3 echo "This script installs a new BookStack instance on a fresh Ubuntu 22.04 server."
4 echo "This script does not ensure system security."
7 # Generate a path for a log file to output into for debugging
8 LOGPATH=$(realpath "bookstack_install_$(date +%s).log")
10 # Get the current user running the script
11 SCRIPT_USER="${SUDO_USER:-$USER}"
13 # Get the current machine IP address
14 CURRENT_IP=$(ip addr | grep 'state UP' -A4 | grep 'inet ' | awk '{print $2}' | cut -f1 -d'/')
16 # Generate a password for the database
17 DB_PASS="$(head /dev/urandom | tr -dc A-Za-z0-9 | head -c 13)"
19 # The directory to install BookStack into
20 BOOKSTACK_DIR="/var/www/bookstack"
22 # Get the domain from the arguments (Requested later if not set)
25 # Prevent interactive prompts in applications
26 export DEBIAN_FRONTEND=noninteractive
28 # Echo out an error message to the command line and exit the program
29 # Also logs the message to the log file
30 function error_out() {
31 echo "ERROR: $1" | tee -a "$LOGPATH" 1>&2
35 # Echo out an information message to both the command line and log file
37 echo "$1" | tee -a "$LOGPATH"
40 # Run some checks before installation to help prevent messing up an existing
42 function run_pre_install_checks() {
43 # Check we're running as root and exit if not
46 error_out "This script must be ran with root/sudo privileges"
49 # Check if Apache appears to be installed and exit if so
50 if [ -d "/etc/apache2/sites-enabled" ]
52 error_out "This script is intended for a fresh server install, existing apache config found, aborting install"
55 # Check if MySQL appears to be installed and exit if so
56 if [ -d "/var/lib/mysql" ]
58 error_out "This script is intended for a fresh server install, existing MySQL data found, aborting install"
62 # Fetch domain to use from first provided parameter,
63 # Otherwise request the user to input their domain
64 function run_prompt_for_domain_if_required() {
68 info_msg "Enter the domain (or IP if not using a domain) you want to host BookStack on and press [ENTER]."
69 info_msg "Examples: my-site.com or docs.my-site.com or ${CURRENT_IP}"
73 # Error out if no domain was provided
76 error_out "A domain must be provided to run this script"
80 # Install core system packages
81 function run_package_installs() {
82 export DEBIAN_FRONTEND="noninteractive"
84 apt install -y software-properties-common
85 add-apt-repository -yu ppa:ondrej/php
86 apt install -y git unzip apache2 php8.4 curl php8.4-curl php8.4-mbstring php8.4-ldap \
87 php8.4-xml php8.4-zip php8.4-gd php8.4-mysql mysql-server-8.0 libapache2-mod-php8.4
91 function run_database_setup() {
92 mysql -u root --execute="CREATE DATABASE bookstack;"
93 mysql -u root --execute="CREATE USER 'bookstack'@'localhost' IDENTIFIED WITH mysql_native_password BY '$DB_PASS';"
94 mysql -u root --execute="GRANT ALL ON bookstack.* TO 'bookstack'@'localhost';FLUSH PRIVILEGES;"
98 function run_bookstack_download() {
100 git clone https://github.com/BookStackApp/BookStack.git --branch release --single-branch bookstack
104 function run_install_composer() {
105 EXPECTED_CHECKSUM="$(php -r 'copy("https://composer.github.io/installer.sig", "php://stdout");')"
106 php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"
107 ACTUAL_CHECKSUM="$(php -r "echo hash_file('sha384', 'composer-setup.php');")"
109 if [ "$EXPECTED_CHECKSUM" != "$ACTUAL_CHECKSUM" ]
111 >&2 echo 'ERROR: Invalid composer installer checksum'
112 rm composer-setup.php
116 php composer-setup.php --quiet
117 rm composer-setup.php
119 # Move composer to global installation
120 mv composer.phar /usr/local/bin/composer
123 # Install BookStack composer dependencies
124 function run_install_bookstack_composer_deps() {
125 cd "$BOOKSTACK_DIR" || exit
126 export COMPOSER_ALLOW_SUPERUSER=1
127 php /usr/local/bin/composer install --no-dev --no-plugins
130 # Copy and update BookStack environment variables
131 function run_update_bookstack_env() {
132 cd "$BOOKSTACK_DIR" || exit
134 sed -i.bak "s@APP_URL=.*\$@APP_URL=http://$DOMAIN@" .env
135 sed -i.bak 's/DB_DATABASE=.*$/DB_DATABASE=bookstack/' .env
136 sed -i.bak 's/DB_USERNAME=.*$/DB_USERNAME=bookstack/' .env
137 sed -i.bak "s/DB_PASSWORD=.*\$/DB_PASSWORD=$DB_PASS/" .env
138 # Generate the application key
139 php artisan key:generate --no-interaction --force
142 # Run the BookStack database migrations for the first time
143 function run_bookstack_database_migrations() {
144 cd "$BOOKSTACK_DIR" || exit
145 php artisan migrate --no-interaction --force
148 # Set file and folder permissions
149 # Sets current user as owner user and www-data as owner group then
150 # provides group write access only to required directories.
