mirror of
https://github.com/zabbix/zabbix-docker.git
synced 2024-11-16 04:43:49 +01:00
304 lines
9.1 KiB
Bash
Executable File
304 lines
9.1 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
set -o pipefail
|
|
|
|
set +e
|
|
|
|
# Script trace mode
|
|
if [ "${DEBUG_MODE}" == "true" ]; then
|
|
set -o xtrace
|
|
fi
|
|
|
|
# Default Zabbix installation name
|
|
# Used only by Zabbix web-interface
|
|
: ${ZBX_SERVER_NAME:="Zabbix docker"}
|
|
# Default Zabbix server host
|
|
: ${ZBX_SERVER_HOST:="zabbix-server"}
|
|
# Default Zabbix server port number
|
|
: ${ZBX_SERVER_PORT:="10051"}
|
|
|
|
# Default timezone for web interface
|
|
: ${PHP_TZ:="Europe/Riga"}
|
|
|
|
# Default directories
|
|
# Configuration files directory
|
|
ZABBIX_ETC_DIR="/etc/zabbix"
|
|
# Web interface www-root directory
|
|
ZABBIX_WWW_ROOT="/usr/share/zabbix"
|
|
|
|
# usage: file_env VAR [DEFAULT]
|
|
# as example: file_env 'MYSQL_PASSWORD' 'zabbix'
|
|
# (will allow for "$MYSQL_PASSWORD_FILE" to fill in the value of "$MYSQL_PASSWORD" from a file)
|
|
# unsets the VAR_FILE afterwards and just leaving VAR
|
|
file_env() {
|
|
local var="$1"
|
|
local fileVar="${var}_FILE"
|
|
local defaultValue="${2:-}"
|
|
|
|
if [ "${!var:-}" ] && [ "${!fileVar:-}" ]; then
|
|
echo "**** Both variables $var and $fileVar are set (but are exclusive)"
|
|
exit 1
|
|
fi
|
|
|
|
local val="$defaultValue"
|
|
|
|
if [ "${!var:-}" ]; then
|
|
val="${!var}"
|
|
echo "** Using ${var} variable from ENV"
|
|
elif [ "${!fileVar:-}" ]; then
|
|
if [ ! -f "${!fileVar}" ]; then
|
|
echo "**** Secret file \"${!fileVar}\" is not found"
|
|
exit 1
|
|
fi
|
|
val="$(< "${!fileVar}")"
|
|
echo "** Using ${var} variable from secret file"
|
|
fi
|
|
export "$var"="$val"
|
|
unset "$fileVar"
|
|
}
|
|
|
|
escape_spec_char() {
|
|
local var_value=$1
|
|
|
|
var_value="${var_value//\\/\\\\}"
|
|
var_value="${var_value//[$'\n']/}"
|
|
var_value="${var_value//\//\\/}"
|
|
var_value="${var_value//./\\.}"
|
|
var_value="${var_value//\*/\\*}"
|
|
var_value="${var_value//^/\\^}"
|
|
var_value="${var_value//\$/\\\$}"
|
|
var_value="${var_value//\&/\\\&}"
|
|
var_value="${var_value//\[/\\[}"
|
|
var_value="${var_value//\]/\\]}"
|
|
|
|
echo "$var_value"
|
|
}
|
|
|
|
update_config_var() {
|
|
local config_path=$1
|
|
local var_name=$2
|
|
local var_value=$3
|
|
local is_multiple=$4
|
|
|
|
if [ ! -f "$config_path" ]; then
|
|
echo "**** Configuration file '$config_path' does not exist"
|
|
return
|
|
fi
|
|
|
|
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... "
|
|
|
|
# Remove configuration parameter definition in case of unset parameter value
|
|
if [ -z "$var_value" ]; then
|
|
sed -i -e "/^$var_name=/d" "$config_path"
|
|
echo "removed"
|
|
return
|
|
fi
|
|
|
|
# Remove value from configuration parameter in case of double quoted parameter value
|
|
if [ "$var_value" == '""' ]; then
|
|
sed -i -e "/^$var_name=/s/=.*/=/" "$config_path"
|
|
echo "undefined"
|
|
return
|
|
fi
|
|
|
|
# Use full path to a file for TLS related configuration parameters
|
|
if [[ $var_name =~ ^TLS.*File$ ]]; then
|
|
var_value=$ZABBIX_USER_HOME_DIR/enc/$var_value
|
|
fi
|
|
|
|
# Escaping characters in parameter value
|
|
var_value=$(escape_spec_char "$var_value")
|
|
|
|
if [ "$(grep -E "^$var_name=" $config_path)" ] && [ "$is_multiple" != "true" ]; then
|
|
sed -i -e "/^$var_name=/s/=.*/=$var_value/" "$config_path"
|
|
echo "updated"
|
|
elif [ "$(grep -Ec "^# $var_name=" $config_path)" -gt 1 ]; then
|
|
sed -i -e "/^[#;] $var_name=$/i\\$var_name=$var_value" "$config_path"
|
|
