#!/usr/bin/env bash

DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
source $DIR/env.sh

if [[ "$EUID" -ne 0 ]]; then
	echo "Sorry, you need to run this as root"
	exit 1
fi

echo
echo "Installing strongSwan and xl2tp server..."
apt-get install strongswan xl2tpd

ADDUSER="no"
ANSUSER="yes"

echo
echo "Configuring VPN users..."
while [ "$ANSUSER" != "$ADDUSER" ]; 
do
	$DIR/adduser.sh

	read -p "Would you want add another user? [no] " ANSUSER
	: ${ANSUSER:=$ADDUSER}
done

echo
echo "Configuring PSK..."
$DIR/psk.sh

echo
echo "Configuring routing..."
$DIR/sysctl.sh

echo
echo "Installing configuration files..."
yes | cp -rf $DIR/options.xl2tpd.dist $PPPCONFIG
yes | cp -rf $DIR/xl2tpd.conf.dist $XL2TPDCONFIG
yes | cp -rf $DIR/ipsec.conf.dist $IPSECCONFIG

sed -i -e "s@PPPCONFIG@$PPPCONFIG@g" $XL2TPDCONFIG
sed -i -e "s@LOCALPREFIX@$LOCALPREFIX@g" $XL2TPDCONFIG

sed -i -e "s@LOCALIPMASK@$LOCALIPMASK@g" $IPSECCONFIG

echo
echo "Configuring iptables firewall..."
$DIR/iptables-setup.sh

echo
echo "Configuring DNS parameters..."
$DIR/dns.sh

echo
echo "Starting strongSwan and xl2tp..."
systemctl enable xl2tpd
systemctl enable strongswan
service xl2tpd restart
service strongswan restart

IPTABLESRESTOR=$(which iptables-restore)
RESTORPRESENTS=$(grep iptables-restore $RCLOCAL)
if [ $? -ne 0 ]; then
	if [[ ! -z $IPTABLESRESTOR ]]; then
		sed -i -e "/exit 0/d" $RCLOCAL
		echo "$IPTABLESRESTOR < $IPTABLES" >> $RCLOCAL
		echo "exit 0" >> $RCLOCAL
	else
		echo "Cannot save iptables-restore from $IPTABLES to $RCLOCAL."
	fi
fi

echo
echo "Installation script completed!"