mirror of
https://github.com/community-scripts/ProxmoxVE.git
synced 2026-04-18 08:22:16 +00:00
e55fe43e2d
* fix(core): remove unused TEMP_DIR mktemp leak in build_container The build_container() function created a temp directory via mktemp -d and pushd into it, but never popd or rm -rf. The directory was not used for anything — FUNCTIONS_FILE_PATH is downloaded into a variable, not a file. Remove the mktemp -d and pushd entirely to eliminate the leak. * fix(sonarqube): clean up temp file after zip extraction The SonarQube update function (ct/sonarqube.sh) never deleted the downloaded zip file (~200-500 MB) from /tmp after extraction. On LXC containers with 4-8 GB disks, this accumulates with every update and can eventually fill the disk. Also add explicit cleanup in the install script instead of relying solely on cleanup_lxc() pattern matching.
66 lines
1.7 KiB
Bash
66 lines
1.7 KiB
Bash
#!/usr/bin/env bash
|
|
# Copyright (c) 2021-2026 community-scripts ORG
|
|
# Author: prop4n
|
|
# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE
|
|
# Source: https://docs.sonarsource.com/sonarqube-server
|
|
|
|
source /dev/stdin <<<"$FUNCTIONS_FILE_PATH"
|
|
color
|
|
verb_ip6
|
|
catch_errors
|
|
setting_up_container
|
|
network_check
|
|
update_os
|
|
|
|
JAVA_VERSION="21" setup_java
|
|
PG_VERSION="17" setup_postgresql
|
|
PG_DB_NAME="sonarqube" PG_DB_USER="sonarqube" setup_postgresql_db
|
|
|
|
msg_info "Setting up SonarQube"
|
|
temp_file=$(mktemp)
|
|
RELEASE=$(get_latest_github_release "SonarSource/sonarqube")
|
|
curl -fsSL "https://binaries.sonarsource.com/Distribution/sonarqube/sonarqube-${RELEASE}.zip" -o $temp_file
|
|
unzip -q "$temp_file" -d /opt
|
|
rm -f "$temp_file"
|
|
mv /opt/sonarqube-* /opt/sonarqube
|
|
$STD useradd -r -m -U -d /opt/sonarqube -s /bin/bash sonarqube
|
|
chown -R sonarqube:sonarqube /opt/sonarqube
|
|
chmod -R 755 /opt/sonarqube
|
|
mkdir -p /opt/sonarqube/conf
|
|
cat <<EOF >/opt/sonarqube/conf/sonar.properties
|
|
sonar.jdbc.username=${PG_DB_USER}
|
|
sonar.jdbc.password=${PG_DB_PASS}
|
|
sonar.jdbc.url=jdbc:postgresql://localhost/${PG_DB_NAME}
|
|
sonar.web.host=0.0.0.0
|
|
sonar.web.port=9000
|
|
EOF
|
|
chmod +x /opt/sonarqube/bin/linux-x86-64/sonar.sh
|
|
echo ${RELEASE} >>~/.sonarqube
|
|
msg_ok "Configured SonarQube"
|
|
|
|
msg_info "Creating Service"
|
|
cat <<EOF >/etc/systemd/system/sonarqube.service
|
|
[Unit]
|
|
Description=SonarQube service
|
|
After=postgresql.service
|
|
|
|
[Service]
|
|
Type=forking
|
|
ExecStart=/opt/sonarqube/bin/linux-x86-64/sonar.sh start
|
|
ExecStop=/opt/sonarqube/bin/linux-x86-64/sonar.sh stop
|
|
User=sonarqube
|
|
Group=sonarqube
|
|
Restart=on-failure
|
|
LimitNOFILE=131072
|
|
LimitNPROC=8192
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|
|
EOF
|
|
systemctl enable -q --now sonarqube
|
|
msg_ok "Service Created"
|
|
|
|
motd_ssh
|
|
customize
|
|
cleanup_lxc
|