# User account rebuild rebuild_user_conf() { # Get user variables source $USER_DATA/user.conf # Creating user data files chmod 770 $USER_DATA chmod 660 $USER_DATA/user.conf touch $USER_DATA/backup.conf chmod 660 $USER_DATA/backup.conf touch $USER_DATA/history.log chmod 660 $USER_DATA/history.log touch $USER_DATA/stats.log chmod 660 $USER_DATA/stats.log # Run template trigger if [ -x "$VESTA/data/packages/$PACKAGE.sh" ]; then $VESTA/data/packages/$PACKAGE.sh "$user" "$CONTACT" "$FNAME" "$LNAME" fi # Rebuild user shell=$(grep -w "$SHELL" /etc/shells |head -n1) /usr/sbin/useradd "$user" -s "$shell" -c "$CONTACT" \ -m -d "$HOMEDIR/$user" > /dev/null 2>&1 # Update user shell /usr/bin/chsh -s "$shell" "$user" &>/dev/null # Update password shadow=$(grep ^$user: /etc/shadow) shdw3=$(echo "$shadow" | cut -f3 -d :) shdw4=$(echo "$shadow" | cut -f4 -d :) shdw5=$(echo "$shadow" | cut -f5 -d :) shdw6=$(echo "$shadow" | cut -f6 -d :) shdw7=$(echo "$shadow" | cut -f7 -d :) shdw8=$(echo "$shadow" | cut -f8 -d :) shdw9=$(echo "$shadow" | cut -f9 -d :) shadow_str="$user:$MD5:$shdw3:$shdw4:$shdw5:$shdw6" shadow_str="$shadow_str:$shdw7:$shdw8:$shdw9" chmod u+w /etc/shadow sed -i "/^$user:*/d" /etc/shadow echo "$shadow_str" >> /etc/shadow chmod u-w /etc/shadow # Building directory tree if [ -e "$HOMEDIR/$user/conf" ]; then chattr -i $HOMEDIR/$user/conf fi mkdir -p $HOMEDIR/$user/conf chmod a+x $HOMEDIR/$user chmod a+x $HOMEDIR/$user/conf chown --no-dereference $user:$user $HOMEDIR/$user chown root:root $HOMEDIR/$user/conf # Update disk pipe sed -i "/ $user$/d" $VESTA/data/queue/disk.pipe echo "$BIN/v-update-user-disk $user" >> $VESTA/data/queue/disk.pipe # WEB if [ ! -z "$WEB_SYSTEM" ] && [ "$WEB_SYSTEM" != 'no' ]; then mkdir -p $USER_DATA/ssl chmod 770 $USER_DATA/ssl touch $USER_DATA/web.conf chmod 660 $USER_DATA/web.conf if [ "$(grep -w $user $VESTA/data/queue/traffic.pipe)" ]; then echo "$BIN/v-update-web-domains-traff $user" \ >> $VESTA/data/queue/traffic.pipe fi echo "$BIN/v-update-web-domains-disk $user" \ >> $VESTA/data/queue/disk.pipe if [[ -L "$HOMEDIR/$user/web" ]]; then rm $HOMEDIR/$user/web fi mkdir -p $HOMEDIR/$user/conf/web mkdir -p $HOMEDIR/$user/web mkdir -p $HOMEDIR/$user/tmp chmod 751 $HOMEDIR/$user/conf/web chmod 751 $HOMEDIR/$user/web chmod 771 $HOMEDIR/$user/tmp chown --no-dereference $user:$user $HOMEDIR/$user/web if [ -z "$create_user" ]; then $BIN/v-rebuild-web-domains $user $restart fi fi # DNS if [ ! -z "$DNS_SYSTEM" ] && [ "$DNS_SYSTEM" != 'no' ]; then mkdir -p $USER_DATA/dns chmod 770 $USER_DATA/dns touch $USER_DATA/dns.conf chmod 660 $USER_DATA/dns.conf mkdir -p $HOMEDIR/$user/conf/dns chmod 751 $HOMEDIR/$user/conf/dns if [ -z "$create_user" ]; then $BIN/v-rebuild-dns-domains $user $restart fi fi if [ ! -z "$MAIL_SYSTEM" ] && [ "$MAIL_SYSTEM" != 'no' ]; then mkdir -p $USER_DATA/mail chmod 770 $USER_DATA/mail touch $USER_DATA/mail.conf chmod 660 $USER_DATA/mail.conf echo "$BIN/v-update-mail-domains-disk $user" \ >> $VESTA/data/queue/disk.pipe if [[ -L "$HOMEDIR/$user/mail" ]]; then rm $HOMEDIR/$user/mail fi mkdir -p $HOMEDIR/$user/conf/mail mkdir -p $HOMEDIR/$user/mail chmod 751 $HOMEDIR/$user/mail chmod 751 $HOMEDIR/$user/conf/mail if [ -z "$create_user" ]; then $BIN/v-rebuild-mail-domains $user fi fi if [ ! -z "$DB_SYSTEM" ] && [ "$DB_SYSTEM" != 'no' ]; then touch $USER_DATA/db.conf chmod 660 $USER_DATA/db.conf echo "$BIN/v-update-databases-disk $user" >> $VESTA/data/queue/disk.pipe if [ -z "$create_user" ]; then $BIN/v-rebuild-databases $user fi fi if [ ! -z "$CRON_SYSTEM" ] && [ "$CRON_SYSTEM" != 'no' ]; then touch $USER_DATA/cron.conf chmod 660 $USER_DATA/cron.conf if [ -z "$create_user" ]; then $BIN/v-rebuild-cron-jobs $user $restart fi fi # Set immutable flag chattr +i $HOMEDIR/$user/conf } # WEB domain rebuild rebuild_web_domain_conf() { get_domain_values 'web' is_ip_valid $IP prepare_web_domain_values # Rebuilding domain directories sudo -u $user mkdir -p $HOMEDIR/$user/web/$domain \ $HOMEDIR/$user/web/$domain/public_html \ $HOMEDIR/$user/web/$domain/public_shtml \ $HOMEDIR/$user/web/$domain/document_errors \ $HOMEDIR/$user/web/$domain/cgi-bin \ $HOMEDIR/$user/web/$domain/private \ $HOMEDIR/$user/web/$domain/stats \ $HOMEDIR/$user/web/$domain/logs # Creating domain logs if [ ! -e "/var/log/$WEB_SYSTEM/domains" ]; then mkdir -p /var/log/$WEB_SYSTEM/domains chmod 771 /var/log/$WEB_SYSTEM/domains fi touch /var/log/$WEB_SYSTEM/domains/$domain.bytes \ /var/log/$WEB_SYSTEM/domains/$domain.log \ /var/log/$WEB_SYSTEM/domains/$domain.error.log # Creating symlinks cd $HOMEDIR/$user/web/$domain/logs/ ln -f -s /var/log/$WEB_SYSTEM/domains/$domain.log . ln -f -s /var/log/$WEB_SYSTEM/domains/$domain.error.log . cd / # Propagating html skeleton if [ ! -e "$WEBTPL/skel/document_errors/" ]; then sudo -u $user cp -r $WEBTPL/skel/document_errors/ \ $HOMEDIR/$user/web/$domain/ fi # Set folder permissions no_symlink_chmod 551 $HOMEDIR/$user/web/$domain \ $HOMEDIR/$user/web/$domain/stats \ $HOMEDIR/$user/web/$domain/logs no_symlink_chmod 751 $HOMEDIR/$user/web/$domain/private \ $HOMEDIR/$user/web/$domain/cgi-bin \ $HOMEDIR/$user/web/$domain/public_html \ $HOMEDIR/$user/web/$domain/public_shtml \ $HOMEDIR/$user/web/$domain/document_errors chmod 640 /var/log/$WEB_SYSTEM/domains/$domain.* # Set ownership chown --no-dereference $user:$user $HOMEDIR/$user/web/$domain \ $HOMEDIR/$user/web/$domain/private \ $HOMEDIR/$user/web/$domain/cgi-bin \ $HOMEDIR/$user/web/$domain/public_html \ $HOMEDIR/$user/web/$domain/public_shtml chown -R $user:$user $HOMEDIR/$user/web/$domain/document_errors chown root:$user /var/log/$WEB_SYSTEM/domains/$domain.