From ad58dfc62e6c97434182975e7057578bfff549aa Mon Sep 17 00:00:00 2001
From: Andras Bacsai <5845193+andrasbacsai@users.noreply.github.com>
Date: Tue, 9 Sep 2025 09:00:42 +0200
Subject: [PATCH] feat(sudo-helper): add helper functions for command parsing
 and ownership management with sudo

---
 bootstrap/helpers/sudo.php | 101 +++++++++++++++++++++++++++++++++++++
 1 file changed, 101 insertions(+)
 create mode 100644 bootstrap/helpers/sudo.php

diff --git a/bootstrap/helpers/sudo.php b/bootstrap/helpers/sudo.php
new file mode 100644
index 000000000..ba252c64f
--- /dev/null
+++ b/bootstrap/helpers/sudo.php
@@ -0,0 +1,101 @@
+<?php
+
+use App\Models\Server;
+use Illuminate\Support\Collection;
+use Illuminate\Support\Str;
+
+function shouldChangeOwnership(string $path): bool
+{
+    $path = trim($path);
+
+    $systemPaths = ['/var', '/etc', '/usr', '/opt', '/sys', '/proc', '/dev', '/bin', '/sbin', '/lib', '/lib64', '/boot', '/root', '/home', '/media', '/mnt', '/srv', '/run'];
+
+    foreach ($systemPaths as $systemPath) {
+        if ($path === $systemPath || Str::startsWith($path, $systemPath.'/')) {
+            return false;
+        }
+    }
+
+    $isCoolifyPath = Str::startsWith($path, '/data/coolify') || Str::startsWith($path, '/tmp/coolify');
+
+    return $isCoolifyPath;
+}
+function parseCommandsByLineForSudo(Collection $commands, Server $server): array
+{
+    $commands = $commands->map(function ($line) {
+        if (
+            ! str(trim($line))->startsWith([
+                'cd',
+                'command',
+                'echo',
+                'true',
+                'if',
+                'fi',
+            ])
+        ) {
+            return "sudo $line";
+        }
+
+        if (str(trim($line))->startsWith('if')) {
+            return str_replace('if', 'if sudo', $line);
+        }
+
+        return $line;
+    });
+
+    $commands = $commands->map(function ($line) use ($server) {
+        if (Str::startsWith($line, 'sudo mkdir -p')) {
+            $path = trim(Str::after($line, 'sudo mkdir -p'));
+            if (shouldChangeOwnership($path)) {
+                return "$line && sudo chown -R $server->user:$server->user $path && sudo chmod -R o-rwx $path";
+            }
+
+            return $line;
+        }
+
+        return $line;
+    });
+
+    $commands = $commands->map(function ($line) {
+        $line = str($line);
+        if (str($line)->contains('$(')) {
+            $line = $line->replace('$(', '$(sudo ');
+        }
+        if (str($line)->contains('||')) {
+            $line = $line->replace('||', '|| sudo');
+        }
+        if (str($line)->contains('&&')) {
+            $line = $line->replace('&&', '&& sudo');
+        }
+        if (str($line)->contains(' | ')) {
+            $line = $line->replace(' | ', ' | sudo ');
+        }
+
+        return $line->value();
+    });
+
+    return $commands->toArray();
+}
+function parseLineForSudo(string $command, Server $server): string
+{
+    if (! str($command)->startSwith('cd') && ! str($command)->startSwith('command')) {
+        $command = "sudo $command";
+    }
+    if (Str::startsWith($command, 'sudo mkdir -p')) {
+        $path = trim(Str::after($command, 'sudo mkdir -p'));
+        if (shouldChangeOwnership($path)) {
+            $command = "$command && sudo chown -R $server->user:$server->user $path && sudo chmod -R o-rwx $path";
+        }
+    }
+    if (str($command)->contains('$(') || str($command)->contains('`')) {
+        $command = str($command)->replace('$(', '$(sudo ')->replace('`', '`sudo ')->value();
+    }
+    if (str($command)->contains('||')) {
+        $command = str($command)->replace('||', '|| sudo ')->value();
+    }
+    if (str($command)->contains('&&')) {
+        $command = str($command)->replace('&&', '&& sudo ')->value();
+    }
+
+    return $command;
+}