-smtp/* /app/data/wp-content/mu-plugins/
    91. 

  91.     rm -rf /app/data/wp-content/mu-plugins/wp-mail-smtp/
    92. 

  92. 

  93.     # only install ldap plugin with sso
    94. 

  94.     if [[ -n "${LDAP_SERVER:-}" ]]; then
    95. 

  95.         unzip -d /app/data/wp-content/mu-plugins/ /app/code/authLdap.zip
    96. 

  96.         mv /app/data/wp-content/mu-plugins/authLdap-*/* /app/data/wp-content/mu-plugins/
    97. 

  97.         rm -rf /app/data/wp-content/mu-plugins/authLdap-*/
    98. 

  98.     fi
    99. 

  99. 

  100.     touch /run/wordpress/plugins_unpacked
    101. 

  101. else
    102. 

  102.     echo "Plugins already unpacked from previous run" # restarts
    103. 

  103. fi
    104. 

  104. 

  105. # configure WP mail smtp plugin (smtp_user, smtp_pass can be set when supported)
    106. 

  106. echo "Configuring smtp mail"
    107. 

  107. $WP option update mailer smtp
    108. 

  108. $WP option update mail_from "${MAIL_FROM}"
    109. 

  109. $WP option update mail_from_name WordPress
    110. 

  110. $WP option update smtp_host ${MAIL_SMTP_SERVER}
    111. 

  111. $WP option update smtp_port ${MAIL_SMTP_PORT}
    112. 

  112. $WP option update smtp_auth true
    113. 

  113. $WP option update smtp_user ${MAIL_SMTP_USERNAME}
    114. 

  114. $WP option update smtp_pass "${MAIL_SMTP_PASSWORD}"
    115. 

  115. 

  116. if [[ -n "${LDAP_SERVER:-}" ]]; then
    117. 

  117.     # configure LDAP
    118. 

  118.     # https://github.com/heiglandreas/authLdap/blob/master/authLdap.php#L644
    119. 

  119. 

  120.     # GroupEnable means that cloudron groups are carried over to wp groups
    121. 

  121.     # GroupOverUser means that if there is an existing wp group for the user, it won't be overwritten
    122. 

  122.     # The above implies that users can override the roles in wordpress and it
    123. 

  123.     # doesn't get overwritten on re-login
    124. 

  124.     echo "Configuring LDAP"
    125. 

  125.     ldapConfig=$(cat <<EOF
    126. 

  126.     {
    127. 

  127.         "Enabled"       : true,
    128. 

  128.         "CachePW"       : false,
    129. 

  129.         "URI"           : "ldap://${LDAP_SERVER}:${LDAP_PORT}/${LDAP_USERS_BASE_DN}",
    130. 

  130.         "Filter"        : "(|(mail=%1\$s)(username=%1\$s))",
    131. 

  131.         "NameAttr"      : "givenName",
    132. 

  132.         "SecName"       : "sn",
    133. 

  133.         "UidAttr"       : "username",
    134. 

  134.         "MailAttr"      : "mail",
    135. 

  135.         "WebAttr"       : "",
    136. 

  136.         "Groups"        : { "administrator" : "cn=admins,${LDAP_GROUPS_BASE_DN}" },
    137. 

  137.         "GroupSeparator": ";",
    138. 

  138.         "Debug"         : false,
    139. 

  139.         "GroupAttr"     : "memberof",
    140. 

  140.         "GroupFilter"   : "(|(mail=%1\$s)(username=%1\$s))",
    141. 

  141.         "DefaultRole"   : "editor",
    142. 

  142.         "GroupEnable"   : true,
    143. 

  143.         "GroupOverUser" : false,
    144. 

  144.         "Version"       : 1
    145. 

  145.     }
    146. 

  146. EOF
    147. 

  147. )
    148. 

  148.     $WP --format=json option update authLDAPOptions "${ldapConfig}"
    149. 

  149. fi
    150. 

  150. 

  151. chown -R www-data:www-data /app/data /run/wordpress
    152. 

  152. 

  153. echo "Starting apache"
    154. 

  154. APACHE_CONFDIR="" source /etc/apache2/envvars
    155. 

  155. rm -f "${APACHE_PID_FILE}"
    156. 

  156. exec /usr/sbin/apache2 -DFOREGROUND
    157. 

  157.