From a4d39c4f19bc40edd84638a22cc4483c65fd63a0 Mon Sep 17 00:00:00 2001 From: Michel Roegl-Brunner Date: Thu, 19 Dec 2024 11:33:43 +0100 Subject: [PATCH] Rework Contributing to merge the tow existing Versions --- .github/CONTRIBUTOR_GUIDE/CONTRIBUTING.md | 368 ++---------------- .github/CONTRIBUTOR_GUIDE/ct/AppName.md | 228 +++++++++++ .../install/AppName-install.md | 272 +++++++++++++ .github/CONTRIBUTOR_GUIDE/json/AppName.json | 34 ++ .github/CONTRIBUTOR_GUIDE/json/AppName.md | 5 + 5 files changed, 574 insertions(+), 333 deletions(-) create mode 100644 .github/CONTRIBUTOR_GUIDE/ct/AppName.md create mode 100644 .github/CONTRIBUTOR_GUIDE/install/AppName-install.md create mode 100644 .github/CONTRIBUTOR_GUIDE/json/AppName.json create mode 100644 .github/CONTRIBUTOR_GUIDE/json/AppName.md diff --git a/.github/CONTRIBUTOR_GUIDE/CONTRIBUTING.md b/.github/CONTRIBUTOR_GUIDE/CONTRIBUTING.md index 507b085d..41658309 100644 --- a/.github/CONTRIBUTOR_GUIDE/CONTRIBUTING.md +++ b/.github/CONTRIBUTOR_GUIDE/CONTRIBUTING.md @@ -1,8 +1,32 @@ # Community Scripts Contribution Guide -## Overview -Welcome to the community-scripts repository! This guide provides detailed instructions on how to contribute to the project, including code structure, best practices, and setup instructions for contributing to our repository. +## **Welcome to the communty-scripts Repository!** +πŸ“œ These documents outlines the essential coding standards for all our scripts and JSON files. Adhering to these standards ensures that our codebase remains consistent, readable, and maintainable. By following these guidelines, we can improve collaboration, reduce errors, and enhance the overall quality of our project. + +### Why Coding Standards Matter + +Coding standards are crucial for several reasons: + +1. **Consistency**: Consistent code is easier to read, understand, and maintain. It helps new team members quickly get up to speed and reduces the learning curve. +2. **Readability**: Clear and well-structured code is easier to debug and extend. It allows developers to quickly identify and fix issues. +3. **Maintainability**: Code that follows a standard structure is easier to refactor and update. It ensures that changes can be made with minimal risk of introducing new bugs. +4. **Collaboration**: When everyone follows the same standards, it becomes easier to collaborate on code. It reduces friction and misunderstandings during code reviews and merges. + +### Scope of These Documents + +These documentes covers the coding standards for the following types of files in our project: + +- **`APP-install.sh` Scripts**: These scripts are responsible for the installation of applications and are located in the `/install` directory. +- **`APP.sh` Scripts**: These scripts handle the creation and updating of containers and are found in the `/ct` directory. +- **JSON Files**: These files store structured data and are located in the `/json` directory. + +Each section provides detailed guidelines on various aspects of coding, including shebang usage, comments, variable naming, function naming, indentation, error handling, command substitution, quoting, script structure, and logging. Additionally, examples are provided to illustrate the application of these standards. + +By following the coding standards outlined in this document, we ensure that our scripts and JSON files are of high quality, making our project more robust and easier to manage. Please refer to this guide whenever you create or update scripts and JSON files to maintain a high standard of code quality across the project. πŸ“šπŸ” + +Let's work together to keep our codebase clean, efficient, and maintainable! πŸ’ͺπŸš€ + ## Getting Started @@ -20,342 +44,17 @@ Before contributing, please ensure that you have the following setup: --- -# πŸš€ Structure of Installation Scripts (ct/AppName.sh) +# πŸš€ The Application Script (ct/AppName.sh) -All installation scripts should follow this standard structure: - -## 1. πŸ“ File Header - -```bash -#!