wagesj45/proxmox-server-setup
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
proxmox-server-setup/setup.sh
wagesj45 00689b0bd4 Update setup.sh
2025-07-25 15:34:41 -05:00

176 lines
9.4 KiB
Bash
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

#!/bin/bash
###############################################################################
# setup.sh - Interactive Debian VM bootstrap wizard #
# Jordan-friendly edition (whiptail UI, aliases, neofetch, CIFS, etc.) #
###############################################################################
set -euo pipefail
# =============================================================================
# Default SSH key (paste your key between the quotes)
# =============================================================================
DEFAULT_SSH_KEY="ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCoxUu/nC1C03LvxIhCMzyMu7CAfIp9+Rbt4vmx8q3ER1EPP2K53fnjUmOijC4YY2jgPHHXEoTgC6Rlcrl3eYFoqbhRc4nweN6Z3LXRghmfNXVmMRSouXEMWhxhPjk9r+w9+3E9+6p9X9YtQu+u76ArWcY9MgvD6Awvo66hSFgkzeXzgCcKkTdMkSOUwuHfm8Ja9TzSIUfnB6SAiKWLIejDntYJHSKoqsSzsovYRUc/W+al09MfIMWwN9vJwk7WM7O3E+YPL5Zcpmr4jaoFULf6hWtgn688nDU+4V0POIzRNnk4EPH5qo+AmSL7MwQ0Bh7z5EgiAJiAryrT/GnU41w7 rsa-key-20240415"
###############################################################################
# Early root escalation
###############################################################################
if [[ $EUID -ne 0 ]]; then
# Prompt for root password via whiptail if available
if command -v whiptail &>/dev/null; then
PW=$(whiptail --passwordbox "Root privileges required.
Enter root password:" 10 60 3>&1 1>&2 2>&3) || exit 1
# Re-exec under su using stdin for piped or file-based scripts
exec su root -c "bash -s -- \"$@\"" <<<"$PW"
else
echo "Root privileges required; re-running under su..."
exec su -c "bash -s -- \"$@\"" root
fi
fi
###############################################################################
# Logging #
###############################################################################
ensure_pkgs() { apt-get -qq update; apt-get -y install "$@"; }
msg() { if command -v whiptail &>/dev/null; then whiptail --title "Setup" --msgbox "$1" 10 60; else echo -e "${YLW}$1${CLR}"; fi; }
confirm() { whiptail --yesno "$1" 10 60; }
gauge_run() {
local MESSAGE=$1; shift
(
"$@" & CMD_PID=$!
while kill -0 "$CMD_PID" 2>/dev/null; do
echo "XXX"; echo 50; echo "$MESSAGE"; echo "XXX"; sleep 1
done
) | whiptail --gauge "$MESSAGE" 6 60 0
}
###############################################################################
# Ensure whiptail exists #
###############################################################################
if ! command -v whiptail &>/dev/null; then
echo "Installing whiptail …"
ensure_pkgs whiptail
fi
###############################################################################
# Welcome #
###############################################################################
whiptail --title "VM Setup Wizard" --yesno "\
Welcome!\n\nThis wizard will update the system, configure sudo, hostname,\naliases, neofetch, optional tools, CIFS mounts, and SSH keys.\n\nContinue?" 12 70 || exit 0
###############################################################################
# Core packages & sudo #
###############################################################################
msg "Installing core tools…"
ensure_pkgs sudo curl gnupg lsb-release
# Choose sudo users
mapfile -t USERS < <(awk -F: '$3>=1000 && $1!="nobody"{print $1}' /etc/passwd)
SEL_SUDO=""
if ((${#USERS[@]})); then
OPTS=(); for u in "${USERS[@]}"; do OPTS+=("$u" "" OFF); done
SEL_SUDO=$(whiptail --title "Sudo Access" --checklist \
"Select users to grant passwordless sudo:" 15 60 6 \
"${OPTS[@]}" 3>&1 1>&2 2>&3) || true
for u in $SEL_SUDO; do usermod -aG sudo "${u//\"/}"; done
fi
###############################################################################
# System upgrade #
###############################################################################
gauge_run "Applying system updates…" apt-get -y dist-upgrade
###############################################################################
# Hostname #
###############################################################################
MACS=$(ip -brief link | awk '$1!~"lo"{print $1": "$3}')
NEW_HOST=$(whiptail --title "Hostname" --inputbox "\
Current MAC addresses:\n$MACS\n\nEnter new hostname:" 15 70 "$(hostname)" 3>&1 1>&2 2>&3) || die "Hostname required"
OLD_HOST=$(hostname)
[[ -n $NEW_HOST ]] || die "Hostname cannot be blank"
