#!/bin/bash
RTLVERSION="v0.10.1"

# command info
if [ $# -eq 0 ] || [ "$1" = "-h" ] || [ "$1" = "-help" ]; then
 echo "# config script to switch the RideTheLightning WebGUI on, off or update"
 echo "# bonus.rtl.sh [on|off|update<commit>|menu]"
 echo "# installs the version $RTLVERSION by default"
 exit 1
fi

# check and load raspiblitz config
# to know which network is running
source /home/admin/raspiblitz.info
source /mnt/hdd/raspiblitz.conf
if [ ${#network} -eq 0 ]; then
 echo "FAIL - missing /mnt/hdd/raspiblitz.conf"
 exit 1
fi

# show info menu
if [ "$1" = "menu" ]; then

  # get network info
  localip=$(ip addr | grep 'state UP' -A2 | egrep -v 'docker0|veth' | grep 'eth0\|wlan0\|enp0' | tail -n1 | awk '{print $2}' | cut -f1 -d'/')
  toraddress=$(sudo cat /mnt/hdd/tor/RTL/hostname 2>/dev/null)
  fingerprint=$(openssl x509 -in /mnt/hdd/app-data/nginx/tls.cert -fingerprint -noout | cut -d"=" -f2)

  if [ "${runBehindTor}" = "on" ] && [ ${#toraddress} -gt 0 ]; then
    # Info with TOR
    /home/admin/config.scripts/blitz.lcd.sh qr "${toraddress}"
    whiptail --title " Ride The Lightning (RTL) " --msgbox "Open in your local web browser & accept self-signed cert:
https://${localip}:3001\n
SHA1 Thumb/Fingerprint:
${fingerprint}\n
Use your Password B to login.\n
Hidden Service address for TOR Browser (QRcode on LCD):\n${toraddress}
" 16 67
    /home/admin/config.scripts/blitz.lcd.sh hide
  else
    # Info without TOR
    whiptail --title " Ride The Lightning (RTL) " --msgbox "Open in your local web browser & accept self-signed cert:
https://${localip}:3001\n
SHA1 Thumb/Fingerprint:
${fingerprint}\n
Use your Password B to login.\n
Activate TOR to access the web interface from outside your local network.
" 15 67
  fi
  echo "please wait ..."
  exit 0
fi

# add default value to raspi config if needed
if ! grep -Eq "^rtlWebinterface=" /mnt/hdd/raspiblitz.conf; then
  echo "rtlWebinterface=off" >> /mnt/hdd/raspiblitz.conf
fi

# stop services
echo "# making sure services are not running"
sudo systemctl stop RTL 2>/dev/null

function configRTL() {
  SWAPSERVERPORT=8081
  if [ "$(grep -Ec "(loop=|lit=)" < /mnt/hdd/raspiblitz.conf)" -gt 0 ];then 
    if [ $lit = on ];then
      echo "# Add the rtl user to the lit group"
      sudo /usr/sbin/usermod --append --groups lit rtl
      echo "# Symlink the lit-loop.macaroon"
      sudo rm -rf "/home/rtl/.loop"                    #  delete symlink
      sudo ln -s "/home/lit/.loop/" "/home/rtl/.loop"  # create symlink
      SWAPSERVERPORT=8443
    elif [ $loop = on ];then
      echo "# Add the rtl user to the loop group"
      sudo /usr/sbin/usermod --append --groups loop rtl
      echo "# Symlink the loop.macaroon"
      sudo rm -rf "/home/rtl/.loop"                     # delete symlink
      sudo ln -s "/home/loop/.loop/" "/home/rtl/.loop"  # create symlink
    fi
    echo "# Make the loop macaroon group readable"
    sudo chmod 640 /home/rtl/.loop/mainnet/macaroons.db
  else
    echo "# No Loop or LiT is installed"
  fi

  # prepare RTL-Config.json file
  echo "# RTL.conf"
  # change of config: https://github.com/Ride-The-Lightning/RTL/tree/v0.6.4
  sudo cp /home/rtl/RTL/sample-RTL-Config.json /home/admin/RTL-Config.json
  sudo chown admin:admin /home/admin/RTL-Config.json
  sudo chmod 600 /home/admin/RTL-Config.json || exit 1
  PASSWORD_B=$(sudo cat /mnt/hdd/${network}/${network}.conf | grep rpcpassword | cut -c 13-)
  # modify sample-RTL-Config.json and save in RTL-Config.json
  sudo node > /home/admin/RTL-Config.json <<EOF
//Read data
var data = require('/home/rtl/RTL/sample-RTL-Config.json');
//Manipulate data
data.nodes[0].lnNode = '$hostname'
data.nodes[0].Authentication.macaroonPath = '/home/rtl/.lnd/data/chain/${network}/${chain}net/'
data.nodes[0].Authentication.configPath = '/home/rtl/.lnd/lnd.conf';
data.nodes[0].Authentication.swapMacaroonPath = '/home/rtl/.loop/${chain}net/'
data.nodes[0].Authentication.boltzMacaroonPath = '/home/rtl/.boltz-lnd/macaroons/'
data.multiPass = '$PASSWORD_B';
data.nodes[0].Settings.userPersona = 'OPERATOR'
data.nodes[0].Settings.channelBackupPath = '/home/rtl/RTL-SCB-backup-$hostname'
data.nodes[0].Settings.swapServerUrl = 'https://localhost:$SWAPSERVERPORT'
//Output data
console.log(JSON.stringify(data, null, 2));
EOF
  sudo rm -f /home/rtl/RTL/RTL-Config.json
  sudo mv /home/admin/RTL-Config.json /home/rtl/RTL/
  sudo chown rtl:rtl /home/rtl/RTL/RTL-Config.json
}

