taler-windows

setup-wsl-debian.bat (11740B)

---

 @echo off
 :: This file is part of GNU Taler.
 :: Copyright (C) 2025 Taler Systems SA
 ::
 :: TALER is free software; you can redistribute it and/or modify it under the
 :: terms of the GNU Lesser General Public License as published by the Free Software
 :: Foundation; either version 2.1, or (at your option) any later version.
 ::
 :: TALER is distributed in the hope that it will be useful, but WITHOUT ANY
 :: WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
 :: A PARTICULAR PURPOSE.  See the GNU Lesser General Public License for more details.
 ::
 :: You should have received a copy of the GNU Lesser General Public License along with
 :: TALER; see the file COPYING.  If not, see <http://www.gnu.org/licenses/>
 ::
 :: Author: Léa Oualli
 
 setlocal enabledelayedexpansion
 
 REM -------------------------- LOGFILE GLOBALE ---------------------------
 set LOGFILE=C:\Users\Public\taler-bat.log
 
 echo [%DATE% %TIME%] === [START] GNU Taler-Merchant Installer === > %LOGFILE%
 echo [%DATE% %TIME%] Arguments : STEP="%1" DOMAIN="%2" DISTRO="%3" PROXY_MODE="%4" >> %LOGFILE%
 
 set WSL_USER=taleruser
 set STEP=%1
 set DOMAIN=%2
 set DISTRO=%3
 set WSL=wsl.exe
 if exist "%WINDIR%\Sysnative\wsl.exe" set WSL=%WINDIR%\Sysnative\wsl.exe
 set PROXY_MODE=%4
 
 if "%STEP%"=="" (
     set STEP=ALL
 )
 
 if "%DISTRO%"=="" (
     set DISTRO=Debian
 )
 
 echo [%DATE% %TIME%] Initial STEP="%STEP%", DOMAIN="%DOMAIN%", DISTRO="%DISTRO%", PROXY_MODE="%PROXY_MODE%" >> %LOGFILE%
 
 if "%STEP%"=="1" goto step1
 if "%STEP%"=="2" goto step2
 if "%STEP%"=="3" goto step3
 if "%STEP%"=="4" goto step4
 if "%STEP%"=="5" goto step5
 if "%STEP%"=="6" goto step6
 if "%STEP%"=="7" goto step7
 if "%STEP%"=="8" goto step8
 
 :step1
 echo [%DATE% %TIME%] [1/8] Checking WSL and VirtualMachinePlatform... >> %LOGFILE%
 
 :: Check if WSL is enabled
 powershell -Command "(Get-WindowsOptionalFeature -Online -FeatureName Microsoft-Windows-Subsystem-Linux).State" | find /I "Enabled" >nul
 set WSL_ENABLED=%errorlevel%
 :: Check if VirtualMachinePlatform is enabled
 powershell -Command "(Get-WindowsOptionalFeature -Online -FeatureName VirtualMachinePlatform).State" | find /I "Enabled" >nul
 set VMP_ENABLED=%errorlevel%
 
 if %WSL_ENABLED% equ 0 (
      echo [%DATE% %TIME%] WSL already enabled. >> %LOGFILE%
 ) else (
      echo [%DATE% %TIME%] Enabling WSL feature... >> %LOGFILE%
     powershell.exe -Command "Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Windows-Subsystem-Linux -NoRestart"
     set NEED_REBOOT=1
 )
 
 if %VMP_ENABLED% equ 0 (
     echo [%DATE% %TIME%] VirtualMachinePlatform already enabled. >> %LOGFILE%
 ) else (
     echo [%DATE% %TIME%] Enabling VirtualMachinePlatform feature... >> %LOGFILE%
     powershell.exe -Command "Enable-WindowsOptionalFeature -Online -FeatureName VirtualMachinePlatform -NoRestart"
     set NEED_REBOOT=1
 )
 
 if defined NEED_REBOOT (
     echo [%DATE% %TIME%] [INFO] REBOOT REQUIRED! >> %LOGFILE%
     echo [INFO] A restart is required to finish enabling WSL features. Please restart your computer and run the installer again.
     pause
     exit /b 1
 ) else (
     echo [%DATE% %TIME%] [INFO] WSL and VirtualMachinePlatform are ready. >> %LOGFILE%
 )
 
 if not "%STEP%"=="ALL" exit /b
 
 echo [%DATE% %TIME%] Updating WSL to the latest version if needed... >> %LOGFILE%
 echo [INFO] If a black window appears, please press any key when prompted, then wait until the window closes automatically.
 echo [INFO] The installation will continue automatically after the update.
 timeout /t 3 /nobreak
 