/usr/bin/env bash -source <(curl -s https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/misc/build.func) -# Copyright (c) 2021-2024 community-scripts ORG -# Author: [YourUserName] -# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE -# Source: [SOURCE_URL] -``` - -> **Note**: -> - Add your username and source URL -> - For existing scripts, add "| Co-Author [YourUserName]" after the current author - -## 2. πŸ”§ App Default Values - -```bash -# App Default Values -APP="[APP_NAME]" -TAGS="[TAGS]" -var_cpu="[CPU]" -var_ram="[RAM]" -var_disk="[DISKSIZE]" -var_os="[OS]" -var_version="[VERSION]" -var_unprivileged="[UNPRIVILEGED]" -``` - -### Value Declarations πŸ“Š - -| Variable | Description | Notes | -|----------|-------------|-------| -| `APP` | Application name | Must match ct\AppName.sh | -| `TAGS` | Proxmox display tags | Limit the number | -| `var_cpu` | CPU cores | Number of cores | -| `var_ram` | RAM | In MB | -| `var_disk` | Disk capacity | In GB | -| `var_os` | Operating system | alpine, debian, ubuntu | -| `var_version` | OS version | e.g., 3.20, 11, 12, 20.04 | -| `var_unprivileged` | Container type | 1 = Unprivileged, 0 = Privileged | - -### Default Values πŸ”¨ - -- `TAGS="community-script"` (default) -- `var_cpu="1"` -- `var_ram="1024"` -- `var_disk="4"` -- `var_unprivileged="1"` -- `var_verbose="no"` - -#### Example 🌟 - -```bash -# App Default Values -APP="Google" -TAGS="searching;website" -var_cpu="2" -var_ram="4096" -var_disk="10" -var_os="debian" -var_version="12" -var_unprivileged="0" -``` - -> Creates a privileged LXC named "google" with 2 CPU cores, 4096 MB RAM, 10 GB disk, on Debian 12 - -## 3. πŸ“‹ App Output & Base Settings - -```bash -# App Output & Base Settings -header_info "$APP" -base_settings -``` - -- `header_info`: Generates ASCII header for APP -- `base_settings`: Allows overwriting variable values - -## 4. πŸ›  Core Functions - -```bash -# Core -variables -color -catch_errors -``` - -- `variables`: Processes input and prepares variables -- `color`: Sets icons, colors, and formatting -- `catch_errors`: Enables error handling - -## 5. πŸ”„ Update-Script Part - -```bash -function update_script() { - header_info - check_container_storage - check_container_resources - - # Update-Code -} -``` - -- `header_info`: Regenerates ASCII AppName -- `check_container_storage`: Checks available storage -- `check_container_resources`: Validates CPU/RAM resources - -```bash -# Check if installation is present | -f for file, -d for folder - if [[ ! -f [INSTALLATION_CHECK_PATH] ]]; then - msg_error "No ${APP} Installation Found!" - exit - fi -``` - -> **Note**: -> - First you need to check if the APP is installed in the LXC -> - Replace ```INSTALLATION_CHECK_PATH``` with the path to the APP ```i.e. (/opt/app)``` - -```bash - # Crawling the new version and checking whether an update is required - RELEASE=$(curl -fsSL [RELEASE_URL] | [PARSE_RELEASE_COMMAND]) - if [[ "${RELEASE}" != "$(cat /opt/${APP}_version.txt)" ]] || [[ ! -f /opt/${APP}_version.txt ]]; then - - # Code to update the APP - - else - msg_ok "No update required. ${APP} is already at v${RELEASE}" - fi - exit -``` - -> **Note**: -> - Crawl for the newest version. Example for Github Releases: -> - ```RELEASE=$(curl -s https://api.github.com/repos/USER/REPO/releases/latest | grep "tag_name" | awk '{print substr($2, 3, length($2)-4) }')``` -> - Then check if updating is required. - -```bash - # Stopping Services - msg_info "Stopping $APP" - systemctl stop [SERVICE_NAME] - msg_ok "Stopped $APP" - - # Creating Backup - msg_info "Creating Backup" - tar -czf "/opt/${APP}_backup_$(date +%F).tar.gz" [IMPORTANT_PATHS] - msg_ok "Backup Created" - - # Execute Update - msg_info "Updating $APP to v${RELEASE}" - [UPDATE_COMMANDS] - msg_ok "Updated $APP to v${RELEASE}" - - # Starting Services - msg_info "Starting $APP" - systemctl start [SERVICE_NAME] - sleep 2 - msg_ok "Started $APP" - - # Cleaning up - msg_info "Cleaning Up" - rm -rf [TEMP_FILES] - msg_ok "Cleanup Completed" - - # Last Action - echo "${RELEASE}" >/opt/${APP}_version.txt - msg_ok "Update Successful" -``` - -> **Note**: -> - In the IF-Block you then write the code to update the APP, Start and Stop the Services and clean up any temporary files - -## 6. 