sed -i "s/$OLD_HOST/$NEW_HOST/g" /etc/hosts
hostnamectl set-hostname "$NEW_HOST"
msg "Hostname set to $NEW_HOST"
###############################################################################
# SSH keys for root #
###############################################################################
install -d -m 700 /root/.ssh
chmod 700 /root/.ssh
test -n "$DEFAULT_SSH_KEY" && {
grep -qxF "$DEFAULT_SSH_KEY" /root/.ssh/authorized_keys 2>/dev/null || \
echo "$DEFAULT_SSH_KEY" >> /root/.ssh/authorized_keys
chmod 600 /root/.ssh/authorized_keys
msg "Default SSH key added for root"
}
if confirm "Add additional SSH public key for root?"; then
KEY=$(whiptail --title "SSH Key (root)" --inputbox "Paste your public key for root:" 12 70 3>&1 1>&2 2>&3) || die "Cancelled"
grep -qxF "$KEY" /root/.ssh/authorized_keys 2>/dev/null || echo "$KEY" >> /root/.ssh/authorized_keys
chmod 600 /root/.ssh/authorized_keys
msg "Additional SSH key added for root"
fi
###############################################################################
# SSH keys for user jordanwages #
###############################################################################
USER_NAME="jordanwages"
USER_HOME="/home/$USER_NAME"
install -d -m 700 "$USER_HOME/.ssh"
chown $USER_NAME:$USER_NAME "$USER_HOME/.ssh"
test -n "$DEFAULT_SSH_KEY" && {
grep -qxF "$DEFAULT_SSH_KEY" "$USER_HOME/.ssh/authorized_keys" 2>/dev/null || echo "$DEFAULT_SSH_KEY" >> "$USER_HOME/.ssh/authorized_keys"
chown $USER_NAME:$USER_NAME "$USER_HOME/.ssh/authorized_keys"
chmod 600 "$USER_HOME/.ssh/authorized_keys"
msg "Default SSH key added for $USER_NAME"
}
if confirm "Add additional SSH public key for $USER_NAME?"; then
KEY=$(whiptail --title "SSH Key ($USER_NAME)" --inputbox "Paste public key for $USER_NAME:" 12 70 3>&1 1>&2 2>&3) || die "Cancelled"
grep -qxF "$KEY" "$USER_HOME/.ssh/authorized_keys" 2>/dev/null || echo "$KEY" >> "$USER_HOME/.ssh/authorized_keys"
chown $USER_NAME:$USER_NAME "$USER_HOME/.ssh/authorized_keys"
chmod 600 "$USER_HOME/.ssh/authorized_keys"
msg "Additional SSH key added for $USER_NAME"
fi
###############################################################################
# Optional utilities #
###############################################################################
TOOLS=(htop curl wget jq git tree)
OPTS=(); for t in "${TOOLS[@]}"; do OPTS+=("$t" "" OFF); done
SEL_RAW=$(whiptail --title "Extra Utilities" --checklist \
"Select additional packages to install:" 15 60 8 \
"${OPTS[@]}" 3>&1 1>&2 2>&3) || true
IFS=' ' read -r -a SEL_PKGS <<< "${SEL_RAW//\"/}"
ensure_pkgs bat ncdu neofetch cifs-utils "${SEL_PKGS[@]}"
echo "alias cat='batcat --paging=never'" >/etc/profile.d/10-bat_alias.sh
echo "alias du='ncdu'" >/etc/profile.d/10-ncdu_alias.sh
chmod +x /etc/profile.d/10-*alias.sh
echo 'neofetch' >/etc/profile.d/90-neofetch.sh
chmod +x /etc/profile.d/90-neofetch.sh
###############################################################################
# CIFS mounts #
###############################################################################
CIFS_HOSTS=(jimmu keiko keitai)
OPTS=(); for h in "${CIFS_HOSTS[@]}"; do OPTS+=("$h" "" OFF); done
SEL_HOSTS=$(whiptail --title "CIFS Mounts" --checklist \
"Select NAS shares to mount under /media:" 15 60 6 \
"${OPTS[@]}" 3>&1 1>&2 2>&3) || true
mkdir -p /media
for host in "${CIFS_HOSTS[@]}"; do
TEMPLATE="//${host}.wageshouse/Data /media/${host} cifs username=%s,password=%s,_netdev,vers=2.0 0 0"
if [[ $SEL_HOSTS == *\"$host\"* ]]; then
U=$(whiptail --inputbox "[$host] CIFS username:" 8 50 3>&1 1>&2 2>&3) || exit 1
P=$(whiptail --passwordbox "[$host] CIFS password:" 8 50 3>&1 1>&2 2>&3) || exit 1
printf -v LINE "$TEMPLATE" "$U" "$P"
mkdir -p "/media/$host"
grep -q "${host}.wageshouse" /etc/fstab && sed -i "#${host}\.wageshouse#d" /etc/fstab
echo "$LINE" >> /etc/fstab
else
grep -q "${host}.wageshouse" /etc/fstab || printf "# $TEMPLATE\n" "username" "password" >> /etc/fstab
fi
done
if ! mount -a 2>>"$LOGFILE"; then msg "⚠️ Some CIFS mounts failed. Rerun the script to correct credentials."; fi
###############################################################################
# Summary #
###############################################################################
msg "\
Setup complete!\n\n• Hostname: $NEW_HOST\n• Sudoers: ${SEL_SUDO//\"/ }\n• Packages: bat ncdu neofetch ${SEL_PKGS[*]}\n• CIFS: ${SEL_HOSTS//\"/ }\n\nLog saved to $LOGFILE\n\nEnjoy your new Debian VM!"
Reference in a new issue View git blame Copy permalink