Skip to content

Instantly share code, notes, and snippets.

@MrMcyeet

MrMcyeet/smth.sh

Created December 22, 2020 03:44
Show Gist options
  • Save MrMcyeet/4dc10a031614e5d70c04cde2317896f5 to your computer and use it in GitHub Desktop.
Save MrMcyeet/4dc10a031614e5d70c04cde2317896f5 to your computer and use it in GitHub Desktop.
Download ZIP
e
Raw
smth.sh
#!/bin/bash
set -e
#############################################################################
# #
# Project 'pterodactyl-installer' for panel #
# #
# Copyright (C) 2018 - 2020, Vilhelm Prytz, <vilhelm@prytznet.se>, et al. #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
# the Free Software Foundation, either version 3 of the License, or #
# (at your option) any later version. #
# #
# This program is distributed in the hope that it will be useful, #
# but WITHOUT ANY WARRANTY; without even the implied warranty of #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
# GNU General Public License for more details. #
# #
# You should have received a copy of the GNU General Public License #
# along with this program. If not, see <https://www.gnu.org/licenses/>. #
# #
# https://github.com/vilhelmprytz/pterodactyl-installer/blob/master/LICENSE #
# #
# This script is not associated with the official Pterodactyl Project. #
# https://github.com/vilhelmprytz/pterodactyl-installer #
# #
#############################################################################
# exit with error status code if user is not root
if [[ $EUID -ne 0 ]]; then
echo "* This script must be executed with root privileges (sudo)." 1>&2
exit 1
fi
# check for curl
if ! [ -x "$(command -v curl)" ]; then
echo "* curl is required in order for this script to work."
echo "* install using apt (Debian and derivatives) or yum/dnf (CentOS)"
exit 1
fi
# define version using information from GitHub
get_latest_release() {
curl --silent "https://api.github.com/repos/$1/releases/latest" | # Get latest release from GitHub api
grep '"tag_name":' | # Get tag line
sed -E 's/.*"([^"]+)".*/\1/' # Pluck JSON value
}
echo "* Retrieving release information.."
PTERODACTYL_VERSION="$(get_latest_release "pterodactyl/panel")"
echo "* Latest version is $PTERODACTYL_VERSION"
# variables
WEBSERVER="nginx"
FQDN=""
# default MySQL credentials
MYSQL_DB="pterodactyl"
MYSQL_USER="pterodactyl"
MYSQL_PASSWORD=""
# environment
email=""
# Initial admin account
user_email=""
user_username=""
user_firstname=""
user_lastname=""
user_password=""
# assume SSL, will fetch different config if true
ASSUME_SSL=false
CONFIGURE_LETSENCRYPT=false
# download URLs
PANEL_DL_URL="https://github.com/pterodactyl/panel/releases/latest/download/panel.tar.gz"
CONFIGS_URL="https://raw.githubusercontent.com/vilhelmprytz/pterodactyl-installer/master/configs"
# apt sources path
SOURCES_PATH="/etc/apt/sources.list"
# ufw firewall
CONFIGURE_UFW=false
# firewall_cmd
CONFIGURE_FIREWALL_CMD=false
# firewall status
CONFIGURE_FIREWALL=false
# visual functions
function print_error {
COLOR_RED='\033[0;31m'
COLOR_NC='\033[0m'
echo ""
echo -e "* ${COLOR_RED}ERROR${COLOR_NC}: $1"
echo ""
}
function print_warning {
COLOR_YELLOW='\033[1;33m'
COLOR_NC='\033[0m'
echo ""
echo -e "* ${COLOR_YELLOW}WARNING${COLOR_NC}: $1"
echo ""
}
function print_brake {
for ((n=0;n<$1;n++));
do
echo -n "#"
done
echo ""
}
hyperlink() {
echo -e "\e]8;;${1}\a${1}\e]8;;\a"
}
required_input() {
local __resultvar=$1
local result=''
while [ -z "$result" ]; do
echo -n "* ${2}"
read -r result
[ -z "$result" ] && print_error "${3}"
done
eval "$__resultvar="'$result'""
}
password_input() {
local __resultvar=$1
local result=''
while [ -z "$result" ]; do
echo -n "* ${2}"
# modified from https://stackoverflow.com/a/22940001
while IFS= read -r -s -n1 char; do
[[ -z $char ]] && { printf '\n'; break; } # ENTER pressed; output \n and break.