echo "added first occurrence"
|
|
else
|
|
sed -i -e "/^[#;] $var_name=/s/.*/&\n$var_name=$var_value/" "$config_path"
|
|
echo "added"
|
|
fi
|
|
|
|
}
|
|
|
|
update_config_multiple_var() {
|
|
local config_path=$1
|
|
local var_name=$2
|
|
local var_value=$3
|
|
|
|
var_value="${var_value%\"}"
|
|
var_value="${var_value#\"}"
|
|
|
|
local IFS=,
|
|
local OPT_LIST=($var_value)
|
|
|
|
for value in "${OPT_LIST[@]}"; do
|
|
update_config_var $config_path $var_name $value true
|
|
done
|
|
}
|
|
|
|
# Check prerequisites for PostgreSQL database
|
|
check_variables_postgresql() {
|
|
file_env POSTGRES_USER
|
|
file_env POSTGRES_PASSWORD
|
|
|
|
: ${DB_SERVER_HOST:="postgres-server"}
|
|
: ${DB_SERVER_PORT:="5432"}
|
|
: ${CREATE_ZBX_DB_USER:="false"}
|
|
|
|
DB_SERVER_ROOT_USER=${POSTGRES_USER:-"postgres"}
|
|
DB_SERVER_ROOT_PASS=${POSTGRES_PASSWORD:-""}
|
|
|
|
DB_SERVER_ZBX_USER=${POSTGRES_USER:-"zabbix"}
|
|
DB_SERVER_ZBX_PASS=${POSTGRES_PASSWORD:-"zabbix"}
|
|
|
|
: ${DB_SERVER_SCHEMA:="public"}
|
|
|
|
DB_SERVER_DBNAME=${POSTGRES_DB:-"zabbix"}
|
|
}
|
|
|
|
check_db_connect_postgresql() {
|
|
echo "********************"
|
|
echo "* DB_SERVER_HOST: ${DB_SERVER_HOST}"
|
|
echo "* DB_SERVER_PORT: ${DB_SERVER_PORT}"
|
|
echo "* DB_SERVER_DBNAME: ${DB_SERVER_DBNAME}"
|
|
echo "* DB_SERVER_SCHEMA: ${DB_SERVER_SCHEMA}"
|
|
if [ "${USE_DB_ROOT_USER}" == "true" ]; then
|
|
echo "* DB_SERVER_ROOT_USER: ${DB_SERVER_ROOT_USER}"
|
|
echo "* DB_SERVER_ROOT_PASS: ${DB_SERVER_ROOT_PASS}"
|
|
else
|
|
DB_SERVER_ROOT_USER=${DB_SERVER_ZBX_USER}
|
|
DB_SERVER_ROOT_PASS=${DB_SERVER_ZBX_PASS}
|
|
fi
|
|
echo "* DB_SERVER_ZBX_USER: ${DB_SERVER_ZBX_USER}"
|
|
echo "* DB_SERVER_ZBX_PASS: ${DB_SERVER_ZBX_PASS}"
|
|
echo "********************"
|
|
|
|
if [ -n "${DB_SERVER_ZBX_PASS}" ]; then
|
|
export PGPASSWORD="${DB_SERVER_ZBX_PASS}"
|
|
fi
|
|
|
|
WAIT_TIMEOUT=5
|
|
|
|
if [ -n "${DB_SERVER_SCHEMA}" ]; then
|
|
PGOPTIONS="--search_path=${DB_SERVER_SCHEMA}"
|
|
export PGOPTIONS
|
|
fi
|
|
|
|
while [ ! "$(psql -h ${DB_SERVER_HOST} -p ${DB_SERVER_PORT} -U ${DB_SERVER_ROOT_USER} -d ${DB_SERVER_DBNAME} -l -q 2>/dev/null)" ]; do
|
|
echo "**** PostgreSQL server is not available. Waiting $WAIT_TIMEOUT seconds..."
|
|
sleep $WAIT_TIMEOUT
|
|
done
|
|
|
|
unset PGPASSWORD
|
|
unset PGOPTIONS
|
|
}
|
|
|
|
psql_query() {
|
|
query=$1
|
|
db=$2
|
|
|
|
local result=""
|
|
|
|
if [ -n "${DB_SERVER_ZBX_PASS}" ]; then
|
|
export PGPASSWORD="${DB_SERVER_ZBX_PASS}"
|
|
fi
|
|
|
|
if [ -n "${DB_SERVER_SCHEMA}" ]; then
|
|
PGOPTIONS="--search_path=${DB_SERVER_SCHEMA}"
|
|
export PGOPTIONS
|
|
fi
|
|
|
|
result=$(psql -A -q -t -h ${DB_SERVER_HOST} -p ${DB_SERVER_PORT} \
|
|
-U ${DB_SERVER_ROOT_USER} -c "$query" $db 2>/dev/null);
|
|
|
|
unset PGPASSWORD
|
|
unset PGOPTIONS
|
|
|
|
echo $result
|
|
}
|
|
|
|
prepare_web_server_apache() {
|
|
APACHE_SITES_DIR=/etc/apache2/conf.d
|
|
|
|
echo "** Adding Zabbix virtual host (HTTP)"
|
|
if [ -f "$ZABBIX_ETC_DIR/apache.conf" ]; then
|
|
ln -s "$ZABBIX_ETC_DIR/apache.conf" "$APACHE_SITES_DIR/zabbix.conf"
|
|
else
|
|
echo "**** Impossible to enable HTTP virtual host"
|
|
fi
|
|
|
|
if [ -f "/etc/ssl/apache2/ssl.crt" ] && [ -f "/etc/ssl/apache2/ssl.key" ]; then
|
|
echo "** Adding Zabbix virtual host (HTTPS)"
|
|
if [ -f "$ZABBIX_ETC_DIR/apache_ssl.conf" ]; then
|
|
ln -s "$ZABBIX_ETC_DIR/apache_ssl.conf" "$APACHE_SITES_DIR/zabbix_ssl.conf"
|
|
else
|
|
echo "**** Impossible to enable HTTPS virtual host"
|
|
fi
|
|
else
|
|
echo "**** Impossible to enable SSL support for Apache2. Certificates are missed."
