Update shm_actions_script.sh
This commit is contained in:
Bkeenke
GitHub
parent
73bba64c7a
commit
eec550f8a8
@ -3,16 +3,10 @@
|
|||||||
set -e
|
set -e
|
||||||
|
|
||||||
EVENT="{{ event_name }}"
|
EVENT="{{ event_name }}"
|
||||||
WG_MANAGER="/etc/wireguard/wg-manager.sh"
|
AWG_MANAGER="/etc/amnezia/amneziawg/awg-manager.sh"
|
||||||
SESSION_ID="{{ user.gen_session.id }}"
|
SESSION_ID="{{ user.gen_session.id }}"
|
||||||
API_URL="{{ config.api.url }}"
|
API_URL="{{ config.api.url }}"
|
||||||
|
CURL="curl"
|
||||||
# We need the --fail-with-body option for curl.
|
|
||||||
# It has been added since curl 7.76.0, but almost all Linux distributions do not support it yet.
|
|
||||||
# If your distribution has an older version of curl, you can use it (just comment CURL_REPO)
|
|
||||||
CURL_REPO="https://github.com/moparisthebest/static-curl/releases/download/v7.86.0/curl-amd64"
|
|
||||||
CURL="/opt/curl/curl-amd64"
|
|
||||||
#CURL="curl"
|
|
||||||
|
|
||||||
echo "EVENT=$EVENT"
|
echo "EVENT=$EVENT"
|
||||||
|
|
||||||
@ -20,9 +14,11 @@ case $EVENT in
|
|||||||
INIT)
|
INIT)
|
||||||
SERVER_HOST="{{ server.settings.host_name }}"
|
SERVER_HOST="{{ server.settings.host_name }}"
|
||||||
SERVER_INTERFACE="{{ server.settings.host_interface }}"
|
SERVER_INTERFACE="{{ server.settings.host_interface }}"
|
||||||
|
if [[ -z "$SERVER_INTERFACE" ]]; then
|
||||||
|
SERVER_INTERFACE=$(ip route | awk '/default/ {print $5; exit}')
|
||||||
|
fi
|
||||||
if [ -z $SERVER_HOST ]; then
|
if [ -z $SERVER_HOST ]; then
|
||||||
echo "ERROR: set variable 'host_name' to server settings"
|
SERVER_HOST="{{ server.settings.host }}"
|
||||||
exit 1
|
|
||||||
fi
|
fi
|
||||||
|
|
||||||
echo "Install required packages"
|
echo "Install required packages"
|
||||||
@ -30,11 +26,11 @@ case $EVENT in
|
|||||||
apt install -y \
|
apt install -y \
|
||||||
iproute2 \
|
iproute2 \
|
||||||
iptables \
|
iptables \
|
||||||
wireguard \
|
|
||||||
wireguard-tools \
|
|
||||||
qrencode \
|
|
||||||
curl \
|
curl \
|
||||||
wget
|
wget \
|
||||||
|
git \
|
||||||
|
build-essential \
|
||||||
|
make
|
||||||
|
|
||||||
echo "Check domain: $API_URL"
|
echo "Check domain: $API_URL"
|
||||||
HTTP_CODE=$(curl -s -o /dev/null -w "%{http_code}" $API_URL/shm/v1/test)
|
HTTP_CODE=$(curl -s -o /dev/null -w "%{http_code}" $API_URL/shm/v1/test)
|
||||||
@ -43,33 +39,46 @@ case $EVENT in
|
|||||||
echo "Got status: $HTTP_CODE"
|
echo "Got status: $HTTP_CODE"
|
||||||
exit 1
|
exit 1
|
||||||
fi
|
fi
|
||||||
|
mkdir -p /opt/go
|
||||||
if [[ $CURL_REPO && ! -f $CURL ]]; then
|
cd /opt/go
|
||||||
echo "Install modern curl"
|
wget https://go.dev/dl/go1.22.0.linux-amd64.tar.gz
|
||||||
mkdir -p /opt/curl
|
rm -rf /usr/local/go && tar -C /usr/local -xzf go1.22.0.linux-amd64.tar.gz
|
||||||
cd /opt/curl
|
echo "export PATH=$PATH:/usr/local/go/bin" >> /etc/profile
|
||||||
wget $CURL_REPO
|
source $HOME/.profile
|
||||||
chmod 755 $CURL
|
if ! command -v go &> /dev/null; then
|
||||||
|
