Upstream/bitwarden-server
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2024-11-22 12:15:36 +01:00
Code Issues Projects Releases Wiki Activity
8609614711
bitwarden-server/util/Setup/Program.cs

365 lines
13 KiB
C#
Raw Normal View History

mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
using DbUp;
validate bitwarden installation id
2017-08-19 15:33:14 +02:00
using Newtonsoft.Json;
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
using System;
docker setup
2017-08-07 22:31:00 +02:00
using System.Collections.Generic;
create db on update if needed
2017-08-21 15:57:09 +02:00
using System.Data.SqlClient;
validate bitwarden installation id
2017-08-19 15:33:14 +02:00
using System.Net.Http;
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
using System.Reflection;
create empty ssl directory if using own certs
2017-11-10 21:30:18 +01:00
using System.IO;
docker setup
2017-08-07 22:31:00 +02:00
adjust default root namespaces
2017-09-08 17:45:20 +02:00
namespace Bit.Setup
docker setup
2017-08-07 22:31:00 +02:00
{
public class Program
{
private static string[] _args = null;
private static IDictionary<string, string> _parameters = null;
install validation fixes
2017-08-19 15:56:55 +02:00
private static Guid? _installationId = null;
push registration through relay apis
2017-08-11 14:57:31 +02:00
private static string _installationKey = null;
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
private static string _hostOs = "win";
pass versions through params
2017-11-07 16:54:00 +01:00
private static string _coreVersion = "latest";
private static string _webVersion = "latest";
docker setup
2017-08-07 22:31:00 +02:00
public static void Main(string[] args)
{
_args = args;
_parameters = ParseParameters();
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
if(_parameters.ContainsKey("os"))
{
_hostOs = _parameters["os"];
}
pass versions through params
2017-11-07 16:54:00 +01:00
if(_parameters.ContainsKey("corev"))
{
_coreVersion = _parameters["corev"];
}
if(_parameters.ContainsKey("webv"))
{
_webVersion = _parameters["webv"];
}
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
if(_parameters.ContainsKey("install"))
{
Install();
}
else if(_parameters.ContainsKey("update"))
{
Update();
}
print environment after start
2017-08-24 17:16:01 +02:00
else if(_parameters.ContainsKey("printenv"))
{
PrintEnvironment();
}
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
else
{
Console.WriteLine("No top-level command detected. Exiting...");
}
}
docker setup
2017-08-07 22:31:00 +02:00
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
private static void Install()
{
builders and update rebuilds
2017-10-24 04:45:59 +02:00
var outputDir = _parameters.ContainsKey("out") ?
_parameters["out"].ToLowerInvariant() : "/etc/bitwarden";
cert builder
2017-10-24 14:45:48 +02:00
var domain = _parameters.ContainsKey("domain") ?
make web appsettings overrides
2017-08-08 03:16:56 +02:00
_parameters["domain"].ToLowerInvariant() : "localhost";
cert builder
2017-10-24 14:45:48 +02:00
var letsEncrypt = _parameters.ContainsKey("letsencrypt") ?
make web appsettings overrides
2017-08-08 03:16:56 +02:00
_parameters["letsencrypt"].ToLowerInvariant() == "y" : false;
validate bitwarden installation id
2017-08-19 15:33:14 +02:00
if(!ValidateInstallation())
{
return;
}
docker setup
2017-08-07 22:31:00 +02:00
cert builder
2017-10-24 14:45:48 +02:00
var ssl = letsEncrypt;
if(!letsEncrypt)
setup for ssl certs
2017-08-08 20:35:31 +02:00
{
Strict-Transport-Security only if trusted
2017-08-21 15:19:36 +02:00
Console.Write("(!) Do you have a SSL certificate to use? (y/n): ");
cert builder
2017-10-24 14:45:48 +02:00
ssl = Console.ReadLine().ToLowerInvariant() == "y";
setup for ssl certs
2017-08-08 20:35:31 +02:00
cert builder
2017-10-24 14:45:48 +02:00
if(ssl)
setup for ssl certs
2017-08-08 20:35:31 +02:00
{
create empty ssl directory if using own certs
2017-11-10 21:30:18 +01:00
Directory.CreateDirectory($"/bitwarden/ssl/{domain}/");
setup for ssl certs
2017-08-08 20:35:31 +02:00
Console.WriteLine("Make sure 'certificate.crt' and 'private.key' are provided in the " +
"appropriate directory (see setup instructions).");
}
}
cert builder
2017-10-24 14:45:48 +02:00
var identityCertPassword = Helpers.SecureRandomString(32, alpha: true, numeric: true);
