[people/ms/ipfire-dit.git] / install.sh

#!/bin/bash
###############################################################################
#                                                                             #
# IPFire.org - A linux based firewall                                         #
# Copyright (C) 2012  IPFire Development Team                                 #
#                                                                             #
# This program is free software: you can redistribute it and/or modify        #
# it under the terms of the GNU General Public License as published by        #
# the Free Software Foundation, either version 3 of the License, or           #
# (at your option) any later version.                                         #
#                                                                             #
# This program is distributed in the hope that it will be useful,             #
# but WITHOUT ANY WARRANTY; without even the implied warranty of              #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the               #
# GNU General Public License for more details.                                #
#                                                                             #
# You should have received a copy of the GNU General Public License           #
# along with this program.  If not, see <http://www.gnu.org/licenses/>.       #
#                                                                             #
###############################################################################

BASEDIR="/usr/share/ipfire-dit"
TEMPLATE="${BASEDIR}/template.ldif"

DOMAIN=${HOSTNAME#*.}
PASSWORD=

function parse_cli() {
	while [ $# -gt 0 ]; do
		case "${1}" in
			-p)
				PASSWORD=${2}
				shift
				;;
			*)
				DOMAIN=${1}
				;;
		esac
		shift
	done

	while [ -z "${PASSWORD}" ]; do
		echo -n "Enter password: "
		read -s PASSWORD
		echo
	done

	# Check for valid input data.

	if [ ${#PASSWORD} -lt 8 ]; then
		echo "Using weak password. Must at least have 8 characters!" >&2
		exit 1
	fi

	if [ -z "${DOMAIN}" ]; then
		echo "Domain is empty." >&2
		exit 1
	fi

	# XXX check domain for invalid characters
}

function substitude_ldif() {
	local output=${1}

	local suffix bit dc
	for bit in ${DOMAIN//./ }; do
		if [ -n "${suffix}" ]; then
			suffix="${suffix},dc=${bit}"
		else
			dc="${bit}"
			suffix="dc=${bit}"
		fi
	done

	sed \
		-e "s/@DC@/${dc}/g" \
		-e "s/@SUFFIX@/${suffix}/g" \
		< ${TEMPLATE} > ${output}
}

function load_database() {
	local new_ldif=$(mktemp)
	trap "rm -f ${new_ldif}" EXIT KILL TERM

	substitude_ldif ${new_ldif}

	slapadd < ${new_ldif}
}

function generate_pwhash() {
	local password="${PASSWORD}"

	slappasswd -h "{SSHA}" -s "${password}"
}

# Hello to this wonderful script.
# Firstly, let's see what we need to do.
parse_cli $@

# Now, we got all the information we need, we
# can load the database.
load_database
Commit	Line	Data
741b05c6 MT	1	#!/bin/bash
	2	###############################################################################
	3	# #
	4	# IPFire.org - A linux based firewall #
	5	# Copyright (C) 2012 IPFire Development Team #
	6	# #
	7	# This program is free software: you can redistribute it and/or modify #
	8	# it under the terms of the GNU General Public License as published by #
	9	# the Free Software Foundation, either version 3 of the License, or #
	10	# (at your option) any later version. #
	11	# #
	12	# This program is distributed in the hope that it will be useful, #
	13	# but WITHOUT ANY WARRANTY; without even the implied warranty of #
	14	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
	15	# GNU General Public License for more details. #
	16	# #
	17	# You should have received a copy of the GNU General Public License #
	18	# along with this program. If not, see <http://www.gnu.org/licenses/>. #
	19	# #
	20	###############################################################################
	21
	22	BASEDIR="/usr/share/ipfire-dit"
	23	TEMPLATE="${BASEDIR}/template.ldif"
	24
	25	DOMAIN=${HOSTNAME#*.}
	26	PASSWORD=
	27
	28	function parse_cli() {
	29	while [ $# -gt 0 ]; do
	30	case "${1}" in
	31	-p)
	32	PASSWORD=${2}
	33	shift
	34	;;
	35	*)
	36	DOMAIN=${1}
	37	;;
	38	esac
	39	shift
	40	done
	41
	42	while [ -z "${PASSWORD}" ]; do
	43	echo -n "Enter password: "
	44	read -s PASSWORD
	45	echo
	46	done
	47
	48	# Check for valid input data.
	49
	50	if [ ${#PASSWORD} -lt 8 ]; then
	51	echo "Using weak password. Must at least have 8 characters!" >&2
	52	exit 1
	53	fi
	54
	55	if [ -z "${DOMAIN}" ]; then
	56	echo "Domain is empty." >&2
	57	exit 1
	58	fi
	59
	60	# XXX check domain for invalid characters
	61	}
	62
	63	function substitude_ldif() {
	64	local output=${1}
65
66	local suffix bit dc
67	for bit in ${DOMAIN//./ }; do
68	if [ -n "${suffix}" ]; then
69	suffix="${suffix},dc=${bit}"
70	else
71	dc="${bit}"
72	suffix="dc=${bit}"
73	fi
74	done
75
76	sed \
77	-e "s/@DC@/${dc}/g" \
78	-e "s/@SUFFIX@/${suffix}/g" \
79	< ${TEMPLATE} > ${output}
80	}
81
82	function load_database() {
83	local new_ldif=$(mktemp)
84	trap "rm -f ${new_ldif}" EXIT KILL TERM
85
86	substitude_ldif ${new_ldif}
87
88	slapadd < ${new_ldif}
89	}
90
91	function generate_pwhash() {
92	local password="${PASSWORD}"
93
94	slappasswd -h "{SSHA}" -s "${password}"
95	}
96
97	# Hello to this wonderful script.
98	# Firstly, let's see what we need to do.
99	parse_cli $@
100
101	# Now, we got all the information we need, we
102	# can load the database.
103	load_database