-
Notifications
You must be signed in to change notification settings - Fork 91
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #81 from seb-elico/10.0.1.0-fix-chown-volumes
[MRG][10.0.1.0] Port #78
- Loading branch information
Showing
5 changed files
with
95 additions
and
63 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -20,12 +20,32 @@ function man { | |
set -e | ||
} | ||
|
||
function _ensure_odoo_user_owns_folder_if_exists { | ||
if [ -d $1 ]; then | ||
chown $odoo_user:$odoo_user $1 | ||
function _ensure_odoo_user_owns_volume { | ||
# Make sure the folder exists | ||
if [ -d "$1" ]; then | ||
# Check if the volume has been mounted read-only | ||
mount_type=$( cat /proc/mounts | grep "\s$1\s" | \ | ||
awk '{print tolower(substr($4,0,3))}' ) | ||
|
||
if [ "$mount_type" != 'ro' ]; then | ||
# Set target user as owner | ||
chown "$odoo_user":"$odoo_user" "$1" | ||
else | ||
echo $log_src[`date +%F.%H:%M:%S`]' Read-only volume:' "$1" | ||
fi | ||
fi | ||
} | ||
|
||
function _ensure_odoo_user_owns_volumes { | ||
_ensure_odoo_user_owns_volume /opt/odoo/etc | ||
_ensure_odoo_user_owns_volume /opt/odoo/additional_addons | ||
_ensure_odoo_user_owns_volume /opt/odoo/data | ||
_ensure_odoo_user_owns_volume /opt/odoo/data/filestore | ||
_ensure_odoo_user_owns_volume /opt/odoo/data/sessions | ||
_ensure_odoo_user_owns_volume /opt/odoo/data/addons | ||
_ensure_odoo_user_owns_volume /opt/odoo/ssh | ||
} | ||
|
||
function _update_odoo_conf_params { | ||
# Loop over all the "ODOO_" ENV variables (see `<<<` after `done`) | ||
while read -r env_var; do | ||
|
@@ -35,38 +55,39 @@ function _update_odoo_conf_params { | |
|
||
# Get the value of the corresponding ENV variable and escape slashes | ||
val=${!env_var} | ||
val=$( echo $val | sed 's/\//\\\//g') | ||
val=$( echo "$val" | sed 's/\//\\\//g') | ||
|
||
# FIXME Should not be an external script (see reason in script header) | ||
bash /app/bin/update_odoo_param.sh $odoo_user $odoo_conf_file $odoo_param $val | ||
bash /app/bin/update_odoo_param.sh "$odoo_user" "$odoo_conf_file" \ | ||
"$odoo_param" "$val" | ||
|
||
# Unset the environment variable for security purpose | ||
unset $env_var | ||
unset "$env_var" | ||
done <<< "$( printenv | grep '^ODOO_' | sed 's/=.*//g' )" | ||
} | ||
|
||
function _setup_ssh_key { | ||
# Create SSH config folder in $HOME folder of Odoo target user | ||
ssh_folder=$( getent passwd $odoo_user | cut -d: -f6 )/.ssh | ||
sudo -i -u $odoo_user mkdir $ssh_folder | ||
ssh_folder=$( getent passwd "$odoo_user" | cut -d: -f6 )/.ssh | ||
sudo -i -u "$odoo_user" mkdir "$ssh_folder" | ||
|
||
# Copy SSH private key from /opt/odoo/ssh | ||
sudo -i -u $odoo_user cp /opt/odoo/ssh/id_rsa $ssh_folder | ||
sudo -i -u "$odoo_user" cp /opt/odoo/ssh/id_rsa "$ssh_folder" | ||
|
||
echo $log_src[`date +%F.%H:%M:%S`]' Scanning GitHub key...' | ||
# Hide ssh-keyscan stderr output since it's actually log message | ||
ssh-keyscan github.com 2> /dev/null | \ | ||
sudo -i -u $odoo_user tee $ssh_folder/known_hosts > /dev/null | ||
sudo -i -u "$odoo_user" tee "$ssh_folder/known_hosts" > /dev/null | ||
|
||
# Bind SSH key to GitHub host | ||
echo "host github.com | ||
HostName github.com | ||
User git | ||
IdentityFile $ssh_folder/id_rsa" | \ | ||
sudo -i -u $odoo_user tee $ssh_folder/config > /dev/null | ||
sudo -i -u "$odoo_user" tee "$ssh_folder/config" > /dev/null | ||
|
||
# Secure SSH key | ||
chmod 400 $ssh_folder/id_rsa | ||
chmod 400 "$ssh_folder/id_rsa" | ||
} | ||
|
||
function _download_addons { | ||
|
@@ -75,8 +96,8 @@ function _download_addons { | |
# 2) There's a file called `oca_dependencies.txt` at the root of extra addons folder | ||
if [ "$ADDONS_REPO" -o -a /opt/odoo/additional_addons/oca_dependencies.txt ]; then | ||
# Git config for target user | ||
sudo -i -u $odoo_user git config --global user.email "[email protected]" | ||
sudo -i -u $odoo_user git config --global user.name "Elico Corp - Odoo Docker" | ||
sudo -i -u "$odoo_user" git config --global user.email "[email protected]" | ||