* # Adding vhost configuration conf="$HOMEDIR/$user/conf/web/$WEB_SYSTEM.conf" add_web_config "$WEB_SYSTEM" "$TPL.tpl" # Adding SSL vhost configuration if [ "$SSL" = 'yes' ]; then conf="$HOMEDIR/$user/conf/web/s$WEB_SYSTEM.conf" add_web_config "$WEB_SYSTEM" "$TPL.stpl" cp -f $USER_DATA/ssl/$domain.crt \ $HOMEDIR/$user/conf/web/ssl.$domain.crt cp -f $USER_DATA/ssl/$domain.key \ $HOMEDIR/$user/conf/web/ssl.$domain.key cp -f $USER_DATA/ssl/$domain.pem \ $HOMEDIR/$user/conf/web/ssl.$domain.pem if [ -e "$USER_DATA/ssl/$domain.ca" ]; then cp -f $USER_DATA/ssl/$domain.ca \ $HOMEDIR/$user/conf/web/ssl.$domain.ca fi fi # Adding proxy configuration if [ ! -z "$PROXY_SYSTEM" ] && [ ! -z "$PROXY" ]; then conf="$HOMEDIR/$user/conf/web/$PROXY_SYSTEM.conf" add_web_config "$PROXY_SYSTEM" "$PROXY.tpl" if [ "$SSL" = 'yes' ]; then conf="$HOMEDIR/$user/conf/web/s$PROXY_SYSTEM.conf" add_web_config "$PROXY_SYSTEM" "$PROXY.stpl" fi fi # Adding web stats parser if [ ! -z "$STATS" ]; then domain_idn=$domain format_domain_idn cat $WEBTPL/$STATS/$STATS.tpl |\ sed -e "s|%ip%|$local_ip|g" \ -e "s|%web_system%|$WEB_SYSTEM|g" \ -e "s|%domain_idn%|$domain_idn|g" \ -e "s|%domain%|$domain|g" \ -e "s|%user%|$user|g" \ -e "s|%home%|$HOMEDIR|g" \ -e "s|%alias%|${aliases//,/ }|g" \ -e "s|%alias_idn%|${aliases_idn//,/ }|g" \ > $HOMEDIR/$user/conf/web/$STATS.$domain.conf if [ "$STATS" == 'awstats' ]; then if [ ! -e "/etc/awstats/$STATS.$domain_idn.conf" ]; then ln -f -s $HOMEDIR/$user/conf/web/$STATS.$domain.conf \ /etc/awstats/$STATS.$domain_idn.conf fi fi webstats="$BIN/v-update-web-domain-stat $user $domain" check_webstats=$(grep "$webstats" $VESTA/data/queue/webstats.pipe) if [ -z "$check_webstats" ]; then echo "$webstats" >> $VESTA/data/queue/webstats.pipe fi if [ ! -z "$STATS_USER" ]; then stats_dir="$HOMEDIR/$user/web/$domain/stats" if [ "$WEB_SYSTEM" = 'nginx' ]; then echo "auth_basic \"Web Statistics\";" > $stats_dir/auth.conf echo "auth_basic_user_file $stats_dir/.htpasswd;" >> \ $stats_dir/auth.conf else echo "AuthUserFile $stats_dir/.htpasswd" > $stats_dir/.htaccess echo "AuthName \"Web Statistics\"" >> $stats_dir/.htaccess echo "AuthType Basic" >> $stats_dir/.htaccess echo "Require valid-user" >> $stats_dir/.htaccess fi echo "$STATS_USER:$STATS_CRYPT" > $stats_dir/.htpasswd fi fi # Adding ftp users if [ -z "$FTP_SHELL" ]; then shell=$(which nologin) if [ -e "/usr/bin/rssh" ]; then shell='/usr/bin/rssh' fi else shell=$FTP_SHELL fi for ftp_user in ${FTP_USER//:/ }; do if [ -z "$(grep ^$ftp_user: /etc/passwd)" ]; then position=$(echo $FTP_USER |tr ':' '\n' |grep -n '' |\ grep ":$ftp_user$" |cut -f 1 -d:) ftp_path=$(echo $FTP_PATH |tr ':' '\n' |grep -n '' |\ grep "^$position:" |cut -f 2 -d :) ftp_md5=$(echo $FTP_MD5 | tr ':' '\n' |grep -n '' |\ grep "^$position:" |cut -f 2 -d :) /usr/sbin/useradd $ftp_user \ -s $shell \ -o -u $(id -u $user) \ -g $(id -u $user) \ -M -d "$HOMEDIR/$user/web/$domain${ftp_path}" >/dev/null 2>&1 # Updating ftp user password shadow=$(grep "^$ftp_user:" /etc/shadow) shdw3=$(echo "$shadow" |cut -f3 -d :) shdw4=$(echo "$shadow" |cut -f4 -d :) shdw5=$(echo "$shadow" |cut -f5 -d :) shdw6=$(echo "$shadow" |cut -f6 -d :) shdw7=$(echo "$shadow" |cut -f7 -d :) shdw8=$(echo "$shadow" |cut -f8 -d :) shdw9=$(echo "$shadow" |cut -f9 -d :) shadow_str="$ftp_user:$ftp_md5:$shdw3:$shdw4:$shdw5:$shdw6" shadow_str="$shadow_str:$shdw7:$shdw8:$shdw9" chmod u+w /etc/shadow sed -i "/^$ftp_user:*/d" /etc/shadow echo "$shadow_str" >> /etc/shadow chmod u-w /etc/shadow fi done # Adding http auth protection htaccess="$HOMEDIR/$user/conf/web/$WEB_SYSTEM.$domain.conf_htaccess" htpasswd="$HOMEDIR/$user/conf/web/$WEB_SYSTEM.$domain.htpasswd" docroot="$HOMEDIR/$user/web/$domain/public_html" for auth_user in ${AUTH_USER//:/ }; do # Parsing auth user variables position=$(echo $AUTH_USER |tr ':' '\n' |grep -n '' |\ grep ":$auth_user$" |cut -f 1 -d:) auth_hash=$(echo $AUTH_HASH |tr ':' '\n' |grep -n '' |\ grep "^$position:" |cut -f 2 -d :) # Adding http auth user touch $htpasswd sed -i "/^$auth_user:/d" $htpasswd echo "$auth_user:$auth_hash" >> $htpasswd # Checking web server include if [ ! -e "$htaccess" ]; then if [ "$WEB_SYSTEM" != 'nginx' ]; then echo "" > $htaccess echo " AuthUserFile $htpasswd" >> $htaccess echo " AuthName \"$domain access\"" >> $htaccess echo " AuthType Basic" >> $htaccess echo " Require valid-user" >> $htaccess echo "" >> $htaccess else echo "auth_basic \"$domain password access\";" > $htaccess echo "auth_basic_user_file $htpasswd;" >> $htaccess fi chmod 640 $htpasswd $htaccess >/dev/null 2>&1 fi done } # DNS domain rebuild rebuild_dns_domain_conf() { # Get domain values get_domain_values 'dns' domain_idn=$(idn -t --quiet -a "$domain") # Checking zone file if [ ! -e "$USER_DATA/dns/$domain.conf" ]; then cat $DNSTPL/$TPL.tpl |\ sed -e "s/%ip%/$IP/g" \ -e "s/%domain_idn%/$domain_idn/g" \ -e "s/%domain%/$domain/g" \ -e "s/%ns1%/$ns1/g" \ -e "s/%ns2%/$ns2/g" \ -e "s/%ns3%/$ns3/g" \ -e "s/%ns4%/$ns4/g" \ -e "s/%time%/$TIME/g" \ -e "s/%date%/$DATE/g" > $USER_DATA/dns/$domain.conf fi # Sorting records sort_dns_records # Updating zone update_domain_zone # Set permissions if [ "$DNS_SYSTEM" = 'named' ]; then dns_group='named' else dns_group='bind' fi # Set file permissions chmod 640 $HOMEDIR/$user/conf/dns/$domain.db chown root:$dns_group $HOMEDIR/$user/conf/dns/$domain.db # Get dns config path if [ -e '/etc/named.conf' ]; then dns_conf='/etc/named.conf' fi if [ -e '/etc/bind/named.conf' ]; then dns_conf='/etc/bind/named.conf' fi # Bind config check