if [[ $char == $'\x7f' ]]; then # backspace was pressed
# Only if variable is not empty
if [ -n "$result" ]; then
# Remove last char from output variable.
[[ -n $result ]] && result=${result%?}
# Erase '*' to the left.
printf '\b \b'
fi
else
# Add typed char to output variable.
result+=$char
# Print '*' in its stead.
printf '*'
fi
done
[ -z "$result" ] && print_error "${3}"
done
eval "$__resultvar="'$result'""
}
# other functions
function detect_distro {
if [ -f /etc/os-release ]; then
# freedesktop.org and systemd
. /etc/os-release
OS=$(echo "$ID" | awk '{print tolower($0)}')
OS_VER=$VERSION_ID
elif type lsb_release >/dev/null 2>&1; then
# linuxbase.org
OS=$(lsb_release -si | awk '{print tolower($0)}')
OS_VER=$(lsb_release -sr)
elif [ -f /etc/lsb-release ]; then
# For some versions of Debian/Ubuntu without lsb_release command
. /etc/lsb-release
OS=$(echo "$DISTRIB_ID" | awk '{print tolower($0)}')
OS_VER=$DISTRIB_RELEASE
elif [ -f /etc/debian_version ]; then
# Older Debian/Ubuntu/etc.
OS="debian"
OS_VER=$(cat /etc/debian_version)
elif [ -f /etc/SuSe-release ]; then
# Older SuSE/etc.
OS="SuSE"
OS_VER="?"
elif [ -f /etc/redhat-release ]; then
# Older Red Hat, CentOS, etc.
OS="Red Hat/CentOS"
OS_VER="?"
else
# Fall back to uname, e.g. "Linux <version>", also works for BSD, etc.
OS=$(uname -s)
OS_VER=$(uname -r)
fi
OS=$(echo "$OS" | awk '{print tolower($0)}')
OS_VER_MAJOR=$(echo "$OS_VER" | cut -d. -f1)
}
function check_os_comp {
if [ "$OS" == "ubuntu" ]; then
PHP_SOCKET="/run/php/php7.4-fpm.sock"
if [ "$OS_VER_MAJOR" == "18" ]; then
SUPPORTED=true
elif [ "$OS_VER_MAJOR" == "20" ]; then
SUPPORTED=true
else
SUPPORTED=false
fi
elif [ "$OS" == "debian" ]; then
PHP_SOCKET="/run/php/php7.4-fpm.sock"
if [ "$OS_VER_MAJOR" == "9" ]; then
SUPPORTED=true
elif [ "$OS_VER_MAJOR" == "10" ]; then
SUPPORTED=true
else
SUPPORTED=false
fi
elif [ "$OS" == "centos" ]; then
PHP_SOCKET="/var/run/php-fpm/pterodactyl.sock"
if [ "$OS_VER_MAJOR" == "7" ]; then
SUPPORTED=true
elif [ "$OS_VER_MAJOR" == "8" ]; then
SUPPORTED=true
else
SUPPORTED=false
fi
else
SUPPORTED=false
fi
# exit if not supported
if [ "$SUPPORTED" == true ]; then
echo "* $OS $OS_VER is supported."
else
echo "* $OS $OS_VER is not supported"
print_error "Unsupported OS"
exit 1
fi
}
#################################
## main installation functions ##
#################################
function install_composer {
echo "* Installing composer.."
curl -sS https://getcomposer.org/installer | php -- --install-dir=/usr/local/bin --filename=composer
echo "* Composer installed!"
}
function ptdl_dl {
echo "* Downloading pterodactyl panel files .. "
mkdir -p /var/www/pterodactyl
cd /var/www/pterodactyl || exit
curl -Lo panel.tar.gz "$PANEL_DL_URL"
tar -xzvf panel.tar.gz
chmod -R 755 storage/* bootstrap/cache/
cp .env.example .env
composer install --no-dev --optimize-autoloader
php artisan key:generate --force
echo "* Downloaded pterodactyl panel files & installed composer dependencies!"