var certBuilder = new CertBuilder(domain, identityCertPassword, letsEncrypt, ssl);
var selfSignedSsl = certBuilder.BuildForInstall();
ssl = certBuilder.Ssl; // Ssl prop can get flipped during the build
setup for ssl certs
2017-08-08 20:35:31 +02:00
cert builder
2017-10-24 14:45:48 +02:00
var url = ssl ? $"https://{domain}" : $"http://{domain}";
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
Console.Write("(!) Do you want to use the default ports for HTTP (80) and HTTPS (443)? (y/n): ");
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
var defaultPorts = Console.ReadLine().ToLowerInvariant() == "y";
int httpPort = default(int), httpsPort = default(int);
if(!defaultPorts)
{
Console.Write("(!) HTTP port: ");
if(int.TryParse(Console.ReadLine().ToLowerInvariant().Trim(), out httpPort))
{
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
if(ssl)
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
{
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
Console.Write("(!) HTTPS port: ");
port fixed for setup
2017-11-09 02:28:37 +01:00
if(int.TryParse(Console.ReadLine().ToLowerInvariant().Trim(), out httpsPort))
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
{
port fixed for setup
2017-11-09 02:28:37 +01:00
if(httpsPort != 443)
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
{
url += (":" + httpsPort);
}
}
else
{
Console.WriteLine("Invalid HTTPS port.");
port fixed for setup
2017-11-09 02:28:37 +01:00
httpPort = httpsPort = default(int);
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
}
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
}
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
else if(httpPort != 80)
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
{
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
url += (":" + httpPort);
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
}
}
else
{
Console.WriteLine("Invalid HTTP port.");
}
Support for reverse proxy in setup script (#139) * Added option for when using reverse proxy to setup script * Removed debug console.write
2017-11-20 13:53:38 +01:00
}
Console.Write("(!) Is your installation behind a reverse proxy? (y/n): ");
var reverseProxy = Console.ReadLine().ToLowerInvariant() == "y";
if(reverseProxy)
{
Console.Write("(!) Do you use the default ports on your reverse proxy (80/443)? (y/n): ");
var proxyDefaultPorts = Console.ReadLine().ToLowerInvariant() == "y";
if(proxyDefaultPorts)
{
url = ssl ? $"https://{domain}" : $"http://{domain}";
}
else
{
int httpReversePort = default(int), httpsReversePort = default(int);
added proxy prefix
2017-11-20 13:57:26 +01:00
Console.Write("(!) Proxy HTTP port: ");
Support for reverse proxy in setup script (#139) * Added option for when using reverse proxy to setup script * Removed debug console.write
2017-11-20 13:53:38 +01:00
if(int.TryParse(Console.ReadLine().ToLowerInvariant().Trim(), out httpReversePort))
{
if(ssl)
{
added proxy prefix
2017-11-20 13:57:26 +01:00
Console.Write("(!) Proxy HTTPS port: ");
Support for reverse proxy in setup script (#139) * Added option for when using reverse proxy to setup script * Removed debug console.write
2017-11-20 13:53:38 +01:00
if(int.TryParse(Console.ReadLine().ToLowerInvariant().Trim(), out httpsReversePort))
{
if(httpsReversePort != 443)
{
url += (":" + httpsReversePort);
}
}
else
{
added proxy prefix
2017-11-20 13:57:26 +01:00
Console.WriteLine("Invalid proxy HTTPS port.");
Support for reverse proxy in setup script (#139) * Added option for when using reverse proxy to setup script * Removed debug console.write
2017-11-20 13:53:38 +01:00
httpReversePort = httpsReversePort = default(int);
}
}
else if(httpReversePort != 80)
{
url += (":" + httpReversePort);
}
}
else
{
added proxy prefix
2017-11-20 13:57:26 +01:00
Console.WriteLine("Invalid proxy HTTP port.");
Support for reverse proxy in setup script (#139) * Added option for when using reverse proxy to setup script * Removed debug console.write
2017-11-20 13:53:38 +01:00
}
}
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
}
setup updates and added mac support to conpose
2017-08-11 20:43:46 +02:00
Console.Write("(!) Do you want to use push notifications? (y/n): ");
builders and update rebuilds
2017-10-24 04:45:59 +02:00
var push = Console.ReadLine().ToLowerInvariant() == "y";
