| Line 1... |
Line 1... |
| 1 |
#!/bin/bash
|
1 |
#!/bin/bash
|
| 2 |
# $Id: alcasar-conf.sh 3268 2025-04-14 08:38:56Z rexy $
|
2 |
# $Id: alcasar-conf.sh 3269 2025-04-21 21:57:13Z rexy $
|
| 3 |
|
3 |
|
| 4 |
# alcasar-conf.sh
|
4 |
# alcasar-conf.sh
|
| 5 |
# by REXY
|
5 |
# by REXY
|
| 6 |
# This script is distributed under the Gnu General Public License (GPL)
|
6 |
# This script is distributed under the Gnu General Public License (GPL)
|
| 7 |
|
7 |
|
| Line 69... |
Line 69... |
| 69 |
###################################################
|
69 |
###################################################
|
| 70 |
--create|-create)
|
70 |
--create|-create)
|
| 71 |
[ -d $DIR_UPDATE ] && rm -rf $DIR_UPDATE
|
71 |
[ -d $DIR_UPDATE ] && rm -rf $DIR_UPDATE
|
| 72 |
mkdir $DIR_UPDATE
|
72 |
mkdir $DIR_UPDATE
|
| 73 |
# backup the users database (test to delete in future version)
|
73 |
# backup the users database (test to delete in future version)
|
| 74 |
$DIR_BIN/alcasar-mysql.sh --dump
|
74 |
$DIR_BIN/alcasar-mariadb.sh --dump
|
| 75 |
cp /var/Save/base/"$(ls -1t /var/Save/base|head -1)" $DIR_UPDATE
|
75 |
cp /var/Save/base/"$(ls -1t /var/Save/base|head -1)" $DIR_UPDATE
|
| 76 |
# backup organism logo
|
76 |
# backup organism logo
|
| 77 |
cp -f $DIR_WEB/images/organisme.png $DIR_UPDATE
|
77 |
cp -f $DIR_WEB/images/organisme.png $DIR_UPDATE
|
| 78 |
# backup E2D BL/WL custom files
|
78 |
# backup E2D BL/WL custom files
|
| 79 |
mkdir $DIR_UPDATE/custom_bl
|
79 |
mkdir $DIR_UPDATE/custom_bl
|
| Line 158... |
Line 158... |
| 158 |
chmod 600 /etc/pki/CA/private/*
|
158 |
chmod 600 /etc/pki/CA/private/*
|
| 159 |
chown -R root:apache /etc/pki/tls/private; chmod 750 /etc/pki/tls/private
|
159 |
chown -R root:apache /etc/pki/tls/private; chmod 750 /etc/pki/tls/private
|
| 160 |
chmod 640 /etc/pki/tls/private/*
|
160 |
chmod 640 /etc/pki/tls/private/*
|
| 161 |
chmod 644 /etc/pki/tls/certs/*
|
161 |
chmod 644 /etc/pki/tls/certs/*
|
| 162 |
# Import of the users database
|
162 |
# Import of the users database
|
| 163 |
$DIR_BIN/alcasar-mysql.sh --import "$(ls $DIR_UPDATE/alcasar-users-database*)"
|
163 |
$DIR_BIN/alcasar-mariadb.sh --import "$(ls $DIR_UPDATE/alcasar-users-database*)"
|
| 164 |
# Retrieve local parameters
|
164 |
# Retrieve local parameters
|
| 165 |
[ -d $DIR_UPDATE/etc/digest ] && cp -rf $DIR_UPDATE/etc/digest $DIR_ETC/ # ACC accounts
|
165 |
[ -d $DIR_UPDATE/etc/digest ] && cp -rf $DIR_UPDATE/etc/digest $DIR_ETC/ # ACC accounts
|
| 166 |
[ -e $DIR_UPDATE/etc/alcasar-iptables-local.sh ] && cp -f $DIR_UPDATE/etc/alcasar-iptables-local.sh $DIR_ETC/ # local FW rules
|
166 |
[ -e $DIR_UPDATE/etc/alcasar-iptables-local.sh ] && cp -f $DIR_UPDATE/etc/alcasar-iptables-local.sh $DIR_ETC/ # local FW rules
|
| 167 |
[ -e $DIR_UPDATE/etc/alcasar-iptables-local-mac-filtered ] && cp -f $DIR_UPDATE/etc/alcasar-iptables-local-mac-filtered $DIR_ETC/ # blocked MAC addresses
|
167 |
[ -e $DIR_UPDATE/etc/alcasar-iptables-local-mac-filtered ] && cp -f $DIR_UPDATE/etc/alcasar-iptables-local-mac-filtered $DIR_ETC/ # blocked MAC addresses
|
| 168 |
[ -e $DIR_UPDATE/etc/alcasar-custom-allowed-ports ] && cp -f $DIR_UPDATE/etc/alcasar-custom-allowed-ports $DIR_ETC/ # protocols filtering for users (profil 3 : customized with ACC)
|
168 |
[ -e $DIR_UPDATE/etc/alcasar-custom-allowed-ports ] && cp -f $DIR_UPDATE/etc/alcasar-custom-allowed-ports $DIR_ETC/ # protocols filtering for users (profil 3 : customized with ACC)
|