1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
|
#!/bin/sh
# git Post-receive configuration update script
#
# To install:
# * Enable r/w control socket for the user you're pushing with
# * cd <config-dir>/raddb git config receive.denyCurrentBranch ignore
# * cp ./post-receive <config-dir>/raddb/.git/hooks/
# * # Edit the capitalized variables below to match your environment.
#
# Copyright 2012 Arran Cudbard-Bell <a.cudbard-bell@freeradius.org>
PATH=/bin:/usr/bin:/usr/sbin:/sbin
# Tag to update when we successfully manage to start the server with a new configuration
: ${STABLE_TAG='stable'}
# Descriptive name of daemon
: ${DAEMON_DESC='FreeRADIUS'}
# Init script for radiusd
: ${DAEMON_STATUS='/etc/init.d/radiusd status'}
# Command used to restart the RADIUS daemon
: ${DAEMON_REST='radmin -e hup'}
# Command used to verify the new configuration
: ${DAEMON_CONF='radiusd -Cxl stdout'}
# Command used to execute git functions
: ${GIT_EXEC='env -i git'}
# Abort if there are local untracked files
: ${ABORT_UNTRACKED=true}
# Push changes to any remotes we have configured
: ${PUSH_TO_REMOTES=false}
while read oldrev newrev refname
do
:
done
status () {
if [ $1 -ne 0 ]; then
echo "failed"
else
echo "ok"
fi
}
conf_rollback () {
# Use stable tag if it exists...
if $GIT_EXEC show-ref $STABLE_TAG > /dev/null 2>&1; then
echo -n "Attempting to roll config back to tag: \"$STABLE_TAG\"... "
$GIT_EXEC reset --hard $STABLE_TAG; ret=$?
else
echo -n "Attempting to roll config back to commit: \"$oldrev\"... "
$GIT_EXEC reset --hard $oldrev; ret=$?
fi
status $ret
return $ret
}
conf_check () {
echo -n "Checking new configuration... "
$DAEMON_CONF; ret=$?
status $ret
return $ret
}
daemon_status () {
echo -n "Checking if radiusd is running ... "
$DAEMON_STATUS; ret=$?
return $ret
}
daemon_restart () {
echo -n "Restarting server... "
$DAEMON_REST > /dev/null 2>&1; ret=$?
status $ret
return $ret
}
# Reset the current working directory state
cd ..
# Friendly update of working copy to head state
$GIT_EXEC checkout -f
if $ABORT_UNTRACKED && [ `$GIT_EXEC status --porcelain | wc -l` -gt 0 ]; then
echo "WARNING: Untracked changes have been made to this git repository,"
echo "changes have been committed but untracked files should be removed,"
echo "committed or added to .gitignore and $DAEMON_DESC restarted manually."
$GIT_EXEC status --short
if ! conf_check; then
exit 64
fi
echo "WARNING: $DAEMON_DESC found errors in the configuration,"
echo "these errors should be corrected before updating working copy."
exit 65
fi
# Clean out all untracked files and directories (if there are local files you
# wish to keep, they should be add to .gitignore)
if ! $GIT_EXEC clean -d -f
then exit $?
fi
# Reset all tracked files to the HEAD state
if ! $GIT_EXEC reset --hard
then exit $?
fi
# Check if the server finds any errors in the new config
if ! conf_check; then
echo "WARNING: $DAEMON_DESC found errors in the configuration,"
echo "please fix the errors and push the corrected configuration."
conf_rollback
exit 64
else
if daemon_status && ! daemon_restart ; then
if ! conf_rollback; then
echo "WARNING: Manually verify $DAEMON_DESC status immediately!"
exit 64
fi
if ! daemon_restart; then
echo "WARNING: Manually verify $DAEMON_DESC status immediately!"
exit 64
fi
exit 64
fi
$GIT_EXEC tag -f $STABLE_TAG $newrev
fi
if $PUSH_TO_REMOTES; then
echo "Pushing to remote repositories"
for remote in `$GIT_EXEC remote`; do
$GIT_EXEC push "$remote"
done
fi
exit 0
|
