wordpress.sh

#!/bin/bash
# v2ray/xray WordPress一键安装脚本
# Author: hijk<https://hijk.art>

RED="\033[31m"      # Error message
GREEN="\033[32m"    # Success message
YELLOW="\033[33m"   # Warning message
BLUE="\033[36m"     # Info message
PLAIN='\033[0m'

colorEcho() {
    echo -e "${1}${@:2}${PLAIN}"
}

V2_CONFIG_FILE="/etc/v2ray/config.json"
X_CONFIG_FILE="/usr/local/etc/xray/config.json"

BT="false"
NGINX_CONF_PATH="/etc/nginx/conf.d/"
res=$(command -v bt)
if [[ "$res" != "" ]]; then
    BT="true"
    NGINX_CONF_PATH="/www/server/panel/vhost/nginx/"
fi

VMESS="true"
WS="false"
TLS="false"

checkSystem() {
    uid=$(id -u)
    if [[ $uid -ne 0 ]]; then
        colorEcho $RED " 请以root身份执行该脚本"
        exit 1
    fi

    res=$(command -v yum)
    if [[ "$res" = "" ]]; then
        res=$(command -v apt)
        if [[ "$res" = "" ]]; then
            colorEcho $RED " 不受支持的Linux系统"
            exit 1
        fi
        PMT="apt"
        CMD_INSTALL="apt install -y "
        CMD_REMOVE="apt remove -y "
        CMD_UPGRADE="apt update; apt upgrade -y; apt autoremove -y"
        PHP_SERVICE="php7.4-fpm"
    else
        PMT="yum"
        CMD_INSTALL="yum install -y "
        CMD_REMOVE="yum remove -y "
        CMD_UPGRADE="yum update -y"
        PHP_SERVICE="php-fpm"
        result=`grep -oE "[0-9.]+" /etc/centos-release`
        MAIN=${result%%.*}
    fi
    res=$(command -v systemctl)
    if [[ "$res" = "" ]]; then
        colorEcho $RED " 系统版本过低，请升级到最新版本"
        exit 1
    fi
}

configNeedNginx() {
    local ws=`grep wsSettings $V2_CONFIG_FILE`
    if [[ -z "$ws" ]]; then
        echo no
        return
    fi
    echo yes
}

checkV2() {
    if [[ ! -f $V2_CONFIG_FILE ]]; then
        if [[ ! -f $X_CONFIG_FILE ]]; then
            colorEcho $RED " 未安装V2ray/Xray"
            exit 1
        fi
        SERVICE=xray
        V2_CONFIG_FILE=$X_CONFIG_FILE
    else
        SERVICE=v2ray
    fi

    res=`grep -i trojan $V2_CONFIG_FILE`
    [[ "$res" != "" ]] && {
        res=`grep -i fallbacks $V2_CONFIG_FILE`
        [[ "$res" != "" ]] || {
            colorEcho $RED " 检测到旧版trojan配置文件，请使用最新版一键脚本安装trojan后再运行此脚本"
            exit 1
        }
    }

    res=`grep vmess $V2_CONFIG_FILE`
    [[ "$res" != "" ]] || {
        VMESS="false"
        V2PORT=`grep port $V2_CONFIG_FILE | cut -d: -f2 | tr -d \",' '`
    }

