HIRS/package/scripts/common/firewall_configure_tomcat.sh

if ! [ $(id -u) = 0 ]; then
   echo "Please run this script as root."
   exit 1
fi

if [[ -f /etc/redhat-release ]] ; then
CENTOS_VER=`/opt/hirs/scripts/common/get_centos_major_version.sh`
elif [[ -f /etc/os-release ]] ; then
AMAZON_VER=`/opt/hirs/scripts/common/get_amazon_linux_major_version.sh`
fi

if [ $CENTOS_VER -eq "6" ] ; then
	checkHTTPS=`iptables-save | grep -- "--dport 8443 -j ACCEPT"`
	if [[ $checkHTTPS == "" ]]; then
	    echo "Tomcat HTTPS firewall rule doesn't exist, adding now"
	    iptables -I INPUT 1 -p tcp -m tcp --dport 8443 -j ACCEPT
	    service iptables save
	fi
elif [ $CENTOS_VER -eq "7" ] || [ $AMAZON_VER -eq "2" ] ; then
	firewall-cmd --direct --permanent --add-rule ipv4 filter INPUT 0 -p tcp --dport 8443 -j ACCEPT
	firewall-cmd --reload
else
	echo "Unsupported Linux detected"
	exit 1
fi
[#46] Setup Travis for HIRS Integration Tests (#68) * [#46] Ensure Travis mounts repository rather than clones it in Docker * [#46] Containerize HIRS ACA and prep ACA container for Integration Tests * [#46] Containerize HIRS TPM2Provisioner and prep TPM2Provisioner container for Integration Tests * [#46] Replace localinstall with install * [#46] Prevent rebuilding of packages unnecessarily * [#46] Finish initial docker compose setup for integration tests * [#46] Allow for detection of complete Integration Environment Setup * [#46] Fix Travis CI to allow for detecting Integ Test Environ Stand-Up * [#46] Fix Initial Integration Test Script * [#46] Troubleshoot Integration Test script 2019-01-07 20:28:53 +00:00			`if ! [ $(id -u) = 0 ]; then`
			`echo "Please run this script as root."`
			`exit 1`
			`fi`

Modify build scripts to accept building on Amazon Linux 2019-02-21 21:35:32 +00:00			`if [[ -f /etc/redhat-release ]] ; then`
Initial release 2018-09-06 13:47:33 +00:00			CENTOS_VER=`/opt/hirs/scripts/common/get_centos_major_version.sh`
Modify build scripts to accept building on Amazon Linux 2019-02-21 21:35:32 +00:00			`elif [[ -f /etc/os-release ]] ; then`
			AMAZON_VER=`/opt/hirs/scripts/common/get_amazon_linux_major_version.sh`
			`fi`
Initial release 2018-09-06 13:47:33 +00:00
			`if [ $CENTOS_VER -eq "6" ] ; then`
			checkHTTPS=`iptables-save \| grep -- "--dport 8443 -j ACCEPT"`
			`if [[ $checkHTTPS == "" ]]; then`
			`echo "Tomcat HTTPS firewall rule doesn't exist, adding now"`
[#46] Setup Travis for HIRS Integration Tests (#68) * [#46] Ensure Travis mounts repository rather than clones it in Docker * [#46] Containerize HIRS ACA and prep ACA container for Integration Tests * [#46] Containerize HIRS TPM2Provisioner and prep TPM2Provisioner container for Integration Tests * [#46] Replace localinstall with install * [#46] Prevent rebuilding of packages unnecessarily * [#46] Finish initial docker compose setup for integration tests * [#46] Allow for detection of complete Integration Environment Setup * [#46] Fix Travis CI to allow for detecting Integ Test Environ Stand-Up * [#46] Fix Initial Integration Test Script * [#46] Troubleshoot Integration Test script 2019-01-07 20:28:53 +00:00			`iptables -I INPUT 1 -p tcp -m tcp --dport 8443 -j ACCEPT`
Initial release 2018-09-06 13:47:33 +00:00			`service iptables save`
			`fi`
Modify build scripts to accept building on Amazon Linux 2019-02-21 21:35:32 +00:00			`elif [ $CENTOS_VER -eq "7" ] \|\| [ $AMAZON_VER -eq "2" ] ; then`
[#46] Setup Travis for HIRS Integration Tests (#68) * [#46] Ensure Travis mounts repository rather than clones it in Docker * [#46] Containerize HIRS ACA and prep ACA container for Integration Tests * [#46] Containerize HIRS TPM2Provisioner and prep TPM2Provisioner container for Integration Tests * [#46] Replace localinstall with install * [#46] Prevent rebuilding of packages unnecessarily * [#46] Finish initial docker compose setup for integration tests * [#46] Allow for detection of complete Integration Environment Setup * [#46] Fix Travis CI to allow for detecting Integ Test Environ Stand-Up * [#46] Fix Initial Integration Test Script * [#46] Troubleshoot Integration Test script 2019-01-07 20:28:53 +00:00			`firewall-cmd --direct --permanent --add-rule ipv4 filter INPUT 0 -p tcp --dport 8443 -j ACCEPT`
			`firewall-cmd --reload`
Initial release 2018-09-06 13:47:33 +00:00			`else`
Modify build scripts to accept building on Amazon Linux 2019-02-21 21:35:32 +00:00			`echo "Unsupported Linux detected"`
Initial release 2018-09-06 13:47:33 +00:00			`exit 1`
Modify build scripts to accept building on Amazon Linux 2019-02-21 21:35:32 +00:00			`fi`