Create install.sh

2026-05-21 14:02:15 +00:00 · 2022-09-07 15:22:49 +01:00
parent 5327969e2a
commit a7da9c91cc
1 changed files with 243 additions and 0 deletions
--- a/install.sh
+++ b/install.sh
@@ -0,0 +1,243 @@
+#!/usr/bin/env bash
+
+if ! which lsb_release >/dev/null
+then
+sudo apt-get install -y lsb-core > null
+fi
+
+curl -sL https://deb.nodesource.com/setup_16.x | sudo -E bash -  > null
+sudo apt-get update  > null
+echo "Installing MeshCentral"
+sudo apt-get install -y nodejs  > null
+sudo npm install -g npm  > null
+
+sudo mkdir -p /opt/meshcentral/meshcentral-data
+sudo chown ${USER}:${USER} -R /opt/meshcentral
+cd /opt/meshcentral
+npm install meshcentral
+sudo chown ${USER}:${USER} -R /opt/meshcentral
+
+meshservice="$(cat << EOF
+[Unit]
+Description=MeshCentral Server
+After=network.target
+[Service]
+Type=simple
+LimitNOFILE=1000000
+ExecStart=/usr/bin/node node_modules/meshcentral
+Environment=NODE_ENV=production
+WorkingDirectory=/opt/meshcentral
+User=${USER}
+Group=${USER}
+Restart=always
+RestartSec=10s
+[Install]
+WantedBy=multi-user.target
+EOF
+)"
+echo "${meshservice}" | sudo tee /etc/systemd/system/meshcentral.service > /dev/null
+
+sudo setcap 'cap_net_bind_service=+ep' `which node`
+sudo systemctl daemon-reload
+sudo systemctl enable meshcentral.service
+sudo systemctl start meshcentral.service
+
+echo "You will now be given a choice of what database you want to use"
+
+# Choice for Database
+PS3='Choose your preferred option for database server:'
+DB=("NeDB" "MongoDB" "Postgres")
+select DBOPT in "${DB[@]}"; do
+case $DBOPT in
+"NeDB")
+break
+;;
+
+"MongoDB")
+while ! [[ $CHECK_MESH_SERVICE1 ]]; do
+  CHECK_MESH_SERVICE1=$(sudo systemctl status meshcentral.service | grep "Active: active (running)")
+  echo -ne "Meshcentral not ready yet...${NC}\n"
+  sleep 3
+done
+
+sudo systemctl stop meshcentral
+
+if [ $(lsb_release -si | tr '[:upper:]' '[:lower:]') = "ubuntu" ]
+then
+wget -qO - https://www.mongodb.org/static/pgp/server-5.0.asc | sudo apt-key add -
+echo "deb http://repo.mongodb.org/apt/ubuntu $(lsb_release -cs)/mongodb-org/5.0" multiverse | sudo tee /etc/apt/sources.list.d/mongodb-org-5.0.list
+elif [ $(lsb_release -si | tr '[:upper:]' '[:lower:]') = "debian" ]
+then
+wget -qO - https://www.mongodb.org/static/pgp/server-5.0.asc | sudo apt-key add -
+echo "deb http://repo.mongodb.org/apt/debian $(lsb_release -cs)/mongodb-org/5.0" main | sudo tee /etc/apt/sources.list.d/mongodb-org-5.0.list
+fi
+
+sudo apt-get update > null
+sudo apt-get install -y mongodb-org > null
+sudo systemctl enable mongod
+sudo systemctl start mongod
+sed -i '/"settings": {/a "MongoDb": "mongodb://127.0.0.1:27017/meshcentral",\n"MongoDbCol": "meshcentral",' /opt/meshcentral/meshcentral-data/config.json
+
+while ! [[ $CHECK_MONGO_SERVICE ]]; do
+  CHECK_MONGO_SERVICE=$(sudo systemctl status mongod.service | grep "Active: active (running)")
+  echo -ne "MongoDB is not ready yet...${NC}\n"
+  sleep 3
+done
+
+sudo systemctl start meshcentral.service
+break
+;;
+
