9 年之前 · 0e90f827e3
--- a/sitegen.py
+++ b/sitegen.py
@@ -0,0 +1,159 @@
 
				
				+#! /usr/bin/env python3
			
 
				
				+
			
 
				
				+import json
			
 
				
				+import argparse
			
 
				
				+import os
			
 
				
				+
			
 
				
				+from os import path
			
 
				
				+
			
 
				
				+
			
 
				
				+class SiteGenException(Exception):
			
 
				
				+    error = None
			
 
				
				+    code = None
			
 
				
				+
			
 
				
				+    def __init__(self, error, code):
			
 
				
				+        self.error = error
			
 
				
				+        self.code = code
			
 
				
				+
			
 
				
				+
			
 
				
				+class SiteGen:
			
 
				
				+    siteConfDir = ""
			
 
				
				+    siteDir = ""
			
 
				
				+    confDir = ""
			
 
				
				+    hooksEnabledDir = ""
			
 
				
				+    hooksAvailableDir = ""
			
 
				
				+    templatesDir = ""
			
 
				
				+    certRenewTime = ""
			
 
				
				+    letsencryptCommand = ""
			
 
				
				+    certDir = ""
			
 
				
				+
			
 
				
				+    def __init__(self, config):
			
 
				
				+        self.siteConfDir = config["siteConfDir"]
			
 
				
				+        self.siteDir = config["siteDir"]
			
 
				
				+        self.confDir = config["confDir"]
			
 
				
				+        self.hooksEnabledDir = path.join(self.confDir, "hooks-enabled")
			
 
				
				+        self.hooksAvailableDir = path.join(self.confDir, "hooks-available")
			
 
				
				+        self.templatesDir = path.join(self.confDir, "templates")
			
 
				
				+        self.certRenewTime = config["certRenewTime"]
			
 
				
				+        self.letsencryptCommand = config["letsencryptCommand"]
			
 
				
				+        self.certDir = config["certDir"]
			
 
				
				+
			
 
				
				+    def get_hook_dir(self, hook_type, is_enabled):
			
 
				
				+        return path.join(self.hooksEnabledDir if is_enabled else self.hooksAvailableDir, hook_type)
			
 
				
				+
			
 
				
				+    def get_hook_file(self, hook_type, hook_name, is_enabled):
			
 
				
				+        return path.join(self.get_hook_dir(hook_type, is_enabled), hook_name)
			
 
				
				+
			
 
				
				+    def get_hook_files(self, hook_type, is_enabled):
			
 
				
				+        hook_dir = self.get_hook_dir(hook_type, is_enabled)
			
 
				
				+        files = os.listdir(hook_dir)
			
 
				
				+        files.sort()
			
 
				
				+        return files
			
 
				
				+
			
 
				
				+    def is_hook_present(self, hook_type, hook_name, is_enabled):
			
 
				
				+        return path.isfile(self.get_hook_file(hook_type, hook_name, is_enabled))
			
 
				
				+
			
 
				
				+    def is_hook_enabled(self, hook_type, hook_name):
			
 
				
				+        return self.is_hook_present(hook_type, hook_name, True)
			
 
				
				+
			
 
				
				+    def cert_request(self, domain):
			
 
				
				+        pass
			
 
				
				+
			
 
				
				+    def cert_check(self, domain):
			
 
				
				+        pass
			
 
				
				+
			
 
				
				+    def cert_renew(self, domain):
			
 
				
				+        pass
			
 
				
				+
			
 
				
				+    def site_create(self, domain):
			
 
				
				+        pass
			
 
				
				+
			
 
				
				+    def site_remove(self, domain):
			
 
				
				+        pass
			
 
				
				+
			
 
				
				+    def hook_enable(self, hook_type, hook_name):
			
 
				
				+        if not self.is_hook_present(hook_type, hook_name, False):
			
 
				
				+            raise SiteGenException("Hook is not present", 1)
			
 
				
				+        if self.is_hook_enabled(hook_type, hook_name):
			
 
				
				+            raise SiteGenException("Hook is already enabled", 0)
			
 
				
				+        hook_dir = self.get_hook_dir(hook_type, hook_name)
			