    res=`grep -i wsSettings $V2_CONFIG_FILE`
    [[ "$res" != "" ]] && {
        WS="true"
        TLS="true"
        DOMAIN=`grep Host $V2_CONFIG_FILE | cut -d: -f2 | tr -d \",' '`
        [[ "$1" = "install" ]] && colorEcho $BLUE " 伪装域名：$DOMAIN"
        NGINX_CONFIG_FILE="$NGINX_CONF_PATH${DOMAIN}.conf"
        [[ -f $NGINX_CONFIG_FILE ]] || {
            colorEcho $RED " 未找到域名的nginx配置文件"
            exit 1
        }
        V2PORT=`grep port $V2_CONFIG_FILE | cut -d: -f2 | tr -d \",' '`
        WSPATH=`grep path $V2_CONFIG_FILE | cut -d: -f2 | tr -d \",' '`
        NGINX_PORT=`grep -i ssl $NGINX_CONFIG_FILE | grep listen | head -n1 | awk '{print $2}'`
        [[ "$1" = "install" ]] && colorEcho $BLUE " Nginx端口：$NGINX_PORT"
        CERT_FILE=`grep ssl_certificate $NGINX_CONFIG_FILE | grep -v _key`
        KEY_FILE=`grep ssl_certificate_key $NGINX_CONFIG_FILE`
    }

    res=`grep -i tlsSettings $V2_CONFIG_FILE`
    [[ "$res" != "" ]] && {
        TLS="true"
        PORT=`grep port $V2_CONFIG_FILE | cut -d: -f2 | tr -d \",' '`
        DOMAIN=`grep serverName $V2_CONFIG_FILE | cut -d: -f2 | tr -d \",' '`
        [[ "$DOMAIN" = "" ]] && DOMAIN=`grep Host $V2_CONFIG_FILE | cut -d: -f2 | tr -d \",' '`
        [[ "$1" = "install" ]] && colorEcho $BLUE " 伪装域名：$DOMAIN"
        [[ "$1" = "install" ]] && colorEcho $BLUE " V2ray/Xray监听端口：$PORT"
        NGINX_CONFIG_FILE="$NGINX_CONF_PATH${DOMAIN}.conf"
    }

    if [[ "$TLS" = "false" ]]; then
        case "$1" in
            install)
                colorEcho $RED " 您未使用伪装域名安装V2ray/Xray"
                read -p " 请输入您的域名：" DOMAIN
                [[ -z "$DOMAIN" ]] && DOMAIN=$(curl -sL ip.sb)
                ;;
            info)
                if [[ -z ${DBNAME+x} ]]; then
                    colorEcho $RED " 您未使用伪装域名安装V2ray/Xray，无法检测配置，请到 /var/www 目录下自行查看配置信息"
                    exit 1
                fi
                ;;
            uninstall)
                colorEcho $RED " 您未使用伪装域名安装V2ray/Xray，无法检测配置，请到 /var/www 目录下自行删除网站文件"
                colorEcho $GREEN " 卸载成功！"
                exit 1
                ;;
            *)
        esac
    fi
}

statusText() {
    res=$(command -v nginx)
    if [[ "$res" = "" ]]; then
        echo -e -n ${RED}Nginx未安装${PLAIN}
    else
        res=`ps aux | grep nginx | grep -v grep`
        [[ "$res" = "" ]] && echo -e -n ${RED}Nginx未运行${PLAIN} || echo -e -n ${GREEN}Nginx正在运行${PLAIN}
    fi
    echo -n ", "
    res=$(command -v php)
    if [[ "$res" = "" ]]; then
        echo -e -n ${RED}PHP未安装${PLAIN}
    else
        res=`ps aux | grep php | grep -v grep`
        [[ "$res" = "" ]] && echo -e -n ${RED}PHP未运行${PLAIN} || echo -e -n ${GREEN}PHP正在运行${PLAIN}
    fi
    echo -n ", "
    res=$(command -v mysql)
    if [[ "$res" = "" ]]; then
        echo -e -n ${RED}Mysql未安装${PLAIN}
    else
        res=`ps aux | grep mysql | grep -v grep`
        [[ "$res" = "" ]] && echo -e -n ${RED}Mysql未运行${PLAIN} || echo -e -n ${GREEN}Mysql正在运行${PLAIN}
    fi
}

