515 lines
		
	
	
		
			20 KiB
		
	
	
	
		
			Bash
		
	
	
		
			Executable File
		
	
	
	
	
			
		
		
	
	
			515 lines
		
	
	
		
			20 KiB
		
	
	
	
		
			Bash
		
	
	
		
			Executable File
		
	
	
	
	
| #!/bin/bash
 | |
| ## Do not modify this file. You will lose the ability to install and auto-update!
 | |
| 
 | |
| set -e # Exit immediately if a command exits with a non-zero status
 | |
| ## $1 could be empty, so we need to disable this check
 | |
| #set -u # Treat unset variables as an error and exit
 | |
| set -o pipefail # Cause a pipeline to return the status of the last command that exited with a non-zero status
 | |
| CDN="https://cdn.coollabs.io/coolify"
 | |
| DATE=$(date +"%Y%m%d-%H%M%S")
 | |
| 
 | |
| VERSION="1.6"
 | |
| DOCKER_VERSION="26.0"
 | |
| 
 | |
| mkdir -p /data/coolify/{source,ssh,applications,databases,backups,services,proxy,webhooks-during-maintenance,metrics,logs}
 | |
| mkdir -p /data/coolify/ssh/{keys,mux}
 | |
| mkdir -p /data/coolify/proxy/dynamic
 | |
| 
 | |
| chown -R 9999:root /data/coolify
 | |
| chmod -R 700 /data/coolify
 | |
| 
 | |
| INSTALLATION_LOG_WITH_DATE="/data/coolify/source/installation-${DATE}.log"
 | |
| 
 | |
| exec > >(tee -a $INSTALLATION_LOG_WITH_DATE) 2>&1
 | |
| 
 | |
| getAJoke() {
 | |
|     JOKES=$(curl -s --max-time 2 "https://v2.jokeapi.dev/joke/Programming?blacklistFlags=nsfw,religious,political,racist,sexist,explicit&format=txt&type=single" || true)
 | |
|     if [ "$JOKES" != "" ]; then
 | |
|         echo -e " - Until then, here's a joke for you:\n"
 | |
|         echo -e "$JOKES\n"
 | |
|     fi
 | |
| }
 | |
| OS_TYPE=$(grep -w "ID" /etc/os-release | cut -d "=" -f 2 | tr -d '"')
 | |
| ENV_FILE="/data/coolify/source/.env"
 | |
| 
 | |
| # Check if the OS is manjaro, if so, change it to arch
 | |
| if [ "$OS_TYPE" = "manjaro" ] || [ "$OS_TYPE" = "manjaro-arm" ]; then
 | |
|     OS_TYPE="arch"
 | |
| fi
 | |
| 
 | |
| # Check if the OS is Asahi Linux, if so, change it to fedora
 | |
| if [ "$OS_TYPE" = "fedora-asahi-remix" ]; then
 | |
|     OS_TYPE="fedora"
 | |
| fi
 | |
| 
 | |
| # Check if the OS is popOS, if so, change it to ubuntu
 | |
| if [ "$OS_TYPE" = "pop" ]; then
 | |
|     OS_TYPE="ubuntu"
 | |
| fi
 | |
| 
 | |
| # Check if the OS is linuxmint, if so, change it to ubuntu
 | |
| if [ "$OS_TYPE" = "linuxmint" ]; then
 | |
|     OS_TYPE="ubuntu"
 | |
| fi
 | |
| 
 | |
| #Check if the OS is zorin, if so, change it to ubuntu
 | |
| if [ "$OS_TYPE" = "zorin" ]; then
 | |
|     OS_TYPE="ubuntu"
 | |
| fi
 | |
| 
 | |
| if [ "$OS_TYPE" = "arch" ] || [ "$OS_TYPE" = "archarm" ]; then
 | |
|     OS_VERSION="rolling"
 | |
| else
 | |
|     OS_VERSION=$(grep -w "VERSION_ID" /etc/os-release | cut -d "=" -f 2 | tr -d '"')
 | |
| fi
 | |
| 
 | |
| # Install xargs on Amazon Linux 2023 - lol
 | |
| if [ "$OS_TYPE" = 'amzn' ]; then
 | |
|     dnf install -y findutils >/dev/null
 | |
| fi
 | |
| 
 | |
| LATEST_VERSION=$(curl --silent $CDN/versions.json | grep -i version | xargs | awk '{print $2}' | tr -d ',')
 | |
| LATEST_HELPER_VERSION=$(curl --silent $CDN/versions.json | grep -i version | xargs | awk '{print $6}' | tr -d ',')
 | |
| LATEST_REALTIME_VERSION=$(curl --silent $CDN/versions.json | grep -i version | xargs | awk '{print $8}' | tr -d ',')
 | |
| 
 | |
| if [ -z "$LATEST_HELPER_VERSION" ]; then
 | |
|     LATEST_HELPER_VERSION=latest
 | |
| fi
 | |
| 
 | |
| if [ -z "$LATEST_REALTIME_VERSION" ]; then
 | |
|     LATEST_REALTIME_VERSION=latest
 | |
| fi
 | |
| 
 | |
| 
 | |
| if [ $EUID != 0 ]; then
 | |
|     echo "Please run as root"
 | |
|     exit
 | |
| fi
 | |
| 
 | |
| case "$OS_TYPE" in
 | |
| arch | ubuntu | debian | raspbian | centos | fedora | rhel | ol | rocky | sles | opensuse-leap | opensuse-tumbleweed | almalinux | amzn | alpine) ;;
 | |
| *)
 | |
|     echo "This script only supports Debian, Redhat, Arch Linux, Alpine Linux, or SLES based operating systems for now."
 | |
|     exit
 | |
|     ;;
 | |
| esac
 | |
| 
 | |
| # Overwrite LATEST_VERSION if user pass a version number
 | |
| if [ "$1" != "" ]; then
 | |
|     LATEST_VERSION=$1
 | |
|     LATEST_VERSION="${LATEST_VERSION,,}"
 | |
|     LATEST_VERSION="${LATEST_VERSION#v}"
 | |
| fi
 | |
| 
 | |
| echo -e "\033[0;35m"
 | |
| cat << "EOF"
 | |
|    _____            _ _  __
 | |
|   / ____|          | (_)/ _|
 | |
|  | |     ___   ___ | |_| |_ _   _
 | |
|  | |    / _ \ / _ \| | |  _| | | |
 | |
|  | |___| (_) | (_) | | | | | |_| |
 | |
|   \_____\___/ \___/|_|_|_|  \__, |
 | |
|                              __/ |
 | |
|                             |___/
 | |
| EOF
 | |
| echo -e "\033[0m"
 | |
| echo -e "Welcome to Coolify Installer!"
 | |
| echo -e "This script will install everything for you. Sit back and relax."
 | |
| echo -e "Source code: https://github.com/coollabsio/coolify/blob/main/scripts/install.sh\n"
 | |
| echo -e "---------------------------------------------"
 | |
| echo "| Operating System  | $OS_TYPE $OS_VERSION"
 | |
| echo "| Docker            | $DOCKER_VERSION"
 | |
| echo "| Coolify           | $LATEST_VERSION"
 | |
| echo "| Helper            | $LATEST_HELPER_VERSION"
 | |
| echo "| Realtime          | $LATEST_REALTIME_VERSION"
 | |
| echo -e "---------------------------------------------\n"
 | |
| echo -e "1. Installing required packages (curl, wget, git, jq). "
 | |
| 
 | |
| case "$OS_TYPE" in
 | |
| arch)
 | |
|     pacman -Sy --noconfirm --needed curl wget git jq >/dev/null || true
 | |
|     ;;
 | |
| alpine)
 | |
|     sed -i '/^#.*\/community/s/^#//' /etc/apk/repositories
 | |
|     apk update >/dev/null
 | |
|     apk add curl wget git jq >/dev/null
 | |
|     ;;
 | |
| ubuntu | debian | raspbian)
 | |
|     apt-get update -y >/dev/null
 | |
|     apt-get install -y curl wget git jq >/dev/null
 | |
|     ;;
 | |
| centos | fedora | rhel | ol | rocky | almalinux | amzn)
 | |
|     if [ "$OS_TYPE" = "amzn" ]; then
 | |
|         dnf install -y wget git jq >/dev/null
 | |
|     else
 | |
|         if ! command -v dnf >/dev/null; then
 | |
|             yum install -y dnf >/dev/null
 | |
|         fi
 | |
|         if ! command -v curl >/dev/null; then
 | |
|             dnf install -y curl >/dev/null
 | |
|         fi
 | |
|         dnf install -y wget git jq >/dev/null
 | |
|     fi
 | |
|     ;;
 | |
| sles | opensuse-leap | opensuse-tumbleweed)
 | |
|     zypper refresh >/dev/null
 | |
|     zypper install -y curl wget git jq >/dev/null
 | |
|     ;;
 | |
| *)
 | |
|     echo "This script only supports Debian, Redhat, Arch Linux, or SLES based operating systems for now."
 | |
|     exit
 | |
|     ;;
 | |
| esac
 | |
| 
 | |
| 
 | |
| 
 | |
| echo -e "2. Check OpenSSH server configuration. "
 | |
| 
 | |
| # Detect OpenSSH server
 | |
| SSH_DETECTED=false
 | |
| if [ -x "$(command -v systemctl)" ]; then
 | |
|     if systemctl status sshd >/dev/null 2>&1; then
 | |
|         echo " - OpenSSH server is installed."
 | |
|         SSH_DETECTED=true
 | |
|     elif systemctl status ssh >/dev/null 2>&1; then
 | |
|         echo " - OpenSSH server is installed."
 | |
|         SSH_DETECTED=true
 | |
|     fi
 | |
| elif [ -x "$(command -v service)" ]; then
 | |
|     if service sshd status >/dev/null 2>&1; then
 | |
|         echo " - OpenSSH server is installed."
 | |
|         SSH_DETECTED=true
 | |
|     elif service ssh status >/dev/null 2>&1; then
 | |
|         echo " - OpenSSH server is installed."
 | |
|         SSH_DETECTED=true
 | |
|     fi
 | |
| fi
 | |
| if [ "$SSH_DETECTED" = "false" ]; then
 | |
|     echo "###############################################################################"
 | |
|     echo "WARNING: Could not detect if OpenSSH server is installed and running - this does not mean that it is not installed, just that we could not detect it."
 | |
|     echo -e "Please make sure it is set, otherwise Coolify cannot connect to the host system. \n"
 | |
|     echo "###############################################################################"
 | |
| fi
 | |
| 
 | |
| # Detect SSH PermitRootLogin
 | |
| SSH_PERMIT_ROOT_LOGIN=$(sshd -T | grep -i "permitrootlogin" | awk '{print $2}') || true
 | |
| if [ "$SSH_PERMIT_ROOT_LOGIN" = "yes" ] || [ "$SSH_PERMIT_ROOT_LOGIN" = "without-password" ] || [ "$SSH_PERMIT_ROOT_LOGIN" = "prohibit-password" ]; then
 | |
|     echo " - SSH PermitRootLogin is enabled."
 | |
| else
 | |
|     echo " - SSH PermitRootLogin is disabled."
 | |
|     echo "   If you have problems with SSH, please read this: https://coolify.io/docs/knowledge-base/server/openssh"
 | |
| fi
 | |
| 
 | |
| # Detect if docker is installed via snap
 | |
| if [ -x "$(command -v snap)" ]; then
 | |
|     SNAP_DOCKER_INSTALLED=$(snap list docker >/dev/null 2>&1 && echo "true" || echo "false")
 | |
|     if [ "$SNAP_DOCKER_INSTALLED" = "true" ]; then
 | |
|         echo " - Docker is installed via snap."
 | |
|         echo "   Please note that Coolify does not support Docker installed via snap."
 | |
|         echo "   Please remove Docker with snap (snap remove docker) and reexecute this script."
 | |
|         exit 1
 | |
|     fi
 | |
| fi
 | |
| 
 | |
| echo -e "3. Check Docker Installation. "
 | |
| if ! [ -x "$(command -v docker)" ]; then
 | |
|     echo " - Docker is not installed. Installing Docker. It may take a while."
 | |
|     getAJoke
 | |
|     case "$OS_TYPE" in
 | |
|         "almalinux")
 | |
|             dnf config-manager --add-repo=https://download.docker.com/linux/centos/docker-ce.repo >/dev/null 2>&1
 | |
|             dnf install -y docker-ce docker-ce-cli containerd.io docker-compose-plugin >/dev/null 2>&1
 | |
|             if ! [ -x "$(command -v docker)" ]; then
 | |
|                 echo " - Docker could not be installed automatically. Please visit https://docs.docker.com/engine/install/ and install Docker manually to continue."
 | |
|                 exit 1
 | |
|             fi
 | |
|             systemctl start docker >/dev/null 2>&1
 | |
|             systemctl enable docker >/dev/null 2>&1
 | |
|             ;;
 | |
|         "alpine")
 | |
|             apk add docker docker-cli-compose >/dev/null 2>&1
 | |
|             rc-update add docker default >/dev/null 2>&1
 | |
|             service docker start >/dev/null 2>&1
 | |
|             if ! [ -x "$(command -v docker)" ]; then
 | |
|                 echo " - Failed to install Docker with apk. Try to install it manually."
 | |
|                 echo "   Please visit https://wiki.alpinelinux.org/wiki/Docker for more information."
 | |
|                 exit 1
 | |
|             fi
 | |
|             ;;
 | |
|         "arch")
 | |
|             pacman -Sy docker docker-compose --noconfirm >/dev/null 2>&1
 | |
|             systemctl enable docker.service >/dev/null 2>&1
 | |
|             if ! [ -x "$(command -v docker)" ]; then
 | |
|                 echo " - Failed to install Docker with pacman. Try to install it manually."
 | |
|                 echo "   Please visit https://wiki.archlinux.org/title/docker for more information."
 | |
|                 exit 1
 | |
|             fi
 | |
|             ;;
 | |
|         "amzn")
 | |
|             dnf install docker -y >/dev/null 2>&1
 | |
|             DOCKER_CONFIG=${DOCKER_CONFIG:-/usr/local/lib/docker}
 | |
|             mkdir -p $DOCKER_CONFIG/cli-plugins >/dev/null 2>&1
 | |
|             curl -sL https://github.com/docker/compose/releases/latest/download/docker-compose-$(uname -s)-$(uname -m) -o $DOCKER_CONFIG/cli-plugins/docker-compose >/dev/null 2>&1
 | |
|             chmod +x $DOCKER_CONFIG/cli-plugins/docker-compose >/dev/null 2>&1
 | |
|             systemctl start docker >/dev/null 2>&1
 | |
|             systemctl enable docker >/dev/null 2>&1
 | |
|             if ! [ -x "$(command -v docker)" ]; then
 | |
|                 echo " - Failed to install Docker with dnf. Try to install it manually."
 | |
|                 echo "   Please visit https://www.cyberciti.biz/faq/how-to-install-docker-on-amazon-linux-2/ for more information."
 | |
|                 exit 1
 | |
|             fi
 | |
|             ;;
 | |
|         *)
 | |
|             curl -s https://releases.rancher.com/install-docker/${DOCKER_VERSION}.sh | sh >/dev/null 2>&1
 | |
|             if ! [ -x "$(command -v docker)" ]; then
 | |
|                 curl -s https://get.docker.com | sh -s -- --version ${DOCKER_VERSION} >/dev/null 2>&1
 | |
|                 if ! [ -x "$(command -v docker)" ]; then
 | |
|                     echo " - Docker installation failed."
 | |
|                     echo "   Maybe your OS is not supported?"
 | |
|                     echo " - Please visit https://docs.docker.com/engine/install/ and install Docker manually to continue."
 | |
|                     exit 1
 | |
|                 fi
 | |
|             fi
 | |
|     esac
 | |
|     echo " - Docker installed successfully."
 | |
| else
 | |
|     echo " - Docker is installed."
 | |
| fi
 | |
| 
 | |
| echo -e "4. Check Docker Configuration. "
 | |
| mkdir -p /etc/docker
 | |
| # shellcheck disable=SC2015
 | |
| test -s /etc/docker/daemon.json && cp /etc/docker/daemon.json /etc/docker/daemon.json.original-"$DATE" || cat >/etc/docker/daemon.json <<EOL
 | |
| {
 | |
|   "log-driver": "json-file",
 | |
|   "log-opts": {
 | |
|     "max-size": "10m",
 | |
|     "max-file": "3"
 | |
|   }
 | |
| }
 | |
| EOL
 | |
| cat >/etc/docker/daemon.json.coolify <<EOL
 | |
| {
 | |
|   "log-driver": "json-file",
 | |
|   "log-opts": {
 | |
|     "max-size": "10m",
 | |
|     "max-file": "3"
 | |
|   }
 | |
| }
 | |
| EOL
 | |
| TEMP_FILE=$(mktemp)
 | |
| if ! jq -s '.[0] * .[1]' /etc/docker/daemon.json /etc/docker/daemon.json.coolify >"$TEMP_FILE"; then
 | |
|     echo "Error merging JSON files"
 | |
|     exit 1
 | |
| fi
 | |
| mv "$TEMP_FILE" /etc/docker/daemon.json
 | |
| 
 | |
| restart_docker_service() {
 | |
|     # Check if systemctl is available
 | |
|     if command -v systemctl >/dev/null 2>&1; then
 | |
|         echo " - Using systemctl to restart Docker."
 | |
|         systemctl restart docker
 | |
| 
 | |
|         if [ $? -eq 0 ]; then
 | |
|             echo " - Docker restarted successfully using systemctl."
 | |
|         else
 | |
|             echo " - Failed to restart Docker using systemctl."
 | |
|             return 1
 | |
|         fi
 | |
| 
 | |
|     # Check if service command is available
 | |
|     elif command -v service >/dev/null 2>&1; then
 | |
|         echo " - Using service command to restart Docker."
 | |
|         service docker restart
 | |
| 
 | |
|         if [ $? -eq 0 ]; then
 | |
|             echo " - Docker restarted successfully using service."
 | |
|         else
 | |
|             echo " - Failed to restart Docker using service."
 | |
|             return 1
 | |
|         fi
 | |
| 
 | |
|     # If neither systemctl nor service is available
 | |
|     else
 | |
|         echo " - Neither systemctl nor service command is available on this system."
 | |
|         return 1
 | |
|     fi
 | |
| }
 | |
| 
 | |
| if [ -s /etc/docker/daemon.json.original-"$DATE" ]; then
 | |
|     DIFF=$(diff <(jq --sort-keys . /etc/docker/daemon.json) <(jq --sort-keys . /etc/docker/daemon.json.original-"$DATE"))
 | |
|     if [ "$DIFF" != "" ]; then
 | |
|         echo " - Docker configuration updated, restart docker daemon..."
 | |
|         restart_docker_service
 | |
|     else
 | |
|         echo " - Docker configuration is up to date."
 | |
|     fi
 | |
| else
 | |
|     echo " - Docker configuration updated, restart docker daemon..."
 | |
|     restart_docker_service
 | |
| fi
 | |
| 
 | |
| echo -e "5. Download required files from CDN. "
 | |
| curl -fsSL $CDN/docker-compose.yml -o /data/coolify/source/docker-compose.yml
 | |
| curl -fsSL $CDN/docker-compose.prod.yml -o /data/coolify/source/docker-compose.prod.yml
 | |
| curl -fsSL $CDN/.env.production -o /data/coolify/source/.env.production
 | |
| curl -fsSL $CDN/upgrade.sh -o /data/coolify/source/upgrade.sh
 | |
| 
 | |
| echo -e "6. Make backup of .env to .env-$DATE"
 | |
| 
 | |
| # Copy .env.example if .env does not exist
 | |
| if [ -f $ENV_FILE ]; then
 | |
|     cp $ENV_FILE $ENV_FILE-$DATE
 | |
| else
 | |
|     echo " - File does not exist: $ENV_FILE"
 | |
|     echo " - Copying .env.production to .env-$DATE"
 | |
|     cp /data/coolify/source/.env.production $ENV_FILE-$DATE
 | |
|     # Generate a secure APP_ID and APP_KEY
 | |
|     sed -i "s|^APP_ID=.*|APP_ID=$(openssl rand -hex 16)|" "$ENV_FILE-$DATE"
 | |
|     sed -i "s|^APP_KEY=.*|APP_KEY=base64:$(openssl rand -base64 32)|" "$ENV_FILE-$DATE"
 | |
| 
 | |
|     # Generate a secure Postgres DB username and password
 | |
|     # Causes issues: database "random-user" does not exist
 | |
|     # sed -i "s|^DB_USERNAME=.*|DB_USERNAME=$(openssl rand -hex 16)|" "$ENV_FILE-$DATE"
 | |
|     sed -i "s|^DB_PASSWORD=.*|DB_PASSWORD=$(openssl rand -base64 32)|" "$ENV_FILE-$DATE"
 | |
| 
 | |
|     # Generate a secure Redis password
 | |
|     sed -i "s|^REDIS_PASSWORD=.*|REDIS_PASSWORD=$(openssl rand -base64 32)|" "$ENV_FILE-$DATE"
 | |
| 
 | |
|     # Generate secure Pusher credentials
 | |
|     sed -i "s|^PUSHER_APP_ID=.*|PUSHER_APP_ID=$(openssl rand -hex 32)|" "$ENV_FILE-$DATE"
 | |
|     sed -i "s|^PUSHER_APP_KEY=.*|PUSHER_APP_KEY=$(openssl rand -hex 32)|" "$ENV_FILE-$DATE"
 | |
|     sed -i "s|^PUSHER_APP_SECRET=.*|PUSHER_APP_SECRET=$(openssl rand -hex 32)|" "$ENV_FILE-$DATE"
 | |
| fi
 | |
| 
 | |
| # Merge .env and .env.production. New values will be added to .env
 | |
| echo -e "7. Propagating .env with new values - if necessary."
 | |
| awk -F '=' '!seen[$1]++' "$ENV_FILE-$DATE" /data/coolify/source/.env.production > $ENV_FILE
 | |
| 
 | |
| if [ "$AUTOUPDATE" = "false" ]; then
 | |
|     if ! grep -q "AUTOUPDATE=" /data/coolify/source/.env; then
 | |
|         echo "AUTOUPDATE=false" >>/data/coolify/source/.env
 | |
|     else
 | |
|         sed -i "s|AUTOUPDATE=.*|AUTOUPDATE=false|g" /data/coolify/source/.env
 | |
|     fi
 | |
| fi
 | |
| echo -e "8. Checking for SSH key for localhost access."
 | |
| if [ ! -f ~/.ssh/authorized_keys ]; then
 | |
|     mkdir -p ~/.ssh
 | |
|     chmod 700 ~/.ssh
 | |
|     touch ~/.ssh/authorized_keys
 | |
|     chmod 600 ~/.ssh/authorized_keys
 | |
| fi
 | |
| 
 | |
| checkSshKeyInAuthorizedKeys() {
 | |
|     grep -qw "root@coolify" ~/.ssh/authorized_keys
 | |
|     return $?
 | |
| }
 | |
| 
 | |
| checkSshKeyInCoolifyData() {
 | |
|     [ -s /data/coolify/ssh/keys/id.root@host.docker.internal ]
 | |
|     return $?
 | |
| }
 | |
| 
 | |
| generateAuthorizedKeys() {
 | |
|     sed -i "/root@coolify/d" ~/.ssh/authorized_keys
 | |
|     cat /data/coolify/ssh/keys/id.root@host.docker.internal.pub >> ~/.ssh/authorized_keys
 | |
|     rm -f /data/coolify/ssh/keys/id.root@host.docker.internal.pub
 | |
| }
 | |
| generateSshKey() {
 | |
|     echo " - Generating SSH key."
 | |
|     ssh-keygen -t ed25519 -a 100 -f /data/coolify/ssh/keys/id.root@host.docker.internal -q -N "" -C root@coolify
 | |
|     chown 9999 /data/coolify/ssh/keys/id.root@host.docker.internal
 | |
|     generateAuthorizedKeys
 | |
| }
 | |
| 
 | |
| syncSshKeys() {
 | |
|     DB_RUNNING=$(docker inspect coolify-db --format '{{ .State.Status }}' 2>/dev/null)
 | |
|     # Check if SSH key exists in Coolify data but not in authorized_keys
 | |
|     if checkSshKeyInCoolifyData && ! checkSshKeyInAuthorizedKeys; then
 | |
|         # Add the existing Coolify SSH key to authorized_keys
 | |
|         cat /data/coolify/ssh/keys/id.root@host.docker.internal.pub >> ~/.ssh/authorized_keys
 | |
|     # Check if SSH key exists in authorized_keys but not in Coolify data
 | |
|     elif checkSshKeyInAuthorizedKeys && ! checkSshKeyInCoolifyData; then
 | |
|         # Ensure Coolify DB is running before proceeding
 | |
|         if [ "$DB_RUNNING" = "running" ]; then
 | |
|             # Retrieve DB user and SSH key from Coolify database
 | |
|             DB_USER=$(docker inspect coolify-db --format '{{ .Config.Env }}' | grep -oP 'POSTGRES_USER=\K[^ ]+')
 | |
|             DB_SSH_KEY=$(docker exec coolify-db psql -U $DB_USER -d coolify -t -c "SELECT \"private_key\" FROM \"private_keys\" WHERE id = 0 AND team_id = 0 LIMIT 1;" -A -t)
 | |
| 
 | |
|             if [ -z "$DB_SSH_KEY" ]; then
 | |
|                 # If no key found in DB, generate a new one
 | |
|                 echo " - SSH key not found in database. Generating new key."
 | |
|                 generateSshKey
 | |
|             else
 | |
|                 # If key found in DB, save it and update authorized_keys
 | |
|                 echo " - SSH key found in database. Saving to file."
 | |
|                 echo "$DB_SSH_KEY" > /data/coolify/ssh/keys/id.root@host.docker.internal
 | |
|                 chmod 600 /data/coolify/ssh/keys/id.root@host.docker.internal
 | |
|                 chown 9999 /data/coolify/ssh/keys/id.root@host.docker.internal
 | |
| 
 | |
|                 # Generate public key from private key and update authorized_keys
 | |
|                 ssh-keygen -y -f /data/coolify/ssh/keys/id.root@host.docker.internal -C root@coolify > /data/coolify/ssh/keys/id.root@host.docker.internal.pub
 | |
|                 sed -i "/root@coolify/d" ~/.ssh/authorized_keys
 | |
|                 cat /data/coolify/ssh/keys/id.root@host.docker.internal.pub >> ~/.ssh/authorized_keys
 | |
|                 rm -f /data/coolify/ssh/keys/id.root@host.docker.internal.pub
 | |
|                 chmod 600 ~/.ssh/authorized_keys
 | |
|             fi
 | |
|         fi
 | |
|     # If SSH key doesn't exist in either location
 | |
|     elif ! checkSshKeyInAuthorizedKeys && ! checkSshKeyInCoolifyData; then
 | |
|         # Ensure Coolify DB is running before proceeding
 | |
|         if [ "$DB_RUNNING" = "running" ]; then
 | |
|             # Retrieve DB user and SSH key from Coolify database
 | |
|             DB_USER=$(docker inspect coolify-db --format '{{ .Config.Env }}' | grep -oP 'POSTGRES_USER=\K[^ ]+')
 | |
|             DB_SSH_KEY=$(docker exec coolify-db psql -U $DB_USER -d coolify -t -c "SELECT \"private_key\" FROM \"private_keys\" WHERE id = 0 AND team_id = 0 LIMIT 1;" -A -t)
 | |
|             if [ -z "$DB_SSH_KEY" ]; then
 | |
|                 # If no key found in DB, generate a new one
 | |
|                 echo " - SSH key not found in database. Generating new key."
 | |
|                 generateSshKey
 | |
|             else
 | |
|                 # If key found in DB, save it and update authorized_keys
 | |
|                 echo " - SSH key found in database. Saving to file."
 | |
|                 echo "$DB_SSH_KEY" > /data/coolify/ssh/keys/id.root@host.docker.internal
 | |
|                 chmod 600 /data/coolify/ssh/keys/id.root@host.docker.internal
 | |
|                 ssh-keygen -y -f /data/coolify/ssh/keys/id.root@host.docker.internal -C root@coolify > /data/coolify/ssh/keys/id.root@host.docker.internal.pub
 | |
|                 sed -i "/root@coolify/d" ~/.ssh/authorized_keys
 | |
|                 cat /data/coolify/ssh/keys/id.root@host.docker.internal.pub >> ~/.ssh/authorized_keys
 | |
|             fi
 | |
|         else
 | |
|          generateSshKey
 | |
|         fi
 | |
|     fi
 | |
| }
 | |
| 
 | |
| syncSshKeys || true
 | |
| 
 | |
| chown -R 9999:root /data/coolify
 | |
| chmod -R 700 /data/coolify
 | |
| 
 | |
| echo -e "9. Installing Coolify ($LATEST_VERSION)"
 | |
| echo -e " - It could take a while based on your server's performance, network speed, stars, etc."
 | |
| echo -e " - Please wait."
 | |
| getAJoke
 | |
| 
 | |
| bash /data/coolify/source/upgrade.sh "${LATEST_VERSION:-latest}" "${LATEST_HELPER_VERSION:-latest}" >/dev/null 2>&1
 | |
| echo " - Coolify installed successfully."
 | |
| rm -f $ENV_FILE-$DATE
 | |
| 
 | |
| echo " - Waiting for 20 seconds for Coolify (database migrations) to be ready."
 | |
| getAJoke
 | |
| 
 | |
| sleep 20
 | |
| echo -e "\033[0;35m
 | |
|    ____                            _         _       _   _                 _
 | |
|   / ___|___  _ __   __ _ _ __ __ _| |_ _   _| | __ _| |_(_) ___  _ __  ___| |
 | |
|  | |   / _ \| '_ \ / _\` | '__/ _\` | __| | | | |/ _\` | __| |/ _ \| '_ \/ __| |
 | |
|  | |__| (_) | | | | (_| | | | (_| | |_| |_| | | (_| | |_| | (_) | | | \__ \_|
 | |
|   \____\___/|_| |_|\__, |_|  \__,_|\__|\__,_|_|\__,_|\__|_|\___/|_| |_|___(_)
 | |
|                    |___/
 | |
| \033[0m"
 | |
| echo -e "\nYour instance is ready to use."
 | |
| echo -e "Please visit http://$(curl -4s https://ifconfig.io):8000 to get started.\n"
 | |
| echo -e "WARNING: We recommend you to backup your /data/coolify/source/.env file to a safe location, outside of this server."
 | |
| cp /data/coolify/source/.env /data/coolify/source/.env.backup
 | 
