Add json-server

data/services/jsonserver/auth.js.tmpl

@@ -0,0 +1,7 @@
+module.exports = (req, res, next) => {
+	if (req.header('${AUTH_REQ_HEADER_KEY}') != "${AUTH_REQ_HEADER_VALUE}" ) {
+		res.header('X-Unauthorized', 'Allyship Is A Verb, Not A Noun');
+		return res.status(401).send({ error: 'Unauthorized' });
+	} else
+		next();
+	}

data/services/jsonserver/containers.sh

@@ -0,0 +1,11 @@
+jsonserver_service_dockerbunker() {
+	docker run -d \
+		--name=${FUNCNAME[0]//_/-} \
+		--restart=always \
+		--network ${NETWORK} \
+		--env-file "${SERVICE_ENV}" \
+		-v ${SERVICE_NAME}-data-vol-1:${volumes[${SERVICE_NAME}-data-vol-1]} \
+		-v ${CONF_DIR}/jsonserver/db.json:/data/db.json \
+		-v ${CONF_DIR}/jsonserver/auth.js:/data/auth.js \
+	${IMAGES[service]} ${MIDDLEWARE} >/dev/null
+}

data/services/jsonserver/jsonserver.sh

@@ -0,0 +1,95 @@
+#!/usr/bin/env bash
+
+while true;do ls | grep -q dockerbunker.sh;if [[ $? == 0 ]];then BASE_DIR=$PWD;break;else cd ../;fi;done
+
+PROPER_NAME="json-server"
+SERVICE_NAME="$(echo -e "${PROPER_NAME,,}" | tr -cd '[:alnum:]')"
+PROMPT_SSL=1
+safe_to_keep_volumes_when_reconfiguring=1
+
+declare -a environment=( "data/env/dockerbunker.env" "data/include/init.sh" )
+
+for env in "${environment[@]}";do
+	[[ -f "${BASE_DIR}"/$env ]] && source "${BASE_DIR}"/$env
+done
+
+declare -A WEB_SERVICES
+declare -a containers=( "${SERVICE_NAME}-service-dockerbunker" )
+declare -a add_to_network=( "${SERVICE_NAME}-service-dockerbunker" )
+declare -A IMAGES=( [service]="clue/json-server" )
+declare -A volumes=( [${SERVICE_NAME}-data-vol-1]="/data" )
+declare -a networks=( )
+
+[[ -z $1 ]] && options_menu
+
+configure() {
+	pre_configure_routine
+	
+	echo -e "# \e[4mjson-server Settings\e[0m"
+
+	[[ ! -d "${CONF_DIR}"/jsonserver ]] && \
+		mkdir -p "${CONF_DIR}"/jsonserver
+	[[ ! -f "${CONF_DIR}"/jsonserver/db.json ]] \
+		&& echo -e "\nCannot find db.json in \e[3mdata/conf/jsonserver/db.json\e[0m\n" \
+		&& exit 1
+
+	set_domain
+	
+	prompt_confirm "Set Authentication Request Header?"
+
+	if [ $? == 0 ]; then
+		MIDDLEWARE="--middlewares auth.js"
+		read -p "Authorization Request Header [key]: " -ei "X-Authorize" AUTH_REQ_HEADER_KEY
+		read -p "Authorization Request Header [value]: " -ei "I Like Turtles" AUTH_REQ_HEADER_VALUE
+	fi
+
+	SUBSTITUTE=( "\${AUTH_REQ_HEADER_KEY}" "\${AUTH_REQ_HEADER_VALUE}" )
+	
+	[[ -f "${CONF_DIR}"/jsonserver/auth.js ]] \
+		&& rm "${SERVICES_DIR}"/${SERVICE_NAME}/jsonserver/auth.js
+	
+	cp "${SERVICES_DIR}"/${SERVICE_NAME}/auth.js.tmpl "${SERVICES_DIR}"/${SERVICE_NAME}/auth.js
+
+	for variable in "${SUBSTITUTE[@]}";do
+		subst="\\${variable}"
+		variable=`eval echo "$variable"`
+		sed -i "s@${subst}@${variable}@g;" \
+		"${SERVICES_DIR}"/${SERVICE_NAME}/auth.js
+	done
+	
+	[[ -f "${SERVICES_DIR}"/${SERVICE_NAME}/auth.js ]] \
+		&& mv "${SERVICES_DIR}"/${SERVICE_NAME}/auth.js "${CONF_DIR}"/jsonserver
+	
+	cat <<-EOF >> "${SERVICE_ENV}"
+	PROPER_NAME="${PROPER_NAME}"
+	SERVICE_NAME=${SERVICE_NAME}
+	SSL_CHOICE=${SSL_CHOICE}
+	LE_EMAIL=${LE_EMAIL}
+
+	MIDDLEWARE="${MIDDLEWARE}"
+	AUTH_REQ_HEADER_KEY="${AUTH_REQ_HEADER_KEY}"
+	AUTH_REQ_HEADER_VALUE="${AUTH_REQ_HEADER_VALUE}"
+
+	SERVICE_DOMAIN=${SERVICE_DOMAIN}
+	EOF
+
+	post_configure_routine
+}
+
+setup() {
+	initial_setup_routine
+
+	basic_nginx
+	
+	docker_run_all
+
+	post_setup_routine
+	
+	echo -e "\njson-server can be reached at https://${SERVICE_DOMAIN}/v1"
+}
+
+if [[ $1 == "letsencrypt" ]];then
+	$1 $*
+else
+	$1
+fi