🏁 Script-End - -```bash -start -build_container -description - -msg_ok "Completed Successfully!\n" -echo -e "${CREATING}${GN}${APP} setup has been successfully initialized!${CL}" -echo -e "${INFO}${YW} Access it using the following URL:${CL}" -echo -e "${TAB}${GATEWAY}${BGN}http://${IP}:[PORT]${CL}" -``` - -- `start`: Launches Whiptail dialogue -- `build_container`: Collects and integrates user settings -- `description`: Sets LXC container description +- You can find all Coding standards, as well as the structure for this files [here](.github/CONTRIBUTIR_GUIDE/ct/AppName.md). +- These Scripts are responsible for Container creataion, setting the necessery varibles and handels the update of the Application. --- -# πŸ›  Structure of Installation Scripts (install/AppName-install.sh) +# πŸ›  The Installation Script (install/AppName-install.sh) -## 1. πŸ“„ File Header - -```bash -#!/usr/bin/env bash - -# Copyright (c) 2021-2024 community-scripts ORG -# Author: [YourUserName] -# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE -``` - -> **Notes**: -> - Add your username -> - For existing scripts, add "| Co-Author [YourUserName]" - -## 2. πŸ”Œ Import Functions and Setup - -```bash -source /dev/stdin <<< "$FUNCTIONS_FILE_PATH" -color -verb_ip6 -catch_errors -setting_up_container -network_check -update_os -``` - -## 3. πŸ“¦ Standard Dependencies - -```bash -msg_info "Installing Dependencies" -$STD apt-get install -y \ - curl \ - sudo \ - mc -msg_ok "Installed Dependencies" -``` - -## 4. πŸ“ File Writing Conventions - -### Writing Config Files πŸ”§ - -```bash -cat </etc/systemd/system/${APPLICATION}.service -[Unit] -Description=${APPLICATION} Service Description -After=network.target - -[Service] -Type=simple -ExecStart=/path/to/executable -Restart=always - -[Install] -WantedBy=multi-user.target -EOF -``` - -### Writing Environment Files 🌍 - -```bash -cat </path/to/.env -VARIABLE="value" -PORT=3000 -DB_NAME="${DB_NAME}" -EOF -``` - -## 5. 🚦 Service Management - -```bash -systemctl enable -q --now service.service -``` - -## 6. 🧹 Cleanup Section - -```bash -msg_info "Cleaning up" -$STD apt-get -y autoremove -$STD apt-get -y autoclean -msg_ok "Cleaned" -``` - -## 7. πŸ“’ Progress Messages - -```bash -msg_info "Setup ${APPLICATION}" -$STD some_command -msg_ok "Setup ${APPLICATION}" -``` - -## 8. 🏷️ Version Tracking - -```bash -echo "${RELEASE}" >"/opt/${APPLICATION}_version.txt" -``` - -## 9. πŸ” Credentials Management - -```bash -USERNAME=username -PASSWORD=$(openssl rand -base64 18 | tr -dc 'a-zA-Z0-9' | head -c13) -{ - echo "Application-Credentials" - echo "Username: $USERNAME" - echo "Password: $PASSWORD" -} >> ~/application.creds -``` -- Use random generated Passwords if possible - -## 10. πŸ“‚ Directory Structure - -- Application files: `/opt/application_name/` -- Configuration files: `/etc/application_name/` -- Data files: `/var/lib/application_name/` - -## 11. 🚨 Error Handling - -```bash -catch_errors -``` - -## 12. 