# switch on
if [ "$1" = "1" ] || [ "$1" = "on" ]; then
  echo "# INSTALL RTL"

  isInstalled=$(sudo ls /etc/systemd/system/RTL.service 2>/dev/null | grep -c 'RTL.service')
  if ! [ ${isInstalled} -eq 0 ]; then
    echo "# RTL already installed."
  else
    # check and install NodeJS
    /home/admin/config.scripts/bonus.nodejs.sh on

    # create rtl user
    sudo adduser --disabled-password --gecos "" rtl || exit 1

    echo "# Make sure rtl is member of lndadmin"
    sudo /usr/sbin/usermod --append --groups lndadmin rtl

    echo "# Make sure symlink to central app-data directory exists"
    if ! [[ -L "/home/rtl/.lnd" ]]; then
      sudo rm -rf "/home/rtl/.lnd"                          # not a symlink.. delete it silently
      sudo ln -s "/mnt/hdd/app-data/lnd/" "/home/rtl/.lnd"  # and create symlink
    fi

    # download source code and set to tag release
    echo "# Get the RTL Source Code"
    rm -rf /home/admin/RTL 2>/dev/null
    sudo -u rtl rm -rf /home/rtl/RTL 2>/dev/null
    sudo -u rtl git clone https://github.com/ShahanaFarooqui/RTL.git /home/rtl/RTL
    cd /home/rtl/RTL
    # check https://github.com/Ride-The-Lightning/RTL/releases/
    sudo -u rtl git reset --hard $RTLVERSION
    # from https://github.com/Ride-The-Lightning/RTL/commits/master
    # git checkout 917feebfa4fb583360c140e817c266649307ef72
    if [ -d "/home/rtl/RTL" ]; then
      echo "# OK - RTL code copy looks good"
    else
      echo "# FAIL - code copy did not run correctly"
      echo "# ABORT - RTL install"
      exit 1
    fi
    echo ""

    # install
    echo "# Run: npm install"
    export NG_CLI_ANALYTICS=false
    sudo -u rtl npm install --only=prod
    if ! [ $? -eq 0 ]; then
        echo "# FAIL - npm install did not run correctly, aborting"
        exit 1
    else
        echo "# OK - RTL install looks good"
        echo
    fi

    # setup nginx symlinks
    if ! [ -f /etc/nginx/sites-available/rtl_ssl.conf ]; then
       sudo cp /home/admin/assets/nginx/sites-available/rtl_ssl.conf /etc/nginx/sites-available/rtl_ssl.conf
    fi
    if ! [ -f /etc/nginx/sites-available/rtl_tor.conf ]; then
       sudo cp /home/admin/assets/nginx/sites-available/rtl_tor.conf /etc/nginx/sites-available/rtl_tor.conf
    fi
    if ! [ -f /etc/nginx/sites-available/rtl_tor_ssl.conf ]; then
       sudo cp /home/admin/assets/nginx/sites-available/rtl_tor_ssl.conf /etc/nginx/sites-available/rtl_tor_ssl.conf
    fi
    sudo ln -sf /etc/nginx/sites-available/rtl_ssl.conf /etc/nginx/sites-enabled/
    sudo ln -sf /etc/nginx/sites-available/rtl_tor.conf /etc/nginx/sites-enabled/
    sudo ln -sf /etc/nginx/sites-available/rtl_tor_ssl.conf /etc/nginx/sites-enabled/
    sudo nginx -t
    sudo systemctl reload nginx

    echo "# Updating Firewall"
    sudo ufw allow 3000 comment 'RTL HTTP'
    sudo ufw allow 3001 comment 'RTL HTTPS'
    echo

    echo "# Install service"
    echo "# Install RTL systemd for ${network} on ${chain}"
    cat > /home/admin/RTL.service <<EOF
# Systemd unit for RTL
# /etc/systemd/system/RTL.service

