bunkerweb/entrypoint/entrypoint.sh

#!/bin/sh

# load default values
. ./opt/entrypoint/defaults.sh

echo "[*] Starting bunkerized-nginx ..."

# execute custom scripts if it's a customized image
for file in /entrypoint.d/* ; do
    [ -f "$file" ] && [ -x "$file" ] && "$file"
done

# trap SIGTERM and SIGINT
function trap_exit() {
	echo "[*] Catched stop operation"
	echo "[*] Stopping crond ..."
	pkill -TERM crond
	if [ "$USE_FAIL2BAN" = "yes" ] ; then
		echo "[*] Stopping fail2ban"
		fail2ban-client stop > /dev/null
	fi
	echo "[*] Stopping nginx ..."
	/usr/sbin/nginx -s stop
	echo "[*] Stopping rsyslogd ..."
	pkill -TERM rsyslogd
	pkill -TERM tail
}
trap "trap_exit" TERM INT

# do the configuration magic if needed
if [ ! -f "/opt/installed" ] ; then
	echo "[*] Configuring bunkerized-nginx ..."
	/opt/entrypoint/global-config.sh
	if [ "$MULTISITE" = "yes" ] ; then
		for server in "$SERVER_NAME" ; do
			/opt/entrypoint/site-config.sh "$server"
			echo "[*] Multi site - $server configuration done"
		done
	else
		/opt/entrypoint/site-config.sh
		echo "[*] Single site - $SERVER_NAME configuration done"
	fi
	touch /opt/installed
else
	echo "[*] Skipping configuration process"
fi

# fix nginx configs rights (and modules through the symlink)
chown -R root:nginx /etc/nginx/
chmod -R 740 /etc/nginx/
find /etc/nginx -type d -exec chmod 750 {} \;

# fix let's encrypt rights
if [ "$AUTO_LETS_ENCRYPT" = "yes" ] ; then
	chown -R root:nginx /etc/letsencrypt
	chmod -R 740 /etc/letsencrypt
	find /etc/letsencrypt -type d -exec chmod 750 {} \;
fi

# start rsyslogd
rsyslogd

# start crond
crond

# start fail2ban
if [ "$USE_FAIL2BAN" = "yes" ] ; then
	fail2ban-server > /dev/null
fi

# start crowdsec
if [ "$USE_CROWDSEC" = "yes" ] ; then
	crowdsec
fi

# start nginx
echo "[*] Running nginx ..."
su -s "/usr/sbin/nginx" nginx

# display logs
LOGS="/var/log/access.log /var/log/error.log"
if [ "$USE_FAIL2BAN" = "yes" ] ; then
	LOGS="$LOGS /var/log/fail2ban.log"
fi
tail -F $LOGS &
wait $!

# sigterm trapped
echo "[*] bunkerized-nginx stopped"
exit 0