implement system mode agent

scripts/install-agent.sh

@@ -0,0 +1,149 @@
+#!/bin/bash
+
+set -e
+
+check_pkg() {
+	if ! command -v $1 &>/dev/null; then
+		echo "$1 could not be found, please install it first"
+		exit 1
+	fi
+}
+
+# check if curl and jq are installed
+check_pkg curl
+check_pkg jq
+
+# check if running user is root
+if [ "$EUID" -ne 0 ]; then
+	echo "Please run the script as root"
+	exit 1
+fi
+
+# check if system is using systemd
+if [ -d "/etc/systemd/system" ]; then
+	echo "System is using systemd"
+else
+	echo "Unsupported init system, currently only systemd is supported"
+	exit 1
+fi
+
+# check variables
+if [ -z "$AGENT_NAME" ]; then
+	echo "AGENT_NAME is not set"
+	exit 1
+fi
+if [ -z "$AGENT_PORT" ]; then
+	echo "AGENT_PORT is not set"
+	exit 1
+fi
+if [ -z "$AGENT_CA_CERT" ]; then
+	echo "AGENT_CA_CERT is not set"
+	exit 1
+fi
+if [ -z "$AGENT_SSL_CERT" ]; then
+	echo "AGENT_SSL_CERT is not set"
+	exit 1
+fi
+
+# init variables
+arch=$(uname -m)
+if [ "$arch" = "x86_64" ]; then
+	filename="godoxy-agent-linux-amd64"
+elif [ "$arch" = "aarch64" ]; then
+	filename="godoxy-agent-linux-arm64"
+else
+	echo "Unsupported architecture: $arch, expect x86_64 or aarch64"
+	exit 1
+fi
+repo="yusing/go-proxy"
+install_path="/usr/local/bin"
+name="godoxy-agent"
+bin_path="${install_path}/${name}"
+env_file="/etc/${name}.env"
+service_path="/etc/systemd/system/${name}.service"
+log_path="/var/log/${name}.log"
+data_path="/var/lib/${name}"
+
+# check if install path is writable
+if [ ! -w "$install_path" ]; then
+	echo "Install path is not writable, please check the permissions"
+	exit 1
+fi
+
+# check if service path is writable
+if [ ! -w "$service_path" ]; then
+	echo "Service path is not writable, please check the permissions"
+	exit 1
+fi
+
+# check if env file is writable
+if [ ! -w "$env_file" ]; then
+	echo "Env file is not writable, please check the permissions"
+	exit 1
+fi
+
+# check if command is uninstall
+if [ "$1" = "uninstall" ]; then
+	echo "Uninstalling the agent"
+	systemctl disable --now $name
+	rm -f $bin_path
+	rm -f $env_file
+	rm -f $service_path
+	rm -rf $data_path
+	systemctl daemon-reload
+	echo "Agent uninstalled successfully"
+	exit 0
+fi
+
+echo "Finding the latest agent binary"
+bin_url=$(curl -H "Accept: application/vnd.github.v3+json" https://api.github.com/repos/$repo/releases/latest | jq -r '.assets[] | select(.name | contains("'$filename'")) | .browser_download_url')
+
+echo "Downloading the agent binary"
+curl -L "$bin_url" -o $bin_path
+
+echo "Making the agent binary executable"
+chmod +x $bin_path
+
+echo "Creating the environment file"
+cat <<EOF >$env_file
+AGENT_NAME="${AGENT_NAME}"
+AGENT_PORT="${AGENT_PORT}"
+AGENT_CA_CERT="${AGENT_CA_CERT}"
+AGENT_SSL_CERT="${AGENT_SSL_CERT}"
+EOF
+chmod 600 $env_file
+
+echo "Creating the data directory"
+mkdir -p $data_path
+
+echo "Registering the agent as a service"
+cat <<EOF >$service_path
+[Unit]
+Description=GoDoxy Agent
+After=docker.socket
+
+[Service]]
+Type=simple
+ExecStart=${bin_path}
+EnvironmentFile=${env_file}
+WorkingDirectory=${data_path}
+Restart=always
+RestartSec=10
+StandardOutput=append:${log_path}
+StandardError=append:${log_path}
+
+# Security settings
+ProtectSystem=full
+ProtectHome=true
+NoNewPrivileges=true
+
+# User and group
+User=root
+Group=root
+
+[Install]
+WantedBy=multi-user.target
+EOF
+systemctl daemon-reload
+systemctl enable --now $name
+echo "Agent installed successfully"