if ! [ $(id -u) = 0 ]; then
   echo "Please run this script as root."
   exit 1
fi

if [[ -f /etc/redhat-release ]] ; then
CENTOS_VER=`/opt/hirs/scripts/common/get_centos_major_version.sh`
elif [[ -f /etc/os-release ]] ; then
AMAZON_VER=`/opt/hirs/scripts/common/get_amazon_linux_major_version.sh`
fi

if [ $CENTOS_VER -eq "6" ] ; then
	checkHTTPS=`iptables-save | grep -- "--dport 8443 -j ACCEPT"`
	if [[ $checkHTTPS == "" ]]; then
	    echo "Tomcat HTTPS firewall rule doesn't exist, adding now"
	    iptables -I INPUT 1 -p tcp -m tcp --dport 8443 -j ACCEPT
	    service iptables save
	fi
elif [ $CENTOS_VER -eq "7" ] || [ $AMAZON_VER -eq "2" ] ; then
	firewall-cmd --direct --permanent --add-rule ipv4 filter INPUT 0 -p tcp --dport 8443 -j ACCEPT
	firewall-cmd --reload
else
	echo "Unsupported Linux detected"
	exit 1
fi