🏁 Final Setup - -```bash -motd_ssh -customize -``` - ---- - -## πŸ“‹ Best Practices - -1. Use `$STD` for suppressed command output -2. Use uppercase for global variables -3. Quote variables with potential spaces -4. Use `-q` for quiet operations -5. Use 2-space indentation -6. Include cleanup sections -7. Use descriptive message strings +- You can find all Coding standards, as well as the structure for this files [here](.github/CONTRIBUTIR_GUIDE/install/AppName-install.md). +- These Scripts handel the installation of the Application. --- @@ -403,3 +102,6 @@ Open a PR from your feature branch to the main repository branch - [Function-Overview](https://github.com/community-scripts/ProxmoxVE/wiki/Function_Overview) - [CT Template: AppName.sh](https://github.com/community-scripts/ProxmoxVE/blob/contributor_guide/.github/CONTRIBUTOR_GUIDE/ct/AppName.sh) - [Install Template: AppName-install.sh](https://github.com/community-scripts/ProxmoxVE/blob/contributor_guide/.github/CONTRIBUTOR_GUIDE/install/AppName-install.sh) + +--- + diff --git a/.github/CONTRIBUTOR_GUIDE/ct/AppName.md b/.github/CONTRIBUTOR_GUIDE/ct/AppName.md new file mode 100644 index 00000000..8b07143d --- /dev/null +++ b/.github/CONTRIBUTOR_GUIDE/ct/AppName.md @@ -0,0 +1,228 @@ +# **AppName.sh Scripts** + `AppName.sh` scripts found in the `/ct` directory. These scripts are responsible for the installation of the desired Application. For this guide we take `/ct/snipeit.sh` as example. + + +## 1. **File Header** + +### 1.1 **Shebang** +- Use `#!/usr/bin/env bash` as the shebang for portability across systems. + +```bash +#!/usr/bin/env bash +``` +### 1.2 **Import Functions** +- Import the build.func File. +- When developing your own Script, change the link to your own repository. + +> [!CAUTION] +> Before opening a Pull Request change the link to point to the community-scripts repo. + +Example for development: +```bash +source <(curl -s https://raw.githubusercontent.com/[USER]/[REPO]/refs/heads/[BRANCH]/misc/build.func) +``` + +Example for final Script: +```bash +source <(curl -s https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/misc/build.func) +``` + +### 1.3 **Metadata** +- Add clear comments for script metadata, including author, copyright, and license information. + +Example: +```bash +# Copyright (c) 2021-2024 community-scripts ORG +# Author: [YourUserName] +# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE +# Source: [SOURCE_URL] +``` + +> [!NOTE]: +> - Add your username and source URL +> - For existing scripts, add "| Co-Author [YourUserName]" after the current author + +--- + +## 2 **Variables and Function import** +> [!IMPORTANT] +> You need to have all this set in Your Script, otherwise it will not work! + +### 2.1 **Default Values** +- This sections sets the Default Values for the Container. +- `APP` needs to be set to the Application name and must represent the filenames of your scripts. +- `var_tags`: You can set Tags for the CT wich show up in the Proxmox UI. DonΒ΄t overdo it! + +>[!NOTE] +>Description for all Default Values +>| Variable | Description | Notes | +>|----------|-------------|-------| +>| `APP` | Application name | Must match ct\AppName.sh | +>| `TAGS` | Proxmox display tags | Limit the number | +>| `var_cpu` | CPU cores | Number of cores | +>| `var_ram` | RAM | In MB | +>| `var_disk` | Disk capacity | In GB | +>| `var_os` | Operating system | alpine, debian, ubuntu | +>| `var_version` | OS version | e.g., 3.20, 11, 12, 20.04 | +>| `var_unprivileged` | Container type | 1 = Unprivileged, 0 = Privileged | + +Example: +```bash +APP="SnipeIT" +var_tags="asset-management;foss" +var_cpu="2" +var_ram="2048" +var_disk="4" +var_os="debian" +var_version="12" +var_unprivileged="1" +``` + +## 2.2 **πŸ“‹ App Output & Base Settings** + +```bash +# App Output & Base Settings +header_info "$APP" +base_settings +``` + +- `header_info`: Generates ASCII header for APP +- `base_settings`: Allows overwriting variable values + +## 2.3 **πŸ›  Core Functions** + +```bash +# Core +variables +color +catch_errors +``` + +- `variables`: Processes input and prepares variables +- `color`: Sets icons, colors, and formatting +- `catch_errors`: Enables error handling + +--- + +## 3 **Update Function** + +### 3.1 **Function Header** +- if applicable write a function wich updates