data/services/jsonserver/nginx/jsonserver.conf

@@ -0,0 +1,54 @@
+##
+# You should look at the following URL's in order to grasp a solid understanding
+# of Nginx configuration files in order to fully unleash the power of Nginx.
+# http://wiki.nginx.org/Pitfalls
+# http://wiki.nginx.org/QuickStart
+# http://wiki.nginx.org/Configuration
+#
+# Generally, you will want to move this file somewhere, and start with a clean
+# file but keep this around for reference. Or just disable in sites-enabled.
+#
+# Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples.
+##
+
+# Default server configuration
+#
+upstream jsonserver {
+ server jsonserver-service-dockerbunker:80;
+}
+
+server {
+    listen 80;
+	server_name ${SERVICE_DOMAIN};
+    return 301 https://$host$request_uri;
+}
+
+server {
+    listen 443 ssl;
+	server_name ${SERVICE_DOMAIN};
+	ssl_certificate /etc/nginx/ssl/${SERVICE_DOMAIN}/cert.pem;
+	ssl_certificate_key /etc/nginx/ssl/${SERVICE_DOMAIN}/key.pem;
+	include /etc/nginx/includes/ssl.conf;
+
+    add_header Strict-Transport-Security "max-age=15768000; includeSubDomains";
+	add_header X-Frame-Options DENY;
+	add_header X-Content-Type-Options nosniff;
+
+	include /etc/nginx/includes/gzip.conf;
+
+    location /v1/ {
+        proxy_pass http://jsonserver/;
+		proxy_set_header  Host              $http_host;   # required for docker client's sake
+		proxy_set_header  X-Real-IP         $remote_addr; # pass on real client's IP
+		proxy_set_header  X-Forwarded-For   $proxy_add_x_forwarded_for;
+		proxy_set_header  X-Forwarded-Proto $scheme;
+		proxy_read_timeout                  900;
+    }
+
+	location ~ /.well-known {
+        allow all;
+		root /var/www/html;
+	}
+}
+
+

dockerbunker.sh

@@ -33,6 +33,7 @@ declare -a ALL_SERVICES=( \
 	"Gogs" \
 	"Hastebin" \
 	"IPsec VPN Server" \
+	"json-server" \
 	"Kanboard" \
 	"Mailcow (Dockerized)" \
 	"Mailpile" \