 
				
				+        if not path.isdir(hook_dir):
			
 
				
				+            os.makedirs(hook_dir)
			
 
				
				+        hook_file_available = self.get_hook_file(hook_type, hook_name, False)
			
 
				
				+        hook_file_enabled = self.get_hook_file(hook_type, hook_name, True)
			
 
				
				+        hook_relative_file = path.relpath(hook_file_available, self.get_hook_dir(hook_type, True))
			
 
				
				+
			
 
				
				+        os.symlink(hook_relative_file, hook_file_enabled)
			
 
				
				+
			
 
				
				+    def hook_disable(self, hook_type, hook_name):
			
 
				
				+        if not self.is_hook_present(hook_type, hook_name, False):
			
 
				
				+            raise SiteGenException("Hook is not present", 1)
			
 
				
				+        if not self.is_hook_enabled(hook_type, hook_name):
			
 
				
				+            raise SiteGenException("Hook is not enabled", 0)
			
 
				
				+        os.remove(self.get_hook_file(hook_type, hook_name, True))
			
 
				
				+
			
 
				
				+
			
 
				
				+def main():
			
 
				
				+    parser = argparse.ArgumentParser(description='Manage apache websites and SSL certificates')
			
 
				
				+    parser.add_argument('--config', dest='config', default='/etc/sitegen/sitegen.json', help='Configuration file path')
			
 
				
				+
			
 
				
				+    parser.add_argument('--cert-request', metavar='cert_request', const='', nargs='?',
			
 
				
				+                        help='Request/renew a certificate. Request/renew all certificates if no domain is specified')
			
 
				
				+    parser.add_argument('--cert-check', metavar='cert_check', const='', nargs='?',
			
 
				
				+                        help='Check if certificate needs to be renewed. Check all if no domain is specified')
			
 
				
				+    parser.add_argument('--cert-renew', metavar='cert_renew', const='', nargs='?',
			
 
				
				+                        help='Renew certificate if it needs to be. Renew all that needs to be if no domain is specified')
			
 
				
				+
			
 
				
				+    parser.add_argument('--site-create', help='Create a site configuration', metavar='site_create')
			
 
				
				+    parser.add_argument('--site-remove', help='Remove a site configuration', metavar='site_remove')
			
 
				
				+
			
 
				
				+    parser.add_argument('--hook-site-enable', help='Enable a site hook', dest='site_hook_enable', metavar='hook')
			
 
				
				+    parser.add_argument('--hook-site-disable', help='Disable a site hook', dest='site_hook_disable', metavar='hook')
			
 
				
				+
			
 
				
				+    parser.add_argument('--hook-cert-enable', help='Enable a certificate hook', dest='hook_cert_enable', metavar='hook')
			
 
				
				+    parser.add_argument('--hook-cert-disable', help='Disable a certificate hook', dest='hook_cert_disable', metavar='hook')
			
 
				
				+
			
 
				
				+    args = parser.parse_args()
			
 
				
				+
			
 
				
				+    with open(args.config, "r") as f:
			
 
				
				+        config = json.load(f)
			
 
				
				+
			
 
				
				+    site_gen = SiteGen(config)
			
 
				
				+    print(site_gen.get_hook_files("site", True))
			
 
				
				+
			
 
				
				+    try:
			
 
				
				+        if args.cert_request is not None:
			
 
				
				+            site_gen.cert_request(args.cert_request)
			
 
				
				+
			
 
				
				+        elif args.cert_check is not None:
			
 
				
				+            site_gen.cert_check(args.cert_check)
			
 
				
				+
			
 
				
				+        elif args.cert_renew is not None:
			
 
				
				+            site_gen.cert_renew(args.cert_renew)
			
 
				
				+
			
 
				
				+        elif args.site_create is not None:
			
 
				
				+            site_gen.site_create(args.site_create)
			
 
				
				+
			
 
				
				+        elif args.site_remove is not None:
			
 
				
				+            site_gen.site_remove(args.site_remove)
			
 
				
				+
			
 
				
				+        elif args.site_hook_enable is not None:
			
 
				
				+            site_gen.hook_enable("site", args.site_hook_enable)
			
