Develop installer update #1216
Develop installer update #1216
Conversation
…amonkey198206/tacticalrmm into develop-installer-update-ws
…e-ws Develop installer update ws
…e-ws Added Ubuntu 22.04 Mongodb support
|
woh, thats a lot of items, but looks cool. hoepfully it does not break my custom install method |
|
I need to go through and update it. |
|
cool, maybe you could work into making this merged into the upstream, i am sure it would save alot of people headache |
|
|
wh1te909
force-pushed
the
develop
branch
2 times, most recently
from
942055f
to
903a2d6
Compare
|
@wh1te909 hows this coming along? |
|
Hey folks, been insanely busy with the new job. Haven't had time to do much outside of that, but if anything needs to be done with this, or any of the things I submitted, let me know and I'll get it taken care of, or I can pull this if you pulled what you needed out of it. |
Merged all scripts into a single cfg file, then split into further function type specific cfg files with their own update checks.
Added menu with options for previous individual script functions.
Added commenting in many locations.
Combined previous scripts into reusable functions where possible.
Added default config and service files, reducing the required output for those functions to a simple copy and sed command for each.
Added menu options for dev installs per Dinger and Silver.
Added option to select dev repo during dev install.
Added DH generation and config to nginx config files.
Added STS setting to nginx configs per https://syslink.pl/cipherlist/
Added check for localhost per #779
Updated gpg key import for repos to modern method, as previous method is now deprecated.
Added option to import existing cert, key, and ca chain cert using vim editor. Muahahahahahahaha!
Imported certs are created in the same location if letsencrypt certs are not generated.
Added input verification where appropriate to prevent user error during entry.
Added option for manual input of usernames and passwords.
Added option for Fail2ban install.
Added LetsEncrypt cert renewal function.
Added check to verify if user running script is tactical user.
Added check to verify tactical user has sudo privileges.
Added tactical user creation if it does not exist.
Added command-line argument usage for automated installs.
Included checks to ensure all args necessary are included, are valid, and in the correct format, or script will fail with an error message.
Removed need for prompts in troubleshooting function if nginx conf files exist, if not, prompt for input.
Added repo url verification.
Added DNS tests to hopefully ensure install won't occur if DNS not properly configured.
Reworked hostname and root domain input verification to allow for domains ending in .co.uk and similar.
Added troubleshooting, backup, and restore via cli args.
Added webroot letsencrypt certificate option with automatic post renewal service restart.
Added generation of log files for each major function/section.
Added sudo password cli arg for fully automated runs, with automated removal of script run command and passed password from history.
Added backup of existing nginx conf files (including default nginx.conf) during install, update, and restore.
Added default nginx.conf file to replace version shipped with OS, as it often has insecure options enabled by default.
Ran through shellscript checker to "clean up" potential issues with formatting and syntax.
Reworked postgres db import command to avoid occasional failure during restore operation.
Added removal of old nginx enabled-mods from prior to 0.14.3
Added pre-start command in daphne service definition to remove old stinky socks in case of system crash/power loss per #1210
Modified mesh variable case structure to match mesh documentation.
Added DNS txt check during cert generation to prevent timeouts and over limit attempts per #1227
Added support for Ubuntu 22.04 via manual installation of libssl1.1.1l