push registration through relay apis
2017-08-11 14:57:31 +02:00
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
var nginxBuilder = new NginxConfigBuilder(domain, url, ssl, selfSignedSsl, letsEncrypt);
nginxBuilder.BuildForInstaller();
builders and update rebuilds
2017-10-24 04:45:59 +02:00
var environmentFileBuilder = new EnvironmentFileBuilder
{
DatabasePassword = Helpers.SecureRandomString(32),
cert builder
2017-10-24 14:45:48 +02:00
Domain = domain,
IdentityCertPassword = identityCertPassword,
builders and update rebuilds
2017-10-24 04:45:59 +02:00
InstallationId = _installationId,
InstallationKey = _installationKey,
OutputDirectory = outputDir,
Push = push,
Url = url
};
build environment files from setup
2017-11-07 04:55:15 +01:00
environmentFileBuilder.BuildForInstaller();
builders and update rebuilds
2017-10-24 04:45:59 +02:00
adjust web appsettings overrides
2017-12-21 04:48:51 +01:00
var appSettingsBuilder = new AppSettingsBuilder();
builders and update rebuilds
2017-10-24 04:45:59 +02:00
appSettingsBuilder.Build();
var appIdBuilder = new AppIdBuilder(url);
appIdBuilder.Build();
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
pass versions through params
2017-11-07 16:54:00 +01:00
var dockerComposeBuilder = new DockerComposeBuilder(_hostOs, _webVersion, _coreVersion);
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
dockerComposeBuilder.BuildForInstaller(httpPort, httpsPort);
docker setup
2017-08-07 22:31:00 +02:00
}
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
private static void Update()
{
if(_parameters.ContainsKey("db"))
{
MigrateDatabase();
}
builders and update rebuilds
2017-10-24 04:45:59 +02:00
else
{
RebuildConfigs();
}
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
}
print environment after start
2017-08-24 17:16:01 +02:00
private static void PrintEnvironment()
{
var vaultUrl = Helpers.GetValueFronEnvFile("global", "globalSettings__baseServiceUri__vault");
env print updates
2017-08-24 17:35:16 +02:00
Console.WriteLine("\nbitwarden is up and running!");
Console.WriteLine("===================================================");
PrintEnvironment update commands
2017-11-09 02:54:39 +01:00
Console.WriteLine("\nvisit {0}", vaultUrl);
Console.Write("to update, run ");
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
if(_hostOs == "win")
print environment after start
2017-08-24 17:16:01 +02:00
{
PrintEnvironment update commands
2017-11-09 02:54:39 +01:00
Console.Write("'.\\bitwarden.ps1 -updateself' and then '.\\bitwarden.ps1 -update'");
print environment after start
2017-08-24 17:16:01 +02:00
}
else
{
PrintEnvironment update commands
2017-11-09 02:54:39 +01:00
Console.Write("'./bitwarden.sh updateself' and then './bitwarden.sh update'");
print environment after start
2017-08-24 17:16:01 +02:00
}
env print updates
2017-08-24 17:35:16 +02:00
Console.WriteLine("\n");
print environment after start
2017-08-24 17:16:01 +02:00
}
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
private static void MigrateDatabase()
{
Console.WriteLine("Migrating database.");
print environment after start
2017-08-24 17:16:01 +02:00
var dbPass = Helpers.GetValueFronEnvFile("mssql", "SA_PASSWORD");
fix mssql connection string in setup
2017-12-21 05:20:12 +01:00
var masterConnectionString = Helpers.MakeSqlConnectionString(
"bitwarden-mssql", "master", "sa", dbPass ?? string.Empty);
var vaultConnectionString = Helpers.MakeSqlConnectionString(
"bitwarden-mssql", "vault", "sa", dbPass ?? string.Empty);
create db on update if needed
2017-08-21 15:57:09 +02:00
using(var connection = new SqlConnection(masterConnectionString))
{
var command = new SqlCommand(
"IF ((SELECT COUNT(1) FROM sys.databases WHERE [name] = 'vault') = 0) CREATE DATABASE [vault];",
connection);
command.Connection.Open();
command.ExecuteNonQuery();
}
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
var upgrader = DeployChanges.To
create db on update if needed
2017-08-21 15:57:09 +02:00
.SqlDatabase(vaultConnectionString)
mssql image setup script, db up migrations with upgrade from setup
2017-08-19 00:22:25 +02:00
.JournalToSqlTable("dbo", "Migration")
.WithScriptsAndCodeEmbeddedInAssembly(Assembly.GetExecutingAssembly(),
s => s.Contains($".DbScripts.") && !s.Contains(".Archive."))