+"Postgres")
+while ! [[ $CHECK_MESH_SERVICE2 ]]; do
+  CHECK_MESH_SERVICE2=$(sudo systemctl status meshcentral.service | grep "Active: active (running)")
+  echo -ne "Meshcentral not ready yet...${NC}\n"
+  sleep 3
+done
+
+sudo systemctl stop meshcentral
+sudo apt-get install -y postgresql  > null
+sudo systemctl enable postgresql
+sudo systemctl start postgresql
+
+while ! [[ $CHECK_POSTGRES_SERVICE ]]; do
+  CHECK_POSTGRES_SERVICE=$(sudo systemctl status postgresql.service | grep "Active: active (exited)")
+  echo -ne "PostgreSQL is not ready yet...${NC}\n"
+  sleep 3
+done
+
+DBUSER=$(cat /dev/urandom | tr -dc 'a-z' | fold -w 8 | head -n 1)
+DBPWD=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 20 | head -n 1)
+
+sudo -u postgres psql -c "CREATE DATABASE meshcentral"
+sudo -u postgres psql -c "CREATE USER ${DBUSER} WITH PASSWORD '${DBPWD}'"
+sudo -u postgres psql -c "ALTER ROLE ${DBUSER} SET client_encoding TO 'utf8'"
+sudo -u postgres psql -c "ALTER ROLE ${DBUSER} SET default_transaction_isolation TO 'read committed'"
+sudo -u postgres psql -c "ALTER ROLE ${DBUSER} SET timezone TO 'UTC'"
+sudo -u postgres psql -c "GRANT ALL PRIVILEGES ON DATABASE meshcentral TO ${DBUSER}"
+
+if ! which jq >/dev/null
+then
+sudo apt-get install -y jq > null
+fi
+
+cat "/opt/meshcentral/meshcentral-data/config.json" |
+    jq " .settings.postgres.user |= \"${DBUSER}\" " |
+    jq " .settings.postgres.password |= \"${DBPWD}\" " |
+    jq " .settings.postgres.port |= \"5432\" " |
+    jq " .settings.postgres.host |= \"localhost\" " > "/opt/meshcentral/meshcentral-data/configdb.json"
+
+mv /opt/meshcentral/meshcentral-data/configdb.json /opt/meshcentral/meshcentral-data/config.json
+
+sudo systemctl start meshcentral.service
+break
+;;
+
+*) echo "invalid option $REPLY";;
+esac
+done
+
+# Choice for Setup
+
+PS3='Would you like this script to preconfigure best options:'
+DB=("Yes" "No")
+select DBOPT in "${DB[@]}"; do
+case $DBOPT in
+"Yes")
+
+if ! which jq >/dev/null
+then
+sudo apt-get install -y jq > null
+fi
+
+# DNS/SSL Setup
+echo -ne "Enter your preferred domain/dns address ${NC}: "
+read dnsnames
+
+echo -ne "Enter your email address ${NC}: "
+read letsemail
+
+echo -ne "Enter your company name ${NC}: "
+read coname
+
+echo -ne "Enter your preferred username ${NC}: "
+read meshuname
+
+meshpwd=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 20 | head -n 1)
+
+while ! [[ $CHECK_MESH_SERVICE3 ]]; do
+  CHECK_MESH_SERVICE3=$(sudo systemctl status meshcentral.service | grep "Active: active (running)")
+  echo -ne "Meshcentral not ready yet...${NC}\n"
+  sleep 3
+done
+sudo systemctl stop meshcentral.service
+
+sed -i 's|"_letsencrypt": |"letsencrypt": |g' /opt/meshcentral/meshcentral-data/config.json
+sed -i 's|"_redirPort": |"redirPort": |g' /opt/meshcentral/meshcentral-data/config.json
+sed -i 's|"_cert": |"cert": |g' /opt/meshcentral/meshcentral-data/config.json
+sed -i 's|    "production": false|    "production": true|g' /opt/meshcentral/meshcentral-data/config.json