installPHP() {
    [[ "$PMT" = "apt" ]] && $PMT update
    $CMD_INSTALL curl wget ca-certificates
    if [[ "$PMT" = "yum" ]]; then 
        $CMD_INSTALL epel-release
        if [[ $MAIN -eq 7 ]]; then
            rpm -iUh https://rpms.remirepo.net/enterprise/remi-release-7.rpm
            sed -i '0,/enabled=0/{s/enabled=0/enabled=1/}' /etc/yum.repos.d/remi-php74.repo
        else
            rpm -iUh https://rpms.remirepo.net/enterprise/remi-release-8.rpm
            sed -i '0,/enabled=0/{s/enabled=0/enabled=1/}' /etc/yum.repos.d/remi.repo
            dnf module install -y php:remi-7.4
        fi
        $CMD_INSTALL php-cli php-fpm php-bcmath php-gd php-mbstring php-mysqlnd php-pdo php-opcache php-xml php-pecl-zip php-pecl-imagick
    else
        $CMD_INSTALL lsb-release gnupg2
        wget -q https://packages.sury.org/php/apt.gpg -O- | apt-key add -
        echo "deb https://packages.sury.org/php/ $(lsb_release -sc) main" | tee /etc/apt/sources.list.d/php7.list
        $PMT update
        $CMD_INSTALL php7.4-cli php7.4-fpm php7.4-bcmath php7.4-gd php7.4-mbstring php7.4-mysql php7.4-opcache php7.4-xml php7.4-zip php7.4-json php7.4-imagick
        update-alternatives --set php /usr/bin/php7.4
    fi
    systemctl enable $PHP_SERVICE
}

installMysql() {
    if [[ "$PMT" = "yum" ]]; then 
        yum remove -y MariaDB-server
        if [ ! -f /etc/yum.repos.d/mariadb.repo ]; then
            if [ $MAIN -eq 7 ]; then
                echo '# MariaDB 10.5 CentOS repository list - created 2019-11-23 15:00 UTC
# http://downloads.mariadb.org/mariadb/repositories/
[mariadb]
name = MariaDB
baseurl = http://yum.mariadb.org/10.5/centos7-amd64
gpgkey=https://yum.mariadb.org/RPM-GPG-KEY-MariaDB
gpgcheck=1' >> /etc/yum.repos.d/mariadb.repo
            else
                echo '# MariaDB 10.5 CentOS repository list - created 2020-03-11 16:29 UTC
# http://downloads.mariadb.org/mariadb/repositories/
[mariadb]
name = MariaDB
baseurl = http://yum.mariadb.org/10.5/centos8-amd64
module_hotfixes=1
gpgkey=https://yum.mariadb.org/RPM-GPG-KEY-MariaDB
gpgcheck=1' >>  /etc/yum.repos.d/mariadb.repo
            fi
        fi
        yum install -y MariaDB-server
    else
        $PMT update
        $CMD_INSTALL mariadb-server
    fi
    systemctl enable mariadb.service
}

installWordPress() {
    mkdir -p /var/www
    wget https://cn.wordpress.org/latest-zh_CN.tar.gz
    if [[ ! -f latest-zh_CN.tar.gz ]]; then
    	colorEcho $RED " 下载WordPress失败，请稍后重试"
	    exit 1
    fi
    tar -zxf latest-zh_CN.tar.gz
    rm -rf /var/www/$DOMAIN
    mv wordpress /var/www/$DOMAIN
    rm -rf latest-zh_CN.tar.gz
}

config() {
    # config mariadb
    systemctl start mariadb
    DBNAME="wordpress"
    DBUSER="wordpress"
    DBPASS=`cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 16 | head -n 1`
    mysql -uroot <<EOF
DELETE FROM mysql.user WHERE User='';
CREATE DATABASE $DBNAME default charset utf8mb4;
CREATE USER ${DBUSER}@'%' IDENTIFIED BY '${DBPASS}';
GRANT ALL PRIVILEGES ON ${DBNAME}.* to ${DBUSER}@'%';
FLUSH PRIVILEGES;
EOF

