From ed97e52c602d202d735cb176f8e3b6bda020b1ad Mon Sep 17 00:00:00 2001
From: Ravinou <dev@r4ven.fr>
Date: Sat, 23 Sep 2023 19:08:34 +0200
Subject: [PATCH] feat: get SSH fingerprints and env

---
 docker-bw-init.sh | 42 ++++++++++++++++++++++++++++++++++++++----
 1 file changed, 38 insertions(+), 4 deletions(-)

diff --git a/docker-bw-init.sh b/docker-bw-init.sh
index a621f06..fd69561 100755
--- a/docker-bw-init.sh
+++ b/docker-bw-init.sh
@@ -6,9 +6,16 @@ SSH_DIR="/home/borgwarehouse/.ssh"
 AUTHORIZED_KEYS_FILE="$SSH_DIR/authorized_keys"
 REPOS_DIR="/home/borgwarehouse/repos"
 
+print_green() {
+  echo -e "\e[92m$1\e[0m";
+}
+print_red() { 
+  echo -e "\e[91m$1\e[0m";
+}
+
 init_ssh_server() {
   if [ -z "$(ls -A /etc/ssh)" ]; then
-    echo "/etc/ssh is empty, generating SSH host keys..."
+    print_green "/etc/ssh is empty, generating SSH host keys..."
     ssh-keygen -A
     cp /home/borgwarehouse/sshd_config /home/borgwarehouse/moduli /etc/ssh/
   fi
@@ -16,7 +23,7 @@ init_ssh_server() {
 
 check_ssh_directory() {
   if [ ! -d "$SSH_DIR" ]; then
-    echo "The .ssh directory does not exist, you need to mount it as docker volume."
+    print_red "The .ssh directory does not exist, you need to mount it as docker volume."
     exit 1
   else 
     chmod 700 "$SSH_DIR"
@@ -25,7 +32,7 @@ check_ssh_directory() {
 
 create_authorized_keys_file() {
   if [ ! -f "$AUTHORIZED_KEYS_FILE" ]; then
-    echo "The authorized_keys file does not exist, creating..."
+    print_green "The authorized_keys file does not exist, creating..."
     touch "$AUTHORIZED_KEYS_FILE"
   fi
     chmod 600 "$AUTHORIZED_KEYS_FILE"
@@ -33,7 +40,7 @@ create_authorized_keys_file() {
 
 check_repos_directory() {
   if [ ! -d "$REPOS_DIR" ]; then
-    echo "The repos directory does not exist, you need to mount it as docker volume."
+    print_red "The repos directory does not exist, you need to mount it as docker volume."
     exit 2
   else 
     chmod 700 "$REPOS_DIR"
@@ -41,15 +48,42 @@ check_repos_directory() {
 }
 
 add_cron_job() {
+  print_green "Adding cron job..."
   local CRON_JOB="* * * * * curl --request POST --url 'http://localhost:3000/api/cronjob/checkStatus' --header 'Authorization: Bearer $CRONJOB_KEY'; curl --request POST --url 'http://localhost:3000/api/cronjob/getStorageUsed' --header 'Authorization: Bearer $CRONJOB_KEY'"
   echo "$CRON_JOB" | crontab -u borgwarehouse -
 }
 
+get_SSH_fingerprints() {
+  print_green "Getting SSH fingerprints..."
+  RSA_FINGERPRINT=$(ssh-keygen -lf /etc/ssh/ssh_host_rsa_key | awk '{print $2}')
+  ED25519_FINGERPRINT=$(ssh-keygen -lf /etc/ssh/ssh_host_ed25519_key | awk '{print $2}')
+  ECDSA_FINGERPRINT=$(ssh-keygen -lf /etc/ssh/ssh_host_ecdsa_key | awk '{print $2}')
+  export SSH_SERVER_FINGERPRINT_RSA="$RSA_FINGERPRINT"
+  export SSH_SERVER_FINGERPRINT_ED25519="$ED25519_FINGERPRINT"
+  export SSH_SERVER_FINGERPRINT_ECDSA="$ECDSA_FINGERPRINT"
+}
+
+check_env() {
+  if [ -z "$CRONJOB_KEY" ]; then
+    CRONJOB_KEY=$(openssl rand -base64 32)
+    print_green "CRONJOB_KEY not found or empty. Generating a random key..."
+    export CRONJOB_KEY
+  fi
+
+  if [ -z "$NEXTAUTH_SECRET" ]; then
+    NEXTAUTH_SECRET=$(openssl rand -base64 32)
+    print_green "NEXTAUTH_SECRET not found or empty. Generating a random key..."
+    export NEXTAUTH_SECRET
+  fi
+}
+
+check_env
 init_ssh_server
 check_ssh_directory
 create_authorized_keys_file
 check_repos_directory
 add_cron_job
+get_SSH_fingerprints
 
 sudo service ssh restart
 sudo service cron restart