+sed -i 's|      "_title": "MyServer",|      "title": "'"${coname}"' Support",|g' /opt/meshcentral/meshcentral-data/config.json
+sed -i 's|      "_newAccounts": true,|      "newAccounts": false,|g' /opt/meshcentral/meshcentral-data/config.json
+sed -i 's|      "_userNameIsEmail": true|      "_userNameIsEmail": true,|g' /opt/meshcentral/meshcentral-data/config.json
+sed -i '/     "_userNameIsEmail": true,/a "agentInviteCodes": true,\n "agentCustomization": {\n"displayname": "'"$coname"' Support",\n"description": "'"$coname"' Remote Agent",\n"companyName": "'"$coname"'",\n"serviceName": "'"$coname"'Remote"\n}' /opt/meshcentral/meshcentral-data/config.json
+sed -i '/"settings": {/a "plugins":{\n"enabled": true\n},' /opt/meshcentral/meshcentral-data/config.json
+sed -i '/"settings": {/a "MaxInvalidLogin": {\n"time": 5,\n"count": 5,\n"coolofftime": 30\n},' /opt/meshcentral/meshcentral-data/config.json
+
+   cat "/opt/meshcentral/meshcentral-data/config.json" |     
+jq " .settings.cert |= \"$dnsnames\" " |
+jq " .letsencrypt.email |= \"$letsemail\" " |
+jq " .letsencrypt.names |= \"$dnsnames\" " > /opt/meshcentral/meshcentral-data/config2.json
+mv /opt/meshcentral/meshcentral-data/config2.json /opt/meshcentral/meshcentral-data/config.json
+
+echo "Getting MeshCentral SSL Cert"
+sudo systemctl start meshcentral
+
+sleep 15
+while ! [[ $CHECK_MESH_SERVICE4 ]]; do
+  CHECK_MESH_SERVICE4=$(sudo systemctl status meshcentral.service | grep "Active: active (running)")
+  echo -ne "Meshcentral not ready yet...${NC}\n"
+  sleep 3
+done
+sleep 3
+while ! [[ $CHECK_MESH_SERVICE5 ]]; do
+  CHECK_MESH_SERVICE5=$(sudo systemctl status meshcentral.service | grep "Active: active (running)")
+  echo -ne "Meshcentral not ready yet...${NC}\n"
+  sleep 3
+done
+
+sudo systemctl stop meshcentral
+
+echo "Creating Username"
+
+node node_modules/meshcentral --createaccount $meshuname --pass $meshpwd --email $letsemail
+sleep 1
+node node_modules/meshcentral --adminaccount $meshuname 
+sleep 3
+sudo systemctl start meshcentral
+while ! [[ $CHECK_MESH_SERVICE6 ]]; do
+  CHECK_MESH_SERVICE6=$(sudo systemctl status meshcentral.service | grep "Active: active (running)")
+  echo -ne "Meshcentral not ready yet...${NC}\n"
+  sleep 3
+done
+
+echo "Setting up defaults on MeshCentral"
+node node_modules/meshcentral/meshctrl.js --url wss://$dnsnames:443 --loginuser $meshuname --loginpass $meshpwd AddDeviceGroup --name "$coname"
+node node_modules/meshcentral/meshctrl.js --url wss://$dnsnames:443 --loginuser $meshuname --loginpass $meshpwd EditDeviceGroup --group "$coname" --desc ''"$coname"' Support Group' --consent 71
+node node_modules/meshcentral/meshctrl.js --url wss://$dnsnames:443 --loginuser $meshuname --loginpass $meshpwd EditUser --userid $meshuname --realname ''"$coname"' Support'
+sudo systemctl restart meshcentral
+
+echo "You can now go to https://$dnsnames and login with "
+echo "$meshuname and $meshpwd"
+echo "Enjoy :)"
+
+break
+;;
+
+"No")
+break
+;;
+
+*) echo "invalid option $REPLY";;
+esac
+done
+