WiS/RPS-Client
1
0
Fork 0
Code Issues Pull Requests Actions Projects Releases 12 Activity
Files
5156f07940a4933e135688b7182ece6e8b433d88
RPS-Client/install.sh
Tim Eertmoed b509d70d06 install.sh aktualisiert 
Config.txt hinzugefügt
2025-02-28 14:31:35 +01:00

160 lines
9.3 KiB
Bash
Raw Blame History

#!/bin/bash
RED='\033[0;31m'
GREEN='\033[0;32m'
NC='\033[0m' # No Color
clear
# Function to print status with a checkmark
print_status() {
echo -e "${GREEN}${NC} ${1} completed."
}
# Update and setup system and packages
echo -e "${RED}${NC} Starting System Update..." | tee -a /var/log/install
sudo apt-get update >>/var/log/install 2>&1 && print_status "System Update"
sudo apt-get full-upgrade -y >>/var/log/install 2>&1 && print_status "System Upgrade"
echo -e "${RED}${NC} Installing required packages..." | tee -a /var/log/install
sudo apt-get install --no-install-recommends realvnc-vnc-server xserver-xorg x11-xserver-utils xinit chromium-browser fonts-noto-color-emoji nfs-common watchdog xdotool rsync -y >>/var/log/install 2>&1 && print_status "Required packages installed"
sudo apt-get autoremove -y >>/var/log/install 2>&1 && print_status "Autoremove"
sudo apt-get clean >>/var/log/install 2>&1 && print_status "Clean"
sudo rm -rf /var/lib/apt/lists/* >>/var/log/install 2>&1 && print_status "Clear cache"
echo -e "${RED}${NC} Configuring Raspberry Pi settings..." | tee -a /var/log/install
print_status ""
# Set needed users
echo -e "${RED}${NC} Creating nescessary directorys..." | tee -a /var/log/install
sudo mkdir -p /overlay >>/var/log/install 2>&1 && print_status "/overlay created"
# Set needed users
echo -e "${RED}${NC} Creating user 'loginuser'..." | tee -a /var/log/install
sudo adduser --disabled-password --gecos "" loginuser >>/var/log/install 2>&1 && print_status "User 'loginuser' created"
# Copy required files
echo -e "${RED}${NC} Copy requiered files..." | tee -a /var/log/install
sudo mkdir -p /etc/chromium/policies/managed /etc/systemd/system/getty@tty1.service.d /usr/bin/custom
declare -A files=(
["/root/rps-client/data/config/config.txt"]="/boot/firmware/config.txt"
["/root/rps-client/data/config/dhclient.conf"]="/etc/dhcp/dhclient.conf"
["/root/rps-client/data/config/override.conf"]="/etc/systemd/system/getty@tty1.service.d/override.conf"
["/root/rps-client/data/config/disable_password_saving.json"]="/etc/chromium/policies/managed/disable_password_saving.json"
["/root/rps-client/data/config/.bash_profile"]="/home/loginuser/.bash_profile"
["/root/rps-client/data/config/.xinitrc"]="/home/loginuser/.xinitrc"
["/root/rps-client/data/scripts/overlayRoot.sh"]="/sbin/overlayRoot.sh"
["/root/rps-client/data/scripts/remove_unused_kernel.sh"]="/root/remove_unused_kernel.sh"
["/root/rps-client/data/scripts/hostname"]="/usr/bin/custom/hostname"
["/root/rps-client/data/scripts/chromium-monitor"]="/usr/bin/custom/chromium-monitor"
["/root/rps-client/data/scripts/watchdog-monitor"]="/usr/bin/custom/watchdog-monitor"
["/root/rps-client/data/service/hostname.service"]="/etc/systemd/system/hostname.service"
["/root/rps-client/data/service/watchdog-monitor.service"]="/etc/systemd/system/watchdog-monitor.service"
["/root/rps-client/data/service/chromium-monitor.service"]="/etc/systemd/system/chromium-monitor.service"
)
RSYNC_OPTS="-a --numeric-ids --info=progress2 --no-owner --no-group"
for src in "${!files[@]}"; do
dst="${files[$src]}"
echo "Copying $src to $dst..."