    # config wordpress
    cd /var/www/$DOMAIN
    cp wp-config-sample.php wp-config.php
    sed -i "s/database_name_here/$DBNAME/g" wp-config.php
    sed -i "s/username_here/$DBUSER/g" wp-config.php
    sed -i "s/password_here/$DBPASS/g" wp-config.php
    sed -i "s/utf8/utf8mb4/g" wp-config.php
    perl -i -pe'
  BEGIN {
    @chars = ("a" .. "z", "A" .. "Z", 0 .. 9);
    push @chars, split //, "!@#$%^&*()-_ []{}<>~\`+=,.;:/?|";
    sub salt { join "", map $chars[ rand @chars ], 1 .. 64 }
  }
  s/put your unique phrase here/salt()/ge
' wp-config.php
    if [[ "$PMT" = "yum" ]]; then
        user="apache"
        # config nginx
        [[ $MAIN -eq 7 ]] && upstream="127.0.0.1:9000" || upstream="php-fpm"
    else
        user="www-data"
        upstream="unix:/run/php/php7.4-fpm.sock"
    fi
    chown -R $user:$user /var/www/${DOMAIN}

    configNginx
}

configNginx() {
    if [[ "$WS" = "true" ]]; then
        cat > $NGINX_CONFIG_FILE<<-EOF
server {
    listen 80;
    listen [::]:80;
    server_name ${DOMAIN};
    return 301 https://\$server_name:${NGINX_PORT}\$request_uri;
}

server {
    listen       ${NGINX_PORT} ssl http2;
    server_name ${DOMAIN};
    charset utf-8;

    # ssl配置
    ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
    ssl_ecdh_curve secp384r1;
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:10m;
    ssl_session_timeout 10m;
    ssl_session_tickets off;
    $CERT_FILE
    $KEY_FILE

    set \$host_path "/var/www/${DOMAIN}";
    access_log  /var/log/nginx/${DOMAIN}.access.log  main buffer=32k flush=30s;
    error_log /var/log/nginx/${DOMAIN}.error.log;
    root   \$host_path;
    location / {
        index  index.php;
        try_files \$uri \$uri/ /index.php?\$args;
    }
    location ~ \.php\$ {
        try_files \$uri =404;
        fastcgi_index index.php;
        fastcgi_pass $upstream;
        include fastcgi_params;
        fastcgi_param  SCRIPT_FILENAME  \$document_root\$fastcgi_script_name;
    }

    location ${WSPATH} {
      proxy_redirect off;
      proxy_pass http://127.0.0.1:${V2PORT};
      proxy_http_version 1.1;
      proxy_set_header Upgrade \$http_upgrade;
      proxy_set_header Connection "upgrade";
      proxy_set_header Host \$host;
      proxy_set_header X-Real-IP \$remote_addr;
      proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for;
    }

    location ~ \.(js|css|png|jpg|jpeg|gif|ico|swf|webp|pdf|txt|doc|docx|xls|xlsx|ppt|pptx|mov|fla|zip|rar)\$ {
        expires max;
        access_log off;
        try_files \$uri =404;
    }
}
EOF
        return 0
    fi

    if [[ "$TLS" = "false" ]] || [[ "$TLS" = "true" && "$VMESS" = "true" ]]; then
        cat > $NGINX_CONFIG_FILE<<-EOF
server {
    listen 80;
    listen [::]:80;
    server_name ${DOMAIN};

    charset utf-8;

    set \$host_path "/var/www/${DOMAIN}";
    access_log  /var/log/nginx/${DOMAIN}.access.log  main buffer=32k flush=30s;
    error_log /var/log/nginx/${DOMAIN}.error.log;
    root   \$host_path;
    location / {
        index  index.php;
        try_files \$uri \$uri/ /index.php?\$args;
    }
    location ~ \.php\$ {
        try_files \$uri =404;
        fastcgi_index index.php;
        fastcgi_pass $upstream;
        include fastcgi_params;
        fastcgi_param  SCRIPT_FILENAME  \$document_root\$fastcgi_script_name;
    }