.WithTransaction()
.WithExecutionTimeout(new TimeSpan(0, 5, 0))
.LogToConsole()
.Build();
var result = upgrader.PerformUpgrade();
if(result.Successful)
{
Console.WriteLine("Migration successful.");
}
else
{
Console.WriteLine("Migration failed.");
}
}
validate bitwarden installation id
2017-08-19 15:33:14 +02:00
private static bool ValidateInstallation()
{
host endpoint
2017-08-25 18:43:16 +02:00
Console.Write("(!) Enter your installation id (get it at https://bitwarden.com/host): ");
install validation fixes
2017-08-19 15:56:55 +02:00
var installationId = Console.ReadLine();
validate bitwarden installation id
2017-08-19 15:33:14 +02:00
Guid installationidGuid;
install validation fixes
2017-08-19 15:56:55 +02:00
if(!Guid.TryParse(installationId.Trim(), out installationidGuid))
validate bitwarden installation id
2017-08-19 15:33:14 +02:00
{
Console.WriteLine("Invalid installation id.");
return false;
}
install validation fixes
2017-08-19 15:56:55 +02:00
_installationId = installationidGuid;
validate bitwarden installation id
2017-08-19 15:33:14 +02:00
Console.Write("(!) Enter your installation key: ");
_installationKey = Console.ReadLine();
try
{
var response = new HttpClient().GetAsync("https://api.bitwarden.com/installations/" + _installationId)
.GetAwaiter().GetResult();
if(!response.IsSuccessStatusCode)
{
if(response.StatusCode == System.Net.HttpStatusCode.NotFound)
{
Console.WriteLine("Invalid installation id.");
}
else
{
Console.WriteLine("Unable to validate installation id.");
}
return false;
}
var resultString = response.Content.ReadAsStringAsync().GetAwaiter().GetResult();
var result = JsonConvert.DeserializeObject<dynamic>(resultString);
if(!(bool)result.Enabled)
{
Console.WriteLine("Installation id has been disabled.");
return false;
}
return true;
}
catch
{
Console.WriteLine("Unable to validate installation id. Problem contacting bitwarden server.");
return false;
}
}
builders and update rebuilds
2017-10-24 04:45:59 +02:00
private static void RebuildConfigs()
docker setup
2017-08-07 22:31:00 +02:00
{
build environment files from setup
2017-11-07 04:55:15 +01:00
var environmentFileBuilder = new EnvironmentFileBuilder();
environmentFileBuilder.BuildForUpdater();
builders and update rebuilds
2017-10-24 04:45:59 +02:00
var url = Helpers.GetValueFronEnvFile("global", "globalSettings__baseServiceUri__vault");
if(!Uri.TryCreate(url, UriKind.Absolute, out Uri uri))
docker setup
2017-08-07 22:31:00 +02:00
{
builders and update rebuilds
2017-10-24 04:45:59 +02:00
Console.WriteLine("Unable to determine existing installation url.");
return;
docker setup
2017-08-07 22:31:00 +02:00
}
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
builders and update rebuilds
2017-10-24 04:45:59 +02:00
var domain = uri.Host;
docker setup
2017-08-07 22:31:00 +02:00
proper http->https redirect with custom ports
2017-11-08 04:35:36 +01:00
var nginxBuilder = new NginxConfigBuilder(domain, url);
builders and update rebuilds
2017-10-24 04:45:59 +02:00
nginxBuilder.BuildForUpdater();
docker setup
2017-08-07 22:31:00 +02:00
adjust web appsettings overrides
2017-12-21 04:48:51 +01:00
var appSettingsBuilder = new AppSettingsBuilder();
builders and update rebuilds
2017-10-24 04:45:59 +02:00
appSettingsBuilder.Build();
make web appsettings overrides
2017-08-08 03:16:56 +02:00
builders and update rebuilds
2017-10-24 04:45:59 +02:00
var appIdBuilder = new AppIdBuilder(url);
appIdBuilder.Build();
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
pass versions through params
2017-11-07 16:54:00 +01:00
var dockerComposeBuilder = new DockerComposeBuilder(_hostOs, _webVersion, _coreVersion);
build docker compose and allow custom ports
2017-11-06 23:28:02 +01:00
dockerComposeBuilder.BuildForUpdater();
FIDO U2F facet fiel headers
2017-08-08 18:29:59 +02:00
}
docker setup
2017-08-07 22:31:00 +02:00
private static IDictionary<string, string> ParseParameters()
{
var dict = new Dictionary<string, string>();
for(var i = 0; i < _args.Length; i = i + 2)
{
if(!_args[i].StartsWith("-"))
{
continue;
}
dict.Add(_args[i].Substring(1), _args[i + 1]);
}
return dict;
}
}
}
Reference in New Issue Copy Permalink