cp /usr/local/go/bin/go /usr/bin && cp /usr/local/go/bin/gofmt /usr/bin
|
||||||
fi
|
fi
|
||||||
|
|
||||||
echo "Download wg-manager.sh"
|
git clone https://github.com/amnezia-vpn/amneziawg-go.git /opt/amnezia-go
|
||||||
|
cd /opt/amnezia-go
|
||||||
|
make
|
||||||
|
sleep 1
|
||||||
|
cp /opt/amnezia-go/amneziawg-go /usr/bin
|
||||||
|
|
||||||
|
git clone https://github.com/amnezia-vpn/amneziawg-tools.git /opt/amnezia-tools
|
||||||
|
cd /opt/amnezia-tools/src
|
||||||
|
make
|
||||||
|
make install
|
||||||
|
sleep 1
|
||||||
|
|
||||||
|
echo "Download awg-manager.sh"
|
||||||
cd /etc/wireguard
|
cd /etc/wireguard
|
||||||
$CURL -s --fail-with-body https://danuk.github.io/wg-manager/wg-manager.sh > $WG_MANAGER
|
$CURL -s https://raw.githubusercontent.com/bkeenke/awg-manager/master/awg-manager.sh > $AWG_MANAGER
|
||||||
|
|
||||||
echo "Init server"
|
echo "Init server"
|
||||||
chmod 700 $WG_MANAGER
|
chmod 700 $AWG_MANAGER
|
||||||
if [ $SERVER_INTERFACE ]; then
|
if [ $SERVER_INTERFACE ]; then
|
||||||
$WG_MANAGER -i -s $SERVER_HOST -I $SERVER_INTERFACE
|
$AWG_MANAGER -i -s $SERVER_HOST -I $SERVER_INTERFACE
|
||||||
else
|
else
|
||||||
$WG_MANAGER -i -s $SERVER_HOST
|
$AWG_MANAGER -i -s $SERVER_HOST
|
||||||
fi
|
fi
|
||||||
;;
|
;;
|
||||||
CREATE)
|
CREATE)
|
||||||
echo "Create new user"
|
echo "Create new user"
|
||||||
USER_CFG=$($WG_MANAGER -u "{{ us.id }}" -c -p)
|
USER_CFG=$($AWG_MANAGER -u "{{ us.id }}" -c -p)
|
||||||
|
|
||||||
echo "Upload user key to SHM"
|
echo "Upload user key to SHM"
|
||||||
$CURL -s --fail-with-body -XPUT \
|
$CURL -s -XPUT \
|
||||||
-H "session-id: $SESSION_ID" \
|
-H "session-id: $SESSION_ID" \
|
||||||
-H "Content-Type: text/plain" \
|
-H "Content-Type: text/plain" \
|
||||||
$API_URL/shm/v1/storage/manage/vpn{{ us.id }} \
|
$API_URL/shm/v1/storage/manage/vpn{{ us.id }} \
|
||||||
@ -78,20 +87,20 @@ case $EVENT in
|
|||||||
;;
|
;;
|
||||||
ACTIVATE)
|
ACTIVATE)
|
||||||
echo "Activate user"
|
echo "Activate user"
|
||||||
$WG_MANAGER -u "{{ us.id }}" -U
|
$AWG_MANAGER -u "{{ us.id }}" -U
|
||||||
echo "done"
|
echo "done"
|
||||||
;;
|
;;
|
||||||
BLOCK)
|
BLOCK)
|
||||||
echo "Block user"
|
echo "Block user"
|
||||||
$WG_MANAGER -u "{{ us.id }}" -L
|
$AWG_MANAGER -u "{{ us.id }}" -L
|
||||||
echo "done"
|
echo "done"
|
||||||
;;
|
;;
|
||||||
REMOVE)
|
REMOVE)
|
||||||
echo "Remove user"
|
echo "Remove user"
|
||||||
$WG_MANAGER -u "{{ us.id }}" -d
|
$AWG_MANAGER -u "{{ us.id }}" -d
|
||||||
|
|
||||||
echo "Remove user key from SHM"
|
echo "Remove user key from SHM"
|
||||||
$CURL -s --fail-with-body -XDELETE \
|
$CURL -s -XDELETE \
|
||||||
-H "session-id: $SESSION_ID" \
|
-H "session-id: $SESSION_ID" \
|
||||||
$API_URL/shm/v1/storage/manage/vpn{{ us.id }}
|
$API_URL/shm/v1/storage/manage/vpn{{ us.id }}
|
||||||
echo "done"
|
echo "done"
|
||||||
@ -101,5 +110,3 @@ case $EVENT in
|
|||||||
exit 0
|
exit 0
|
||||||
;;
|
;;
|
||||||
esac
|
esac
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user