    location ~ \.(js|css|png|jpg|jpeg|gif|ico|swf|webp|pdf|txt|doc|docx|xls|xlsx|ppt|pptx|mov|fla|zip|rar)\$ {
        expires max;
        access_log off;
        try_files \$uri =404;
    }
}
EOF
        return 0
    fi

    res=`grep -E 'dest.*8080' $V2_CONFIG_FILE`
    [[ "$res" = "" ]] && sed -i 's/"dest": 80/"dest": 8080/' $V2_CONFIG_FILE
    # VLESS 
    cat > $NGINX_CONFIG_FILE<<-EOF
server {
    listen 80;
    listen [::]:80;
    server_name ${DOMAIN};
    return 301 https://\$server_name:${PORT}\$request_uri;
}

server {
    listen 8080;
    listen 81 http2;
    server_name ${DOMAIN};
    charset utf-8;

    set \$host_path "/var/www/${DOMAIN}";
    access_log  /var/log/nginx/${DOMAIN}.access.log  main buffer=32k flush=30s;
    error_log /var/log/nginx/${DOMAIN}.error.log;
    root   \$host_path;
    location / {
        index  index.php;
        try_files \$uri \$uri/ /index.php?\$args;
    }
    location ~ \.php\$ {
        try_files \$uri =404;
        fastcgi_index index.php;
        fastcgi_pass $upstream;
        include fastcgi_params;
        fastcgi_param  SCRIPT_FILENAME  \$document_root\$fastcgi_script_name;
        fastcgi_param  SERVER_PORT	${PORT};
	    fastcgi_param  HTTPS		"on";
    }

    location ~ \.(js|css|png|jpg|jpeg|gif|ico|swf|webp|pdf|txt|doc|docx|xls|xlsx|ppt|pptx|mov|fla|zip|rar)\$ {
        expires max;
        access_log off;
        try_files \$uri =404;
    }
}
EOF
}

install() {
    checkV2 "install"
    installPHP
    installMysql
    installWordPress
    colorEcho $BLUE " WordPress安装成功！"
    
    config
    # restart service
    systemctl restart $PHP_SERVICE mariadb nginx $SERVICE
    sleep 2
    statusText
    echo ""

    showInfo
}

uninstall() {
    echo ""
    colorEcho $RED " 该操作会删除所有WordPress文件，清空数据库！"
    read -p " 确认卸载WordPress？[y/n]" answer
    [[ "$answer" != "y" && "$answer" != "Y" ]] && exit 0

    systemctl stop mariadb
    systemctl disable mariadb
    if [[ "$PMT" = "yum" ]]; then
        $CMD_REMOVE MariaDB-server
    else
        $CMD_REMOVE mariadb-*
    fi
    rm -rf /var/lib/mysql

    systemctl stop $PHP_SERVICE
    systemctl disable $PHP_SERVICE

    checkV2 "uninstall"
    [[ "$DOMAIN" != "" ]] &&  rm -rf /var/www/${DOMAIN}

    colorEcho $GREEN " 卸载成功！"
}

showInfo() {
    checkV2 "info"

    # VMESS/VLESS+WS+TLS
    if [[ "$WS" = "true" ]]; then
        if [[ "$NGINX_PORT" = "443" ]]; then
            url="https://$DOMAIN"
        else
            url="https://$DOMAIN:$PORT"
        fi
    # pure VMESS/VLESS [+kcp]
    elif [[ "$TLS" = "false" ]]; then
        url="http://$DOMAIN"
    else
        # VMESS+TCP+TLS
        if [[ "$VMESS" = "true" ]]; then
            url="http://$DOMAIN"
        else
            # trojan/VLESS+TLS
            if [[ "$V2PORT" = "443" ]]; then
                url="https://$DOMAIN"
            else
                url="https://$DOMAIN:$V2PORT"
            fi
        fi
    fi