}
function configure {
[ "$ASSUME_SSL" == true ] && app_url=https://$FQDN || app_url=http://$FQDN
# Fill in environment:setup automatically
php artisan p:environment:setup \
--author="$email" \
--url="$app_url" \
--timezone="$timezone" \
--cache="redis" \
--session="redis" \
--queue="redis" \
--redis-host="localhost" \
--redis-pass="null" \
--redis-port="6379" \
--settings-ui="yes"
# Fill in environment:database credentials automatically
php artisan p:environment:database \
--host="127.0.0.1" \
--port="3306" \
--database="$MYSQL_DB" \
--username="$MYSQL_USER" \
--password="$MYSQL_PASSWORD"
# Email credentials manually set by user
if [[ "$mailneeded" =~ [Yy] ]]; then
php artisan p:environment:mail
fi
# configures database
php artisan migrate --seed --force
# Create user account
php artisan p:user:make \
--email="$user_email" \
--username="$user_username" \
--name-first="$user_firstname" \
--name-last="$user_lastname" \
--password="$user_password" \
--admin=1
# set folder permissions now
set_folder_permissions
}
# set the correct folder permissions depending on OS and webserver
function set_folder_permissions {
# if os is ubuntu or debian, we do this
if [ "$OS" == "debian" ] || [ "$OS" == "ubuntu" ]; then
chown -R www-data:www-data ./*
elif [ "$OS" == "centos" ] && [ "$WEBSERVER" == "nginx" ]; then
chown -R nginx:nginx ./*
else
print_error "Invalid webserver and OS setup."
exit 1
fi
}
# insert cronjob
function insert_cronjob {
echo "* Installing cronjob.. "
crontab -l | { cat; echo "* * * * * php /var/www/pterodactyl/artisan schedule:run >> /dev/null 2>&1"; } | crontab -
echo "* Cronjob installed!"
}
function install_pteroq {
echo "* Installing pteroq service.."
curl -o /etc/systemd/system/pteroq.service $CONFIGS_URL/pteroq.service
systemctl enable pteroq.service
systemctl start pteroq
echo "* Installed pteroq!"
}
function create_database {
if [ "$OS" == "centos" ]; then
# secure MariaDB
echo "* MariaDB secure installation. The following are safe defaults."
echo "* Set root password? [Y/n] Y"
echo "* Remove anonymous users? [Y/n] Y"
echo "* Disallow root login remotely? [Y/n] Y"
echo "* Remove test database and access to it? [Y/n] Y"
echo "* Reload privilege tables now? [Y/n] Y"
echo "*"
mysql_secure_installation
echo "* The script should have asked you to set the MySQL root password earlier (not to be confused with the pterodactyl database user password)"
echo "* MySQL will now ask you to enter the password before each command."
echo "* Create MySQL user."
mysql -u root -p -e "CREATE USER '${MYSQL_USER}'@'127.0.0.1' IDENTIFIED BY '${MYSQL_PASSWORD}';"
echo "* Create database."
mysql -u root -p -e "CREATE DATABASE ${MYSQL_DB};"
echo "* Grant privileges."
mysql -u root -p -e "GRANT ALL PRIVILEGES ON ${MYSQL_DB}.* TO '${MYSQL_USER}'@'127.0.0.1' WITH GRANT OPTION;"
echo "* Flush privileges."
mysql -u root -p -e "FLUSH PRIVILEGES;"
else
echo "* Performing MySQL queries.."
echo "* Creating MySQL user.."
mysql -u root -e "CREATE USER '${MYSQL_USER}'@'127.0.0.1' IDENTIFIED BY '${MYSQL_PASSWORD}';"
echo "* Creating database.."
mysql -u root -e "CREATE DATABASE ${MYSQL_DB};"
echo "* Granting privileges.."
mysql -u root -e "GRANT ALL PRIVILEGES ON ${MYSQL_DB}.* TO '${MYSQL_USER}'@'127.0.0.1' WITH GRANT OPTION;"
echo "* Flushing privileges.."
mysql -u root -e "FLUSH PRIVILEGES;"
echo "* MySQL database created & configured!"
fi
}
##################################
# OS specific install functions ##
##################################
function apt_update {
apt update -y && apt upgrade -y
}
function ubuntu20_dep {
echo "* Installing dependencies for Ubuntu 20.."
# Add "add-apt-repository" command
apt -y install software-properties-common curl apt-transport-https ca-certificates gnupg
# Update repositories list
apt update
# Install Dependencies
apt -y install php7.4 php7.4-{cli,gd,mysql,pdo,mbstring,tokenizer,bcmath,xml,fpm,curl,zip} mariadb-server nginx tar unzip git redis-server redis cron
# enable services
systemctl start mariadb
systemctl enable mariadb
systemctl start redis-server
systemctl enable redis-server
echo "* Dependencies for Ubuntu installed!"
}
function ubuntu18_dep {
echo "* Installing dependencies for Ubuntu 18.."
