Package WAPT tis-remote-repo-nginx 1.24.0-35 windows

tis-remote-repo-nginx

1.24.0-35

Package for installing nginx for remote repositories agents

4138 downloads

Download
See build result See VirusTotal scan

Description

package : tis-remote-repo-nginx
name : Remote Repository NGINX
version : 1.24.0-35
categories : System and network
maintainer : WAPT Team,Tranquil IT,Hubert TOUVET,Evan BLAUDY,Jimmy PELÉ
installed_size :
editor :
licence :
signature_date : 2023-07-26T19:04:33.780698
size : 1.58 Mo
locale : all
target_os : windows
impacted_process :
architecture : x64
Homepage : https://www.wapt.fr/en/doc/wapt-replication/index.html
Depends :

tis-remote-repo-conf

control


package           : tis-remote-repo-nginx
version           : 1.24.0-35
architecture      : x64
section           : base
priority          : optional
name              : Remote Repository NGINX
categories        : System and network
maintainer        : WAPT Team,Tranquil IT,Hubert TOUVET,Evan BLAUDY,Jimmy PELÉ
description       : Package for installing nginx for remote repositories agents
depends           : tis-remote-repo-conf
conflicts         : 
maturity          : PROD
locale            : all
target_os         : windows
min_wapt_version  : 2.4
sources           : https://nginx.org/en/download.html
installed_size    : 
impacted_process  : 
description_fr    : Paquet pour l'installation de nginx pour les agents de dépôts à distance
description_pl    : Pakiet do instalacji nginx dla agentów zdalnych repozytoriów
description_de    : Paket zur Installation von nginx für Agenten für entfernte Repositories
description_es    : Paquete para instalar nginx para agentes de repositorios remotos
description_pt    : Pacote para instalação de nginx para agentes de repositórios remotos
description_it    : Pacchetto per l'installazione di nginx per gli agenti dei repository remoti
description_nl    : Pakket voor het installeren van nginx voor remote repositories agents
description_ru    : Пакет для установки nginx для агентов удаленных репозиториев
audit_schedule    : 
editor            : 
keywords          : 
licence           : 
homepage          : https://www.wapt.fr/en/doc/wapt-replication/index.html
package_uuid      : 7596ccd9-f1bd-432d-9280-02e35f5c3ef2
valid_from        : 
valid_until       : 
forced_install_on : 
changelog         : https://nginx.org/en/CHANGES
min_os_version    : 
max_os_version    : 
icon_sha256sum    : cc84c091e5b69b2c2c902cba5f4e34ff5e71494f3f3d376fb640d5b68d242a56
signer            : Tranquil IT
signer_fingerprint: 8c5127a75392be9cc9afd0dbae1222a673072c308c14d88ab246e23832e8c6bb
signature         : h1uzxfF4GoJ79hVOCnSexA6lUnMQ678r9vLDAEvUMge/P6k5Hosp2foFxEicIJmIC28AX9UJAroVAfjoEh0g+sN+9n7KlwoFK1X0VNrdZIoZkGdvJi397mRx/GQ7Fgu5alkzqVW12JaKNC1z5gGpoMLqddCG+4HJjFppuTMGgwz3JKHNleoVNMSlV14oVxFX0twEbANrG1ZeS2vFySw6sd/UqpPJmft0wkcgakjevHrZ3bdWwAPdBNeJ7qgg8SDqn8cZ6lD5HXUeu67Utb2G79wpLaIb7Aor+xeSwzW4tVZatR06NXfCxoZnV3yXgGDEHR+QrAkq51sgDDLrr2gHcA==
signature_date    : 2023-07-26T19:04:33.780698
signed_attributes : package,version,architecture,section,priority,name,categories,maintainer,description,depends,conflicts,maturity,locale,target_os,min_wapt_version,sources,installed_size,impacted_process,description_fr,description_pl,description_de,description_es,description_pt,description_it,description_nl,description_ru,audit_schedule,editor,keywords,licence,homepage,package_uuid,valid_from,valid_until,forced_install_on,changelog,min_os_version,max_os_version,icon_sha256sum,signer,signer_fingerprint,signature_date,signed_attributes