|
|
fi
|
|
}
|
|
|
|
prepare_zbx_web_config() {
|
|
local server_name=""
|
|
|
|
echo "** Preparing Zabbix frontend configuration file"
|
|
|
|
ZBX_WWW_ROOT="/usr/share/zabbix"
|
|
ZBX_WEB_CONFIG="$ZABBIX_ETC_DIR/web/zabbix.conf.php"
|
|
PHP_CONFIG_FILE="/etc/php7/conf.d/99-zabbix.ini"
|
|
|
|
update_config_var "$PHP_CONFIG_FILE" "max_execution_time" "${ZBX_MAXEXECUTIONTIME:-"600"}"
|
|
update_config_var "$PHP_CONFIG_FILE" "memory_limit" "${ZBX_MEMORYLIMIT:-"128M"}"
|
|
update_config_var "$PHP_CONFIG_FILE" "post_max_size" "${ZBX_POSTMAXSIZE:-"16M"}"
|
|
update_config_var "$PHP_CONFIG_FILE" "upload_max_filesize" "${ZBX_UPLOADMAXFILESIZE:-"2M"}"
|
|
update_config_var "$PHP_CONFIG_FILE" "max_input_time" "${ZBX_MAXINPUTTIME:-"300"}"
|
|
update_config_var "$PHP_CONFIG_FILE" "date.timezone" "${PHP_TZ}"
|
|
|
|
ZBX_HISTORYSTORAGETYPES=${ZBX_HISTORYSTORAGETYPES:-"[]"}
|
|
|
|
# Escaping characters in parameter value
|
|
server_name=$(escape_spec_char "${ZBX_SERVER_NAME}")
|
|
server_user=$(escape_spec_char "${DB_SERVER_ZBX_USER}")
|
|
server_pass=$(escape_spec_char "${DB_SERVER_ZBX_PASS}")
|
|
history_storage_url=$(escape_spec_char "${ZBX_HISTORYSTORAGEURL}")
|
|
history_storage_types=$(escape_spec_char "${ZBX_HISTORYSTORAGETYPES}")
|
|
|
|
sed -i \
|
|
-e "s/{DB_SERVER_HOST}/${DB_SERVER_HOST}/g" \
|
|
-e "s/{DB_SERVER_PORT}/${DB_SERVER_PORT}/g" \
|
|
-e "s/{DB_SERVER_DBNAME}/${DB_SERVER_DBNAME}/g" \
|
|
-e "s/{DB_SERVER_SCHEMA}/${DB_SERVER_SCHEMA}/g" \
|
|
-e "s/{DB_SERVER_USER}/$server_user/g" \
|
|
-e "s/{DB_SERVER_PASS}/$server_pass/g" \
|
|
-e "s/{ZBX_SERVER_HOST}/${ZBX_SERVER_HOST}/g" \
|
|
-e "s/{ZBX_SERVER_PORT}/${ZBX_SERVER_PORT}/g" \
|
|
-e "s/{ZBX_SERVER_NAME}/$server_name/g" \
|
|
-e "s/{ZBX_HISTORYSTORAGEURL}/$history_storage_url/g" \
|
|
-e "s/{ZBX_HISTORYSTORAGETYPES}/$history_storage_types/g" \
|
|
"$ZBX_WEB_CONFIG"
|
|
|
|
[ -n "${ZBX_SESSION_NAME}" ] && sed -i "/ZBX_SESSION_NAME/s/'[^']*'/'${ZBX_SESSION_NAME}'/2" "$ZBX_WWW_ROOT/include/defines.inc.php"
|
|
}
|
|
|
|
prepare_web() {
|
|
echo "** Preparing Zabbix web-interface"
|
|
|
|
check_variables_postgresql
|
|
check_db_connect_postgresql
|
|
prepare_web_server_apache
|
|
prepare_zbx_web_config
|
|
}
|
|
|
|
#################################################
|
|
|
|
if [ "$1" == '/usr/sbin/httpd' ]; then
|
|
prepare_web
|
|
fi
|
|
|
|
exec "$@"
|
|
|
|
#################################################
|