debian-mirror-gitlab/debian/postinst

172 lines
5.7 KiB
Text
Raw Normal View History

2015-09-12 15:42:12 +05:30
#! /bin/sh
# postinst script for gitlab
# copied from postinst script for hplip
# $Id: hplip.postinst,v 1.1 2005/10/15 21:39:04 hmh Exp $
#
# see: dh_installdeb(1)
set -e
# summary of how this script can be called:
# * <postinst> `configure' <most-recently-configured-version>
# * <old-postinst> `abort-upgrade' <new version>
# * <conflictor's-postinst> `abort-remove' `in-favour' <package>
# <new-version>
# * <deconfigured's-postinst> `abort-deconfigure' `in-favour'
# <failed-install-package> <version> `removing'
# <conflicting-package> <version>
# for details, see http://www.debian.org/doc/debian-policy/ or
# the debian-policy package
#
# quoting from the policy:
# Any necessary prompting should almost always be confined to the
# post-installation script, and should be protected with a conditional
# so that unnecessary prompting doesn't happen if a package's
# installation fails and the `postinst' is called with `abort-upgrade',
# `abort-remove' or `abort-deconfigure'.
case "$1" in
configure)
# Show debconf questions
. /usr/share/debconf/confmodule
# Read and export debian specific configuration
# Only exported variables will be passed on to gitlab app
gitlab_debian_conf=/etc/gitlab/gitlab-debian.conf
2016-02-18 14:52:26 +05:30
export $(cat ${gitlab_debian_conf})
# Create gitlab user
. /usr/lib/gitlab/scripts/adduser.sh
gitlab_repo_path=${gitlab_data_dir}/repositories
2016-02-18 22:42:43 +05:30
gitlab_cache_path=${gitlab_data_dir}/cache
2016-02-18 17:30:10 +05:30
gitlab_uploads_path=${gitlab_data_dir}/public/uploads
2016-02-13 18:01:11 +05:30
# Create directories and change ownership
2016-02-18 22:42:43 +05:30
for i in ${gitlab_repo_path} ${gitlab_cache_path} ${gitlab_uploads_path}\
${gitlab_pid_path} ${gitlab_log_dir} ${gitlab_shell_log}; do
2016-02-13 20:14:10 +05:30
mkdir -p $i
2016-02-13 18:01:11 +05:30
chown -R ${gitlab_user}: $i
done
2016-02-18 17:30:10 +05:30
chmod 0700 ${gitlab_uploads_path}
2016-02-18 17:30:10 +05:30
# nginx should be able to connect to gitlab-workhorse.socket and serve public
chown ${gitlab_user}:${nginx_user} -R ${gitlab_uploads_path}/.. ${gitlab_pid_path}
2016-02-13 18:01:11 +05:30
# Customize permissions
chmod -R ug+rwX,o-rwx ${gitlab_repo_path}/
chmod -R ug-s ${gitlab_repo_path}/
find ${gitlab_repo_path}/ -type d -print0 | xargs -0 chmod g+s
2016-02-18 18:14:36 +05:30
for i in ${gitlab_data_dir} ${gitlab_shell_root}; do
2016-02-13 18:01:11 +05:30
chown -R ${gitlab_user}: $i
done
2016-02-13 20:38:31 +05:30
su ${gitlab_user} -s /bin/sh -c "chmod 750 ${gitlab_uploads_path}"
su ${gitlab_user} -s /bin/sh -c 'git config --global core.autocrlf "input"'
2016-02-13 18:01:11 +05:30
2016-02-18 14:31:41 +05:30
# Commands below needs to be run from gitlab_app_root
cd ${gitlab_app_root}
# Obtain hostname from debconf db
db_get gitlab/fqdn
if [ "${RET}" != "" ]; then
if ! grep GITLAB_HOST ${gitlab_debian_conf}; then
export GITLAB_HOST=${RET} # We need this to configure nginx below
echo GITLAB_HOST=${RET} >> ${gitlab_debian_conf}
echo GITLAB_EMAIL_FROM="no-reply@${RET}" >> ${gitlab_debian_conf}
echo GITLAB_EMAIL_DISPLAY_NAME="Gitlab" >> ${gitlab_debian_conf}
echo GITLAB_EMAIL_REPLY_TO="no-reply@${RET}" >> ${gitlab_debian_conf}
fi
# Check if ssl option is selected
db_get gitlab/ssl
if [ "${RET}" = "true" ]; then
2016-02-09 20:51:38 +05:30
if ! grep GITLAB_HTTPS ${gitlab_debian_conf}; then
echo GITLAB_HTTPS=${RET} >> ${gitlab_debian_conf}
fi
mkdir -p /etc/gitlab/ssl
if [ -f "${nginx_ssl_conf_example_gz}" ]; then
# undo dh_installdocs auto compress
2016-02-07 15:51:02 +05:30
export nginx_conf_example_tmp=$(mktemp)
zcat ${nginx_ssl_conf_example_gz} > ${nginx_conf_example_tmp}
export nginx_conf_example=${nginx_conf_example_tmp}
fi
2015-10-24 13:21:59 +05:30
# Check if letsencrypt option is selected
db_get gitlab/letsencrypt
if [ "${RET}" = "true" ]; then
# Check if certificate is already present
if [ -e /etc/letsencrypt/live/${GITLAB_HOST}/fullchain.pem ]; then
echo "Let's encrypt certificate already present."
