|
|
@@ -1,15 +1,11 @@
|
|
|
#!/bin/bash
|
|
|
|
|
|
-curl -o /etc/yum.repos.d/Docker-ce.repo https://download.docker.com/linux/centos/docker-ce.repo
|
|
|
-dnf update
|
|
|
-dnf -y install docker-ce docker-ce-cli containerd.io
|
|
|
-curl -o /etc/docker/daemon.json https://git.xo.nl/marcel/deployment/raw/master/daemon.json
|
|
|
-mkdir /data
|
|
|
-systemctl enable --now docker
|
|
|
+echo "Install sudo"
|
|
|
+dnf -y install sudo
|
|
|
echo "Creating group"
|
|
|
groupadd Ansible
|
|
|
echo "Creating user"
|
|
|
-useradd -g Ansible -G docker -m -r -c "Ansible user" ansible
|
|
|
+useradd -g Ansible -m -r -c "Ansible user" ansible
|
|
|
echo "Set sudo rights"
|
|
|
echo "%Ansible ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/Ansible
|
|
|
echo "Set remote access"
|
|
|
@@ -23,24 +19,6 @@ setenforce 0
|
|
|
echo "Disable root login"
|
|
|
sed -i 's/PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config
|
|
|
sed -i 's/PermitRootLogin without-password/PermitRootLogin no/' /etc/ssh/sshd_config
|
|
|
-echo "Deploying Shellhub agent"
|
|
|
-read -p "Enter TENANT-ID : " SHELLHUB
|
|
|
-docker run -d \
|
|
|
- --name=shellhub \
|
|
|
- --restart=on-failure \
|
|
|
- --privileged \
|
|
|
- --net=host \
|
|
|
- --pid=host \
|
|
|
- -v /:/host \
|
|
|
- -v /dev:/dev \
|
|
|
- -v /var/run/docker.sock:/var/run/docker.sock \
|
|
|
- -v /etc/passwd:/etc/passwd \
|
|
|
- -v /etc/group:/etc/group \
|
|
|
- -v /etc/resolv.conf:/etc/resolv.conf \
|
|
|
- -v /var/run:/var/run \
|
|
|
- -v /var/log:/var/log \
|
|
|
- -e SHELLHUB_SERVER_ADDRESS=https://shell.xo.nl:443 \
|
|
|
- -e SHELLHUB_PRIVATE_KEY=/host/etc/shellhub.key \
|
|
|
- -e SHELLHUB_TENANT_ID=$SHELLHUB \
|
|
|
- shellhubio/agent:v0.14.3
|
|
|
-echo "Deployment is completed"
|
|
|
+echo "Deployment is completed, system reboot in 5 seconds"
|
|
|
+sleep 5
|
|
|
+reboot
|