    if [[ -z ${DBNAME+x} ]]; then
        wpconfig="/var/www/${DOMAIN}/wp-config.php"
        DBUSER=`grep DB_USER $wpconfig | cut -d, -f2 | cut -d\) -f1 | tr -d \",\'' '`
        DBNAME=`grep DB_NAME $wpconfig | cut -d, -f2 | cut -d\) -f1 | tr -d \",\'' '`
        DBPASS=`grep DB_PASSWORD $wpconfig | cut -d, -f2 | cut -d\) -f1 | tr -d \",\'' '`
    fi
    colorEcho $BLUE " WordPress配置信息："
    echo "==============================="
    echo -e "   ${BLUE}WordPress安装路径：${PLAIN}${RED}/var/www/${DOMAIN}${PLAIN}"
    echo -e "   ${BLUE}WordPress数据库：${PLAIN}${RED}${DBNAME}${PLAIN}"
    echo -e "   ${BLUE}WordPress数据库用户名：${PLAIN}${RED}${DBUSER}${PLAIN}"
    echo -e "   ${BLUE}WordPress数据库密码：${PLAIN}${RED}${DBPASS}${PLAIN}"
    echo -e "   ${BLUE}WordPress网址：${PLAIN}${RED}$url${PLAIN}"
    echo "==============================="
}

help() {
    echo ""
    colorEcho $BLUE "  Nginx操作："
    colorEcho $GREEN "    启动: systemctl start nginx"
    colorEcho $GREEN "    停止：systemctl stop nginx"
    colorEcho $GREEN "    重启：systemctl restart nginx"
    echo " -------------"
    colorEcho $BLUE "  PHP操作："
    colorEcho $GREEN "    启动: systemctl start $PHP_SERVICE"
    colorEcho $GREEN "    停止：systemctl stop $PHP_SERVICE"
    colorEcho $GREEN "    重启：systemctl restart $PHP_SERVICE"
    echo " -------------"
    colorEcho $BLUE "  Mysql操作："
    colorEcho $GREEN "    启动: systemctl start mariadb"
    colorEcho $GREEN "    停止：systemctl stop mariadb"
    colorEcho $GREEN "    重启：systemctl restart mariadb"
}

menu() {
    clear
    echo "#############################################################"
    echo -e "#                ${RED}WordPress一键安装脚本${PLAIN}                  #"
    echo -e "# ${GREEN}作者${PLAIN}: 网络跳越(hijk)                                      #"
    echo -e "# ${GREEN}网址${PLAIN}: https://hijk.art                                    #"
    echo -e "# ${GREEN}论坛${PLAIN}: https://hijk.club                                   #"
    echo -e "# ${GREEN}TG群${PLAIN}: https://t.me/hijkclub                               #"
    echo -e "# ${GREEN}Youtube频道${PLAIN}: https://youtube.com/channel/UCYTB--VsObzepVJtc9yvUxQ #"
    echo "#############################################################"
    echo 
    colorEcho $YELLOW " 该脚本仅适用于 https://hijk.art 网站上的V2ray/Xray一键脚本安装wordpress用！"
    echo 
    echo -e "  ${GREEN}1.${PLAIN} 安装WordPress" 
    echo -e "  ${GREEN}2.${PLAIN} 卸载WordPress"
    echo -e "  ${GREEN}3.${PLAIN} 查看WordPress配置"
    echo -e "  ${GREEN}4.${PLAIN} 查看操作帮助"
    echo " -------------"
    echo -e "  ${GREEN}0.${PLAIN} 退出"
    echo -n " 当前状态："
    statusText
    echo 

    echo ""
    read -p " 请选择操作[0-17]：" answer
    case $answer in
        0)
            exit 0
            ;;
        1)
            install
            ;;
        2)
            uninstall
            ;;
        3)
            showInfo
            ;;
        4)
            help
            ;;
        *)
            colorEcho $RED " 请选择正确的操作！"
            exit 1
            ;;
    esac
}

checkSystem

menu