the Application and the OS in the container. +- Each update function starts with a standardised Header: +```bash +function update_script() { + header_info + check_container_storage + check_container_resources +``` + +### 3.2 **Check APP** +- Befor doing anything updatewise, check if the App is installed in the Container. + +Example: +```bash +if [[ ! -d /opt/snipe-it ]]; then + msg_error "No ${APP} Installation Found!" + exit + fi +``` +### 3.3 **Check Version** +- The last step befor the update is to check if ther is a new version. +- For this we use the `${APPLICATION}_version.txt` file created in `/opt` during the install. + +Example with a Github Release: +```bash + RELEASE=$(curl -s https://api.github.com/repos/snipe/snipe-it/releases/latest | grep "tag_name" | awk '{print substr($2, 3, length($2)-4) }') + if [[ ! -f /opt/${APP}_version.txt ]] || [[ "${RELEASE}" != "$(cat /opt/${APP}_version.txt)" ]]; then + msg_info "Updating ${APP} to v${RELEASE}" + #DO UPDATE STUFF + else + msg_ok "No update required. ${APP} is already at v${RELEASE}." + fi + exit +} +``` +### 3.4 **Verbosity** +- Use the appropiate flag (**-q** in the examples) for a command to suppres its output. +Example: +```bash +wget -q +unzip -q +``` +- If a command dose not come with such a functionality use `&>/dev/null` for suppresinf output verbosity. + +Example: +```bash +php artisan migrate --force &>/dev/null +php artisan config:clear &>/dev/null +``` + +### 3.5 **Backups** +- Backup userdata if nessesary. +- Move all userdata back in the Directory when the update is finnished. +>[!WARNING] +>This is not meant to be a permantent backup + +Example backup: +```bash + mv /opt/snipe-it /opt/snipe-it-backup +``` +Example config restore: +```bash + cp /opt/snipe-it-backup/.env /opt/snipe-it/.env + cp -r /opt/snipe-it-backup/public/uploads/ /opt/snipe-it/public/uploads/ + cp -r /opt/snipe-it-backup/storage/private_uploads /opt/snipe-it/storage/private_uploads +``` + +### 3.6 **Cleanup** +- Do not forget to remove any temporary files/folders such as zip-files or temporary backups. +Example: +```bash + rm -rf /opt/v${RELEASE}.zip + rm -rf /opt/snipe-it-backup +``` + +### 3.7 **No update function** +- In case you can not provide a update function use the following code to provide user feedback. +```bash +function update_script() { + header_info + check_container_storage + check_container_resources + if [[ ! -d /opt/snipeit ]]; then + msg_error "No ${APP} Installation Found!" + exit + fi + msg_error "Ther is currently no automatic update function for ${APP}." + exit +} +``` + +## 4 **End of the Script** +- `start`: Launches Whiptail dialogue +- `build_container`: Collects and integrates user settings +- `description`: Sets LXC container description +- With `echo -e "${TAB}${GATEWAY}${BGN}http://${IP}${CL}"` you can point the user to the IP:PORT/folder needed to access the App. + +```bash +start +build_container +description + +msg_ok "Completed Successfully!\n" +echo -e "${CREATING}${GN}${APP} setup has been successfully initialized!${CL}" +echo -e "${INFO}${YW} Access it using the following URL:${CL}" +echo -e "${TAB}${GATEWAY}${BGN}http://${IP}${CL}" +``` +--- +## 5. **Best Practices Checklist** + +- [ ] Shebang is correctly set (`#!/usr/bin/env bash`). +- [ ] Correct link to *build.func* +- [ ] Metadata (author, license) is included at the top. +- [ ] Variables follow naming conventions. +- [ ] Update function exists. +- [ ] Update functions checks if App is installed an for new Version. +- [ ] Update function up temporary files. +- [ ] Script ends with a helpfull message for the User to reach the App. + diff --git a/.github/CONTRIBUTOR_GUIDE/install/AppName-install.md b/.github/CONTRIBUTOR_GUIDE/install/AppName-install.md new file mode 100644 index 00000000..548fb9c0 --- /dev/null +++ b/.github/CONTRIBUTOR_GUIDE/install/AppName-install.md @@ -0,0 +1,272 @@ + +# **AppName-install.sh Scripts** + `AppName-install.sh` scripts found in the `/install` directory. These scripts are responsible for the installation of the desired Application. For this guide we take `/install/snipeit-install.sh` as example. + +## 1. **File Header** + +### 1.1 **Shebang** +- Use `#!