Set MODE_CLEANUP default true and solved tld localhost user name bug

Fix: make EspoCRM entrypoint POSIX-compliant and remove illegal 'pipefail' usage
The previous entrypoint script used 'set -euo pipefail', which caused runtime errors because /bin/sh (Dash/BusyBox) does not support 'pipefail'. This commit makes the entrypoint fully POSIX-safe, adds robust fallbacks for missing scripts, and improves logging. Also removes a trailing newline in the navigator Docker Compose template. Related ChatGPT discussion: https://chatgpt.com/share/68eab0b7-7a64-800f-a8aa-e7d7262a262e
2025-11-18 02:56:31 +00:00 · 2025-10-12 01:15:52 +02:00 · 2025-10-11 21:33:07 +02:00
4 changed files with 29 additions and 12 deletions
--- a/group_vars/all/01_modes.yml
+++ b/group_vars/all/01_modes.yml
@@ -5,6 +5,6 @@ MODE_DUMMY:   false                       # Executes dummy/test routines instead
 MODE_UPDATE:  true                        # Executes updates
 MODE_DEBUG:   false                       # This enables debugging in ansible and in the apps, You SHOULD NOT enable this on production servers
 MODE_RESET:   false                       # Cleans up all Infinito.Nexus files. It's necessary to run to whole playbook and not particial roles when using this function.
-MODE_CLEANUP: "{{ MODE_DEBUG  | bool }}"  # Cleanup unused files and configurations
+MODE_CLEANUP: true                        # Cleanup unused files and configurations
 MODE_ASSERT:  "{{ MODE_DEBUG  | bool }}"  # Executes validation tasks during the run.
 MODE_BACKUP:  true                        # Executes the Backup before the deployment
--- a/roles/user/users/main.yml
+++ b/roles/user/users/main.yml
@@ -5,7 +5,7 @@ users:
    username: "{{ PRIMARY_DOMAIN.split('.')[0] }}"
  tld:
    description: "Auto Generated Account to reserve the TLD"
-    username: "{{ PRIMARY_DOMAIN.split('.')[1] }}"
+    username: "{{ PRIMARY_DOMAIN.split('.')[1] if (PRIMARY_DOMAIN is defined and (PRIMARY_DOMAIN.split('.') | length) > 1) else (PRIMARY_DOMAIN ~ '_tld ') }}"
  root:
    username: root
    uid: 0
--- a/roles/web-app-espocrm/files/docker-entrypoint-custom.sh
+++ b/roles/web-app-espocrm/files/docker-entrypoint-custom.sh
@@ -1,11 +1,13 @@
 #!/bin/sh
-set -euo pipefail
+# POSIX-safe entrypoint for EspoCRM container
 # Compatible with /bin/sh (dash/busybox). Avoids 'pipefail' and non-portable features.
 set -eu
 log() { printf '%s %s\n' "[entrypoint]" "$*" >&2; }
 # --- Simple boolean normalization --------------------------------------------
 bool_norm () {
-  v="$(printf '%s' "${1:-}" | tr '[:upper:]' '[:lower:]')"
+  v="$(printf '%s' "${1:-}" | tr '[:upper:]' '[:lower:]' 2>/dev/null || true)"
  case "$v" in
    1|true|yes|on)  echo "true" ;;
    0|false|no|off|"") echo "false" ;;
@@ -13,30 +15,45 @@ bool_norm () {
  esac
 }
-# Expected ENV (from env.j2)
+# --- Environment initialization ----------------------------------------------
 MAINTENANCE="$(bool_norm "${ESPO_INIT_MAINTENANCE_MODE:-false}")"
 CRON_DISABLED="$(bool_norm "${ESPO_INIT_CRON_DISABLED:-false}")"
 USE_CACHE="$(bool_norm "${ESPO_INIT_USE_CACHE:-true}")"
 APP_DIR="/var/www/html"
-SET_FLAGS_SCRIPT="${ESPOCRM_SET_FLAGS_SCRIPT}"
+
 # Provided by env.j2 (fallback ensures robustness)
 SET_FLAGS_SCRIPT="${ESPOCRM_SET_FLAGS_SCRIPT:-/usr/local/bin/set_flags.php}"
 if [ ! -f "$SET_FLAGS_SCRIPT" ]; then
  log "WARN: SET_FLAGS_SCRIPT '$SET_FLAGS_SCRIPT' not found; falling back to /usr/local/bin/set_flags.php"
  SET_FLAGS_SCRIPT="/usr/local/bin/set_flags.php"
 fi
 # --- Wait for bootstrap.php (max 60s, e.g. fresh volume) ----------------------
 log "Waiting for ${APP_DIR}/bootstrap.php..."
-for i in $(seq 1 60); do
+count=0
-  [ -f "${APP_DIR}/bootstrap.php" ] && break
+while [ $count -lt 60 ] && [ ! -f "${APP_DIR}/bootstrap.php" ]; do
  sleep 1
  count=$((count + 1))
 done
 if [ ! -f "${APP_DIR}/bootstrap.php" ]; then
-  log "ERROR: bootstrap.php missing after 60s"; exit 1
+  log "ERROR: bootstrap.php missing after 60s"
  exit 1
 fi
 # --- Apply config flags via set_flags.php ------------------------------------
 log "Applying runtime flags via set_flags.php..."
-php "${SET_FLAGS_SCRIPT}"
+if ! php "${SET_FLAGS_SCRIPT}"; then
  log "ERROR: set_flags.php execution failed"
  exit 1
 fi
 # --- Clear cache (safe) -------------------------------------------------------
-php "${APP_DIR}/clear_cache.php" || true
+if php "${APP_DIR}/clear_cache.php" 2>/dev/null; then
  log "Cache cleared successfully."
 else
  log "WARN: Cache clearing skipped or failed (non-critical)."
 fi
 # --- Hand off to CMD ----------------------------------------------------------
 if [ "$#" -gt 0 ]; then
@@ -56,5 +73,6 @@ for cmd in apache2-foreground httpd-foreground php-fpm php-fpm8.3 php-fpm8.2 sup
  fi
 done
 # --- Fallback ---------------------------------------------------------------
 log "No known server command found; tailing to keep container alive."
 exec tail -f /dev/null
--- a/roles/web-app-navigator/templates/docker-compose.yml.j2
+++ b/roles/web-app-navigator/templates/docker-compose.yml.j2
@@ -13,4 +13,3 @@
 {% include 'roles/docker-container/templates/networks.yml.j2' %}
 {% include 'roles/docker-compose/templates/networks.yml.j2' %}
`@@ -13,4 +13,3 @@`
	`{% include 'roles/docker-container/templates/networks.yml.j2' %}`	`{% include 'roles/docker-container/templates/networks.yml.j2' %}`

	`{% include 'roles/docker-compose/templates/networks.yml.j2' %}`	`{% include 'roles/docker-compose/templates/networks.yml.j2' %}`