# Add "add-apt-repository" command
apt -y install software-properties-common curl apt-transport-https ca-certificates gnupg
# Add PPA for PHP (we need 7.3+ and bionic only has 7.2)
LC_ALL=C.UTF-8 add-apt-repository -y ppa:ondrej/php
# Add the MariaDB repo (bionic has mariadb version 10.1 and we need newer than that)
curl -sS https://downloads.mariadb.com/MariaDB/mariadb_repo_setup | sudo bash
# Update repositories list
apt update
# Install Dependencies
apt -y install php7.4 php7.4-{cli,gd,mysql,pdo,mbstring,tokenizer,bcmath,xml,fpm,curl,zip} mariadb-server nginx tar unzip git redis-server redis cron
# enable services
systemctl start mariadb
systemctl enable mariadb
systemctl start redis-server
systemctl enable redis-server
echo "* Dependencies for Ubuntu installed!"
}
function debian_stretch_dep {
echo "* Installing dependencies for Debian 8/9.."
# MariaDB need dirmngr
apt -y install dirmngr
# install PHP 7.4 using sury's repo instead of PPA
# this guide shows how: https://vilhelmprytz.se/2018/08/22/install-php72-on-Debian-8-and-9.html
apt install ca-certificates apt-transport-https lsb-release -y
wget -O /etc/apt/trusted.gpg.d/php.gpg https://packages.sury.org/php/apt.gpg
echo "deb https://packages.sury.org/php/ $(lsb_release -sc) main" | tee /etc/apt/sources.list.d/php.list
# Add the MariaDB repo (oldstable has mariadb version 10.1 and we need newer than that)
curl -sS https://downloads.mariadb.com/MariaDB/mariadb_repo_setup | bash
# Update repositories list
apt update
# Install Dependencies
apt -y install php7.4 php7.4-{cli,gd,mysql,pdo,mbstring,tokenizer,bcmath,xml,fpm,curl,zip} mariadb-server nginx curl tar unzip git redis-server cron
# enable services
systemctl start mariadb
systemctl enable mariadb
systemctl start redis-server
systemctl enable redis-server
echo "* Dependencies for Debian 8/9 installed!"
}
function debian_dep {
echo "* Installing dependencies for Debian 10.."
# MariaDB need dirmngr
apt -y install dirmngr
# install PHP 7.4 using sury's repo instead of default 7.2 package (in buster repo)
# this guide shows how: https://vilhelmprytz.se/2018/08/22/install-php72-on-Debian-8-and-9.html
apt install ca-certificates apt-transport-https lsb-release -y
wget -O /etc/apt/trusted.gpg.d/php.gpg https://packages.sury.org/php/apt.gpg
echo "deb https://packages.sury.org/php/ $(lsb_release -sc) main" | tee /etc/apt/sources.list.d/php.list
# Update repositories list
apt update
# install dependencies
apt -y install php7.4 php7.4-{cli,gd,mysql,pdo,mbstring,tokenizer,bcmath,xml,fpm,curl,zip} mariadb-server nginx curl tar unzip git redis-server cron
# enable services
systemctl start mariadb
systemctl enable mariadb
systemctl start redis-server
systemctl enable redis-server
echo "* Dependencies for Debian 10 installed!"
}
function centos7_dep {
echo "* Installing dependencies for CentOS 7.."
# update first
yum update -y
# SELinux tools
yum install -y policycoreutils policycoreutils-python selinux-policy selinux-policy-targeted libselinux-utils setroubleshoot-server setools setools-console mcstrans
# add remi repo (php7.4)
yum install -y epel-release http://rpms.remirepo.net/enterprise/remi-release-7.rpm
yum install -y yum-utils
yum-config-manager -y --disable remi-php54
yum-config-manager -y --enable remi-php74
yum update -y
# Install MariaDB
curl -sS https://downloads.mariadb.com/MariaDB/mariadb_repo_setup | sudo bash
# install dependencies
yum -y install php php-common php-tokenizer php-curl php-fpm php-cli php-json php-mysqlnd php-mcrypt php-gd php-mbstring php-pdo php-zip php-bcmath php-dom php-opcache mariadb-server nginx curl tar zip unzip git redis
# enable services
systemctl enable mariadb
systemctl enable redis
systemctl start mariadb
systemctl start redis
# SELinux (allow nginx and redis)
setsebool -P httpd_can_network_connect 1 || true # these commands can fail OK
setsebool -P httpd_execmem 1 || true
setsebool -P httpd_unified 1 || true
echo "* Dependencies for CentOS installed!"
