#!/bin/bash
# This will install everything required to run a basic FreeScout installation.
# This should be run on a clean Ubuntu server.
install_path='/var/www/html'
sudo apt-get -y -q install net-tools
server_ip=`ifconfig | grep -Eo 'inet (addr:)?([0-9]*\.){3}[0-9]*' | grep -Eo '([0-9]*\.){3}[0-9]*' | grep -v '127.0.0.1' | head -n 1`
printf "
########################################
## FreeScout Interactive Installation ##
########################################
Installation script will do the following:
- Install Nginx
- Install MySQL 5
- Install latest available version of PHP
- Install the latest version of the FreeScout
- Configure HTTPS (if needed)
- Set up a cron task
Make sure you have a domain name pointed to your server IP: $server_ip
You will be able to specify help desk domain name and choose installation directory.
Would you like to start installation? (Y/n) [n]:";
read confirm_start;
if [ "$confirm_start" != "Y" ]; then
exit;
fi
#
# Domain
#
printf "\nEnter help desk domain name (without 'www'): "
read domain_name;
if [ -z "$domain_name" ]; then
echo "Domain name is required. Terminating installation"
exit;
fi
mysql_pass=`date +%s | sha256sum | base64 | head -c 9 ; echo`
is_debian=`cat /etc/issue | grep -E ^Debian | wc -l`
#
# Dependencies
#
echo "Installing dependencies..."
sudo apt update
export DEBIAN_FRONTEND=noninteractive
sudo apt remove apache2 -y
sudo apt -q install git nginx
if [ "$is_debian" = '1' ]; then
# Debian
sudo apt -q install mariadb-server mariadb-client
else
# Ubuntu
sudo apt -q install mysql-server libmysqlclient-dev
fi
sudo apt -q install php-fpm php php-mysqli php-mbstring php-xml php-imap php-zip php-gd php-curl php-intl
# json extension may be already included in php-fpm
sudo apt -y -q install php-json
php_version=`php -v | head -n 1 | cut -d " " -f 2 | cut -f1-2 -d"."`
#
# MySQL
#
echo "Configuring MySQL..."
echo 'DROP DATABASE IF EXISTS `freescout`;' | mysql -u root
echo 'CREATE DATABASE `freescout` CHARSET utf8mb4 COLLATE utf8mb4_unicode_ci;' | mysql -u root
echo 'DROP USER `freescout`@`localhost`;' | mysql -u root
echo 'REVOKE ALL PRIVILEGES, GRANT OPTION FROM `freescout`@`localhost`;' | mysql -u root
echo 'GRANT ALL PRIVILEGES ON `freescout`.* TO `freescout`@`localhost` IDENTIFIED BY "'"$mysql_pass"'";' | mysql -u root
# new syntax
echo 'CREATE USER `freescout`@`localhost` IDENTIFIED BY "'"$mysql_pass"'";' | mysql -u root
echo 'GRANT ALL ON `freescout`.* TO `freescout`@`localhost`;' | mysql -u root
echo "You may see a MySQL privileges error above. Don't worry - the script executes two different commands for different DB versions and one of them always fails - just continue the installation."
#
# Application Setup
#
printf "\nWhere would you like to install FreeScout? [$install_path]:"
read confirm_path;
if [ $confirm_path = "Y" ]; then
confirm_path=$install_path;
fi
if [ ! -z "$confirm_path" ]; then
install_path=`echo $confirm_path | sed 's:/*$::'`;
fi
if [ -f "$install_path" ]; then
echo "$install_path is not a directory. Terminating installation"
exit;
fi
if [ -d "$install_path" ]; then
install_path_check=`sudo ls -1qA $install_path`
if [ ! -z "$install_path_check" ]; then
printf "All files in $install_path will be removed. Continue? (Y/n) [n]:"
read confirm_clean;
if [ $confirm_clean != "Y" ]; then
exit;
fi
sudo rm -rf $install_path
fi
fi
sudo mkdir -p $install_path
sudo chown www-data:www-data $install_path
sudo git clone https://github.com/freescout-helpdesk/freescout $install_path
sudo chown -R www-data:www-data $install_path
sudo find $install_path -type f -exec chmod 664 {} \;
sudo find $install_path -type d -exec chmod 775 {} \;
if [ ! -f "$install_path/artisan" ]; then
echo "Error occured installing FreeScout into $install_path. Terminating installation"
exit;
fi
echo "Application installed"
#
# Nginx
#
echo "Configuring nginx..."