else
ln -sf /etc/letsencrypt/live/${GITLAB_HOST}/fullchain.pem \
/etc/gitlab/ssl/gitlab.crt
ln -sf /etc/letsencrypt/live/${GITLAB_HOST}/privkey.pem \
/etc/gitlab/ssl/gitlab.key
# Port 80 and 443 should be available for letsencrypt
invoke-rc.d nginx stop
letsencrypt -d ${GITLAB_HOST} certonly
fi
fi
fi
if test -f ${nginx_conf_example}; then
sed -e "s/YOUR_SERVER_FQDN/${GITLAB_HOST}/"\
${nginx_conf_example} >/etc/nginx/sites-available/${GITLAB_HOST}
2016-02-07 15:51:02 +05:30
ln -fs /etc/nginx/sites-available/${GITLAB_HOST} /etc/nginx/sites-enabled/
rm -f ${nginx_conf_example_tmp}
else
2016-02-07 15:51:02 +05:30
echo "nginx example configuration file not found"
exit 1
fi
# Start nginx
invoke-rc.d nginx start
else
echo "Failed to retrieve fully qualified domain name"
exit 1
fi
db_stop
echo "Create database if not present"
if ! su postgres -s /bin/sh -c "psql gitlab_production -c ''"; then
2016-04-04 22:39:31 +05:30
su postgres -c 'createdb -E unicode -T template0 gitlab_production'
fi
# Adjust database privileges
. /usr/lib/gitlab/scripts/grantpriv.sh
# Remove Gemfile.lock if present
2016-02-18 18:59:05 +05:30
rm -f ${gitlab_data_dir}/Gemfile.lock
2016-02-18 18:39:34 +05:30
2016-02-18 18:59:05 +05:30
# Create Gemfile.lock and .secret in /var/lib/gitlab
2016-02-18 18:39:34 +05:30
su ${gitlab_user} -s /bin/sh -c "touch ${gitlab_data_dir}/Gemfile.lock"
2016-02-18 19:09:00 +05:30
ln -sf ${gitlab_data_dir}/Gemfile.lock ${gitlab_app_root}/Gemfile.lock
2016-02-18 19:26:48 +05:30
if ! [ -e ${gitlab_app_root}/.secret ] ; then
2016-02-18 22:04:43 +05:30
ln -sf ${gitlab_data_dir}/.secret ${gitlab_app_root}/.secret
fi
echo "Verifying we have all required libraries..."
su ${gitlab_user} -s /bin/sh -c 'bundle install --local'
2015-09-12 15:42:12 +05:30
echo "Running final rake tasks..."
. /usr/lib/gitlab/scripts/rake-tasks.sh
2016-01-16 15:43:30 +05:30
2016-01-23 23:47:33 +05:30
;;
2015-09-12 15:42:12 +05:30
abort-upgrade|abort-remove|abort-deconfigure)
2015-09-12 15:42:12 +05:30
;;
*)
echo "postinst called with unknown argument \`$1'" >&2
exit 1
2015-09-12 15:42:12 +05:30
;;
esac
#DEBHELPER#
exit 0