OpenSlides/proxy/entrypoint

#!/bin/sh

set -e

config=/etc/caddy/config.json
base=/caddy_base.json

# set defaults in base
ACTION_HOST="${ACTION_HOST:-backend}" ACTION_PORT="${ACTION_PORT:-9002}" \
PRESENTER_HOST="${PRESENTER_HOST:-backend}" PRESENTER_PORT="${PRESENTER_PORT:-9003}" \
AUTOUPDATE_HOST="${AUTOUPDATE_HOST:-autoupdate}" AUTOUPDATE_PORT="${AUTOUPDATE_PORT:-9012}" \
ICC_HOST="${ICC_HOST:-icc}" ICC_PORT="${ICC_PORT:-9013}" \
AUTH_HOST="${AUTH_HOST:-auth}" AUTH_PORT="${AUTH_PORT:-9004}" \
MEDIA_HOST="${MEDIA_HOST:-media}" MEDIA_PORT="${MEDIA_PORT:-9006}" \
MANAGE_HOST="${MANAGE_HOST:-manage}" MANAGE_PORT="${MANAGE_PORT:-9008}" \
CLIENT_HOST="${CLIENT_HOST:-client}" CLIENT_PORT="${CLIENT_PORT:-9001}" \
envsubst < "$base" > "$base.out" && mv -f "$base.out" "$base"

jq_write() {
  filter=$1
  jq "$filter" "$base" > "$base.out" && mv -f "$base.out" "$base"
}

### HTTPS ###
if [ -n "$ENABLE_LOCAL_HTTPS" ]; then
  [ -f /certs/cert.pem ] && [ -f /certs/key.pem ] || {
    echo "ERROR: no local cert-files provided. Did you run make-localhost-cert.sh?"
    exit 1
  }
  jq_write ".apps.http.servers.srv0.tls_connection_policies = [{ certificate_selection: { any_tag: [ \"cert0\" ] }}]"
  jq_write ".apps.tls = { certificates: { load_files: [{ certificate: \"/certs/cert.pem\", key: \"/certs/key.pem\", tags: [ \"cert0\" ] }] }}"
else
  if [ -n "$ENABLE_AUTO_HTTPS" ]; then
    if [ -n "$EXTERNAL_ADDRESS" ]; then
      echo "INFO: For the automatic https to work ports 443 and 80 of the host must be
  directed to 8000 and 8001 of this container"
      jq_write "del(.apps.http.servers.srv0.automatic_https)" # disabled in base
      jq_write ".apps.http.https_port = 8000"
      jq_write ".apps.http.http_port = 8001"
      jq_write ".apps.http.servers.srv0.routes[-1].match = [{ host: [\"$EXTERNAL_ADDRESS\"]}]"

      if [ -n "$ACME_ENDPOINT" ]; then
        jq_write ".apps.tls.automation.policies[0].issuers[0].ca = \"${ACME_ENDPOINT}\""
      fi
    else
      echo "ERROR: EXTERNAL_ADDRESS needed for automatic HTTPS / cert generation"
      exit 1
    fi
  fi
fi

mv "$base" "$config"

exec "$@"
Update submodules and use Caddy 2021-03-15 14:17:07 +01:00			`#!/bin/sh`

			`set -e`

add auto https support + manage router by header switch from caddy file to native json 2021-09-27 13:17:41 +02:00			`config=/etc/caddy/config.json`
			`base=/caddy_base.json`

			`# set defaults in base`
			`ACTION_HOST="${ACTION_HOST:-backend}" ACTION_PORT="${ACTION_PORT:-9002}" \`
			`PRESENTER_HOST="${PRESENTER_HOST:-backend}" PRESENTER_PORT="${PRESENTER_PORT:-9003}" \`
			`AUTOUPDATE_HOST="${AUTOUPDATE_HOST:-autoupdate}" AUTOUPDATE_PORT="${AUTOUPDATE_PORT:-9012}" \`
			`ICC_HOST="${ICC_HOST:-icc}" ICC_PORT="${ICC_PORT:-9013}" \`
			`AUTH_HOST="${AUTH_HOST:-auth}" AUTH_PORT="${AUTH_PORT:-9004}" \`
			`MEDIA_HOST="${MEDIA_HOST:-media}" MEDIA_PORT="${MEDIA_PORT:-9006}" \`
			`MANAGE_HOST="${MANAGE_HOST:-manage}" MANAGE_PORT="${MANAGE_PORT:-9008}" \`
			`CLIENT_HOST="${CLIENT_HOST:-client}" CLIENT_PORT="${CLIENT_PORT:-9001}" \`
			`envsubst < "$base" > "$base.out" && mv -f "$base.out" "$base"`

			`jq_write() {`
			`filter=$1`
			`jq "$filter" "$base" > "$base.out" && mv -f "$base.out" "$base"`
			`}`

			`### HTTPS ###`
			`if [ -n "$ENABLE_LOCAL_HTTPS" ]; then`
			`[ -f /certs/cert.pem ] && [ -f /certs/key.pem ] \|\| {`
			`echo "ERROR: no local cert-files provided. Did you run make-localhost-cert.sh?"`
			`exit 1`
			`}`
			`jq_write ".apps.http.servers.srv0.tls_connection_policies = [{ certificate_selection: { any_tag: [ \"cert0\" ] }}]"`
			`jq_write ".apps.tls = { certificates: { load_files: [{ certificate: \"/certs/cert.pem\", key: \"/certs/key.pem\", tags: [ \"cert0\" ] }] }}"`
Update submodules and use Caddy 2021-03-15 14:17:07 +01:00			`else`
add auto https support + manage router by header switch from caddy file to native json 2021-09-27 13:17:41 +02:00			`if [ -n "$ENABLE_AUTO_HTTPS" ]; then`
			`if [ -n "$EXTERNAL_ADDRESS" ]; then`
			`echo "INFO: For the automatic https to work ports 443 and 80 of the host must be`
			`directed to 8000 and 8001 of this container"`
			`jq_write "del(.apps.http.servers.srv0.automatic_https)" # disabled in base`
			`jq_write ".apps.http.https_port = 8000"`
			`jq_write ".apps.http.http_port = 8001"`
			`jq_write ".apps.http.servers.srv0.routes[-1].match = [{ host: [\"$EXTERNAL_ADDRESS\"]}]"`

			`if [ -n "$ACME_ENDPOINT" ]; then`
			`jq_write ".apps.tls.automation.policies[0].issuers[0].ca = \"${ACME_ENDPOINT}\""`
			`fi`
			`else`
			`echo "ERROR: EXTERNAL_ADDRESS needed for automatic HTTPS / cert generation"`
			`exit 1`
			`fi`
			`fi`
Update submodules and use Caddy 2021-03-15 14:17:07 +01:00			`fi`

add auto https support + manage router by header switch from caddy file to native json 2021-09-27 13:17:41 +02:00			`mv "$base" "$config"`

			`exec "$@"`