librelad 4430edc40e fix(apps): de-sudo the remaining per-app .sh file ops via runFileOp
Sweep of every containers/<app>/<app>.sh after the install-side fix that
went into config_file_setup_data.sh — these were the same class of bug:
bare `sudo sed -i` / `sudo docker exec` calls left over from when the
manager carried NOPASSWD:ALL. After the rootless+de-sudo hardening (Model
A, sudoers scoped to LP_HELPERS + LP_SYSTEM only) those calls fail at
runtime, so every per-app routine that uses one would refuse on install
or in its post-install tweak step.

Each call routes through the existing `runFileOp` shim, which picks the
right path per CFG_DOCKER_INSTALL_TYPE (dockerinstall in rootless, manager
in rootful) — same pattern setup_dns.sh / authelia.sh / config_file_setup_data.sh
already use.

Fixed:
  gitea.sh:65       — sync GITEA_METRICS_TOKEN into prometheus-scrape.yml
  owncloud.sh:88    — fill OWNCLOUD_SETUP_* in the setup-webform html
  searxng.sh:87     — flip simple_style: auto → CFG_SEARXNG_THEME
  trilium.sh:89     — rewrite trilium-data/config.ini port=
  bookstack.sh:139  — bookstack:create-admin via `docker exec`
  bookstack.sh:148  — admin@admin.com cleanup via `docker exec ... tinker`

`bash -n` clean on every touched file. Untested live (none of these apps
are installed on the verify VM) but mechanically equivalent to the
already-validated config_file_setup_data.sh fix.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Signed-off-by: librelad <librelad@digitalangels.vip>
2026-05-26 17:48:00 +01:00

153 lines
4.4 KiB
Bash
Executable File

#!/bin/bash
# Category : Cloud Storage & File Sharing
# Description : OwnCloud - Cloud Storage (c/u/s/r/i):
installOwncloud()
{
local config_variables="$1"
if [[ "$owncloud" == *[cCtTuUsSrRiI]* ]]; then
dockerConfigSetupToContainer silent owncloud;
local app_name=$CFG_OWNCLOUD_APP_NAME
owncloud_version=$CFG_OWNCLOUD_VERSION
initializeAppVariables $app_name;
fi
if [[ "$owncloud" == *[cC]* ]]; then
editAppConfig $app_name;
fi
if [[ "$owncloud" == *[uU]* ]]; then
dockerUninstallApp $app_name;
fi
if [[ "$owncloud" == *[sS]* ]]; then
dockerComposeDown $app_name;
fi
if [[ "$owncloud" == *[rR]* ]]; then
dockerComposeRestart $app_name;
fi
if [[ "$owncloud" == *[iI]* ]]; then
isHeader "Install $app_name"
((menu_number++))
echo ""
echo "---- $menu_number. Setting up install folder and config file for $app_name."
echo ""
dockerConfigSetupToContainer "loud" "$app_name" "install" "$config_variables";
isSuccessful "Install folders and Config files have been setup for $app_name."
((menu_number++))
echo ""
((menu_number++))
echo ""
echo "---- $menu_number. Setting up the $app_name docker-compose.yml file."
echo ""
dockerComposeSetupFile $app_name;
((menu_number++))
echo ""
echo "---- $menu_number. Obtain latest version number of $app_name"
echo ""
local webpage_file="/tmp/webpage.html"
# Download the webpage to the temporary directory
curl -s "https://doc.owncloud.com/docs/next/server_release_notes.html" > "$webpage_file"
if [ $? -eq 0 ]; then
# Extract the latest version from the temporary HTML file
local latest_version=$(grep -o 'Changes in [0-9.-]*' "$webpage_file" | awk -F " " '{print $3}' | sort -V | tail -n 1)
if [ -n "$latest_version" ]; then
isSuccessful "Latest Retrieved Version: $latest_version"
isSuccessful "Using for installation"
owncloud_version="$latest_version"
else
isNotice "Failed to extract the latest version from the OwnCloud website."
isNotice "Defaulting to config value : $CFG_OWNCLOUD_VERSION."
owncloud_version="$CFG_OWNCLOUD_VERSION"
fi
# Remove the temporary HTML file
rm "$webpage_file"
if [ $? -eq 0 ]; then
isSuccessful "Removed the temporary HTML file"
else
isNotice "Failed to remove the temporary HTML file"
fi
else
isNotice "Failed to retrieve the web page."
fi
local result=$(runFileOp sed -i \
-e "s|OWNCLOUD_SETUP_VERSION|$owncloud_version|g" \
-e "s|OWNCLOUD_SETUP_ADMIN_USERNAME|$CFG_OWNCLOUD_ADMIN_USERNAME|g" \
-e "s|OWNCLOUD_SETUP_ADMIN_PASSWORD|$CFG_OWNCLOUD_ADMIN_PASSWORD|g" \
-e "s|OWNCLOUD_SETUP_HTTP_PORT|$usedport1|g" \
"$file_path")
checkSuccess "Updating $file_name for $app_name"
((menu_number++))
echo ""
echo "---- $menu_number. Updating file permissions before starting."
echo ""
fixPermissionsBeforeStart $app_name;
((menu_number++))
echo ""
echo "---- $menu_number. Running the docker-compose.yml to install and start $app_name"
echo ""
dockerComposeUpdateAndStartApp $app_name install;
((menu_number++))
echo ""
echo "---- $menu_number. Running Application specific updates (if required)"
echo ""
appUpdateSpecifics $app_name;
((menu_number++))
echo ""
echo "---- $menu_number. Running Headscale setup (if required)"
echo ""
setupHeadscale $app_name;
((menu_number++))
echo ""
echo "---- $menu_number. Adding $app_name to the Apps Database table."
echo ""
databaseInstallApp $app_name;
((menu_number++))
echo ""
echo "---- $menu_number. Updating WebUI config file."
echo ""
webuiContainerSetup $app_name install;
((menu_number++))
echo ""
echo "---- $menu_number. You can find $app_name files at $containers_dir$app_name"
echo ""
echo " You can now navigate to your new service using one of the options below : "
echo ""
menuShowFinalMessages $app_name;
menu_number=0
#sleep 3s
cd
fi
owncloud=n
}