yosoyhendrix
/
vesta


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431
							# Web template check
is_apache_template_valid() {
    c=$(echo "$(get_user_value '$WEB_TPL')" | grep -w  "$template")
    t="$WEBTPL/apache_$template.tpl"
    d="$WEBTPL/apache_$template.descr"
    s="$WEBTPL/apache_$template.stpl"
    if [ -z "$c" ] || [ ! -e $t ] || [ ! -e $d ] || [ ! -e $s ]; then
        echo "Error: template $template not found"
        log_event "$E_NOTEXIST" "$EVENT"
        exit $E_NOTEXIST
    fi
}

# Nginx template check
is_nginx_template_valid() {
    t="$WEBTPL/ngingx_vhost_$template.tpl"
    d="$WEBTPL/ngingx_vhost_$template.descr"
    s="$WEBTPL/ngingx_vhost_$template.stpl"
    if [ ! -e $t ] || [ ! -e $d ] || [ ! -e $s ]; then
        echo "Error: nginx $template not found"
        log_event "$E_NOTEXIST" "$EVENT"
        exit $E_NOTEXIST
    fi
}

# DNS template check
is_dns_template_valid() {
    tpl="$DNSTPL/$template.tpl"
    descr="$DNSTPL/$template.descr"
    if [ ! -e $tpl ] || [ ! -e $descr ]; then
        echo "Error: template not found"
        log_event "$E_NOTEXIST" "$EVENT"
        exit $E_NOTEXIST
    fi
}

# Checking domain existance
is_domain_new() {
    config_type="$1"
    dom=${2-$domain}
    check_all=$(grep -w $dom $VESTA/data/users/*/*.conf)
    if [ ! -z "$check_all" ]; then
        check_ownership=$(grep -w $dom $USER_DATA/*.conf)
        if [ ! -z "$check_ownership" ]; then
            check_type=$(grep -w $dom $USER_DATA/$config_type.conf)
            if [ ! -z "$check_type" ]; then
                echo "Error: domain $dom exist"
                log_event "$E_EXISTS" "$EVENT"
                exit $E_EXISTS
            fi
        else
            echo "Error: domain $dom exist"
            log_event "$E_EXISTS" "$EVENT"
            exit $E_EXISTS
        fi
    fi
}

# Checking mail account existance
is_mail_new() {
    check_acc=$(grep "ACCOUNT='$1'" $USER_DATA/mail/$domain.conf)
    if [ ! -z "$check_acc" ]; then
        echo "Error: mail account $1 exist"
        log_event "$E_EXISTS" "$EVENT"
        exit
    fi
    check_als=$(awk -F "ALIAS='" '{print $2}' $USER_DATA/mail/$domain.conf )
    check_als=$(echo "$check_als" | cut -f 1 -d "'" | grep -w $1)
    if [ ! -z "$check_als" ]; then
        echo "Error: mail alias $1 exist"
        log_event "$E_EXISTS" "$EVENT"
        exit
    fi
}

# Update domain zone
update_domain_zone() {
    conf="$HOMEDIR/$user/conf/dns/$domain.db"
    line=$(grep "DOMAIN='$domain'" $USER_DATA/dns.conf)
    fields='$RECORD\t$TTL\tIN\t$TYPE\t$PRIORITY\t$VALUE'
    if [ -e $conf ]; then
        zn_serial=$(head $conf|grep 'SOA' -A1|tail -n 1|sed -e "s/ //g")
        s_date=$(echo ${zn_serial:0:8})
        c_date=$(date +'%Y%m%d')
        if [ "$s_date" == "$c_date" ]; then
            cur_value=$(echo ${zn_serial:8} )
            new_value=$(expr $cur_value + 1 )
            len_value=$(expr length $new_value)
            if [ 1 -eq "$len_value" ]; then
                new_value='0'$new_value
            fi
            serial="$c_date""$new_value"
        else
            serial="$(date +'%Y%m%d01')"
        fi
    else
        serial="$(date +'%Y%m%d01')"
    fi

    eval $line
    SOA=$(idn --quiet -a -t "$SOA")
    echo "\$TTL $TTL
@    IN    SOA    $SOA.    root.$domain_idn. (
                                            $serial
                                            7200
                                            3600
                                            1209600
                                            180 )
" > $conf
    while read line ; do
        IFS=$'\n'
        for key in $(echo $line|sed -e "s/' /'\n/g"); do
            eval ${key%%=*}="${key#*=}"
        done

