websoft9/systemd/script/crontab.sh

#!/bin/bash
PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:~/bin

cockpit_port="9000"
container_name="websoft9-apphub"
volume_name="websoft9_apphub_config"
cockpit_service_path="/lib/systemd/system/cockpit.socket"
cockpit_ssl_path="/etc/cockpit/ws-certs.d/"
npm_ssl_path="/var/lib/docker/volumes/websoft9_nginx_data/_data/custom_ssl/"

# get volume from container
function get_volume_path() {
    local container_name="$1"
    local volume_name="$2"
    local retries=0
    local max_retries=5
    local mounts

    while [ $retries -lt $max_retries ]; do
        mounts=$(docker inspect -f '{{ json .Mounts }}' "$container_name" | jq -r ".[] | select(.Name == \"$volume_name\") | .Source")

        if [[ "$mounts" == *"/"* ]]; then
            echo "$mounts"
            return 0
        fi

        ((retries++))
        sleep 5
    done

    echo "Cannot get volume path"
    exit 1
}
volume_path=$(get_volume_path "$container_name" "$volume_name")
config_path="$volume_path/config.ini"
FILES="$cockpit_service_path $config_path"

sync_cockpit_port() {
    echo "sync cockpit port from config.ini"
    set +e
    cockpit_port=$(docker exec -i websoft9-apphub apphub getconfig --section cockpit --key port)
    listen_stream=$(grep -Po 'ListenStream=\K[0-9]*' /lib/systemd/system/cockpit.socket)
    if [ "$cockpit_port" != "$listen_stream" ]; then

        ex -s -c "g/ListenStream=${listen_stream}/s//ListenStream=${cockpit_port}/" -c wq "$cockpit_service_path"
        systemctl daemon-reload
        systemctl restart cockpit.socket 2> /dev/null
        systemctl restart cockpit || exit 1
        set_Firewalld

    fi
    set -e
}

set_Firewalld(){
    echo "Set cockpit service to Firewalld..."
    sed -i "s/port=\"[0-9]*\"/port=\"$cockpit_port\"/g" /etc/firewalld/services/cockpit.xml 2>/dev/nul
    sed -i "s/port=\"[0-9]*\"/port=\"$cockpit_port\"/g" /usr/lib/firewalld/services/cockpit.xml 2>/dev/nul
    firewall-cmd --reload 2>/dev/nul
}

force_sync(){
    echo "Force sync cockpit port and certs"
    sync_cockpit_port
    cp -r "${cockpit_ssl_path}"* $npm_ssl_path
}

# when websoft9 restart, force sync cockpit port and certs
force_sync

(
	# monitor cockpit.socket and config.ini, make sure port at config.ins sync to cockpit.socket
	inotifywait -e modify,attrib -m $FILES | while read PATH EVENT FILE; do
		echo "Reset cockpit port when config.ini changed"
		export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:$PATH
		sync_cockpit_port
	done
) &

(
	# monitor cockpit ssl path and sync to NPM ssl path if changed
	inotifywait -e create,modify,delete,attrib -m $cockpit_ssl_path | while read PATH EVENT FILE; do
		echo "Sync CA files from cockipt to NPM when changed"
		export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:$PATH
		cp -r "${cockpit_ssl_path}"* $npm_ssl_path
	done
) &

# Wait for background processes to finish
wait
override menu 2023-10-06 11:19:57 +08:00			`#!/bin/bash`
			`PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:~/bin`

apphub 0.0.5 2023-10-11 17:19:38 +08:00			`cockpit_port="9000"`
improve systemd monitor files 2023-11-03 11:27:57 +08:00			`container_name="websoft9-apphub"`
			`volume_name="websoft9_apphub_config"`
crontab 2024-12-19 11:55:18 +08:00			`cockpit_service_path="/lib/systemd/system/cockpit.socket"`
			`cockpit_ssl_path="/etc/cockpit/ws-certs.d/"`
			`npm_ssl_path="/var/lib/docker/volumes/websoft9_nginx_data/_data/custom_ssl/"`
improve systemd monitor files 2023-11-03 11:27:57 +08:00
			`# get volume from container`
			`function get_volume_path() {`
2.0.5 2024-03-14 14:44:25 +08:00			`local container_name="$1"`
			`local volume_name="$2"`
2.0.6 2024-03-14 14:51:58 +08:00			`local retries=0`
			`local max_retries=5`
			`local mounts`