}
function centos8_dep {
echo "* Installing dependencies for CentOS 8.."
# update first
dnf update -y
# SELinux tools
dnf install -y policycoreutils selinux-policy selinux-policy-targeted setroubleshoot-server setools setools-console mcstrans
# add remi repo (php7.4)
dnf install -y epel-release http://rpms.remirepo.net/enterprise/remi-release-8.rpm
dnf module enable -y php:remi-7.4
dnf update -y
dnf install -y php php-common php-fpm php-cli php-json php-mysqlnd php-gd php-mbstring php-pdo php-zip php-bcmath php-dom php-opcache
# MariaDB (use from official repo)
dnf install -y mariadb mariadb-server
# Other dependencies
dnf install -y nginx curl tar zip unzip git redis
# enable services
systemctl enable mariadb
systemctl enable redis
systemctl start mariadb
systemctl start redis
# SELinux (allow nginx and redis)
setsebool -P httpd_can_network_connect 1 || true # these commands can fail OK
setsebool -P httpd_execmem 1 || true
setsebool -P httpd_unified 1 || true
echo "* Dependencies for CentOS installed!"
}
#################################
## OTHER OS SPECIFIC FUNCTIONS ##
#################################
function ubuntu_universedep {
# Probably should change this, this is more of a bandaid fix for this
# This function is ran before software-properties-common is installed
apt update -y
apt install software-properties-common -y
if grep -q universe "$SOURCES_PATH"; then
# even if it detects it as already existent, we'll still run the apt command to make sure
add-apt-repository universe
echo "* Ubuntu universe repo already exists."
else
add-apt-repository universe
fi
}
function centos_php {
curl -o /etc/php-fpm.d/www-pterodactyl.conf $CONFIGS_URL/www-pterodactyl.conf
systemctl enable php-fpm
systemctl start php-fpm
}
function firewall_ufw {
apt update
apt install ufw -y
echo -e "\n* Enabling Uncomplicated Firewall (UFW)"
echo "* Opening port 22 (SSH), 80 (HTTP) and 443 (HTTPS)"
# pointing to /dev/null silences the command output
ufw allow ssh > /dev/null
ufw allow http > /dev/null
ufw allow https > /dev/null
ufw enable
ufw status numbered | sed '/v6/d'
}
function firewall_firewalld {
echo -e "\n* Enabling firewall_cmd (firewalld)"
echo "* Opening port 22 (SSH), 80 (HTTP) and 443 (HTTPS)"
if [ "$OS_VER_MAJOR" == "7" ]; then
# pointing to /dev/null silences the command output
echo "* Installing firewall"
yum -y -q update > /dev/null
yum -y -q install firewalld > /dev/null
systemctl --now enable firewalld > /dev/null # Start and enable
firewall-cmd --add-service=http --permanent -q # Port 80
firewall-cmd --add-service=https --permanent -q # Port 443
firewall-cmd --add-service=ssh --permanent -q # Port 22
firewall-cmd --reload -q # Enable firewall
elif [ "$OS_VER_MAJOR" == "8" ]; then
# pointing to /dev/null silences the command output
echo "* Installing firewall"
dnf -y -q update > /dev/null
dnf -y -q install firewalld > /dev/null
systemctl --now enable firewalld > /dev/null # Start and enable
firewall-cmd --add-service=http --permanent -q # Port 80
firewall-cmd --add-service=https --permanent -q # Port 443
firewall-cmd --add-service=ssh --permanent -q # Port 22
firewall-cmd --reload -q # Enable firewall
else
print_error "Unsupported OS"
exit 1
fi
echo "* Firewall-cmd installed"
print_brake 70
}
function letsencrypt {
FAILED=false
# Install certbot
if [ "$OS" == "debian" ] || [ "$OS" == "ubuntu" ]; then
apt update
elif [ "$OS" == "centos" ]; then
[ "$OS_VER_MAJOR" == "7" ] && yum install certbot
[ "$OS_VER_MAJOR" == "8" ] && dnf install certbot
else
# exit
print_error "OS not supported."
exit 1
fi
# Stop nginx
systemctl stop nginx
# Obtain certificate
certbot certonly --no-eff-email --email "$email" --standalone -d "$FQDN" || FAILED=true
# Check if it succeded
if [ ! -d "/etc/letsencrypt/live/$FQDN/" ] || [ "$FAILED" == true ]; then
print_warning "The process of obtaining a Let's Encrypt certificate failed!"