        RECORD=$(idn --quiet -a -t "$RECORD")
        if [ "$SUSPENDED" != 'yes' ]; then
            eval echo -e "\"$fields\""|sed -e "s/%quote%/'/g" >> $conf
        fi
    done < $USER_DATA/dns/$domain.conf
}

# Get next DNS record ID
get_next_dnsrecord(){
    if [ -z "$id" ]; then
        curr_str=$(grep "ID=" $USER_DATA/dns/$domain.conf | cut -f 2 -d \' |\
            sort -n|tail -n1)
        id="$((curr_str +1))"
    fi
}

# Sort DNS records
sort_dns_records() {
    conf="$USER_DATA/dns/$domain.conf"
    cat $conf |sort -n -k 2 -t \' >$conf.tmp
    mv -f $conf.tmp $conf
}

# Add web config
add_web_config() {
    cat $tpl_file | \
        sed -e "s/%ip%/$ip/g" \
            -e "s/%web_port%/$WEB_PORT/g" \
            -e "s/%web_ssl_port%/$WEB_SSL_PORT/g" \
            -e "s/%proxy_string%/${proxy_string////\/}/g" \
            -e "s/%proxy_port%/$PROXY_PORT/g" \
            -e "s/%proxy_ssl_port%/$PROXY_SSL_PORT/g" \
            -e "s/%domain_idn%/$domain_idn/g" \
            -e "s/%domain%/$domain/g" \
            -e "s/%user%/$user/g" \
            -e "s/%group%/$group/g" \
            -e "s/%home%/${HOMEDIR////\/}/g" \
            -e "s/%docroot%/${docroot////\/}/g" \
            -e "s/%docroot_string%/${docroot_string////\/}/g" \
            -e "s/%email%/$email/g" \
            -e "s/%alias_string%/$alias_string/g" \
            -e "s/%alias_idn%/${aliases_idn//,/ }/g" \
            -e "s/%alias%/${aliases//,/ }/g" \
            -e "s/%ssl_crt%/${ssl_crt////\/}/g" \
            -e "s/%ssl_key%/${ssl_key////\/}/g" \
            -e "s/%ssl_pem%/${ssl_pem////\/}/g" \
            -e "s/%ssl_ca_str%/${ssl_ca_str////\/}/g" \
            -e "s/%ssl_ca%/${ssl_ca////\/}/g" \
            -e "s/%nginx_extentions%/${NGINX_EXT//,/|}/g" \
            -e "s/%elog%/$elog/g" \
            -e "s/%cgi%/$cgi/g" \
            -e "s/%cgi_option%/$cgi_option/g" \
    >> $conf
}

# Get config top and bottom line numbers
get_web_config_brds() {
    serv_line=$(grep -ni 'Name %domain_idn%' "$tpl_file" |cut -f 1 -d :)
    if [ -z "$serv_line" ]; then
        log_event "$E_PARSING" "$EVENT"
        return $E_PARSING
    fi

    last_line=$(wc -l $tpl_file|cut -f 1 -d ' ')
    bfr_line=$((serv_line - 1))
    aftr_line=$((last_line - serv_line - 1))

    str=$(grep -ni "Name $domain_idn" $conf | cut -f 1 -d :)
    top_line=$((str - serv_line + 1))
    bottom_line=$((top_line + last_line -1))

    multi=$(sed -n "$top_line,$bottom_line p" $conf |grep ServerAlias |wc -l)
    if [ "$multi" -ge 2 ]; then
        bottom_line=$((bottom_line + multi -1))
    fi

}

# Change web config
change_web_config() {
    get_web_config_brds || exit $?
    vhost=$(grep -A $aftr_line -B $bfr_line -ni "Name $domain_idn" $conf)
    str=$(echo "$vhost" | grep -F "$search_phrase" | head -n 1)
    str_numb=$(echo "$str" | sed -e "s/-/=/" | cut -f 1 -d '=')
    str_cont=$(echo "$str" | sed -e "s/-/=/" | cut -f 2 -d '=')

    str_repl=$(echo "$str_repl" | sed \
        -e 's/\\/\\\\/g' \
        -e 's/&/\\&/g' \
        -e 's/\//\\\//g')

    if [ ! -z "$str" ]; then
        sed -i  "$str_numb s/.*/$str_repl/" $conf
    fi
}