			`while [ $retries -lt $max_retries ]; do`
			`mounts=$(docker inspect -f '{{ json .Mounts }}' "$container_name" \| jq -r ".[] \| select(.Name == \"$volume_name\") \| .Source")`

			`if [[ "$mounts" == "/" ]]; then`
			`echo "$mounts"`
			`return 0`
			`fi`

			`((retries++))`
			`sleep 5`
			`done`

			`echo "Cannot get volume path"`
			`exit 1`
improve systemd monitor files 2023-11-03 11:27:57 +08:00			`}`
rc4 2024-12-18 17:02:39 +08:00			`volume_path=$(get_volume_path "$container_name" "$volume_name")`
			`config_path="$volume_path/config.ini"`
			`FILES="$cockpit_service_path $config_path"`
improve systemd monitor files 2023-11-03 11:27:57 +08:00
crontab 2024-12-19 11:55:18 +08:00			`sync_cockpit_port() {`
			`echo "sync cockpit port from config.ini"`
apphub 0.0.5 2023-10-11 17:19:38 +08:00			`set +e`
websoft9 service and all micro services 2023-10-17 14:34:36 +08:00			`cockpit_port=$(docker exec -i websoft9-apphub apphub getconfig --section cockpit --key port)`
rc 2023-11-08 16:10:08 +08:00			`listen_stream=$(grep -Po 'ListenStream=\K[0-9]*' /lib/systemd/system/cockpit.socket)`
			`if [ "$cockpit_port" != "$listen_stream" ]; then`
rc2 2024-12-12 14:39:08 +08:00
			`ex -s -c "g/ListenStream=${listen_stream}/s//ListenStream=${cockpit_port}/" -c wq "$cockpit_service_path"`
			`systemctl daemon-reload`
			`systemctl restart cockpit.socket 2> /dev/null`
			`systemctl restart cockpit \|\| exit 1`
			`set_Firewalld`

rc 2023-11-08 16:10:08 +08:00			`fi`
apphub 0.0.5 2023-10-11 17:19:38 +08:00			`set -e`
			`}`

			`set_Firewalld(){`
			`echo "Set cockpit service to Firewalld..."`
websoft9 service and all micro services 2023-10-17 14:34:36 +08:00			`sed -i "s/port=\"[0-9]*\"/port=\"$cockpit_port\"/g" /etc/firewalld/services/cockpit.xml 2>/dev/nul`
			`sed -i "s/port=\"[0-9]*\"/port=\"$cockpit_port\"/g" /usr/lib/firewalld/services/cockpit.xml 2>/dev/nul`
			`firewall-cmd --reload 2>/dev/nul`
apphub 0.0.5 2023-10-11 17:19:38 +08:00			`}`

rc3 2024-12-18 16:13:23 +08:00			`force_sync(){`
			`echo "Force sync cockpit port and certs"`
crontab 2024-12-19 11:55:18 +08:00			`sync_cockpit_port`
			`cp -r "${cockpit_ssl_path}"* $npm_ssl_path`
rc3 2024-12-18 16:13:23 +08:00			`}`

			`# when websoft9 restart, force sync cockpit port and certs`
			`force_sync`
release rc 2024-12-13 14:55:10 +08:00
rc5 2024-12-19 12:11:24 +08:00			`(`
			`# monitor cockpit.socket and config.ini, make sure port at config.ins sync to cockpit.socket`
			`inotifywait -e modify,attrib -m $FILES \| while read PATH EVENT FILE; do`
			`echo "Reset cockpit port when config.ini changed"`
			`export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:$PATH`
			`sync_cockpit_port`
			`done`
			`) &`
release rc2.1.18 2024-12-17 14:21:43 +08:00
rc5 2024-12-19 12:11:24 +08:00			`(`
			`# monitor cockpit ssl path and sync to NPM ssl path if changed`
			`inotifywait -e create,modify,delete,attrib -m $cockpit_ssl_path \| while read PATH EVENT FILE; do`
			`echo "Sync CA files from cockipt to NPM when changed"`
			`export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:$PATH`
			`cp -r "${cockpit_ssl_path}"* $npm_ssl_path`
			`done`
			`) &`

			`# Wait for background processes to finish`
			`wait`