/usr/bin/env bash` as the shebang for portability across systems. + +```bash +#!/usr/bin/env bash +``` + +### 1.2 **Comments** +- Add clear comments for script metadata, including author, copyright, and license information. +- Use meaningful inline comments to explain complex commands or logic. + +Example: +```bash +# Copyright (c) 2021-2024 community-scripts ORG +# Author: [YourUserName] +# License: MIT +# Source: [SOURCE_URL] +``` +> [!NOTE]: +> - Add your username +> - For existing scripts, add "| Co-Author [YourUserName]" + +### 1.3 **Variables and Function import** +- This sections adds the support for all needed functions and variables. +```bash +source /dev/stdin <<<"$FUNCTIONS_FILE_PATH" +color +verb_ip6 +catch_errors +setting_up_container +network_check +update_os +``` +--- + +## 2. **Variable Naming and Management** + +### 2.1 **Naming Conventions** +- Use uppercase names for constants and environment variables. +- Use lowercase names for local script variables. + +Example: +```bash +DB_NAME=snipeit_db # Environment-like variable (constant) +db_user="snipeit" # Local variable +``` + +### 2.2 **Avoid Hardcoding Values** +- Dynamically generate sensitive values, like passwords, using tools like `openssl`. + +Example: +```bash +DB_PASS=$(openssl rand -base64 18 | tr -dc 'a-zA-Z0-9' | head -c13) +``` + +--- + +## 3. **Dependencies** + +### 3.1 **Install all at once** +- Install all dependencies with a single command if possible + +Example: +```bash +$STD apt-get install -y \ + curl \ + composer \ + git \ + sudo \ + mc \ + nginx +``` + +### 3.2 **Collaps Dependencies** +- Collaps dependencies to keep the Code readable. + +Example:
+Use +```bash +php8.2-{bcmath,common,ctype} +``` +instead of +```bash +php8.2-bcmath php8.2-common php8.2-ctype +``` +--- +## 4. **Paths to applications** +- If possible install the App and all nessesery files in `/opt/` + +## 5. **Version Management** + +### 5.1 **Install the latest Release** +- Always try and install the latest Release if possibly +- Do not Hardcode any Version if not absolutly nessesery + +Example for a git Release: +```bash +RELEASE=$(curl -s https://api.github.com/repos/snipe/snipe-it/releases/latest | grep "tag_name" | awk '{print substr($2, 3, length($2)-4) }') +wget -q "https://github.com/snipe/snipe-it/archive/refs/tags/v${RELEASE}.zip" +``` +### 5.2 **Store the Version in a File for later Updates** +- Write the installed Version into a file. +- This is used for the Update function in app.sh to check if we need to update or not + +Example: +```bash +echo "${RELEASE}" >"/opt/${APPLICATION}_version.txt" +``` + +## 6. **Input and Output Management** + +### 6.1 **User Feedback** +- Use standard functions like `msg_info` and `msg_ok` to print status messages. +- Display meaningful progress messages at key stages. + +Example: +```bash +msg_info "Installing Dependencies" +$STD apt-get install ... +msg_ok "Installed Dependencies" +``` +### 6.2 **Verbosity** +- Use the appropiate flag (**-q** in the examples) for a command to suppres its output +Example: +```bash +wget -q +unzip -q +``` +- If a command dose not come with such a functionality use `$STD` (a custom standard redirection variable) for managing output verbosity. + +Example: +```bash +$STD apt-get install -y nginx +``` + + +## 7. **String/File Manipulation** + +### 7.1 **File Manipulation** +- Use `sed` to replace placeholder values in configuration files. + +Example: +```bash +sed -i -e "s|^DB_DATABASE=.*|DB_DATABASE=$DB_NAME|" \ + -e "s|^DB_USERNAME=.*|DB_USERNAME=$DB_USER|" \ + -e "s|^DB_PASSWORD=.