Setup.py


# -*- coding: utf-8 -*-
from setuphelpers import *
import time
import jinja2
from waptcrypto import SSLPrivateKey, SSLCertificate
import datetime

bin_name = "nginx.exe"
service_name = "WAPTRepoNginx"


def install():
    global force
    global service_name 
    
    def make_nginx_config(local_repo):
        global force

        ap_conf_dir = os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx", "conf")
        ap_file_name = "nginx.conf"
        ap_conf_file = os.path.join(ap_conf_dir, ap_file_name)
        ap_ssl_dir = os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx", "ssl")

        if os.path.isfile(ap_conf_file) and (not force):
            if "waptservice" in open(ap_conf_file, "r").read():
                return ap_conf_file

        mkdirs(ap_ssl_dir)

        key_fn = os.path.join(ap_ssl_dir, "key.pem")
        key = SSLPrivateKey(key_fn)
        if not os.path.isfile(key_fn):
            print("Create SSL RSA Key %s" % key_fn)
            key.create()
            key.save_as_pem()

        cert_fn = os.path.join(ap_ssl_dir, "cert.pem")
        if os.path.isfile(cert_fn):
            crt = SSLCertificate(cert_fn)
            if crt.cn != get_fqdn():
                os.rename(cert_fn, "%s-%s.old" % (cert_fn, "{:%Y%m%d-%Hh%Mm%Ss}".format(datetime.datetime.now())))
                crt = key.build_sign_certificate(cn=get_fqdn(), dnsname=get_fqdn(), is_code_signing=False)
                print("Create X509 cert %s" % cert_fn)
                crt.save_as_pem(cert_fn)
        else:
            crt = key.build_sign_certificate(cn=get_fqdn(), dnsname=get_fqdn(), is_code_signing=False)
            print("Create X509 cert %s" % cert_fn)
            crt.save_as_pem(cert_fn)

        # write config file
        jinja_env = jinja2.Environment(loader=jinja2.FileSystemLoader("scripts"))
        template = jinja_env.get_template("waptwindows.nginxconfig.j2")
        template_variables = {
            "wapt_repository_path": local_repo.replace("\\", "/"),
            "ssl": True,
            "force_https": False,
            "wapt_ssl_key_file": key_fn.replace("\\", "/"),
            "wapt_ssl_cert_file": cert_fn.replace("\\", "/"),
            "log_dir": os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx", "logs").replace("\\", "/"),
            "wapt_root_dir": WAPT.wapt_base_dir.replace("\\", "/"),
            "nginx_http": 80,
            "nginx_https": 443,
            "server_tokens": "off",
        }

        config_string = template.render(template_variables)
        print("Create nginx conf file %s" % ap_conf_file)
        with open(ap_conf_file, "wt") as dst_file:
            dst_file.write(config_string)
        return ap_conf_file

    def install_nginx_service(local_repo):
        print("Register nginx frontend")

        # rights
        mkdirs(os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx", "temp"))
        for repo_path in ("wapt", "wapt-host", "waptwua"):
            p = makepath(local_repo, repo_path)
            mkdirs(p)
            run(r'icacls "%s" /grant  "*S-1-5-20":(OI)(CI)(M)' % (p))
        run(r'icacls "%s" /grant  "*S-1-5-20":(OI)(CI)(M)' % (os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx", "temp")))
        run(r'icacls "%s" /grant  "*S-1-5-20":(OI)(CI)(M)' % os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx", "logs"))
        run(r'icacls "%s" /grant  "*S-1-5-20":(OI)(CI)(M)' % os.path.join(WAPT.wapt_base_dir, "log"))

        make_nginx_config(local_repo)

        filecopyto('waptnginx.service',os.path.join(WAPT.wapt_base_dir, "waptservice", "services",'waptnginx.service'))
        #install_windows_nssm_service(service_binary, service_parameters, service_logfile)


    print("installing %s" % control.asrequirement())

    print("Install nginx to permit WAPTAgent to become a repository")
    local_repo = inifile_readstring(WAPT.config_filename, "repo-sync", "local_repo_path") or makepath(WAPT.wapt_base_dir, "repository")

    print("Create WAPTService directories for nginx")
    for dirname in ("nginx", "scripts"):
        mkdirs(makepath(WAPT.wapt_base_dir, "waptservice", dirname))
    for dirname in ("logs", "conf"):
        mkdirs(makepath(WAPT.wapt_base_dir, "waptservice", "nginx", dirname))

    print("Copy conf file for nginx")
    if not isfile(makepath(WAPT.wapt_base_dir, "waptservice", "nginx", bin_name)):
        filecopyto(bin_name, makepath(WAPT.wapt_base_dir, "waptservice", "nginx"))
    if not isfile(makepath(WAPT.wapt_base_dir, "waptservice", "nginx", "conf", "mime.types")):
        filecopyto("scripts/mime.types", makepath(WAPT.wapt_base_dir, "waptservice", "nginx", "conf"))

    print("Install nginx")
    install_nginx_service(local_repo)

    print("Add firewall rule for nginx")
    run(
        'netsh advfirewall firewall add rule name="%s" dir=in action=allow program="%s" enable=yes'
        % (service_name, makepath(WAPT.wapt_base_dir, "waptservice", "nginx", bin_name))
    )

    service_name = "WAPTRepoNginx"
    if service_installed(service_name):
        if service_is_running(service_name):
            service_stop(service_name)
        service_delete(service_name)

    create_onetime_task('restart_waptservice','cmd.exe','/c net stop waptservice & net start waptservice')