if [ "$SUSPENDED" = 'yes' ]; then rm_string=$(grep -n /etc/namedb/$domain.db $dns_conf | cut -d : -f 1) if [ ! -z "$rm_string" ]; then sed -i "$rm_string d" $dns_conf fi suspended_dns=$((suspended_dns + 1)) else if [ -z "$(grep /$domain.db $dns_conf)" ]; then named="zone \"$domain_idn\" {type master; file" named="$named \"$HOMEDIR/$user/conf/dns/$domain.db\";};" echo "$named" >> $dns_conf fi fi user_domains=$((user_domains + 1)) records=$(wc -l $USER_DATA/dns/$domain.conf | cut -f 1 -d ' ') user_records=$((user_records + records)) update_object_value 'dns' 'DOMAIN' "$domain" '$RECORDS' "$records" } # MAIL domain rebuild rebuild_mail_domain_conf() { get_domain_values 'mail' if [[ "$domain" = *[![:ascii:]]* ]]; then domain_idn=$(idn -t --quiet -a $domain) else domain_idn=$domain fi if [ "$SUSPENDED" = 'yes' ]; then SUSPENDED_MAIL=$((SUSPENDED_MAIL +1)) fi # Rebuilding exim config structure if [[ "$MAIL_SYSTEM" =~ exim ]]; then rm -f /etc/$MAIL_SYSTEM/domains/$domain_idn mkdir -p $HOMEDIR/$user/conf/mail/$domain ln -s $HOMEDIR/$user/conf/mail/$domain \ /etc/$MAIL_SYSTEM/domains/$domain_idn rm -f $HOMEDIR/$user/conf/mail/$domain/aliases rm -f $HOMEDIR/$user/conf/mail/$domain/antispam rm -f $HOMEDIR/$user/conf/mail/$domain/antivirus rm -f $HOMEDIR/$user/conf/mail/$domain/protection rm -f $HOMEDIR/$user/conf/mail/$domain/passwd rm -f $HOMEDIR/$user/conf/mail/$domain/fwd_only rm -f $HOMEDIR/$user/conf/mail/$domain/accounts touch $HOMEDIR/$user/conf/mail/$domain/aliases touch $HOMEDIR/$user/conf/mail/$domain/passwd touch $HOMEDIR/$user/conf/mail/$domain/fwd_only touch $HOMEDIR/$user/conf/mail/$domain/accounts # Adding antispam protection if [ "$ANTISPAM" = 'yes' ]; then touch $HOMEDIR/$user/conf/mail/$domain/antispam fi # Adding antivirus protection if [ "$ANTIVIRUS" = 'yes' ]; then touch $HOMEDIR/$user/conf/mail/$domain/antivirus fi # Adding dkim if [ "$DKIM" = 'yes' ]; then cp $USER_DATA/mail/$domain.pem \ $HOMEDIR/$user/conf/mail/$domain/dkim.pem fi # Removing symbolic link if domain is suspended if [ "$SUSPENDED" = 'yes' ]; then rm -f /etc/exim/domains/$domain_idn fi # Adding mail directiry if [ ! -e $HOMEDIR/$user/mail/$domain_idn ]; then mkdir $HOMEDIR/$user/mail/$domain_idn fi # Adding catchall email dom_aliases=$HOMEDIR/$user/conf/mail/$domain/aliases if [ ! -z "$CATCHALL" ]; then echo "*@$domain_idn:$CATCHALL" >> $dom_aliases fi fi # Rebuild domain accounts accs=0 dom_diks=0 if [ -e "$USER_DATA/mail/$domain.conf" ]; then accounts=$(search_objects "mail/$domain" 'SUSPENDED' "no" 'ACCOUNT') else accounts='' fi for account in $accounts; do (( ++accs)) dom_diks=$((dom_diks + U_DISK)) object=$(grep "ACCOUNT='$account'" $USER_DATA/mail/$domain.conf) FWD_ONLY='no' eval "$object" if [ "$SUSPENDED" = 'yes' ]; then MD5='SUSPENDED' fi if [[ "$MAIL_SYSTEM" =~ exim ]]; then if [ "$QUOTA" = 'unlimited' ]; then QUOTA=0 fi str="$account:$MD5:$user:mail::$HOMEDIR/$user:$QUOTA" echo $str >> $HOMEDIR/$user/conf/mail/$domain/passwd userstr="$account:$account:$user:mail:$HOMEDIR/$user" echo $userstr >> $HOMEDIR/$user/conf/mail/$domain/accounts for malias in ${ALIAS//,/ }; do echo "$malias@$domain_idn:$account@$domain_idn" >> $dom_aliases done if [ ! -z "$FWD" ]; then echo "$account@$domain_idn:$FWD" >> $dom_aliases fi if [ "$FWD_ONLY" = 'yes' ]; then echo "$account" >> $HOMEDIR/$user/conf/mail/$domain/fwd_only fi fi done # Define mail user if [ "$MAIL_SYSTEM" = 'exim4' ]; then MAIL_USER=Debian-exim else MAIL_USER=exim fi # Set permissions and ownership if [[ "$MAIL_SYSTEM" =~ exim ]]; then chmod 660 $USER_DATA/mail/$domain.* chmod 771 $HOMEDIR/$user/conf/mail/$domain chmod 660 $HOMEDIR/$user/conf/mail/$domain/* chmod 771 /etc/$MAIL_SYSTEM/domains/$domain_idn chmod 770 $HOMEDIR/$user/mail/$domain_idn chown -R $MAIL_USER:mail $HOMEDIR/$user/conf/mail/$domain chown -R dovecot:mail $HOMEDIR/$user/conf/mail/$domain/passwd chown $MAIL_USER:mail $HOMEDIR/$user/conf/mail/$domain/accounts chown $user:mail $HOMEDIR/$user/mail/$domain_idn fi # Update counters update_object_value 'mail' 'DOMAIN' "$domain" '$ACCOUNTS' "$accs" update_object_value 'mail' 'DOMAIN' "$domain" '$U_DISK' "$dom_diks" U_MAIL_ACCOUNTS=$((U_MAIL_ACCOUNTS + accs)) U_DISK_MAIL=$((U_DISK_MAIL + dom_diks)) U_MAIL_DOMAINS=$((U_MAIL_DOMAINS + 1)) } # Rebuild MySQL rebuild_mysql_database() { mysql_connect $HOST mysql_query "CREATE DATABASE \`$DB\` CHARACTER SET $CHARSET" >/dev/null if [ "$mysql_fork" = "mysql" ]; then # mysql mysql_ver_sub=$(echo $mysql_ver |cut -d '.' -f1) mysql_ver_sub_sub=$(echo $mysql_ver |cut -d '.' -f2) if [ "$mysql_ver_sub" -ge 8 ] || { [ "$mysql_ver_sub" -eq 5 ] && [ "$mysql_ver_sub_sub" -ge 7 ]; } then # mysql >= 5.7 # if [ "$mysql_ver_sub" -eq 5 ] && [ "$mysql_ver_sub_sub" -ge 7 ]; then mysql_query "CREATE USER IF NOT EXISTS \`$DBUSER\`" > /dev/null mysql_query "CREATE USER IF NOT EXISTS \`$DBUSER\`@localhost" > /dev/null query="UPDATE mysql.user SET authentication_string='$MD5'" query="$query WHERE User='$DBUSER'" else # mysql < 5.7 query="UPDATE mysql.user SET Password='$MD5' WHERE User='$DBUSER'" fi else # mariadb mysql_ver_sub=$(echo $mysql_ver |cut -d '.' -f1) mysql_ver_sub_sub=$(echo $mysql_ver |cut -d '.' -f2) if [ "$mysql_ver_sub" -eq 5 ]; then # mariadb = 5 mysql_query "CREATE USER \`$DBUSER\`" > /dev/null mysql_query "CREATE USER \`$DBUSER\`@localhost" > /dev/null query="UPDATE mysql.user SET Password='$MD5' WHERE User='$DBUSER'" else # mariadb = 10 mysql_query "CREATE USER IF NOT EXISTS \`$DBUSER\`" > /dev/null mysql_query "CREATE USER IF NOT EXISTS \`$DBUSER\`@localhost" > /dev/null if [ "$mysql_ver_sub_sub" -ge 4 ]; then # mariadb >= 10.4 query="SET PASSWORD FOR '$DBUSER'@'%' = '$MD5';" query2="SET PASSWORD FOR '$DBUSER'@'localhost' = '$MD5';" else # mariadb < 10.4 query="UPDATE mysql.user SET Password='$MD5' WHERE User='$DBUSER'" fi fi fi mysql_query "GRANT ALL ON \`$DB\`.