mirror of
https://github.com/community-scripts/ProxmoxVE
synced 2025-01-10 19:05:09 +00:00
124 lines
3.4 KiB
Bash
124 lines
3.4 KiB
Bash
#!/usr/bin/env bash
|
|
|
|
# Copyright (c) 2021-2025 community-scripts ORG
|
|
# Author: jkrgr0
|
|
# License: MIT
|
|
# Source: https://docs.2fauth.app/
|
|
|
|
# Import Functions und Setup
|
|
source /dev/stdin <<< "$FUNCTIONS_FILE_PATH"
|
|
color
|
|
verb_ip6
|
|
catch_errors
|
|
setting_up_container
|
|
network_check
|
|
update_os
|
|
|
|
# Installing Dependencies with the 3 core dependencies (curl;sudo;mc)
|
|
msg_info "Installing Dependencies"
|
|
$STD apt-get install -y \
|
|
curl \
|
|
sudo \
|
|
mc \
|
|
nginx \
|
|
composer \
|
|
php8.2-{bcmath,common,ctype,curl,fileinfo,fpm,gd,mbstring,mysql,xml,cli} \
|
|
mariadb-server
|
|
msg_ok "Installed Dependencies"
|
|
|
|
# Template: MySQL Database
|
|
msg_info "Setting up Database"
|
|
DB_NAME=2fauth_db
|
|
DB_USER=2fauth
|
|
DB_PASS=$(openssl rand -base64 18 | tr -dc 'a-zA-Z0-9' | head -c13)
|
|
$STD mysql -u root -e "CREATE DATABASE $DB_NAME;"
|
|
$STD mysql -u root -e "CREATE USER '$DB_USER'@'localhost' IDENTIFIED WITH mysql_native_password AS PASSWORD('$DB_PASS');"
|
|
$STD mysql -u root -e "GRANT ALL ON $DB_NAME.* TO '$DB_USER'@'localhost'; FLUSH PRIVILEGES;"
|
|
{
|
|
echo "2FAuth Credentials"
|
|
echo "Database User: $DB_USER"
|
|
echo "Database Password: $DB_PASS"
|
|
echo "Database Name: $DB_NAME"
|
|
} >> ~/2FAuth.creds
|
|
msg_ok "Set up Database"
|
|
|
|
# Setup App
|
|
msg_info "Setup 2FAuth"
|
|
RELEASE=$(curl -s https://api.github.com/repos/Bubka/2FAuth/releases/latest | grep "tag_name" | awk '{print substr($2, 2, length($2)-3) }')
|
|
wget -q "https://github.com/Bubka/2FAuth/archive/refs/tags/${RELEASE}.zip"
|
|
unzip -q "${RELEASE}.zip"
|
|
mv "2FAuth-${RELEASE//v}/" /opt/2fauth
|
|
|
|
cd "/opt/2fauth" || return
|
|
cp .env.example .env
|
|
IPADDRESS=$(hostname -I | awk '{print $1}')
|
|
|
|
sed -i -e "s|^APP_URL=.*|APP_URL=http://$IPADDRESS|" \
|
|
-e "s|^DB_CONNECTION=$|DB_CONNECTION=mysql|" \
|
|
-e "s|^DB_DATABASE=$|DB_DATABASE=$DB_NAME|" \
|
|
-e "s|^DB_HOST=$|DB_HOST=127.0.0.1|" \
|
|
-e "s|^DB_PORT=$|DB_PORT=3306|" \
|
|
-e "s|^DB_USERNAME=$|DB_USERNAME=$DB_USER|" \
|
|
-e "s|^DB_PASSWORD=$|DB_PASSWORD=$DB_PASS|" .env
|
|
|
|
export COMPOSER_ALLOW_SUPERUSER=1
|
|
$STD composer update --no-plugins --no-scripts
|
|
$STD composer install --no-dev --prefer-source --no-plugins --no-scripts
|
|
|
|
$STD php artisan key:generate --force
|
|
|
|
$STD php artisan migrate:refresh
|
|
$STD php artisan passport:install -q -n
|
|
$STD php artisan storage:link
|
|
$STD php artisan config:cache
|
|
|
|
chown -R www-data: /opt/2fauth
|
|
chmod -R 755 /opt/2fauth
|
|
|
|
echo "${RELEASE}" >"/opt/2fauth_version.txt"
|
|
msg_ok "Setup 2fauth"
|
|
|
|
# Configure Service (NGINX)
|
|
msg_info "Configure Service"
|
|
cat <<EOF >/etc/nginx/conf.d/2fauth.conf
|
|
server {
|
|
listen 80;
|
|
root /opt/2fauth/public;
|
|
server_name $IPADDRESS;
|
|
index index.php;
|
|
charset utf-8;
|
|
|
|
location / {
|
|
try_files \$uri \$uri/ /index.php?\$query_string;
|
|
}
|
|
|
|
location = /favicon.ico { access_log off; log_not_found off; }
|
|
location = /robots.txt { access_log off; log_not_found off; }
|
|
|
|
error_page 404 /index.php;
|
|
|
|
location ~ \.php\$ {
|
|
fastcgi_pass unix:/var/run/php/php8.2-fpm.sock;
|
|
fastcgi_param SCRIPT_FILENAME \$realpath_root\$fastcgi_script_name;
|
|
include fastcgi_params;
|
|
}
|
|
|
|
location ~ /\.(?!well-known).* {
|
|
deny all;
|
|
}
|
|
}
|
|
EOF
|
|
|
|
systemctl reload nginx
|
|
msg_ok "Configured Service"
|
|
|
|
motd_ssh
|
|
customize
|
|
|
|
# Cleanup
|
|
msg_info "Cleaning up"
|
|
rm -f "/opt/v${RELEASE}.zip"
|
|
$STD apt-get -y autoremove
|
|
$STD apt-get -y autoclean
|
|
msg_ok "Cleaned"
|