echo -n "* Still assume SSL? (y/N): "
read -r CONFIGURE_SSL
if [[ "$CONFIGURE_SSL" =~ [Yy] ]]; then
ASSUME_SSL=true
CONFIGURE_LETSENCRYPT=false
else
ASSUME_SSL=false
CONFIGURE_LETSENCRYPT=false
fi
else
systemctl restart nginx
fi
}
#######################################
## WEBSERVER CONFIGURATION FUNCTIONS ##
#######################################
function configure_nginx {
echo "* Configuring nginx .."
if [ "$ASSUME_SSL" == true ]; then
DL_FILE="nginx_ssl.conf"
else
DL_FILE="nginx.conf"
fi
if [ "$OS" == "centos" ]; then
# remove default config
rm -rf /etc/nginx/conf.d/default
# download new config
curl -o /etc/nginx/conf.d/pterodactyl.conf $CONFIGS_URL/$DL_FILE
# replace all <domain> places with the correct domain
sed -i -e "s@<domain>@${FQDN}@g" /etc/nginx/conf.d/pterodactyl.conf
# replace all <php_socket> places with correct socket "path"
sed -i -e "s@<php_socket>@${PHP_SOCKET}@g" /etc/nginx/conf.d/pterodactyl.conf
else
# remove default config
rm -rf /etc/nginx/sites-enabled/default
# download new config
curl -o /etc/nginx/sites-available/pterodactyl.conf $CONFIGS_URL/$DL_FILE
# replace all <domain> places with the correct domain
sed -i -e "s@<domain>@${FQDN}@g" /etc/nginx/sites-available/pterodactyl.conf
# replace all <php_socket> places with correct socket "path"
sed -i -e "s@<php_socket>@${PHP_SOCKET}@g" /etc/nginx/sites-available/pterodactyl.conf
# on debian 9, TLS v1.3 is not supported (see #76)
[ "$OS" == "debian" ] && [ "$OS_VER_MAJOR" == "9" ] && sed -i 's/ TLSv1.3//' /etc/nginx/sites-available/pterodactyl.conf
# enable pterodactyl
ln -s /etc/nginx/sites-available/pterodactyl.conf /etc/nginx/sites-enabled/pterodactyl.conf
fi
# restart nginx
if [ "$CONFIGURE_LETSENCRYPT" == true ] || { [ "$CONFIGURE_LETSENCRYPT" == false ] && [ "$ASSUME_SSL" == false ]; }; then
systemctl restart nginx
fi
echo "* nginx configured!"
}
####################
## MAIN FUNCTIONS ##
####################
function perform_install {
echo "* Starting installation.. this might take a while!"
[ "$CONFIGURE_UFW" == true ] && firewall_ufw
[ "$CONFIGURE_FIREWALL_CMD" == true ] && firewall_firewalld
# do different things depending on OS
if [ "$OS" == "ubuntu" ]; then
ubuntu_universedep
apt_update
# different dependencies depending on if it's 20, 18 or 16
if [ "$OS_VER_MAJOR" == "20" ]; then
ubuntu20_dep
elif [ "$OS_VER_MAJOR" == "18" ]; then
ubuntu18_dep
else
print_error "Unsupported version of Ubuntu."
exit 1
fi
install_composer
ptdl_dl
create_database
configure
insert_cronjob
install_pteroq
if [ "$OS_VER_MAJOR" == "18" ] || [ "$OS_VER_MAJOR" == "20" ]; then
if [ "$CONFIGURE_LETSENCRYPT" == true ]; then
letsencrypt
fi
fi
elif [ "$OS" == "debian" ]; then
apt_update
if [ "$OS_VER_MAJOR" == "9" ]; then
debian_stretch_dep
elif [ "$OS_VER_MAJOR" == "10" ]; then
debian_dep
fi
install_composer
ptdl_dl
create_database
configure
insert_cronjob
install_pteroq
if [ "$OS_VER_MAJOR" == "9" ] || [ "$OS_VER_MAJOR" == "10" ]; then
if [ "$CONFIGURE_LETSENCRYPT" == true ]; then
letsencrypt
fi
fi
elif [ "$OS" == "centos" ]; then
if [ "$OS_VER_MAJOR" == "7" ]; then
centos7_dep
elif [ "$OS_VER_MAJOR" == "8" ]; then
centos8_dep
fi
centos_php
install_composer
ptdl_dl
create_database
configure
insert_cronjob
install_pteroq
if [ "$OS_VER_MAJOR" == "7" ] || [ "$OS_VER_MAJOR" == "8" ]; then
if [ "$CONFIGURE_LETSENCRYPT" == true ]; then
letsencrypt
fi
fi
else
# exit
print_error "OS not supported."
