mirror of
https://github.com/formbricks/formbricks.git
synced 2026-05-13 03:16:58 -05:00
Tiago
105 lines
3.3 KiB
Bash
Executable File
105 lines
3.3 KiB
Bash
Executable File
#!/bin/sh
|
|
# Shared RustFS bootstrap script.
|
|
# Used directly by docker-compose.dev.yml for local development and used as the
|
|
# source template for the generated rustfs-init.sh in docker/formbricks.sh for
|
|
# one-click/self-hosted installs. packages/storage/src/rustfs-init-bootstrap.test.ts
|
|
# also validates that the generated script stays in sync with this file.
|
|
set -e
|
|
|
|
rustfs_endpoint_url="${RUSTFS_ENDPOINT_URL:-http://rustfs:9000}"
|
|
|
|
echo '⏳ Waiting for RustFS to be ready...'
|
|
attempts=0
|
|
max_attempts=30
|
|
until mc alias set rustfs "$rustfs_endpoint_url" "$RUSTFS_ADMIN_USER" "$RUSTFS_ADMIN_PASSWORD" >/dev/null 2>&1 \
|
|
&& mc ls rustfs >/dev/null 2>&1; do
|
|
attempts=$((attempts + 1))
|
|
if [ $attempts -ge $max_attempts ]; then
|
|
printf '❌ Failed to connect to RustFS after %s attempts\n' $max_attempts
|
|
exit 1
|
|
fi
|
|
printf '...still waiting attempt %s/%s\n' $attempts $max_attempts
|
|
sleep 2
|
|
done
|
|
echo '🔗 RustFS reachable; alias configured.'
|
|
|
|
echo '🪣 Creating bucket (idempotent)...'
|
|
mc mb rustfs/$RUSTFS_BUCKET_NAME --ignore-existing
|
|
|
|
if [ -n "${RUSTFS_CORS_ALLOWED_ORIGINS:-}" ]; then
|
|
echo '🌐 Applying bucket CORS configuration...'
|
|
cors_file="/tmp/formbricks-cors.xml"
|
|
|
|
cat > "$cors_file" << EOF
|
|
<CORSConfiguration>
|
|
<CORSRule>
|
|
EOF
|
|
|
|
old_ifs=$IFS
|
|
IFS=','
|
|
for origin in $RUSTFS_CORS_ALLOWED_ORIGINS; do
|
|
trimmed_origin=$(printf '%s' "$origin" | tr -d '[:space:]')
|
|
if [ -n "$trimmed_origin" ]; then
|
|
printf ' <AllowedOrigin>%s</AllowedOrigin>\n' "$trimmed_origin" >> "$cors_file"
|
|
fi
|
|
done
|
|
IFS=$old_ifs
|
|
|
|
cat >> "$cors_file" << EOF
|
|
<AllowedMethod>GET</AllowedMethod>
|
|
<AllowedMethod>HEAD</AllowedMethod>
|
|
<AllowedMethod>POST</AllowedMethod>
|
|
<AllowedMethod>PUT</AllowedMethod>
|
|
<AllowedMethod>DELETE</AllowedMethod>
|
|
<AllowedHeader>*</AllowedHeader>
|
|
<ExposeHeader>ETag</ExposeHeader>
|
|
<MaxAgeSeconds>3000</MaxAgeSeconds>
|
|
</CORSRule>
|
|
</CORSConfiguration>
|
|
EOF
|
|
|
|
mc cors set rustfs/$RUSTFS_BUCKET_NAME "$cors_file"
|
|
echo 'CORS configuration applied successfully.'
|
|
fi
|
|
|
|
echo '📄 Creating JSON policy file...'
|
|
cat > /tmp/formbricks-policy.json << EOF
|
|
{
|
|
"Version": "2012-10-17",
|
|
"Statement": [
|
|
{
|
|
"Effect": "Allow",
|
|
"Action": ["s3:DeleteObject", "s3:GetObject", "s3:PutObject"],
|
|
"Resource": ["arn:aws:s3:::$RUSTFS_BUCKET_NAME/*"]
|
|
},
|
|
{
|
|
"Effect": "Allow",
|
|
"Action": ["s3:ListBucket"],
|
|
"Resource": ["arn:aws:s3:::$RUSTFS_BUCKET_NAME"]
|
|
}
|
|
]
|
|
}
|
|
EOF
|
|
|
|
echo '🔒 Creating policy (idempotent)...'
|
|
if ! mc admin policy info rustfs "$RUSTFS_POLICY_NAME" >/dev/null 2>&1; then
|
|
mc admin policy create rustfs "$RUSTFS_POLICY_NAME" /tmp/formbricks-policy.json || \
|
|
mc admin policy add rustfs "$RUSTFS_POLICY_NAME" /tmp/formbricks-policy.json
|
|
echo 'Policy created successfully.'
|
|
else
|
|
echo 'Policy already exists, skipping creation.'
|
|
fi
|
|
|
|
echo '👤 Creating service user (idempotent)...'
|
|
if ! mc admin user info rustfs "$RUSTFS_SERVICE_USER" >/dev/null 2>&1; then
|
|
mc admin user add rustfs "$RUSTFS_SERVICE_USER" "$RUSTFS_SERVICE_PASSWORD"
|
|
echo 'User created successfully.'
|
|
else
|
|
echo 'User already exists, skipping creation.'
|
|
fi
|
|
|
|
echo '🔗 Attaching policy to user (idempotent)...'
|
|
mc admin policy attach rustfs "$RUSTFS_POLICY_NAME" --user "$RUSTFS_SERVICE_USER"
|
|
|
|
echo '✅ RustFS setup complete!'
|