 
				
				+
			
 
				
				+        elif args.site_hook_disable is not None:
			
 
				
				+            site_gen.hook_disable("site", args.site_hook_disable)
			
 
				
				+
			
 
				
				+        elif args.hook_cert_enable is not None:
			
 
				
				+            site_gen.hook_enable("cert", args.hook_cert_enable)
			
 
				
				+
			
 
				
				+        elif args.hook_cert_disable is not None:
			
 
				
				+            site_gen.hook_disable("cert", args.hook_cert_disable)
			
 
				
				+
			
 
				
				+        else:
			
 
				
				+            parser.print_help()
			
 
				
				+    except SiteGenException as e:
			
 
				
				+        print(e.error)
			
 
				
				+        exit(e.code)
			
 
				
				+
			
 
				
				+if __name__ == "__main__":
			
 
				
				+    main()
			
--- a/sitegen/hooks-available/cert/000-print
+++ b/sitegen/hooks-available/cert/000-print
@@ -1,3 +1,10 @@
 
				
				+host="${1}"
			
 
				
				+cert_file="${2}"
			
 
				
				+key_file="${3}"
			
 
				
				+conf_include="${4}"
			
 
				
				+site_conf="${5}"
			
 
				
				+site_include="${6}"
			
 
				
				+
			
 
				
				 echo "Host: ${host}"
			
 
				
				 echo "Root Document: ${root_dir}"
			
 
				
				 echo "Http Configuration Source: ${conf_conf}"
			
--- a/sitegen/hooks-available/site/000-print
+++ b/sitegen/hooks-available/site/000-print
@@ -0,0 +1,13 @@
 
				
				+host="${1}"
			
 
				
				+root_dir="${2}"
			
 
				
				+conf_conf="${3}"
			
 
				
				+conf_include="${4}"
			
 
				
				+site_conf="${5}"
			
 
				
				+site_include="${6}"
			
 
				
				+
			
 
				
				+echo "Host: ${host}"
			
 
				
				+echo "Root Document: ${root_dir}"
			
 
				
				+echo "Http Configuration Source: ${conf_conf}"
			
 
				
				+echo "Site Configuration Source: ${conf_include}"
			
 
				
				+echo "Http Configuration Destination: ${site_conf}"
			
 
				
				+echo "Site Configuration Destination: ${site_include}"
			
--- a/sitegen/hooks-available/site/050-letsencrypt
+++ b/sitegen/hooks-available/site/050-letsencrypt
@@ -1,8 +1,15 @@
 
				
				+host="${1}"
			
 
				
				+root_dir="${2}"
			
 
				
				+conf_conf="${3}"
			
 
				
				+conf_include="${4}"
			
 
				
				+site_conf="${5}"
			
 
				
				+site_include="${6}"
			
 
				
				+
			
 
				
				 count=$(grep -ci SSLCertificateFile ${site_conf})
			
 
				
				 if [ "${count}" -ge 1 ]
			
 
				
				 then
			
 
				
				   echo "SSL found; generating certificate..."
			
 
				
				-  generate-ssl-cert "${host}"
			
 
				
				+  sitegen --cert-request "${host}"
			
 
				
				 else
			
 
				
				   echo "No SSL found; doing nothing"
			
 
				
				 fi
			
--- a/sitegen/hooks-available/site/100-chown
+++ b/sitegen/hooks-available/site/100-chown
@@ -0,0 +1,10 @@
 
				
				+host="${1}"
			
 
				
				+root_dir="${2}"
			
 
				
				+conf_conf="${3}"
			
 
				
				+conf_include="${4}"
			
 
				
				+site_conf="${5}"
			
 
				
				+site_include="${6}"
			
 
				
				+
			
 
				
				+user=$(logname)
			
 
				
				+echo "chown to ${user}"
			
 
				
				+chown ${user}:${user} ${root_dir}
			
--- a/sitegen/hooks-available/site/200-a2ensite
+++ b/sitegen/hooks-available/site/200-a2ensite
@@ -0,0 +1,8 @@
 
				
				+host="${1}"
			
 
				
				+root_dir="${2}"
			
 
				
				+conf_conf="${3}"
			
