eclipse/restarter_ynh
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity

install script now covers phpversion and NGINX access control

Browse Source
This commit is contained in:
Eclipse 2023-09-30 14:30:23 +02:00
parent 67601bc643
commit 51b506b232
2 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
conf/nginx.conf
View File

@ -6,6 +6,8 @@ location __PATH__/ {
index index.html; index index.html;
# allowed subnets
deny all;
location ~ \.php { location ~ \.php {
fastcgi_split_path_info ^(.+\.php)(.*)$; fastcgi_split_path_info ^(.+\.php)(.*)$;

23
scripts/install
View File

@ -39,9 +39,32 @@ chmod 600 "/etc/sudoers.d/$app"
# WEBSERVER CONFIGURATION # WEBSERVER CONFIGURATION
#================================================= #=================================================
ynh_script_progression --message="Adding php-fpm configuration …" --weight=1 ynh_script_progression --message="Adding php-fpm configuration …" --weight=1
# find default php version
php_executable=$(readlink -f "$(which php)")
echo "${php_executable:(-3)}"
ynh_app_setting_set --app=$app --key="phpversion" --value="${php_executable:(-3)}"
ynh_add_fpm_config ynh_add_fpm_config
ynh_script_progression --message="Adding nginx configuration …" --weight=1 ynh_script_progression --message="Adding nginx configuration …" --weight=1
# get local subnet address ranges from routing table
ranges=$(netstat -nr | grep -o "^\(192\.168\|172.\(1[6-9]\|2[0-9]\|3[01]\)\|10\.[0-9]\+\)\.[0-9]\+\.[0-9]\+")
# add allow statement to nginx config for each subnet range in CIDR notation
for range in $ranges; do
case $(echo "$range" | awk -F '.' '{print $1}') in
192)
cidr=24
;;
172)
cidr=12
;;
10)
cidr=8
;;
esac
sed -i "/# allowed subnets/a allow ${range}/${cidr}; # added by install script" nginx.conf;
done
ynh_add_nginx_config ynh_add_nginx_config