 :: Use start /wait to ensure the script waits for the update to finish (including if user has to press a key)
 start /wait "" %WSL% --update
 
 if not "%STEP%"=="ALL" exit /b
 
 :step2
 echo [%DATE% %TIME%] [2/8] Installing %DISTRO%... >> %LOGFILE%
 %WSL% --install -d %DISTRO%
 
 
 echo [%DATE% %TIME%] Initializing %DISTRO% first launch... >> %LOGFILE%
 %WSL% -d %DISTRO% -- bash -c "echo %DISTRO% ready"
 if not "%STEP%"=="ALL" exit /b
 
 :step3
 echo [%DATE% %TIME%] [3/8] Creating Debian user if needed... >> %LOGFILE%
 echo [%DATE% %TIME%] DISTRO="%DISTRO%", WSL_USER="%WSL_USER%" >> %LOGFILE%
 %WSL% -d %DISTRO% -- bash -c "id %WSL_USER% >/dev/null 2>&1 || sudo useradd -m %WSL_USER%"
 
 echo [%DATE% %TIME%] Waiting for user "%WSL_USER%" to be present... >> %LOGFILE%
 :wait_for_taleruser
 %WSL% -d %DISTRO% -- bash -c "id %WSL_USER%" >nul 2>&1
 if %errorlevel% neq 0 (
     timeout /t 2 >nul
     goto wait_for_taleruser
 )
 echo [%DATE% %TIME%] User "%WSL_USER%" exists in Debian! >> %LOGFILE%
 
 %WSL% -d %DISTRO% -- bash -c "echo '%WSL_USER% ALL=(ALL) NOPASSWD:ALL' | sudo tee /etc/sudoers.d/%WSL_USER%"
 %WSL% -d %DISTRO% -- bash -c "sudo chmod 0440 /etc/sudoers.d/%WSL_USER%"
 echo [%DATE% %TIME%] Sudoers file updated. >> %LOGFILE%
 if not "%STEP%"=="ALL" exit /b
 
 REM Nettoie /etc/wsl.conf avant d’ajouter
 %WSL% -d %DISTRO% -- bash -c "sudo sed -i '/^\[user\]/d;/^default *=/d' /etc/wsl.conf"
 %WSL% -d %DISTRO% -- bash -c "echo -e '[user]\ndefault = %WSL_USER%' | sudo tee -a /etc/wsl.conf > /dev/null"
 echo [%DATE% %TIME%] wsl.conf set default user. >> %LOGFILE%
 
 :: Pour appliquer immédiatement, termine la distro :
 %WSL% --terminate %DISTRO%
 echo [%DATE% %TIME%] Distro %DISTRO% terminated for user change. >> %LOGFILE%
 
 :step4
 echo [%DATE% %TIME%] [4/8] Adding user to www-data group... >> %LOGFILE%echo [DEBUG] DISTRO="%DISTRO%", WSL_USER="%WSL_USER%", DOMAIN="%DOMAIN%" >> %LOGFILE%
 %WSL% -d %DISTRO% -- bash -c "sudo usermod -aG www-data %WSL_USER% || echo 'Warning: Could not add user to www-data (might already be a member)'"
 echo [%DATE% %TIME%] User %WSL_USER% added to www-data (or already a member). >> %LOGFILE%
 if not "%STEP%"=="ALL" exit /b
 
 :step5
 echo [%DATE% %TIME%] [5/8] Preparing and copying scripts... >> %LOGFILE%
 
 REM 1. Installer dos2unix (si pas déjà installé)
 %WSL% -d %DISTRO% -- bash -c "sudo apt-get update && sudo apt-get install -y dos2unix"
 