def uninstall():

    remove_file(os.path.join(WAPT.wapt_base_dir, "waptservice", "services",'waptnginx.service'))

    print("Remove firewall rule")
    run(
        'netsh advfirewall firewall delete rule name="%s" program="%s"'
        % (service_name, makepath(WAPT.wapt_base_dir, "waptservice", "nginx", bin_name))
    )

    print("Remove nginx files")
    remove_tree(makepath(WAPT.wapt_base_dir, "waptservice", "nginx"))
    remove_file(makepath(WAPT.wapt_base_dir, "waptservice", "scripts", "mime.types"))

update_package.py


# -*- coding: utf-8 -*-
from setuphelpers import *
import bs4 as BeautifulSoup
import zipfile
import requests
import platform


def update_package():
    # Declaring local variables
    package_updated = False
    proxies = get_proxies()
    if not proxies:
        proxies = get_proxies_from_wapt_console()
    app_name = control.name
    url = "https://nginx.org"
    bin_name = "nginx.exe"
    # Getting latest version from official website
    page = requests.get(url + "/en/download.html", headers={"User-Agent": "Mozilla/5.0 (Windows NT 6.1; Win64; x64)"}, proxies=proxies).text
    bs = BeautifulSoup.BeautifulSoup(page, "html.parser")
    bs_title = bs.find("h4", text="Stable version")
    url_dl = url + bs_title.findNext().findAll("a")[3]["href"]

    latest_bin_zip = url_dl.split("/")[-1]
    version = latest_bin_zip.replace(".zip", "").split("-")[-1]

    print("Latest " + app_name + " version is: " + version)
    print("Download url is: " + url_dl)

    # Downloading latest binaries
    if not isfile(latest_bin_zip):
        print("Downloading: " + latest_bin_zip)
        wget(url_dl, latest_bin_zip, proxies=proxies)

        # Extracting
        with zipfile.ZipFile(latest_bin_zip, "r") as zip_file:
            for afile in zip_file.filelist:
                if afile.filename.endswith(bin_name):
                    nginx_exe = zip_file.extract(afile)
        filecopyto(nginx_exe, bin_name)
        remove_tree(os.path.abspath(os.path.join(nginx_exe, os.pardir)))
        remove_file(latest_bin_zip)

    # Checking version from file
    version_from_file = get_file_properties(bin_name)["ProductVersion"]
    if Version(version_from_file) != Version(version) and version_from_file != "":
        print("Changing version to the version number of the binary (from: %s to: %s)" % (version, version_from_file))
        version = version_from_file
    else:
        print("Binary file version corresponds to online version")

    # Changing version of the package
    if Version(version) > Version(control.get_software_version()):
        print("Software version updated (from: %s to: %s)" % (control.get_software_version(), Version(version)))
        package_updated = True
    else:
        print("Software version up-to-date (%s)" % Version(version))
    control.set_software_version(version)
    control.save_control_to_wapt()

    # Validating or not update-package-sources
    return package_updated

manifest.sha256


                                
1a9c8aef984609dbb64b1465548ea5b77dfa60d23d26cea5dee8aaf7cbfb2ea5 : setup.py 
 : __pycache__ 
8ec3ad095aa3f3e47c8c49e46fa2bfdcabcb0dc83a2f8d0b949d549081a6faf0 : scripts/waptwindows.nginxconfig.j2 
e96526d8332f25c4e11d4adcc983ab5c8139c58066a88809f918a4568dcd003c : scripts/mime.types 
5230b7e549b923dd475535a1cde5a1545639ca74d94db0e701167715f6dae0d1 : update_package.py 
25d893920bafc6f20defb5b586becbac2b39b0f7bead1f9dc9f0f0db88875ddc : nginx.exe 
cc84c091e5b69b2c2c902cba5f4e34ff5e71494f3f3d376fb640d5b68d242a56 : WAPT/icon.png 
a5a97261381e1d0ad46ee15916abec9c2631d0201f5cc50ceb0197a165a0bbbf : WAPT/certificate.crt 
aa35f3b61b42165dfbb0280e13129fba9de64107919f0000c2e5d3b326160fe4 : WAPT/changelog.txt 
a6122c659f68b3cfa0974984000adea3e0393248e2edb65cedd96c5e79c901cd : luti.json 
35386a0d828fceb4a9d2b726427dd351523c4e212708136dd3a4c9d7755c0e99 : waptnginx.service 
aaa4899f176745b237195ead800e647dd981ba74a762a6bd97410e1e04177f1b : WAPT/control

Changelog


								

1.22.1-25
===
datetime import was missing
copy nssm to avoid unexpected kill
adding option server_tokens=off
handle nssm for win32

Choose languages

Choose architecture

Choose OS

Choose Categorie

Filter on package licensing

tis-remote-repo-nginx

Description

control

Setup.py

update_package.py

Changelog