sudo -i -u "$odoo_user" git config --global user.name "Elico Corp - Odoo Docker" | ||
|
||
# Setup SSH key | ||
if [ -a /opt/odoo/ssh/id_rsa ]; then | ||
|
@@ -89,10 +110,12 @@ function _download_addons { | |
fi | ||
|
||
echo $log_src[`date +%F.%H:%M:%S`]' Downloading additional addons...' | ||
sudo -i -u $odoo_user python /opt/odoo/auto_addons/addons.py $FETCH_OCA_DEPENDENCIES $ADDONS_REPO | ||
sudo -i -u "$odoo_user" python /opt/odoo/auto_addons/addons.py \ | ||
"$FETCH_OCA_DEPENDENCIES" "$ADDONS_REPO" | ||
else | ||
# No additional addons to download | ||
sudo -i -u $odoo_user bash /opt/odoo/auto_addons/no_addons.sh $odoo_conf_file | ||
# FIXME Should not be an external script (see reason in script header) | ||
bash /app/bin/no_addons.sh "$odoo_user" "$odoo_conf_file" | ||
fi | ||
} | ||
|
||
|
@@ -106,13 +129,7 @@ function start { | |
# If the folders mapped to the volumes didn't exist, Docker has created | ||
# them with root instead of the target Odoo user. Making sure to give back | ||
# the ownership to the corresponding host user. | ||
chown $odoo_user:$odoo_user /opt/odoo/{etc,additional_addons,data,var} \ | ||
/opt/odoo/var/{run,log,egg-cache} | ||
|
||
# The following folders might not exist | ||
_ensure_odoo_user_owns_folder_if_exists /opt/odoo/data/filestore | ||
_ensure_odoo_user_owns_folder_if_exists /opt/odoo/data/sessions | ||
_ensure_odoo_user_owns_folder_if_exists /opt/odoo/data/addons | ||
_ensure_odoo_user_owns_volumes | ||
|
||
echo $log_src[`date +%F.%H:%M:%S`]' Checking special requirements...' | ||
bash /opt/scripts/startup.sh | ||
|
@@ -126,29 +143,30 @@ function start { | |
|
||
echo $log_src[`date +%F.%H:%M:%S`]' Running odoo...' | ||
set +e | ||
if [ ! -e $1 ]; then | ||
echo $log_src[`date +%F.%H:%M:%S`]' ...with additional args: ' $* | ||
if [ ! -e "$1" ]; then | ||
echo $log_src[`date +%F.%H:%M:%S`]' ...with additional args:' "$*" | ||
fi | ||
sudo -i -u $odoo_user /usr/bin/python \ | ||
/opt/odoo/sources/odoo/$BINARY_NAME \ | ||
-c $odoo_conf_file \ | ||
$* | ||
sudo -i -u "$odoo_user" /usr/bin/python \ | ||
"/opt/odoo/sources/odoo/$BINARY_NAME" \ | ||
-c "$odoo_conf_file" \ | ||
$* | ||
|
||
SERVICE_PID=$! | ||
SERVICE_PID="$!" | ||
set -e | ||
} | ||
|
||
# smart shutdown on SIGINT and SIGTERM | ||
function on_exit() { | ||
kill -TERM $SERVICE_PID | ||
wait $SERVICE_PID 2> /dev/null | ||
kill -TERM "$SERVICE_PID" | ||
wait "$SERVICE_PID" 2> /dev/null | ||
exit 0 | ||
} | ||
trap on_exit INT TERM | ||
|
||
echo $log_src[`date +%F.%H:%M:%S`]' Running command...' | ||
for arg in "$*" | ||
do | ||
# Not protected with `"` in order to pass the arguments | ||
$arg | ||
done | ||
|
||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,27 +1,28 @@ | ||
#!/bin/bash | ||
# | ||
# FIXME the below code should be in boot but for an unknown reason, the | ||
# instruction `grep -q "^$param\s*=" $odoo_conf_file` fails to run in boot, when it | ||
# works fine here. | ||
# instruction `grep` fails to run in boot, when it works fine here. | ||
# Both are bash scripts, but: | ||
# - boot is run by Docker as an entrypoint | ||
# - target_user.sh is run using bash command | ||
# | ||
log_src='['${0##*/}']' | ||
|
||
odoo_user=$1 | ||
odoo_conf_file=$2 | ||
odoo_param=$3 | ||
val=$4 | ||
odoo_user="$1" | ||
odoo_conf_file="$2" | ||
odoo_param="$3" | ||
val="$4" | ||
|
||
# Check if the conf already contains that parameter | ||
grep -q "^$odoo_param\s*=" $odoo_conf_file | ||
found=$? | ||
grep -q "^$odoo_param\s*=" "$odoo_conf_file" | ||
found="$?" | ||
|
||
if [ $found -eq 0 ]; then | ||
if [ "$found" -eq 0 ]; then | ||
# Substitute the value | ||
sudo -i -u $odoo_user sed -i "s/^$odoo_param\s*=.*/$odoo_param = $val/g" $odoo_conf_file | ||
sudo -i -u "$odoo_user" sed -i \ | ||
"s/^$odoo_param\s*=.*/$odoo_param = $val/g" "$odoo_conf_file" | ||
else | ||
# Append the parameter (hide tee output to stdout) | ||
echo "$odoo_param = $val" | sudo -i -u $odoo_user tee -a $odoo_conf_file > /dev/null | ||
echo "$odoo_param = $val" | \ | ||
sudo -i -u "$odoo_user" tee -a "$odoo_conf_file" > /dev/null | ||
fi |