exit 1
fi
# perform webserver configuration
if [ "$WEBSERVER" == "nginx" ]; then
configure_nginx
else
print_error "Invalid webserver."
exit 1
fi
}
function ask_letsencrypt {
if [ "$CONFIGURE_UFW" == false ] && [ "$CONFIGURE_FIREWALL_CMD" == false ]; then
print_warning "Let's Encrypt requires port 80/443 to be opened! You have opted out of the automatic firewall configuration; use this at your own risk (if port 80/443 is closed, the script will fail)!"
fi
print_warning "You cannot use Let's Encrypt with your hostname as an IP address! It must be a FQDN (e.g. panel.example.org)."
echo -e -n "* Do you want to automatically configure HTTPS using Let's Encrypt? (y/N): "
read -r CONFIRM_SSL
if [[ "$CONFIRM_SSL" =~ [Yy] ]]; then
CONFIGURE_LETSENCRYPT=true
ASSUME_SSL=true
fi
}
function main {
# check if we can detect an already existing installation
if [ -d "/var/www/pterodactyl" ]; then
print_warning "The script has detected that you already have Pterodactyl panel on your system! You cannot run the script multiple times, it will fail!"
echo -e -n "* Are you sure you want to proceed? (y/N): "
read -r CONFIRM_PROCEED
if [[ ! "$CONFIRM_PROCEED" =~ [Yy] ]]; then
print_error "Installation aborted!"
exit 1
fi
fi
# detect distro
detect_distro
print_brake 70
echo "* Pterodactyl panel installation script"
echo "*"
echo "* Copyright (C) 2018 - 2020, Vilhelm Prytz, <vilhelm@prytznet.se>, et al."
echo "* https://github.com/vilhelmprytz/pterodactyl-installer"
echo "*"
echo "* This script is not associated with the official Pterodactyl Project."
echo "*"
echo "* Running $OS version $OS_VER."
print_brake 70
# checks if the system is compatible with this installation script
check_os_comp
# set database credentials
print_brake 72
echo "* Database configuration."
echo ""
echo "* This will be the credentials used for communication between the MySQL"
echo "* database and the panel. You do not need to create the database"
echo "* before running this script, the script will do that for you."
echo ""
echo -n "* Database name (panel): "
read -r MYSQL_DB_INPUT
[ -z "$MYSQL_DB_INPUT" ] && MYSQL_DB="panel" || MYSQL_DB=$MYSQL_DB_INPUT
echo -n "* Username (pterodactyl): "
read -r MYSQL_USER_INPUT
[ -z "$MYSQL_USER_INPUT" ] && MYSQL_USER="pterodactyl" || MYSQL_USER=$MYSQL_USER_INPUT
# MySQL password input
password_input MYSQL_PASSWORD "Password (use something strong): " "MySQL password cannot be empty"
valid_timezones="$(timedatectl list-timezones)"
echo "* List of valid timezones here $(hyperlink "https://www.php.net/manual/en/timezones.php")"
while [ -z "$timezone" ] || [[ ${valid_timezones} != *"$timezone_input"* ]]; do
echo -n "* Select timezone [Europe/Stockholm]: "
read -r timezone_input
[ -z "$timezone_input" ] && timezone="Europe/Stockholm" || timezone=$timezone_input # because köttbullar!