* TO \`$DBUSER\`@\`%\`" >/dev/null mysql_query "GRANT ALL ON \`$DB\`.* TO \`$DBUSER\`@localhost" >/dev/null mysql_query "$query" >/dev/null if [ ! -z "$query2" ]; then mysql_query "$query2" >/dev/null fi mysql_query "FLUSH PRIVILEGES" >/dev/null } # Rebuild PostgreSQL rebuild_pgsql_database() { host_str=$(grep "HOST='$HOST'" $VESTA/conf/pgsql.conf) eval $host_str export PGPASSWORD="$PASSWORD" if [ -z $HOST ] || [ -z $USER ] || [ -z $PASSWORD ] || [ -z $TPL ]; then echo "Error: postgresql config parsing failed" if [ ! -z "$SENDMAIL" ]; then subj="Error: postgresql config parsing failed" email=$($BIN/v-get-user-value admin CONTACT) echo "Can't parse PostgreSQL config" | $SENDMAIL -s "$subj" $email fi log_event "$E_PARSING" "$ARGUMENTS" exit $E_PARSING fi query='SELECT VERSION()' psql -h $HOST -U $USER -c "$query" > /dev/null 2>&1 if [ '0' -ne "$?" ]; then echo "Error: Connection failed" if [ ! -z "$SENDMAIL" ]; then subj="Error: Connection failed" email=$($BIN/v-get-user-value admin CONTACT) echo "Database connection to PostgreSQL host $HOST failed" |\ $SENDMAIL -s "$subj" $email fi log_event "$E_CONNECT" "$ARGUMENTS" exit $E_CONNECT fi query="CREATE ROLE $DBUSER WITH LOGIN" psql -h $HOST -U $USER -c "$query" > /dev/null 2>&1 query="UPDATE pg_authid SET rolpassword='$MD5' WHERE rolname='$DBUSER'" psql -h $HOST -U $USER -c "$query" > /dev/null 2>&1 query="CREATE DATABASE $DB OWNER $DBUSER" if [ "$TPL" = 'template0' ]; then query="$query ENCODING '$CHARSET' TEMPLATE $TPL" else query="$query TEMPLATE $TPL" fi psql -h $HOST -U $USER -c "$query" > /dev/null 2>&1 query="GRANT ALL PRIVILEGES ON DATABASE $DB TO $DBUSER" psql -h $HOST -U $USER -c "$query" > /dev/null 2>&1 query="GRANT CONNECT ON DATABASE template1 to $DBUSER" psql -h $HOST -U $USER -c "$query" > /dev/null 2>&1 } # Import MySQL dump import_mysql_database() { host_str=$(grep "HOST='$HOST'" $VESTA/conf/mysql.conf) eval $host_str if [ -z $HOST ] || [ -z $USER ] || [ -z $PASSWORD ]; then echo "Error: mysql config parsing failed" log_event "$E_PARSING" "$ARGUMENTS" exit $E_PARSING fi mysql -h $HOST -u $USER -p$PASSWORD $DB < $1 > /dev/null 2>&1 } # Import PostgreSQL dump import_pgsql_database() { host_str=$(grep "HOST='$HOST'" $VESTA/conf/pgsql.conf) eval $host_str export PGPASSWORD="$PASSWORD" if [ -z $HOST ] || [ -z $USER ] || [ -z $PASSWORD ] || [ -z $TPL ]; then echo "Error: postgresql config parsing failed" log_event "$E_PARSING" "$ARGUMENTS" exit $E_PARSING fi psql -h $HOST -U $USER $DB < $1 > /dev/null 2>&1 }