[Unit]
Description=RTL daemon
Wants=lnd.service
After=lnd.service

[Service]
ExecStart=/usr/bin/node /home/rtl/RTL/rtl --lndir /home/rtl/.lnd/data/chain/bitcoin/mainnet
User=rtl
Restart=always
TimeoutSec=120
RestartSec=30
StandardOutput=null
StandardError=journal

[Install]
WantedBy=multi-user.target
EOF

    sudo mv /home/admin/RTL.service /etc/systemd/system/RTL.service
    sudo sed -i "s|chain/bitcoin/mainnet|chain/${network}/${chain}net|" /etc/systemd/system/RTL.service
    sudo chown root:root /etc/systemd/system/RTL.service
    sudo systemctl enable RTL
    echo "OK - the RTL service is now enabled"
  fi

  configRTL

  # setting value in raspi blitz config
  sudo sed -i "s/^rtlWebinterface=.*/rtlWebinterface=on/g" /mnt/hdd/raspiblitz.conf

  # Hidden Service for RTL if Tor is active
  if [ "${runBehindTor}" = "on" ]; then
    # make sure to keep in sync with internet.tor.sh script
    /home/admin/config.scripts/internet.hiddenservice.sh RTL 80 3002 443 3003
  fi
  source /home/admin/raspiblitz.info
  if [ "${state}" == "ready" ]; then
    echo "# OK - the RTL.service is enabled, system is ready so starting service"
    sudo systemctl start RTL
  else
    echo "# OK - the RTL.service is enabled, to start manually use: 'sudo systemctl start RTL'"
  fi
  exit 0
fi

# switch off
if [ "$1" = "0" ] || [ "$1" = "off" ]; then

  # setting value in raspi blitz config
  sudo sed -i "s/^rtlWebinterface=.*/rtlWebinterface=off/g" /mnt/hdd/raspiblitz.conf

  # remove nginx symlinks
  sudo rm -f /etc/nginx/sites-enabled/rtl_ssl.conf
  sudo rm -f /etc/nginx/sites-enabled/rtl_tor.conf
  sudo rm -f /etc/nginx/sites-enabled/rtl_tor_ssl.conf
  sudo rm -f /etc/nginx/sites-available/rtl_ssl.conf
  sudo rm -f /etc/nginx/sites-available/rtl_tor.conf
  sudo rm -f /etc/nginx/sites-available/rtl_tor_ssl.conf
  sudo nginx -t
  sudo systemctl reload nginx

  # Hidden Service if Tor is active
  if [ "${runBehindTor}" = "on" ]; then
    /home/admin/config.scripts/internet.hiddenservice.sh off RTL
  fi

  isInstalled=$(sudo ls /etc/systemd/system/RTL.service 2>/dev/null | grep -c 'RTL.service')
  if [ ${isInstalled} -eq 1 ]; then
    echo "# REMOVING RTL"
    sudo systemctl disable RTL
    sudo rm /etc/systemd/system/RTL.service
    # delete user and home directory
    sudo userdel -rf rtl
    echo "# OK RTL removed."
  else
    echo "# RTL is not installed."
  fi

  # close ports on firewall
  sudo ufw deny 3000
  sudo ufw deny 3001
  exit 0
fi

# update
if [ "$1" = "update" ]; then
  echo "# UPDATING RTL"
  cd /home/rtl/RTL
  updateOption="$2"
  if [ ${#updateOption} -eq 0 ]; then
    # from https://github.com/apotdevin/thunderhub/blob/master/scripts/updateToLatest.sh
    # fetch latest master
    sudo -u rtl git fetch
    # unset $1
    set --
    UPSTREAM=${1:-'@{u}'}
    LOCAL=$(git rev-parse @)
    REMOTE=$(git rev-parse "$UPSTREAM")
    if [ $LOCAL = $REMOTE ]; then
      TAG=$(git tag | sort -V | tail -1)
      echo "# You are up-to-date on version" $TAG
    else
      echo "# Pulling latest changes..."
      sudo -u rtl git pull -p
      echo "# Reset to the latest release tag"
      TAG=$(git tag | sort -V | tail -1)
      sudo -u rtl git reset --hard $TAG
      echo "# updating to the latest"
      # https://github.com/Ride-The-Lightning/RTL#or-update-existing-dependencies
      sudo -u rtl npm install --only=prod
      echo "# Updated to version" $TAG
    fi
  elif [ "$updateOption" = "commit" ]; then
    echo "# updating to the latest commit in https://github.com/Ride-The-Lightning/RTL"
    sudo -u rtl git pull -p
    sudo -u rtl npm install --only=prod
    currentRTLcommit=$(cd /home/rtl/RTL; git describe --tags)
    echo "# Updated RTL to $currentRTLcommit"
  else 
    echo "# Unknown option: $updateOption"
  fi

  configRTL
  
  echo
  echo "# Starting the RTL service ... "
  sudo systemctl start RTL
  exit 0
fi

echo "# FAIL - Unknown Parameter $1"
echo "# may need reboot to run normal again"
exit 1