| 1 |
d52a5b2f
|
jenselme
|
#!/bin/sh
|
| 2 |
|
|
|
| 3 |
06e9d071
|
Assos Assos
|
. /home/assos/bin/scripts-config.sh
|
| 4 |
d52a5b2f
|
jenselme
|
|
| 5 |
|
|
# ARGS: [site_name]
|
| 6 |
|
|
|
| 7 |
3e9236bd
|
Julien Enselme
|
if [ -n "$1" ] ; then
|
| 8 |
|
|
. scripts-config-site.sh "$1"
|
| 9 |
10166730
|
Julien Enselme
|
# default is an exception to the rule
|
| 10 |
3e9236bd
|
Julien Enselme
|
if echo "$1" | grep default > /dev/null ; then
|
| 11 |
|
|
cd "${d7_dir_sites}/default"
|
| 12 |
10166730
|
Julien Enselme
|
else
|
| 13 |
3e9236bd
|
Julien Enselme
|
cd "${d7_site_dir}"
|
| 14 |
10166730
|
Julien Enselme
|
fi
|
| 15 |
d52a5b2f
|
jenselme
|
fi
|
| 16 |
|
|
|
| 17 |
8550e097
|
Julien Enselme
|
current_timestamp=$(date "+%s")
|
| 18 |
d52a5b2f
|
jenselme
|
|
| 19 |
8550e097
|
Julien Enselme
|
random_1=$(dd if=/dev/urandom count=1 2> /dev/null | cksum | cut -f1 -d" ")
|
| 20 |
|
|
random_2=$(dd if=/dev/urandom count=1 2> /dev/null | cksum | cut -f1 -d" ")
|
| 21 |
d52a5b2f
|
jenselme
|
|
| 22 |
|
|
####### General variables
|
| 23 |
8c5e4549
|
Julien Enselme
|
drush -yq vset --always-set reverse_proxy TRUE
|
| 24 |
|
|
drush -yq vset --always-set --format=json reverse_proxy_addresses '["147.94.19.16","147.94.19.17"]'
|
| 25 |
4ca1d792
|
Julien Enselme
|
drush -yq ev "variable_set('update_notify_emails', array('$email_multi_assos_update'));"
|
| 26 |
8c5e4549
|
Julien Enselme
|
drush -yq vset error_level 0
|
| 27 |
|
|
drush -yq vset dblog_row_limit 1000
|
| 28 |
|
|
drush -yq vset cron_safe_threshold 0
|
| 29 |
d52a5b2f
|
jenselme
|
|
| 30 |
ddbedad3
|
Florent Torregrosa
|
###### Captcha
|
| 31 |
8c5e4549
|
Julien Enselme
|
drush -yq en hidden_captcha
|
| 32 |
ddbedad3
|
Florent Torregrosa
|
# Do not log wrong answers.
|
| 33 |
|
|
drush -yq vset captcha_enable_stats 0
|
| 34 |
|
|
drush -yq vset captcha_log_wrong_responses 0
|
| 35 |
d52a5b2f
|
jenselme
|
# Use hidden captcha for all forms.
|
| 36 |
8c5e4549
|
Julien Enselme
|
drush -yq sqlq --db-prefix "UPDATE {captcha_points} SET module = 'hidden_captcha', captcha_type = 'Hidden CAPTCHA' WHERE module is NULL;"
|
| 37 |
d52a5b2f
|
jenselme
|
# Flush captcha cache.
|
| 38 |
8c5e4549
|
Julien Enselme
|
drush -yq vdel captcha_placement_map_cache
|
| 39 |
ddbedad3
|
Florent Torregrosa
|
# Randomly generate a math question as the label of the hidden captcha field.
|
| 40 |
8c5e4549
|
Julien Enselme
|
drush -yq vset hidden_captcha_label "$random_1 + $random_2"
|
| 41 |
d52a5b2f
|
jenselme
|
|
| 42 |
|
|
|
| 43 |
|
|
####### Piwik
|
| 44 |
3e9236bd
|
Julien Enselme
|
d7-reset-piwik-variables.sh "${d7_site_name}"
|
| 45 |
d52a5b2f
|
jenselme
|
|
| 46 |
|
|
###### Security review
|
| 47 |
|
|
# For untrusted roles:
|
| 48 |
|
|
# 1: anonymous user
|
| 49 |
|
|
# 2: authenticated user
|
| 50 |
|
|
# 3: administrator
|
| 51 |
8c5e4549
|
Julien Enselme
|
drush -yq en security_review
|
| 52 |
|
|
drush -yq ev "variable_set('security_review_untrusted_roles', array('1'));"
|
| 53 |
95df3862
|
Florent Torregrosa
|
# The default method to check settings.php do not work because we include a global and local settings.php
|
| 54 |
8c5e4549
|
Julien Enselme
|
drush -yq vset security_review_base_url_method include
|
| 55 |
d52a5b2f
|
jenselme
|
# Used to initialise entries in the database schema.
|
| 56 |
8c5e4549
|
Julien Enselme
|
drush -yq security-review --store
|
| 57 |
95df3862
|
Florent Torregrosa
|
# file_perms : Security Review can't check for files permissions on multi_assos if launched within the web interface.
|
| 58 |
|
|
# private_files : we have chosen a private path in the files repository and Security Review raise errors but this path is secure.
|
| 59 |
8c5e4549
|
Julien Enselme
|
drush -yq sqlq --db-prefix "UPDATE {security_review} SET skip = '1', skiptime = $current_timestamp, skipuid = '1' WHERE reviewcheck IN ('file_perms', 'private_files');"
|
| 60 |
|
|
drush -yq sqlq --db-prefix "UPDATE {security_review} SET skip = '0', skiptime = '0', skipuid = NULL WHERE reviewcheck NOT IN ('file_perms', 'private_files');"
|
| 61 |
565ac668
|
Florent Torregrosa
|
|
| 62 |
|
|
###### Performance
|
| 63 |
|
|
# Active cache
|
| 64 |
|
|
drush -yq vset cache 1
|
| 65 |
|
|
drush -yq vset block_cache 1
|
| 66 |
|
|
# Lifetime : 0, 60, 180, 300, 600, 900, 1800, 2700, 3600, 10800, 21600, 32400, 43200
|
| 67 |
|
|
drush -yq vset cache_lifetime 0
|
| 68 |
705e6803
|
Florent Torregrosa
|
drush -yq vset page_cache_maximum_age 300
|
| 69 |
565ac668
|
Florent Torregrosa
|
# Compression
|
| 70 |
|
|
drush -yq vset page_compression 1
|
| 71 |
|
|
drush -yq vset preprocess_css 1
|
| 72 |
|
|
drush -yq vset preprocess_js 1 |