# Replace web config
replace_web_config() {
    get_web_config_brds || exit $?
    clean_new=$(echo "$new" | sed \
        -e 's/\\/\\\\/g' \
        -e 's/&/\\&/g' \
        -e 's/\//\\\//g')
    clean_old=$(echo "$old" | sed \
        -e 's/\\/\\\\/g' \
        -e 's/&/\\&/g' \
        -e 's/\//\\\//g')

    sed -i  "$top_line,$bottom_line s/$clean_old/$clean_new/" $conf
}

# Get domain variables
get_domain_values() {
    for line in $(grep "DOMAIN='$domain'" $USER_DATA/$1.conf); do
        eval $line
    done
}

# SSL certificate verification
is_web_domain_cert_valid() {
    if [ ! -e "$ssl_dir/$domain.crt" ] || [ ! -e "$ssl_dir/$domain.key" ]; then
        echo "Error: $ssl_dir/$domain.[crt|key] not found"
        log_event "$E_NOTEXIST" "$EVENT"
        exit $E_NOTEXIST
    fi

    if [ ! -e "$ssl_dir/$domain.ca" ]; then
        crt=$(openssl verify $ssl_dir/$domain.crt 2>/dev/null |grep 'OK')
    else
        crt=$(openssl verify -untrusted $ssl_dir/$domain.ca \
	    $ssl_dir/$domain.crt 2>/dev/null |grep 'OK')
    fi
    if [ -z "$crt" ]; then
        echo "Error: certificate is not valid"
        log_event "$E_INVALID" "$EVENT"
        exit $E_INVALID
    fi

    openssl rsa -in "$ssl_dir/$domain.key" -check &>/dev/null
    if [ "$?" -ne 0 ]; then
        echo "Error: ssl key is not valid"
        log_event "$E_INVALID" "$EVENT"
        exit $E_INVALID
    fi

    if [ -e "$ssl_dir/$domain.ca" ]; then
        ca=$(openssl verify $ssl_dir/$domain.ca 2>/dev/null |grep 'OK')
        if [ -z "$ca" ]; then
            echo "Error: ssl certificate authority is not valid"
            log_event "$E_INVALID" "$EVENT"
            exit $E_INVALID
        fi
    fi

    openssl s_server -quiet -cert $ssl_dir/$domain.crt \
        -key $ssl_dir/$domain.key &
    pid=$!
    sleep 0.5
    disown &> /dev/null
    kill $pid &> /dev/null
    if [ "$?" -ne '0' ]; then
        echo "Error: ssl certificate key pair is not valid"
        log_event "$E_INVALID" "$EVENT"
        exit $E_INVALID
    fi
}

# Delete web configuartion
del_web_config() {
    get_web_config_brds || exit $?
    sed -i "$top_line,$bottom_line d" $conf
}

# Add ip virtual hosting support
namehost_ip_support() {
    if [ "$WEB_SYSTEM" = 'apache' ]; then
        conf_line=$(grep -n "NameVirtual" $conf|tail -n 1|cut -f 1 -d ':')
        if [ ! -z "$conf_line" ]; then
            conf_ins=$((conf_line + 1))
        else
            conf_ins='1'
        fi

        if [ "$WEB_SSL" = 'mod_ssl' ]; then
            sed -i "$conf_ins i NameVirtualHost $ip:$WEB_SSL_PORT" $conf
            sed -i "$conf_ins i Listen $ip:$WEB_SSL_PORT" $conf
        fi

        sed -i "$conf_ins i NameVirtualHost $ip:$WEB_PORT" $conf
        sed -i "$conf_ins i Listen $ip:$WEB_PORT" $conf

        if [ "$PROXY_SYSTEM" = 'nginx' ]; then
            cat $WEBTPL/ngingx_ip.tpl | sed -e "s/%ip%/$ip/g" \
             -e "s/%web_port%/$WEB_PORT/g" \
            -e "s/%proxy_port%/$PROXY_PORT/g" >>$nconf

            ips=$(grep 'RPAFproxy_ips' $rconf)
            sed -i "s/$ips/$ips $ip/g" $rconf
        fi
        web_restart='yes'
    fi
}

