Subversion Repositories ALCASAR

			return 6

			return 6

			;;

			;;

	esac

	esac

}

}

check_primary_credentials() {

check_primary_credentials() {

	# Test SSH credentials

	# Test SSH credentials

	if ! /usr/bin/ssh -o StrictHostKeyChecking=no -o PasswordAuthentication=no -p "$remote_ssh_port" "$remote_ssh_user"@"$remote_addr" exit

	if ! /usr/bin/ssh -o StrictHostKeyChecking=no -o PasswordAuthentication=no -p "$remote_ssh_port" "$remote_ssh_user"@"$remote_addr" exit

	then

	then

		echo "error: cannot SSH with '$remote_ssh_user' to $remote_addr:$remote_ssh_port" >&2

		echo "error: cannot SSH with '$remote_ssh_user' to $remote_addr:$remote_ssh_port" >&2

		echo "hint: have you deployed root pubkey on the remote?"

		echo "hint: have you deployed root pubkey on the remote?"

		return 7

		return 7

	fi

	fi

	echo "Successfully connected with '$remote_ssh_user' to primary ($remote_addr:$remote_ssh_port)"

	echo "Successfully connected with '$remote_ssh_user' to primary ($remote_addr:$remote_ssh_port)"

	then

	then

		return 7

		return 7

	fi

	fi

	echo "Successfully retrieve remote primary db_user pass"

	echo "Successfully retrieve remote primary db_user pass"

	# Test database credentials

	# Test database credentials

	if ! /usr/bin/ssh -q -p "$remote_ssh_port" "$remote_ssh_user"@"$remote_addr" -- /usr/bin/mariadb --user="$remote_db_user" --password="$remote_db_pwd" --execute="QUIT"

	if ! /usr/bin/ssh -q -p "$remote_ssh_port" "$remote_ssh_user"@"$remote_addr" -- /usr/bin/mariadb --user="$remote_db_user" --password="$remote_db_pwd" --execute="QUIT"

	then

	then

		echo "error: cannot connect with '$remote_db_user' to remote database" >&2

		echo "error: cannot connect with '$remote_db_user' to remote database" >&2

		return 9

		return 9

	fi

	fi

	echo "Successfully connected with '$remote_db_user' to remote secondary database on port $bind_port"

	echo "Successfully connected with '$remote_db_user' to remote secondary database on port $bind_port"

}

}

create_ssh_tunnel() {

create_ssh_tunnel() {

	# Find a common binding port

	# Find a common binding port

	find_common_free_port || return 11

	find_common_free_port || return 11

	service_file="replication-$remote_name.service"

	service_file="replication-$remote_name.service"

	service_path="/etc/systemd/system/$service_file"

	service_path="/etc/systemd/system/$service_file"

	fi

	fi

	# Execute the query

	# Execute the query

	/usr/bin/mariadb --host="${4:-localhost}" --port="${5:-$DB_PORT}" --user="${2:-root}" --password="${3:-$DB_ROOT_PWD}" --execute="$1"

	/usr/bin/mariadb --host="${4:-localhost}" --port="${5:-$DB_PORT}" --user="${2:-root}" --password="${3:-$DB_ROOT_PWD}" --execute="$1"

}

}

retrieve_primary_database() {

retrieve_primary_database() {

	# creation of a fresh dump

	# creation of a fresh dump

	if ! /usr/bin/ssh -q -p "$remote_ssh_port" "$remote_ssh_user"@"$remote_addr" -- "sudo /usr/local/bin/alcasar-mariadb.sh -d &&  cp -f /var/Save/base/\$(ls -t /var/Save/base/ | head -n 1) /home/replication/alcasar-users-database-primary.sql.gz"

	if ! /usr/bin/ssh -q -p "$remote_ssh_port" "$remote_ssh_user"@"$remote_addr" -- "sudo /usr/local/bin/alcasar-mariadb.sh -d &&  cp -f /var/Save/base/\$(ls -t /var/Save/base/ | head -n 1) /home/replication/alcasar-users-database-primary.sql.gz"

	then

	then

		echo "error: cannot create a fresh primary database dump" >&2

		echo "error: cannot create a fresh primary database dump" >&2

	echo "Primary database dump locally copied"

	echo "Primary database dump locally copied"

	alcasar-mariadb.sh --import /tmp/alcasar-users-database-primary.sql.gz

	alcasar-mariadb.sh --import /tmp/alcasar-users-database-primary.sql.gz

	rm -f /tmp/alcasar-users-database-primary.sql.gz

	rm -f /tmp/alcasar-users-database-primary.sql.gz

}

}

find_common_free_port() {

find_common_free_port() {

	remote_busy_ports_file=/tmp/remote_busy_ports

	remote_busy_ports_file=/tmp/remote_busy_ports

	local_busy_ports_file=/tmp/local_busy_ports

	local_busy_ports_file=/tmp/local_busy_ports

	common_busy_ports_file=/tmp/common_busy_ports

	common_busy_ports_file=/tmp/common_busy_ports

	ports_list_file=/tmp/ports_list

	ports_list_file=/tmp/ports_list

		tmp_allow_outbound_connection || abort "$?" || exit

		tmp_allow_outbound_connection || abort "$?" || exit

		check_primary_credentials || abort "$?" || exit

		check_primary_credentials || abort "$?" || exit

		create_ssh_tunnel || abort "$?" || exit

		create_ssh_tunnel || abort "$?" || exit

		retrieve_primary_database || abort "$?" || exit

		retrieve_primary_database || abort "$?" || exit

		add_remote_as_primary || abort "$?" || exit

		add_remote_as_primary || abort "$?" || exit

		echo -n "Allowing outbound connection to remote SSH "

		echo -n "Allowing outbound connection to remote SSH "

		# Get remote IP and port from its name

		# Get remote IP and port from its name

		port="$(grep "ExecStart" "$service_path" | cut -d ' ' -f 9)"

		port="$(grep "ExecStart" "$service_path" | cut -d ' ' -f 9)"

		ip="$(grep "ExecStart" "$service_path" | cut -d ' ' -f 14 | cut -d '@' -f2)"

		ip="$(grep "ExecStart" "$service_path" | cut -d ' ' -f 14 | cut -d '@' -f2)"

		/usr/bin/sed -i -E "/^REPLICATION_TO=/s/=(.*)/=\1$ip:$port,/" /usr/local/etc/alcasar.conf

		/usr/bin/sed -i -E "/^REPLICATION_TO=/s/=(.*)/=\1$ip:$port,/" /usr/local/etc/alcasar.conf

		/usr/local/bin/alcasar-iptables.sh

		/usr/local/bin/alcasar-iptables.sh

		;;

		;;

	secondary)

	secondary)

		check_secondary_credentials || exit

		check_secondary_credentials || exit