151 # Hides the `.env` file so it's not visible to other users on the system.
152 function run_set_application_file_permissions() {
153 cd "$BOOKSTACK_DIR" || exit
154 chown -R "$SCRIPT_USER":www-data ./
156 chmod -R 775 bootstrap/cache public/uploads storage
159 # Tell git to ignore permission changes
160 git config core.fileMode false
163 # Setup apache with the needed modules and config
164 function run_configure_apache() {
165 # Enable required apache modules
169 # Set-up the required BookStack apache config
170 cat >/etc/apache2/sites-available/bookstack.conf <<EOL
174 ServerAdmin webmaster@localhost
175 DocumentRoot /var/www/bookstack/public/
177 <Directory /var/www/bookstack/public/>
178 Options -Indexes +FollowSymLinks
181 <IfModule mod_rewrite.c>
182 <IfModule mod_negotiation.c>
183 Options -MultiViews -Indexes
188 # Handle Authorization Header
189 RewriteCond %{HTTP:Authorization} .
190 RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
192 # Redirect Trailing Slashes If Not A Folder...
193 RewriteCond %{REQUEST_FILENAME} !-d
194 RewriteCond %{REQUEST_URI} (.+)/$
195 RewriteRule ^ %1 [L,R=301]
197 # Handle Front Controller...
198 RewriteCond %{REQUEST_FILENAME} !-d
199 RewriteCond %{REQUEST_FILENAME} !-f
200 RewriteRule ^ index.php [L]
204 ErrorLog \${APACHE_LOG_DIR}/error.log
205 CustomLog \${APACHE_LOG_DIR}/access.log combined
210 # Disable the default apache site and enable BookStack
211 a2dissite 000-default.conf
212 a2ensite bookstack.conf
214 # Restart apache to load new config
215 systemctl restart apache2
218 info_msg "This script logs full output to $LOGPATH which may help upon issues."
221 run_pre_install_checks
222 run_prompt_for_domain_if_required
224 info_msg "Installing using the domain or IP \"$DOMAIN\""
228 info_msg "[1/9] Installing required system packages... (This may take several minutes)"
229 run_package_installs >> "$LOGPATH" 2>&1
231 info_msg "[2/9] Preparing MySQL database..."
232 run_database_setup >> "$LOGPATH" 2>&1
234 info_msg "[3/9] Downloading BookStack to ${BOOKSTACK_DIR}..."
235 run_bookstack_download >> "$LOGPATH" 2>&1
237 info_msg "[4/9] Installing Composer (PHP dependency manager)..."
238 run_install_composer >> "$LOGPATH" 2>&1
240 info_msg "[5/9] Installing PHP dependencies using composer..."
241 run_install_bookstack_composer_deps >> "$LOGPATH" 2>&1
243 info_msg "[6/9] Creating and populating BookStack .env file..."
244 run_update_bookstack_env >> "$LOGPATH" 2>&1
246 info_msg "[7/9] Running initial BookStack database migrations..."
247 run_bookstack_database_migrations >> "$LOGPATH" 2>&1
249 info_msg "[8/9] Setting BookStack file & folder permissions..."
250 run_set_application_file_permissions >> "$LOGPATH" 2>&1
252 info_msg "[9/9] Configuring apache server..."
253 run_configure_apache >> "$LOGPATH" 2>&1
255 info_msg "----------------------------------------------------------------"
256 info_msg "Setup finished, your BookStack instance should now be installed!"
257 info_msg "- Default login email: admin@admin.com"
258 info_msg "- Default login password: password"
259 info_msg "- Access URL: http://$CURRENT_IP/ or http://$DOMAIN/"
260 info_msg "- BookStack install path: $BOOKSTACK_DIR"
261 info_msg "- Install script log: $LOGPATH"
262 info_msg "---------------------------------------------------------------"
projects / devops / blob