done
required_input email "Provide the email address that will be used to configure Let's Encrypt and Pterodactyl: " "Email cannot be empty"
echo -n "* Would you like to set up email credentials so that Pterodactyl can send emails to users (usually not required)? (y/N): "
read -r mailneeded
# Initial admin account
required_input user_email "Email address for the initial admin account: " "Email cannot be empty"
required_input user_username "Username for the initial admin account: " "Username cannot be empty"
required_input user_firstname "First name for the initial admin account: " "Name cannot be empty"
required_input user_lastname "Last name for the initial admin account: " "Name cannot be empty"
password_input user_password "Password for the initial admin account: " "Password cannot be empty"
print_brake 72
# set FQDN
while [ -z "$FQDN" ]; do
echo -n "* Set the FQDN of this panel (panel.example.com): "
read -r FQDN
[ -z "$FQDN" ] && print_error "FQDN cannot be empty"
done
# UFW is available for Ubuntu/Debian
# Let's Encrypt is available for Ubuntu/Debian
if [ "$OS" == "debian" ] || [ "$OS" == "ubuntu" ]; then
echo -e -n "* Do you want to automatically configure UFW (firewall)? (y/N): "
read -r CONFIRM_UFW
if [[ "$CONFIRM_UFW" =~ [Yy] ]]; then
CONFIGURE_UFW=true
CONFIGURE_FIREWALL=true
fi
# Available for Debian 9/10
if [ "$OS" == "debian" ]; then
if [ "$OS_VER_MAJOR" == "9" ] || [ "$OS_VER_MAJOR" == "10" ]; then
ask_letsencrypt
fi
fi
# Available for Ubuntu 18/20
if [ "$OS" == "ubuntu" ]; then
if [ "$OS_VER_MAJOR" == "18" ] || [ "$OS_VER_MAJOR" == "20" ]; then
ask_letsencrypt
fi
fi
fi
# Firewall-cmd is available for CentOS
# Let's Encrypt is available for CentOS
if [ "$OS" == "centos" ]; then
echo -e -n "* Do you want to automatically configure firewall-cmd (firewall)? (y/N): "
read -r CONFIRM_FIREWALL_CMD
if [[ "$CONFIRM_FIREWALL_CMD" =~ [Yy] ]]; then
CONFIGURE_FIREWALL_CMD=true
CONFIGURE_FIREWALL=true
fi
ask_letsencrypt
fi
# If it's already true, this should be a no-brainer
if [ "$CONFIGURE_LETSENCRYPT" == false ]; then
echo "* Let's Encrypt is not going to be automatically configured by this script (either unsupported yet or user opted out)."
echo "* You can 'assume' Let's Encrypt, which means the script will download a nginx configuration that is configured to use a Let's Encrypt certificate but the script won't obtain the certificate for you."
echo "* If you assume SSL and do not obtain the certificate, your installation will not work."
echo -n "* Assume SSL or not? (y/N): "
read -r ASSUME_SSL_INPUT
if [[ "$ASSUME_SSL_INPUT" =~ [Yy] ]]; then
ASSUME_SSL=true
fi
fi
# summary
summary
# confirm installation
echo -e -n "\n* Initial configuration completed. Continue with installation? (y/N): "
read -r CONFIRM
if [[ "$CONFIRM" =~ [Yy] ]]; then
perform_install
else
# run welcome script again
print_error "Installation aborted."
exit 1
fi
}
function summary {
print_brake 62
echo "* Pterodactyl panel $PTERODACTYL_VERSION with $WEBSERVER on $OS"
echo "* Database name: $MYSQL_DB"
echo "* Database user: $MYSQL_USER"
echo "* Database password: (censored)"
echo "* Timezone: $timezone"
echo "* Email: $email"
echo "* User email: $user_email"
echo "* Username: $user_username"
echo "* First name: $user_firstname"
echo "* Last name: $user_lastname"
echo "* User password: (censored)"
echo "* Hostname/FQDN: $FQDN"
echo "* Configure Firewall? $CONFIGURE_FIREWALL"
echo "* Configure Let's Encrypt? $CONFIGURE_LETSENCRYPT"
echo "* Assume SSL? $ASSUME_SSL"
print_brake 62
}
function goodbye {
print_brake 62
echo "* Panel installation completed"
echo "*"
[ "$CONFIGURE_LETSENCRYPT" == true ] && echo "* Your panel should be accessible from $(hyperlink "$app_url")"
[ "$ASSUME_SSL" == true ] && [ "$CONFIGURE_LETSENCRYPT" == false ] && echo "* You have opted in to use SSL, but not via Let's Encrypt automatically. Your panel will not work until SSL has been configured."
[ "$ASSUME_SSL" == false ] && [ "$CONFIGURE_LETSENCRYPT" == false ] && echo "* Your panel should be accessible from $(hyperlink "$app_url")"
echo "*"
echo "* Unofficial add-ons and tips"
echo "* - Third-party themes, $(hyperlink 'https://github.com/TheFonix/Pterodactyl-Themes')"
echo "*"
echo "* Installation is using $WEBSERVER on $OS"
echo "* Thank you for using this script."
echo -e "* ${COLOR_RED}Note${COLOR_NC}: If you haven't configured the firewall: 80/443 (HTTP/HTTPS) is required to be open!"
print_brake 62
}
# run script
main
goodbye
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment