echo "This script installs a new BookStack instance on a fresh Ubuntu 22.04 server."

echo "This script does not ensure system security."

echo ""

LOGPATH=$(realpath "bookstack_install_$(date +%s).log")

SCRIPT_USER="${SUDO_USER:-$USER}"

CURRENT_IP=$(ip addr | grep 'state UP' -A4 | grep 'inet ' | awk '{print $2}' | cut -f1 -d'/')

DB_PASS="$(head /dev/urandom | tr -dc A-Za-z0-9 | head -c 13)"

BOOKSTACK_DIR="/var/www/bookstack"

DOMAIN=$1

export DEBIAN_FRONTEND=noninteractive

function error_out() {

echo "ERROR: $1" | tee -a "$LOGPATH" 1>&2

exit 1

}

function info_msg() {

echo "$1" | tee -a "$LOGPATH"

}

function run_pre_install_checks() {

# Check we're running as root and exit if not

if [[ $EUID -gt 0 ]]

then

error_out "This script must be ran with root/sudo privileges"

fi

# Check if Apache appears to be installed and exit if so

if [ -d "/etc/apache2/sites-enabled" ]

then

error_out "This script is intended for a fresh server install, existing apache config found, aborting install"

fi

# Check if MySQL appears to be installed and exit if so

if [ -d "/var/lib/mysql" ]

then

error_out "This script is intended for a fresh server install, existing MySQL data found, aborting install"

fi

}

function run_prompt_for_domain_if_required() {

if [ -z "$DOMAIN" ]

then

info_msg ""

info_msg "Enter the domain (or IP if not using a domain) you want to host BookStack on and press [ENTER]."

info_msg "Examples: my-site.com or docs.my-site.com or ${CURRENT_IP}"

read -r DOMAIN

fi

# Error out if no domain was provided

if [ -z "$DOMAIN" ]

then

error_out "A domain must be provided to run this script"

fi

}

function run_package_installs() {

apt update

apt install -y git unzip apache2 php8.1 curl php8.1-curl php8.1-mbstring php8.1-ldap \

php8.1-xml php8.1-zip php8.1-gd php8.1-mysql mysql-server-8.0 libapache2-mod-php8.1

}

function run_database_setup() {

mysql -u root --execute="CREATE DATABASE bookstack;"

mysql -u root --execute="CREATE USER 'bookstack'@'localhost' IDENTIFIED WITH mysql_native_password BY '$DB_PASS';"

mysql -u root --execute="GRANT ALL ON bookstack.* TO 'bookstack'@'localhost';FLUSH PRIVILEGES;"

}

function run_bookstack_download() {

cd /var/www || exit

git clone https://github.com/BookStackApp/BookStack.git --branch release --single-branch bookstack

}

function run_install_composer() {

EXPECTED_CHECKSUM="$(php -r 'copy("https://composer.github.io/installer.sig", "php://stdout");')"

php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"

ACTUAL_CHECKSUM="$(php -r "echo hash_file('sha384', 'composer-setup.php');")"

if [ "$EXPECTED_CHECKSUM" != "$ACTUAL_CHECKSUM" ]

then

>&2 echo 'ERROR: Invalid composer installer checksum'

rm composer-setup.php

exit 1

fi

php composer-setup.php --quiet

rm composer-setup.php

# Move composer to global installation

mv composer.phar /usr/local/bin/composer

}

function run_install_bookstack_composer_deps() {

cd "$BOOKSTACK_DIR" || exit

export COMPOSER_ALLOW_SUPERUSER=1

php /usr/local/bin/composer install --no-dev --no-plugins

}

function run_update_bookstack_env() {

cd "$BOOKSTACK_DIR" || exit

cp .env.example .env

sed -i.bak "s@APP_URL=.*\$@APP_URL=http://$DOMAIN@" .env

sed -i.bak 's/DB_DATABASE=.*$/DB_DATABASE=bookstack/' .env

sed -i.bak 's/DB_USERNAME=.*$/DB_USERNAME=bookstack/' .env

sed -i.bak "s/DB_PASSWORD=.*\$/DB_PASSWORD=$DB_PASS/" .env

# Generate the application key

php artisan key:generate --no-interaction --force

}

function run_bookstack_database_migrations() {

cd "$BOOKSTACK_DIR" || exit

php artisan migrate --no-interaction --force

}

function run_set_application_file_permissions() {

cd "$BOOKSTACK_DIR" || exit

chown -R "$SCRIPT_USER":www-data ./

chmod -R 755 ./

chmod -R 775 bootstrap/cache public/uploads storage

chmod 740 .env

# Tell git to ignore permission changes

git config core.fileMode false

}

function run_configure_apache() {

# Enable required apache modules

a2enmod rewrite

a2enmod php8.1

# Set-up the required BookStack apache config

cat >/etc/apache2/sites-available/bookstack.conf <<EOL

# Disable the default apache site and enable BookStack

a2dissite 000-default.conf

a2ensite bookstack.conf

# Restart apache to load new config

systemctl restart apache2

}

info_msg "This script logs full output to $LOGPATH which may help upon issues."

sleep 1

run_pre_install_checks

run_prompt_for_domain_if_required

info_msg ""

info_msg "Installing using the domain or IP \"$DOMAIN\""

info_msg ""

sleep 1

info_msg "[1/9] Installing required system packages... (This may take several minutes)"

run_package_installs >> "$LOGPATH" 2>&1

info_msg "[2/9] Preparing MySQL database..."

run_database_setup >> "$LOGPATH" 2>&1

info_msg "[3/9] Downloading BookStack to ${BOOKSTACK_DIR}..."

run_bookstack_download >> "$LOGPATH" 2>&1

info_msg "[4/9] Installing Composer (PHP dependency manager)..."

run_install_composer >> "$LOGPATH" 2>&1

info_msg "[5/9] Installing PHP dependencies using composer..."

run_install_bookstack_composer_deps >> "$LOGPATH" 2>&1

info_msg "[6/9] Creating and populating BookStack .env file..."

run_update_bookstack_env >> "$LOGPATH" 2>&1

info_msg "[7/9] Running initial BookStack database migrations..."

run_bookstack_database_migrations >> "$LOGPATH" 2>&1

info_msg "[8/9] Setting BookStack file & folder permissions..."

run_set_application_file_permissions >> "$LOGPATH" 2>&1

info_msg "[9/9] Configuring apache server..."

run_configure_apache >> "$LOGPATH" 2>&1

info_msg "----------------------------------------------------------------"

info_msg "Setup finished, your BookStack instance should now be installed!"

info_msg "- Default login email: admin@admin.com"

info_msg "- Default login password: password"

info_msg "- Access URL: http://$CURRENT_IP/ or http://$DOMAIN/"

info_msg "- BookStack install path: $BOOKSTACK_DIR"

info_msg "- Install script log: $LOGPATH"

info_msg "---------------------------------------------------------------"