skynet-webportal/setup-scripts/setup-server.sh

#! /usr/bin/env bash

set -e # exit on first error

# Copy over basic configuration files
cp /home/user/skynet-webportal/setup-scripts/support/tmux.conf /home/user/.tmux.conf
cp /home/user/skynet-webportal/setup-scripts/support/bashrc /home/user/.bashrc
source /home/user/.bashrc

# Add SSH keys and set SSH configs
sudo cp /home/user/skynet-webportal/setup-scripts/support/ssh_config /etc/ssh/ssh_config
mkdir -p /home/user/.ssh
# cat /home/user/skynet-webportal/setup-scripts/support/authorized_keys >> /home/user/.ssh/authorized_keys

# Install apt packages
sudo apt-get update
sudo apt-get -y install ufw tmux ranger htop nload gcc g++ make git vim unzip curl awscli

# Setup GIT credentials (so commands like git stash would work)
git config --global user.email "devs@nebulous.tech"
git config --global user.name "Sia Dev"

# Setup firewall
sudo ufw --force enable # --force to make it non-interactive
sudo ufw logging low # enable logging for debugging purpose: tail -f /var/log/ufw.log
sudo ufw allow ssh # allow ssh connection to server
sudo ufw allow 80,443/tcp # allow http and https ports

# OPTIONAL: terminfo for alacritty terminal via ssh
# If you don't use the alacritty terminal you can remove this step.
wget -c https://raw.githubusercontent.com/alacritty/alacritty/master/extra/alacritty.info
sudo tic -xe alacritty,alacritty-direct alacritty.info
rm alacritty.info

# Set up file limits - siad uses a lot so we need to adjust so it doesn't choke up
sudo cp /home/user/skynet-webportal/setup-scripts/support/limits.conf /etc/security/limits.conf

# Set UTC timezone so all of the servers report the same time
sudo timedatectl set-timezone UTC
Improve server infrastructure setup and scripts (#231) 2020-06-22 09:54:01 +00:00			`#! /usr/bin/env bash`

			`set -e # exit on first error`

			`# Copy over basic configuration files`
			`cp /home/user/skynet-webportal/setup-scripts/support/tmux.conf /home/user/.tmux.conf`
			`cp /home/user/skynet-webportal/setup-scripts/support/bashrc /home/user/.bashrc`
			`source /home/user/.bashrc`

			`# Add SSH keys and set SSH configs`
			`sudo cp /home/user/skynet-webportal/setup-scripts/support/ssh_config /etc/ssh/ssh_config`
			`mkdir -p /home/user/.ssh`
do not install authorized_keys by default 2021-01-29 22:26:41 +00:00			`# cat /home/user/skynet-webportal/setup-scripts/support/authorized_keys >> /home/user/.ssh/authorized_keys`
Improve server infrastructure setup and scripts (#231) 2020-06-22 09:54:01 +00:00
			`# Install apt packages`
			`sudo apt-get update`
Accounts (#554) * stripe env * stripe env * stripe env * allow post * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * accounts/** * favicon * foo * foo * foo * foo * foo * foo * title * fix dashboard timestamp * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * prices * Revert "prices" This reverts commit 7071ed4ef4641bc7a7247f2b56ba1159c9606112. * Make sure we don't accidentally commit `kratos.yml`. * Add Oathkeeper access rules for Stripe. * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * Add `max_breaches` to Kratos's sample config file. * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * payments * cache .next folder * Use own fork of Kratos's `master` in order to get the fix for the migrations issue. * Don't retry running Kratos migrations. * payments * restart: no * no * no * no * no * no * no * no * no * no * payments * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * accounts * limits * limits * nginx depends on accounts and kratos-migrate depends on cockroach. * upload limit rate * upload limit rate - 2 * upload limit rate - 3 * upload limit rate - 4 * upload limit rate - 5 * upload limit rate - 6 * upload limit rate - 7 * upload limit rate - 8 * upload limit rate - 9 * forgotten password link * use header for skylink * use header for skylink * use header for skylink * use header for skylink * use header for skylink * use header for skylink * use header for skylink * use header for skylink * copy to clipboard * fix ratelimit issue * Allow access to the stripe webhook. * enable allow_promotion_codes * Allow POST on webhook. * Add all env vars accounts need to docker-compose. * Don't use custom port for accounts. * print recovery * recovery sign up link * refactor cors header response * refactor cors header response * do not log unauthorized * fix registration link * settings logging * update node and tailwindcss * move webapp from volume * host 0.0.0.0 * refactor dockerfile * enable accounts * cache public * uncache public * remove cache control * no-cache * no cache * Do not use the person's name for registration. * add verify route * add verify route * add verify route * Go back to using the stock kratos image. * add verify route * fix settings link * clean up verify flow * refactor Dockerfile * Remove first and last name from used traits. * Remove account verification via email. * Allow additional properties. * Cookies and tokens last for 30 days now. * Rename secure.siasky.net to account.siasky.net. * redirect secure to account Co-authored-by: Ivaylo Novakov <inovakov@gmail.com> Co-authored-by: Ivaylo Novakov <ro-tex@users.noreply.github.com> 2021-04-01 13:15:37 +00:00			`sudo apt-get -y install ufw tmux ranger htop nload gcc g++ make git vim unzip curl awscli`
Improve server infrastructure setup and scripts (#231) 2020-06-22 09:54:01 +00:00
			`# Setup GIT credentials (so commands like git stash would work)`
			`git config --global user.email "devs@nebulous.tech"`
			`git config --global user.name "Sia Dev"`

			`# Setup firewall`
			`sudo ufw --force enable # --force to make it non-interactive`
			`sudo ufw logging low # enable logging for debugging purpose: tail -f /var/log/ufw.log`
			`sudo ufw allow ssh # allow ssh connection to server`
			`sudo ufw allow 80,443/tcp # allow http and https ports`

			`# OPTIONAL: terminfo for alacritty terminal via ssh`
			`# If you don't use the alacritty terminal you can remove this step.`
			`wget -c https://raw.githubusercontent.com/alacritty/alacritty/master/extra/alacritty.info`
			`sudo tic -xe alacritty,alacritty-direct alacritty.info`
			`rm alacritty.info`

			`# Set up file limits - siad uses a lot so we need to adjust so it doesn't choke up`
			`sudo cp /home/user/skynet-webportal/setup-scripts/support/limits.conf /etc/security/limits.conf`
set timezone to utc on server setup (#588) 2021-01-20 14:52:30 +00:00
			`# Set UTC timezone so all of the servers report the same time`
			`sudo timedatectl set-timezone UTC`