sudo echo 'server {
listen 80;
listen [::]:80;
server_name '"$domain_name"';
root '"$install_path"'/public;
index index.php index.html index.htm;
error_log '"$install_path"'/storage/logs/web-server.log;
# Max. attachment size.
# It must be also set in PHP.ini via "upload_max_filesize" and "post_max_size" directives.
client_max_body_size 20M;
location / {
try_files $uri $uri/ /index.php?$query_string;
}
location ~ \.php$ {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/run/php/php'"$php_version"'-fpm.sock;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
include fastcgi_params;
}
# Uncomment this location if you want to improve attachments downloading speed.
# Also make sure to set APP_DOWNLOAD_ATTACHMENTS_VIA=nginx in the .env file.
#location ^~ /storage/app/attachment/ {
# internal;
# alias '"$install_path"'/storage/app/attachment/;
#}
location ~* ^/storage/attachment/ {
expires 1M;
access_log off;
try_files $uri $uri/ /index.php?$query_string;
}
location ~* ^/(?:css|js)/.*\.(?:css|js)$ {
expires 2d;
access_log off;
add_header Cache-Control "public, must-revalidate";
}
# The list should be in sync with /storage/app/public/uploads/.htaccess and /config/app.php
location ~* ^/storage/.*\.((?!(jpg|jpeg|jfif|pjpeg|pjp|apng|bmp|gif|ico|cur|png|tif|tiff|webp|pdf|txt|diff|patch|json|mp3|wav|ogg|wma)).)*$ {
add_header Content-disposition "attachment; filename=$2";
default_type application/octet-stream;
}
location ~* ^/(?:css|fonts|img|installer|js|modules|[^\\\]+\..*)$ {
expires 1M;
access_log off;
add_header Cache-Control "public";
}
location ~ /\. {
deny all;
}
}' > /etc/nginx/sites-available/$domain_name
if [ -f "/etc/nginx/sites-enabled/default" ]; then
sudo rm -f /etc/nginx/sites-enabled/default
fi
if [ -f "/etc/nginx/sites-enabled/$domain_name" ]; then
sudo rm -f "/etc/nginx/sites-enabled/$domain_name"
fi
sudo ln -s "/etc/nginx/sites-available/$domain_name" "/etc/nginx/sites-enabled/$domain_name"
nginx_test=`sudo nginx -t 2>&1; echo $?`
if [[ ! $nginx_test == *"test is successful"* ]]; then
echo "Nginx configuration error. Terminating installation"
sudo nginx -t
exit;
fi
sudo service nginx reload
#
# HTTPS
#
printf "\nWould you like to enable HTTPS? It is free and required for browser push notifications to work. (Y/n) [Y]:"
read confirm_https;
confirm_https=${confirm_https:-Y}
if [ $confirm_https = "Y" ]; then
printf "\nAFTER certbot will finish activating HTTPS, press 'c' to continue installation.\nNow make sure your domain is pointed to the current server and press any key to continue..."
read confirm_redirect;
sudo apt-get remove certbot
if [ "$is_debian" = '1' ]; then
sudo apt-get -y -q install snapd
fi
sudo snap install --classic certbot
sudo ln -s /snap/bin/certbot /usr/bin/certbot
sudo certbot --nginx
sudo certbot --nginx --register-unsafely-without-email
# Add certbot to root cron
echo "Adding certbot renewal command to root's crontab..."
sudo crontab -l > /tmp/rootcron;
certbot_cron=`more /tmp/rootcron | grep certbot`
if [ -z "$certbot_cron" ]; then
sudo echo '0 12 * * * /usr/bin/certbot renew --nginx --quiet' >> /tmp/rootcron
sudo crontab /tmp/rootcron
fi
if [ -f "/tmp/rootcron" ]; then
sudo rm -f /tmp/rootcron
fi
fi
#
# Check requirements
#
echo "Checking requirements..."
php $install_path/artisan freescout:check-requirements
#
# Cron
#
echo "Configuring cron task for www-data..."
sudo crontab -u www-data -l > /tmp/wwwdatacron;
schedule_cron=`more /tmp/wwwdatacron | grep schedule`
if [ -z "$schedule_cron" ]; then
sudo echo "# Main cron job
* * * * * php $install_path/artisan schedule:run >> /dev/null 2>&1
# Cron job for automatic updates
# Configure it to install updates automatically as required by modern cybersecurity standards:
# https://github.com/freescout-helpdesk/freescout/wiki/Installation-Guide#92-cron-job-for-automatic-updates
#0 1 * * * $install_path/tools/update.sh --yes >> $install_path/storage/logs/update.log" >> /tmp/wwwdatacron
sudo crontab -u www-data /tmp/wwwdatacron
fi
if [ -f "/tmp/wwwdatacron" ]; then
sudo rm -f /tmp/wwwdatacron
fi
#
# Fix permissions after freescout:check-requirements command above
#
sudo chown -R www-data:www-data $install_path
#
# Finish
#
protocol='http'
if [ $confirm_https = 'Y' ]; then
protocol='https'
fi
echo "
########################################################
## Congratulations! Installation is almost finished ##
########################################################
To complete installation open the Helpdesk URL provided below in your browser
and follow instructions (you can skip setting up the schedule:run cron job as it has
already been done for you).
After finishing installation in order to make sure your installation satisfies
modern cybersecurity standards you may want to configure automatic updates
as described in this instruction:
https://github.com/freescout-helpdesk/freescout/wiki/Installation-Guide#92-cron-job-for-automatic-updates
Also read Final Configuration instructions:
https://github.com/freescout-helpdesk/freescout/wiki/Installation-Guide#10-final-configuration
and FAQ:
https://github.com/freescout-helpdesk/freescout/wiki/FAQ
--------------------------------------------------------
Helpdesk URL: $protocol://$domain_name/install
Database Host: localhost
Database Port: 3306
Database Name: freescout
Database Username: freescout
Database Password: $mysql_pass
"