# Disable virtual ip hosting support
namehost_ip_disable() {
    if [ "$WEB_SYSTEM" = 'apache' ]; then
        sed -i "/NameVirtualHost $ip:/d" $conf
        sed -i "/Listen $ip:/d" $conf

        if [ "$PROXY_SYSTEM" = 'nginx' ]; then
            tpl_ln=$(wc -l $WEBTPL/ngingx_ip.tpl | cut -f 1 -d ' ')
            ip_line=$(grep -n "%ip%" $WEBTPL/ngingx_ip.tpl |head -n1 |\
                cut -f 1 -d :)
            conf_line=$(grep -n -w $ip $nconf|head -n1|cut -f 1 -d :)
            if [ -z "$tpl_ln" ] || [ -z "$ip_line" ] || [ -z "$conf_line" ]
            then
                echo "Error: nginx config paring error"
                log_event "$E_PARSING" "$EVENT"
                exit $E_PARSING
            fi
            up_line=$((ip_line - 1))
            first_line=$((conf_line - up_line))
            last_line=$((conf_line - ip_line + tpl_ln))

            if [ -z "$first_line" ] || [ -z "$last_line" ]; then
                echo "Error: nginx config paring error"
                log_event "$E_PARSING" "$EVENT"
                exit $E_PARSING
            fi
            sed -i "$first_line,$last_line d" $nconf
            ips=$(grep 'RPAFproxy_ips' $rconf)
            new_ips=$(echo "$ips"|sed -e "s/$ip//")
            sed -i "s/$ips/$new_ips/g" $rconf
        fi
        web_restart='yes'
    fi
}

# Update web domain values
upd_web_domain_values() {
    ip=$IP
    group="$user"
    email="$user@$domain"
    docroot="$HOMEDIR/$user/web/$domain/public_html"
    docroot_string="DocumentRoot $docroot"
    proxy_string="proxy_pass     http://$ip:$WEB_PORT;"

    i=1
    j=1
    OLD_IFS="$IFS"
    IFS=','
    server_alias=''
    alias_string=''
    for dalias in $ALIAS; do
        dalias=$(idn -t --quiet -a $dalias)
        check_8k="$server_alias $dalias"
        if [ "${#check_8k}" -ge '8100' ]; then
            if [ "$j" -eq 1 ]; then
                alias_string="ServerAlias $server_alias"
            else
                alias_string="$alias_string\n    ServerAlias $server_alias"
            fi
            j=2
            server_alias=''
        fi
        if [ "$i" -eq 1 ]; then
            aliases_idn="$dalias"
            server_alias="$dalias"
            alias_string="ServerAlias $server_alias"
        else
            aliases_idn="$aliases_idn,$dalias"
            server_alias="$server_alias $dalias"
        fi
        i=2
    done

    if [ $j -gt 1 ]; then
        alias_string="$alias_string\n    ServerAlias $server_alias"
    else
        alias_string="ServerAlias $server_alias"
    fi

    IFS=$OLD_IFS
    if [ "$ELOG" = 'no' ]; then
        elog='#'
    else
        elog=''
    fi

    if [ "$CGI" != 'yes' ]; then
        cgi='#'
        cgi_option='-ExecCGI'
    else
        cgi=''
        cgi_option='+ExecCGI'
    fi

    if [ "$SUSPENDED" = 'yes' ]; then
        docroot_string="Redirect / http://$url"
        proxy_string="rewrite ^(.*)\$ http://$url;"
    fi

    ssl_crt="$HOMEDIR/$user/conf/web/ssl.$domain.crt"
    ssl_key="$HOMEDIR/$user/conf/web/ssl.$domain.key"
    ssl_pem="$HOMEDIR/$user/conf/web/ssl.$domain.pem"
    ssl_ca="$HOMEDIR/$user/conf/web/ssl.$domain.ca"
    if [ ! -e "$USER_DATA/ssl/$domain.ca" ]; then
        ssl_ca_str='#'
    fi

    case $SSL_HOME in
        single) docroot="$HOMEDIR/$user/web/$domain/public_shtml" ;;
        same) docroot="$HOMEDIR/$user/web/$domain/public_html" ;;
    esac
}