 REM 2. Prepare the folder
 %WSL% -d %DISTRO% -- bash -c "sudo mkdir -p /home/%WSL_USER%/taler-installer"
 
 REM 3. Remove the old scripts
 %WSL% -d %DISTRO% -- bash -c "sudo rm -f /home/%WSL_USER%/taler-installer/install-taler-from-apt.sh"
 %WSL% -d %DISTRO% -- bash -c "sudo rm -f /home/%WSL_USER%/taler-installer/test-db.sh"
 %WSL% -d %DISTRO% -- bash -c "sudo rm -f /home/%WSL_USER%/taler-installer/set-db.sh"
 
 REM 4. Past the script form  Windows to %TEMP%
 copy /Y "%~dp0install-taler-from-apt.sh" "%TEMP%\install-taler-from-apt.sh"
 copy /Y "%~dp0test-db.sh" "%TEMP%\test-db.sh"
 copy /Y "%~dp0set-db.sh" "%TEMP%\set-db.sh"
 
 REM 5. copy the script into WSL (via tee)
 type "%TEMP%\install-taler-from-apt.sh" | %WSL% -d %DISTRO% -- bash -c "sudo tee /home/%WSL_USER%/taler-installer/install-taler-from-apt.sh > /dev/null"
 type "%TEMP%\test-db.sh" | %WSL% -d %DISTRO% -- bash -c "sudo tee /home/%WSL_USER%/taler-installer/test-db.sh > /dev/null"
 type "%TEMP%\set-db.sh"  | %WSL% -d %DISTRO% -- bash -c "sudo tee /home/%WSL_USER%/taler-installer/set-db.sh > /dev/null"
 echo [%DATE% %TIME%] Scripts copied to WSL. >> %LOGFILE%
 
 REM 6. Convert all the scripts into UNIX format
 %WSL% -d %DISTRO% -- bash -c "sudo dos2unix /home/%WSL_USER%/taler-installer/*.sh"
 
 REM 7. Make the script executable
 %WSL% -d %DISTRO% -- bash -c "sudo chmod +x /home/%WSL_USER%/taler-installer/*.sh"
 
 REM ------------------------------------------------------------------------------
 
 if not "%STEP%"=="ALL" exit /b
 
 :step6
 echo [%DATE% %TIME%] [6/8] Checks permissions... >> %LOGFILE%
 
 REM Check the version dos2unix (pour debug)
 %WSL% -d %DISTRO% -- bash -c "dos2unix --version"
 
 REM Display the format .sh ( ASCII text, Not CRLF)
 %WSL% -d %DISTRO% -- bash -c "file /home/%WSL_USER%/taler-installer/*.sh"
 
 REM Show the 5 firs lines of the code
 %WSL% -d %DISTRO% -- bash -c "for f in /home/%WSL_USER%/taler-installer/*.sh; do echo '----- $f'; head -n 5 \$f; done"
 
 REM Vérifier les droits d'exécution
 %WSL% -d %DISTRO% -- bash -c "ls -l /home/%WSL_USER%/taler-installer/*.sh"
 
 REM Fin du step
 echo [%DATE% %TIME%] Scripts verified (permissions/format/headers). >> %LOGFILE%
 if not "%STEP%"=="ALL" exit /b
 
 :step7
 echo [%DATE% %TIME%] [7/8] Restarting WSL... >> %LOGFILE%
 echo [DEBUG] DISTRO="%DISTRO%" >> %LOGFILE%
 %WSL% --shutdown
 timeout /t 3
 
 echo [%DATE% %TIME%] Running final installation script... >> %LOGFILE%
 %WSL% -d %DISTRO% -- bash -c "sudo -u %WSL_USER% bash /home/%WSL_USER%/taler-installer/install-taler-from-apt.sh | tee /home/%WSL_USER%/taler-installer/install-bat.log"
 %WSL% -d %DISTRO% -- bash -c "sudo cp /home/%WSL_USER%/taler-installer/install-bat.log /mnt/c/Users/Public/install-bat.log"
 echo [%DATE% %TIME%] Final install script run, log copied to Windows. >> %LOGFILE%
 if not "%STEP%"=="ALL" exit /b
 
