0k
/
0k-charms
6
3
Fork 2
Code Issues 11 Pull Requests 5 Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
637 Commits
27 Branches
14 Tags
41 MiB
Tree: 9765db1cab
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9765db1cab'
${ noResults }
0k-charms/docker-host/hooks/install.d/90-ntfy.sh

99 lines
2.7 KiB
Raw Normal View History

new: [docker-host] add ``ntfy`` installation and connection
2 months ago
  1. #!/bin/bash
  3. set -eux
  5. NTFY_BROKER="${NTFY_BROKER:-core-01.0k.io}"
  8. ## Uncipher ntfy key to destination
  10. umask 077
  11. ntfy_key_ciphered="src/etc/ssh/ntfy-key"
  12. if [ ! -f "$ntfy_key_ciphered" ]; then
  13. echo "Error: ciphered ntfy key not found" >&2
  14. exit 1
  15. fi
  17. ntfy_key_dest=/etc/ssh/ntfy-key
  18. if [ ! -f "$ntfy_key_dest" ]; then
  19. cat "$ntfy_key_ciphered" |
  20. gpg -d --batch --yes --passphrase 'uniquepass' > "$ntfy_key_dest" || {
  21. echo "Error while unpacking ntfy key to '${ntfy_key_dest}'" >&2
  22. exit 1
  23. }
  24. fi
  27. ## Request token to ntfy server and add to config file
  29. known_host="/root/.ssh/known_hosts"
  30. if ! ssh-keygen -F "$NTFY_BROKER" -f "$known_host" >/dev/null; then
  31. ssh-keyscan -H "$NTFY_BROKER" >> "$known_host" || {
  32. echo "Error while adding '$NTFY_BROKER' to known_hosts" >&2
  33. exit 1
  34. }
  35. fi
  37. config_file="/etc/ntfy/ntfy.conf"
  38. mkdir -p "${config_file%/*}"
  39. if ! [ -f "$config_file" ]; then
  40. touch "$config_file" || {
  41. echo "Error: couldn’t create config file '$config_file'" >&2;
  42. exit 1
  43. }
  44. fi
  46. LOGIN=""
  47. PASSWORD=""
  48. source "$config_file" || {
  49. echo "Error: couldn't source config file '$config_file'" >&2
  50. exit 1
  51. }
  53. ## Note that we require the forcing of stdin to /dev/null to avoid
  54. ## the rest of the script to be vacuumed by the ssh command.
  55. ## This effect will only happen when launching this script in special
  56. ## conditions involving stdin.
  57. cred=$(ssh -i "$ntfy_key_dest" ntfy@"${NTFY_BROKER}" \
  58. request-token "$LOGIN" "$PASSWORD" </dev/null) || {
  59. echo "Error while requesting token to ntfy server" >&2
  60. exit 1
  61. }
  63. ## XXXvlab: ideally it should be received from the last call
  64. server="https://ntfy.0k.io/"
  65. login=$(printf "%q" "${cred%$'\n'*}")
  66. password=$(printf "%q" "${cred#*$'\n'}")
  68. ## check if password doesn't contain '%'
  70. for var in server login password; do
  71. if [ "${!var}" == "''" ] || [[ "${!var}" == *$'\n'* ]]; then
  72. echo "Error: empty or invalid multi-line values retrieved for '$var'" \
  73. "from ntfy server. Received:" >&2
  74. printf "%s" "$cred" | sed -r 's/^/ | /g' >&2
  75. exit 1
  76. fi
  77. if [[ "${!var}" == *%* ]]; then
  78. ## We need a separator char for sed replacement in the config file
  79. echo "Error: forbidden character '%' found in $var" >&2
  80. exit 1
  81. fi
  82. if grep -qE "^${var^^}=" "$config_file"; then
  83. sed -ri "s%^${var^^}=.*$%${var^^}=\"${!var}\"%g" "$config_file"
  84. else
  85. echo "${var^^}=\"${!var}\"" >> "$config_file"
  86. fi
  87. done
  90. if ! [ -f "/etc/ntfy/topics.yml" ]; then
  91. cat <<'EOF' > /etc/ntfy/topics.yml
  92. .*\.(emerg|alert|crit|err|warning|notice):
  93. - ${LOGIN}_main
  94. EOF
  95. fi
  98. ## provide 'send' command
  100. cp -f "$PWD/src/bin/send" /usr/local/bin/send