*|DB_PASSWORD=$DB_PASS|" .env +``` + +--- + +## 8. **Security Practices** + +### 8.1 **Password Generation** +- Use secure tools (e.g., `openssl`) to generate random passwords. +- Use only Alphanumeric Values to not introduce unknown behaviour. + +Example: +```bash +DB_PASS=$(openssl rand -base64 18 | tr -dc 'a-zA-Z0-9' | head -c13) +``` + +### 8.2 **File Permissions** +- Explicitly set secure ownership and permissions for sensitive files. + +Example: +```bash +chown -R www-data: /opt/snipe-it +chmod -R 755 /opt/snipe-it +``` + +--- + +## 9. **Service Configuration** + +### 9.1 **Configuration Files** +- Use `cat </etc/nginx/conf.d/snipeit.conf +server { + listen 80; + root /opt/snipe-it/public; + index index.php; +} +EOF +``` +### 9.2 **Credential Management** +- Store the generated credentials in a file +Example: +```bash +USERNAME=username +PASSWORD=$(openssl rand -base64 18 | tr -dc 'a-zA-Z0-9' | head -c13) +{ + echo "Application-Credentials" + echo "Username: $USERNAME" + echo "Password: $PASSWORD" +} >> ~/application.creds +``` +### 9.3 **Enviromental Files** +- Use `cat </path/to/.env +VARIABLE="value" +PORT=3000 +DB_NAME="${DB_NAME}" +EOF +``` + +### 9.4 **Reload Services** +- Enable affected services after configuration changes and start it right away. + +Example: +```bash +systemctl enable -q --now nginx +``` + +--- + +## 10. **Cleanup** + +### 10.1 **Remove Temporary Files** +- Remove temporary files or unnecessary downloads after use. + +Example: +```bash +rm -rf /opt/v${RELEASE}.zip +``` + +### 10.2 **Autoremove and Autoclean** +- Clean up unused dependencies to reduce disk space usage. + +Example: +```bash +apt-get -y autoremove +apt-get -y autoclean +``` + +--- + +## 11. **Consistency and Style** + +### 11.1 **Indentation** +- Use 2 spaces for indentation for better readability. +- Use the Shell Formater Extention for VS-Code + +--- + +## 11. **Best Practices Checklist** + +- [ ] Shebang is correctly set (`#!/usr/bin/env bash`). +- [ ] Metadata (author, license) is included at the top. +- [ ] Variables follow naming conventions. +- [ ] Sensitive values are dynamically generated. +- [ ] Files and services have proper permissions. +- [ ] Script cleans up temporary files. + +--- + +### Example: High-Level Script Flow + +1. **Dependencies Installation** +2. **Database Setup** +3. **Download and Configure Application** +4. **Service Configuration** +5. **Final Cleanup** diff --git a/.github/CONTRIBUTOR_GUIDE/json/AppName.json b/.github/CONTRIBUTOR_GUIDE/json/AppName.json new file mode 100644 index 00000000..622f370a --- /dev/null +++ b/.github/CONTRIBUTOR_GUIDE/json/AppName.json @@ -0,0 +1,34 @@ +{ + "name": "AppName", + "slug": "appname", + "categories": [ + 0 + ], + "date_created": "DATE CREATED", + "type": "ct", + "updateable": true, + "privileged": false, + "interface_port": DEFAULT-PORT, + "documentation": null, + "website": "LINK TO WEBSITE", + "logo": "LINK TO LOGO", + "description": "Deescription of the app", + "install_methods": [ + { + "type": "default", + "script": "ct/AppName.sh", + "resources": { + "cpu": 2, + "ram": 2048, + "hdd": 4, + "os": "debian", + "version": "12" + } + } + ], + "default_credentials": { + "username": null, + "password": null + }, + "notes": [] +} \ No newline at end of file diff --git a/.github/CONTRIBUTOR_GUIDE/json/AppName.md b/.github/CONTRIBUTOR_GUIDE/json/AppName.md new file mode 100644 index 00000000..59d38aa3 --- /dev/null +++ b/.github/CONTRIBUTOR_GUIDE/json/AppName.md @@ -0,0 +1,5 @@ +# **AppName.json Files** + `AppName.json` files found in the `/json` directory. These files are used to provide informations for the frontend. For this guide we take `/json/snipeit.json` as example. + + ## 1 **Json Generator** + - To spare you some headache creating the json file, use the [Json-Editor](https://community-scripts.github.io/ProxmoxVE/json-editor) \ No newline at end of file