1
0
mirror of https://github.com/MysticRyuujin/guac-install.git synced 2023-10-10 13:36:56 +02:00

Improve Docker Installer. Support TOTP.

This commit is contained in:
MysticRyuujin 2021-08-31 20:10:22 -05:00
parent e4ac60c3fa
commit a837c4a31b

View File

@ -6,6 +6,18 @@ if ! [ $(id -u) = 0 ]; then echo "Please run this script as sudo or root"; exit
# Version number of Guacamole to install # Version number of Guacamole to install
GUACVERSION="1.3.0" GUACVERSION="1.3.0"
# Initialize variable values
installTOTP=""
# This is where we'll store persistent data for mysql and guacamole
INSTALLFOLDER="/opt/guacamole"
mkdir -p ${INSTALLFOLDER}/install_files
mkdir -p ${INSTALLFOLDER}/extensions
mkdir -p ${INSTALLFOLDER}/mysql
cd ${INSTALLFOLDER}/install_files
# Get script arguments for non-interactive mode # Get script arguments for non-interactive mode
while [ "$1" != "" ]; do while [ "$1" != "" ]; do
case $1 in case $1 in
@ -17,6 +29,8 @@ while [ "$1" != "" ]; do
shift shift
guacpwd="$1" guacpwd="$1"
;; ;;
-t | --totp )
installTOTP=true
esac esac
shift shift
done done
@ -51,20 +65,42 @@ else
echo echo
fi fi
# Install Stuff if [[ -z "${installTOTP}" ]]; then
apt-get update # Prompt the user if they would like to install TOTP MFA, default of no
echo -e -n "${CYAN}MFA: Would you like to install TOTP? (y/N): ${NC}"
# Install mysql-client and wget if they don't already have it read PROMPT
apt-get -y install default-mysql-client wget if [[ ${PROMPT} =~ ^[Yy]$ ]]; then
if [ $? -ne 0 ]; then installTOTP=true
echo "Failed to install apt prerequisites: default-mysql-client wget" else
echo "Try manually isntalling these prerequisites and try again" installTOTP=false
exit fi
fi fi
# Try to install docker from the official repo # Update apt and install wget if it's missing
apt-get -y install docker-ce docker-ce-cli containerd.io apt-get update
if [ $? -ne 0 ]; then apt-get -y install wget
# Check if mysql client already installed
if [ -x "$(command -v mysql)" ]; then
echo "mysql detected!"
else
# Install mysql-client
apt-get -y install default-mysql-client
if [ $? -ne 0 ]; then
echo "Failed to install apt prerequisites: default-mysql-client"
echo "Try manually isntalling this prerequisites and try again"
exit
fi
fi
# Check if docker already installed
if [ -x "$(command -v docker)" ]; then
echo "docker detected!"
else
echo "Installing docker"
# Try to install docker from the official repo
apt-get -y install docker-ce docker-ce-cli containerd.io
if [ $? -ne 0 ]; then
echo "Failed to install docker via official apt repo" echo "Failed to install docker via official apt repo"
echo "Trying to install docker from https://get.docker.com" echo "Trying to install docker from https://get.docker.com"
wget -O get-docker.sh https://get.docker.com wget -O get-docker.sh https://get.docker.com
@ -74,7 +110,7 @@ if [ $? -ne 0 ]; then
echo "Failed to install docker from https://get.docker.com" echo "Failed to install docker from https://get.docker.com"
exit exit
fi fi
rm ./get-docker.sh fi
fi fi
# Set SERVER to be the preferred download server from the Apache CDN # Set SERVER to be the preferred download server from the Apache CDN
@ -90,8 +126,24 @@ fi
tar -xzf guacamole-auth-jdbc-${GUACVERSION}.tar.gz tar -xzf guacamole-auth-jdbc-${GUACVERSION}.tar.gz
# Download and install TOTP
if [ "${installTOTP}" = true ]; then
wget -q --show-progress -O guacamole-auth-totp-${GUACVERSION}.tar.gz ${SERVER}/binary/guacamole-auth-totp-${GUACVERSION}.tar.gz
if [ $? -ne 0 ]; then
echo -e "${RED}Failed to download guacamole-auth-totp-${GUACVERSION}.tar.gz" 1>&2
echo -e "${SERVER}/binary/guacamole-auth-totp-${GUACVERSION}.tar.gz"
exit 1
else
echo -e "${GREEN}Downloaded guacamole-auth-totp-${GUACVERSION}.tar.gz${NC}"
tar -xzf guacamole-auth-totp-${GUACVERSION}.tar.gz
echo -e "${BLUE}Moving guacamole-auth-totp-${GUACVERSION}.jar (${INSTALLFOLDER}/extensions/)...${NC}"
cp -f guacamole-auth-totp-${GUACVERSION}/guacamole-auth-totp-${GUACVERSION}.jar ${INSTALLFOLDER}/extensions/
echo
fi
fi
# Start MySQL # Start MySQL
docker run --restart=always --detach --name=mysql --env="MYSQL_ROOT_PASSWORD=$mysqlrootpassword" --publish 3306:3306 healthcheck/mysql --default-authentication-plugin=mysql_native_password docker run --restart=always --detach --name=mysql -v ${INSTALLFOLDER}/mysql:/var/lib/mysql --env="MYSQL_ROOT_PASSWORD=$mysqlrootpassword" --publish 3306:3306 healthcheck/mysql --default-authentication-plugin=mysql_native_password
# Wait for the MySQL Health Check equal "healthy" # Wait for the MySQL Health Check equal "healthy"
echo "Waiting for MySQL to be healthy" echo "Waiting for MySQL to be healthy"
@ -113,12 +165,8 @@ echo $SQLCODE | mysql -h 127.0.0.1 -P 3306 -u root -p$mysqlrootpassword
cat guacamole-auth-jdbc-${GUACVERSION}/mysql/schema/*.sql | mysql -u root -p$mysqlrootpassword -h 127.0.0.1 -P 3306 guacamole_db cat guacamole-auth-jdbc-${GUACVERSION}/mysql/schema/*.sql | mysql -u root -p$mysqlrootpassword -h 127.0.0.1 -P 3306 guacamole_db
docker run --restart=always --name guacd --detach guacamole/guacd docker run --restart=always --name guacd --detach guacamole/guacd
docker run --restart=always --name guacamole --detach --link mysql:mysql --link guacd:guacd -e MYSQL_HOSTNAME=127.0.0.1 -e MYSQL_DATABASE=guacamole_db -e MYSQL_USER=guacamole_user -e MYSQL_PASSWORD=$guacdbuserpassword -p 8080:8080 guacamole/guacamole docker run --restart=always --name guacamole --detach --link mysql:mysql --link guacd:guacd -v ${INSTALLFOLDER}/extensions:/etc/guacamole/extensions -e MYSQL_HOSTNAME=127.0.0.1 -e MYSQL_DATABASE=guacamole_db -e MYSQL_USER=guacamole_user -e MYSQL_PASSWORD=$guacdbuserpassword -e GUACAMOLE_HOME=/etc/guacamole -p 8080:8080 guacamole/guacamole
# Cleanup
echo -e "${BLUE}Cleanup install files...${NC}"
rm -rf guacamole-auth-jdbc-${GUACVERSION}*
echo
# Done # Done
echo
echo -e "Installation Complete\n- Visit: http://localhost:8080/guacamole/\n- Default login (username/password): guacadmin/guacadmin\n***Be sure to change the password***." echo -e "Installation Complete\n- Visit: http://localhost:8080/guacamole/\n- Default login (username/password): guacadmin/guacadmin\n***Be sure to change the password***."