 :step8
 echo [%DATE% %TIME%] [8/8] Configuring reverse proxy... >> %LOGFILE%
 echo [%DATE% %TIME%] DISTRO="%DISTRO%", DOMAIN="%DOMAIN%", PROXY_MODE="%PROXY_MODE%" >> %LOGFILE%
 
 echo [%DATE% %TIME%] --- Démarrage configuration reverse proxy --- >> %LOGFILE%
 
 if "%DOMAIN%"=="" (
     set DOMAIN=localhost
     echo [%DATE% %TIME%] Domaine vide, fallback sur localhost >> %LOGFILE%
 )
 
 if "%PROXY_MODE%"=="" (
     set PROXY_MODE=http
     echo [%DATE% %TIME%] Mode proxy vide, fallback sur HTTP >> %LOGFILE%
 )
 
 REM Installe Apache (dans tous les cas)
 echo [%DATE% %TIME%] Installation Apache2... >> %LOGFILE%
 %WSL% -d %DISTRO% -- bash -c "sudo apt-get update && sudo apt-get install -y apache2" >> %LOGFILE% 2>&1
 
 if /I "%PROXY_MODE%"=="https" (
     echo [%DATE% %TIME%] Mode HTTPS sélectionné pour %DOMAIN% >> %LOGFILE%
     echo [%DATE% %TIME%] Setting up HTTPS with Let's Encrypt for %DOMAIN% ... >> %LOGFILE%
     %WSL% -d %DISTRO% -- bash -c "sudo taler-merchant-rproxy-setup --acme --merchant-url='https://%DOMAIN%:8888/' --apache" >> %LOGFILE% 2>&1
     set CERT_STATUS=%errorlevel%
     echo [%DATE% %TIME%] HTTPS return code : %CERT_STATUS% >> %LOGFILE%
     if not %CERT_STATUS%==0 (
         echo [%DATE% %TIME%] [ERREUR] Certificat HTTPS échec pour %DOMAIN% >> %LOGFILE%
         echo [ERREUR] Impossible d’obtenir un certificat HTTPS valide pour %DOMAIN%.
         echo [ERREUR] Veuillez vérifier que le domaine pointe bien sur cette machine et soit accessible publiquement.
         timeout /t 5 /nobreak
     )
 ) else (
     echo [%DATE% %TIME%] Mode HTTP sélectionné pour %DOMAIN% >> %LOGFILE%
    echo [%DATE% %TIME%] Setting up HTTP only for %DOMAIN% ... >> %LOGFILE%
     %WSL% -d %DISTRO% -- bash -c "sudo taler-merchant-rproxy-setup --domain %DOMAIN% --httponly --apache" >> %LOGFILE% 2>&1
     echo [%DATE% %TIME%] HTTP only proxy finished for %DOMAIN% >> %LOGFILE%
 )
 
 echo [%DATE% %TIME%] --- Fin configuration reverse proxy --- >> %LOGFILE%
 
 
 echo.
 echo Verifying domain configured in Apache...
 %WSL% -d %DISTRO% -- bash -c "grep 'ServerName' /etc/apache2/sites-available/taler-merchant.conf || echo 'ServerName not found!'"
 
 REM Start Apache service
 %WSL% -d %DISTRO% -- bash -c "sudo service apache2 start"
 
 REM Scheduled task (on next boot): Apache will start automatically
 powershell -Command "Register-ScheduledTask -Action (New-ScheduledTaskAction -Execute '%WINDIR%\System32\wsl.exe' -Argument '-d %DISTRO% -- bash -c \"sudo service apache2 start && while true; do sleep 3600; done\"') -Trigger (New-ScheduledTaskTrigger -AtLogOn) -TaskName 'StartTalerApacheWSL' -User '$env:USERNAME' -RunLevel Highest -Force"
 
 echo [%DATE% %TIME%] GNU Taler-Merchant installed successfully! >> %LOGFILE%
 echo [%DATE% %TIME%] === [END] GNU Taler-Merchant Installer === >> %LOGFILE%
 
 timeout /t 5 /nobreak >nul
 exit /b