sudo rsync $RSYNC_OPTS "$src" "$dst" >>/var/log/install 2>&1 && print_status "$src copied to $dst"
done
print_status "All files have been successfully copied"
# Set permissions
echo -e "${RED}${NC} Setting file permissions..." | tee -a /var/log/install
sudo chown loginuser:loginuser -R /home/loginuser >>/var/log/install 2>&1 && print_status "File permissions for 'loginuser' set"
sudo chown wis:wis -R /home/wis >>/var/log/install 2>&1 && print_status "File permissions for 'wis' set"
sudo chmod +x /usr/bin/custom/hostname /usr/bin/custom/chromium-monitor /usr/bin/custom/watchdog-monitor /sbin/overlayRoot.sh >>/var/log/install 2>&1 && print_status "Permissions for script files set"
sudo usermod -aG video loginuser >>/var/log/install 2>&1 && print_status "Permissions for 'loginuser' set"
echo -e "${RED}${NC} Setting permissions for 'loginuser'..." | tee -a /var/log/install
sudo tee /etc/sudoers.d/loginuser >>/var/log/install 2>&1 && print_status "Sudo rights for 'loginuser' set" << 'EOF'
loginuser ALL=(ALL) NOPASSWD: /usr/bin/systemctl stop chromium-monitor, /usr/bin/systemctl start chromium-monitor
loginuser ALL=(ALL) NOPASSWD: /usr/bin/systemctl stop watchdog-monitor, /usr/bin/systemctl start watchdog-monitor
loginuser ALL=(ALL) NOPASSWD: /usr/bin/cat /var/lib/dhcp/*
loginuser ALL=(ALL) NOPASSWD: /usr/bin/cp /etc/watchdog.conf /etc/watchdog.conf.bak
loginuser ALL=(ALL) NOPASSWD: /usr/bin/tee /etc/watchdog.conf, /usr/bin/tee -a /etc/watchdog.conf
loginuser ALL=(ALL) NOPASSWD: /usr/bin/sed -i
loginuser ALL=(ALL) NOPASSWD: /usr/bin/sed -r 's/[x]+/,/g'
loginuser ALL=(ALL) NOPASSWD: /usr/bin/fbset -s
loginuser ALL=(ALL) NOPASSWD: /usr/bin/hostnamectl set-hostname
loginuser ALL=(ALL) NOPASSWD: /usr/sbin/dhclient eth0
loginuser ALL=(ALL) NOPASSWD: /usr/sbin/reboot
EOF
# Disable root
echo -e "${RED}${NC} Disabling root login..." | tee -a /var/log/install
sudo tee /etc/ssh/sshd_config >/dev/null << 'EOF'
PermitRootLogin no
EOF
sudo passwd -l root >>/var/log/install 2>&1 && print_status "Root login disabled"
# Setup logs
echo -e "${RED}${NC} Creating log files..." | tee -a /var/log/install
sudo touch /var/log/watchdog.log /var/log/chromium-monitor.log /var/log/hostname.log >>/var/log/install 2>&1 && print_status "Log files created"
sudo chown loginuser:loginuser /var/log/watchdog.log /var/log/chromium-monitor.log /var/log/hostname.log >>/var/log/install 2>&1 && print_status "Ownership set for log files"
sudo chmod 777 /var/log/watchdog.log /var/log/chromium-monitor.log /var/log/hostname.log >>/var/log/install 2>&1 && print_status "Permissions set for log files"
# Configure services
echo -e "${RED}${NC} Configure services..." | tee -a /var/log/install
sudo systemctl daemon-reload >>/var/log/install 2>&1 && print_status "Daemon reloaded"
sudo systemctl enable hostname chromium-monitor getty@tty1 >>/var/log/install 2>&1 && print_status "Services enabled"
sudo systemctl disable watchdog >>/var/log/install 2>&1 && print_status "Watchdog disabled"
sudo systemctl restart getty@tty1 >>/var/log/install 2>&1 && print_status "getty service restarted"
# Set performance
echo -e "${RED}${NC} Configure performance teaks..." | tee -a /var/log/install
echo "performance" | sudo tee /sys/devices/system/cpu/cpu0/cpufreq/scaling_governor >>/var/log/install 2>&1 && print_status "CPU set to high"
sudo systemctl mask sleep.target suspend.target hibernate.target hybrid-sleep.target >>/var/log/install 2>&1 && print_status "Powercfg off"
# Clean
echo -e "${RED}${NC} Cleaning up installer..." | tee -a /var/log/install
sudo rm -rf ./rps-client >>/var/log/install 2>&1 && print_status "Installer cleaned up"
# Configure VNC-Client
echo -e "${RED}${NC} Configuring VNC..." | tee -a /var/log/install
sudo systemctl enable vncserver-x11-serviced.service >>/var/log/install 2>&1 && print_status "VNC service enabled"
sudo systemctl start vncserver-x11-serviced.service >>/var/log/install 2>&1 && print_status "VNC service started"
CONFIG_FILE="/root/.vnc/config.d/vncserver-x11"
if [ ! -d "$(dirname "$CONFIG_FILE")" ]; then
sudo mkdir -p "$(dirname "$CONFIG_FILE")"
echo -e "${GREEN}${NC} Created directory for VNC config." | tee -a /var/log/install
fi
echo -e "${RED}${NC} Do you want to set a VNC password? (y/n):" | tee -a /var/log/install
read -r config_vnc
if [[ "$config_vnc" =~ ^[Yy](e[Ss]?)?$ ]]; then
sudo vncpasswd
echo -e "${GREEN}${NC} VNC password has been set." | tee -a /var/log/install
else
echo -e "${GREEN}${NC} No VNC password will be set." | tee -a /var/log/install
fi
if [ "$(vncpasswd -o)" = 'none' ]; then
echo "Authentication=none" >> "$CONFIG_FILE"
echo "Geometry=1920x1080" >> "$CONFIG_FILE"
echo "# Version 1.0:" >> "$CONFIG_FILE"
echo "# Created 2024 by Tim Eertmoed, Christian Hampp @ WiS IT-Solutions GmbH, Germany to work on Raspbian as custom PXE init script." >> "$CONFIG_FILE"
print_status "VNC config set to no authentication with geometry 1920x1080." >> /var/log/install 2>&1
else
echo "Authentication=none" >> "$CONFIG_FILE"
echo "Geometry=1920x1080" >> "$CONFIG_FILE"
echo "# Version 1.0:" >> "$CONFIG_FILE"
echo "# Created 2024 by Tim Eertmoed, Christian Hampp @ WiS IT-Solutions GmbH, Germany to work on Raspbian as custom PXE init script." >> "$CONFIG_FILE"
print_status "VNC password is set. Authentication will be required." >> /var/log/install 2>&1
fi
# Remove old kernels
echo -e "${RED}${NC} Do you want to clean up unused kernels? (y/n):" | tee -a /var/log/install
read -r clean_kernels
if [[ "$clean_kernels" =~ ^[Yy](e[Ss]?)?$ ]]; then
echo -e "${RED}${NC} Cleaning up unused kernels..." | tee -a /var/log/install
echo -e "y\ny" | sudo bash ./root/remove_unused_kernel.sh -u -e >>/var/log/install 2>&1 && print_status "Unused kernels cleaned up"
else
echo -e "${RED}${NC} Skipping unused kernel cleanup..." | tee -a /var/log/install
echo -e "${GREEN}${NC} Cleanup has been skipped" | tee -a /var/log/install
fi
# Finish
echo -e "${GREEN}${NC} Installation complete. Press any key to exit..." | tee -a /var/log/install 2>&1
read -n 1 -s
# Version 1.2:
# Created 2024 by Tim Eertmoed, Christian Hampp @ WiS IT-Solutions GmbH, Germany to work on Raspian as custom pxe init script.
Reference in New Issue View Git Blame Copy Permalink