 
				
				+conf_include="${4}"
			
 
				
				+site_conf="${5}"
			
 
				
				+site_include="${6}"
			
 
				
				+
			
 
				
				+a2ensite "${host}.conf"
			
--- a/sitegen/hooks-available/site/300-reload
+++ b/sitegen/hooks-available/site/300-reload
@@ -0,0 +1,8 @@
 
				
				+host="${1}"
			
 
				
				+root_dir="${2}"
			
 
				
				+conf_conf="${3}"
			
 
				
				+conf_include="${4}"
			
 
				
				+site_conf="${5}"
			
 
				
				+site_include="${6}"
			
 
				
				+
			
 
				
				+service apache2 reload
			
--- a/sitegen/hooks.available/100-chown
+++ b/sitegen/hooks.available/100-chown
@@ -1,3 +0,0 @@
 
				
				-user=$(logname)
			
 
				
				-echo "chown to ${user}"
			
 
				
				-chown ${user}:${user} ${root_dir}
			
--- a/sitegen/hooks.available/200-a2ensite
+++ b/sitegen/hooks.available/200-a2ensite
@@ -1 +0,0 @@
 
				
				-a2ensite "${host}.conf"
			
--- a/sitegen/hooks.available/300-reload
+++ b/sitegen/hooks.available/300-reload
@@ -1 +0,0 @@
 
				
				-service apache2 reload
			
--- a/sitegen/hooks.d/000-print
+++ b/sitegen/hooks.d/000-print
@@ -1 +0,0 @@
 
				
				-../hooks.available/000-print
			
--- a/sitegen/hooks.d/050-letsencrypt
+++ b/sitegen/hooks.d/050-letsencrypt
@@ -1 +0,0 @@
 
				
				-../hooks.available/050-letsencrypt
			
--- a/sitegen/hooks.d/100-chown
+++ b/sitegen/hooks.d/100-chown
@@ -1 +0,0 @@
 
				
				-../hooks.available/100-chown
			
--- a/sitegen/hooks.d/200-a2ensite
+++ b/sitegen/hooks.d/200-a2ensite
@@ -1 +0,0 @@
 
				
				-../hooks.available/200-a2ensite
			
--- a/sitegen/hooks.d/300-reload
+++ b/sitegen/hooks.d/300-reload
@@ -1 +0,0 @@
 
				
				-../hooks.available/300-reload
			
--- a/sitegen/templates/default.conf
+++ b/sitegen/templates/default.conf
--- a/sitegen/templates/default.include
+++ b/sitegen/templates/default.include
--- a/sitegen/templates/docker.http.conf
+++ b/sitegen/templates/docker.http.conf
--- a/sitegen/templates/docker.http.include
+++ b/sitegen/templates/docker.http.include
--- a/sitegen/templates/docker.https.conf
+++ b/sitegen/templates/docker.https.conf
--- a/sitegen/templates/docker.https.include
+++ b/sitegen/templates/docker.https.include
--- a/sitegen/templates/http.conf
+++ b/sitegen/templates/http.conf
--- a/sitegen/templates/http.include
+++ b/sitegen/templates/http.include
--- a/sitegen/templates/https.conf
+++ b/sitegen/templates/https.conf
--- a/sitegen/templates/https.include
+++ b/sitegen/templates/https.include
--- a/sitegen/templates/laravel.http.conf
+++ b/sitegen/templates/laravel.http.conf
--- a/sitegen/templates/laravel.http.include
+++ b/sitegen/templates/laravel.http.include
--- a/sitegen/templates/laravel.https.conf
+++ b/sitegen/templates/laravel.https.conf
--- a/sitegen/templates/laravel.https.include
+++ b/sitegen/templates/laravel.https.include
--- a/sitegen/templates/reverse.http.conf
+++ b/sitegen/templates/reverse.http.conf
--- a/sitegen/templates/reverse.http.include
+++ b/sitegen/templates/reverse.http.include
--- a/sitegen/templates/reverse.https.conf
+++ b/sitegen/templates/reverse.https.conf
--- a/sitegen/templates/reverse.https.include
+++ b/sitegen/templates/reverse.https.include