Add mariadb intial-setup script

docker/docker_install.sh

@@ -1,7 +1,8 @@
-sudo apt-get install ca-certificates curl gnupg
+sudo apt-get install ca-certificates curl gnupg -y
 
 sudo install -m 0755 -d /etc/apt/keyrings
  curl -fsSL https://download.docker.com/linux/debian/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg
+
  sudo chmod a+r /etc/apt/keyrings/docker.gpg
 
 echo \
@@ -11,5 +12,4 @@ echo \
 
 sudo apt-get update
 
-sudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
-
+sudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin -y

docker/docker_test

@@ -1 +0,0 @@
-docker run -dit --name aney-web -p 8080:80 -v /home/nathan/documents/81-89_development/81_websites/81.01_aney.co.uk/www/:/usr/local/apache2/htdocs/ httpd:2.4

docker/docker_uninstall.sh

@@ -0,0 +1,12 @@
+sudo apt-get purge -y docker-engine docker docker.io docker-ce docker-ce-cli docker-compose-plugin
+sudo apt-get autoremove -y --purge docker-engine docker docker.io docker-ce docker-compose-plugin
+
+sudo rm -rf /var/lib/docker /etc/docker
+sudo rm /etc/apparmor.d/docker
+sudo groupdel docker
+sudo rm -rf /var/run/docker.sock
+sudo rm -rf /var/lib/containerd
+sudo rm -r ~/.docker
+
+
+# Check for iptables stuff sudo iptables -L in-case ports are left opened

mariadb/initial_setup.txt

@@ -0,0 +1,87 @@
+#!/bin/bash
+
+# Get root password for the mariadb server
+read -s -p "Enter current ROOT password: " ROOT_PASSWORD
+echo
+
+# Ask user for a password for new user
+read -s -p "Enter password for user: " PASSWORD
+echo
+read -s -p "Confirm password: " PASSWORD_CONFIRM
+echo
+
+# Validate match
+if [[ "$PASSWORD" != "$PASSWORD_CONFIRM" ]]; then
+    echo "Passwords do not match. Exiting."
+    exit 1
+fi
+
+
+# IN /etc/mysql/mariadb.conf.d/50-server.cnf
+# bind-address = 127.0.0.1 # To only allow localhost access (If wanted)
+
+# use -it for interactive, use i for just passing commands 'silent'
+# sudo docker exec -it mariadb mysql -u root -p
+# <<- Strips tabs, so just looks nicer, << would not strip the tabs and would error
+sudo docker exec -i mariadb mysql -uroot -p"$ROOT_PASSWORD" <<-EOF
+	# Remove anonymous users
+	DROP USER IF EXISTS ''@'localhost';
+	DROP USER IF EXISTS ''@'%';
+	
+	# Disable test db
+	DROP DATABASE IF EXISTS test;
+
+	# Create Admin Role
+	CREATE ROLE IF NOT EXISTS admin;
+
+	# Grant Full Permissions
+	GRANT ALL PRIVILEGES ON *.* TO admin WITH GRANT OPTION;
+
+	# Create Admin User
+	CREATE USER IF NOT EXISTS 'nathan'@'localhost' IDENTIFIED BY '$PASSWORD';
+	CREATE USER IF NOT EXISTS 'nathan'@'%' IDENTIFIED BY '$PASSWORD';
+
+	# Asign Admin role
+	GRANT admin TO 'nathan'@'localhost';
+	GRANT admin TO 'nathan'@'%';
+
+	# Set Admin role as default
+	SET DEFAULT ROLE 'admin' FOR 'nathan'@'localhost';
+	SET DEFAULT ROLE 'admin' FOR 'nathan'@'%';
+	
+	# ALSO, CREATE USER privilege to user to allow mysql user editing
+	GRANT CREATE USER ON *.* TO 'nathan'@'localhost';
+	GRANT GRANT OPTION ON *.* TO 'nathan'@'localhost';
+	GRANT CREATE USER ON *.* TO 'nathan'@'%';
+	GRANT GRANT OPTION ON *.* TO 'nathan'@'%';
+	GRANT SELECT ON mysql.* TO 'nathan'@'%';
+
+	# Set the priveleges
+	FLUSH PRIVILEGES;
+EOF
+
+echo "User 'nathan' has been created and assigned admin role."
+echo "Check the login works, and all permissions exist, then drop root"
+
+# Check Login
+#mysql -u nathan -p
+sudo docker exec -i mariadb mysql -unathan -p"$PASSWORD" <<-EOF
+	SHOW GRANTS FOR 'nathan'@'localhost';
+EOF
+
+echo "Do the above grants look correct? If so we will remove root"
+echo "Looking for CREATE USER, and * or super,process,reload,replication..."
+echo "Ideally, login to the DB and check quickly, ey"
+read -n 1 -p "Proceed? (y/n): " yn
+echo
+if [[ "${yn,,}" != "y" ]]; then
+    echo "Exited"
+    exit 0
+fi
+
+# Drop root (IDEALLY AFTER CHECKING EVERYTHING WORKS AS ADMIN)
+sudo docker exec -i mariadb mysql -unathan -p"$PASSWORD" <<-EOF
+	DROP USER 'root'@'localhost';
+	DROP USER 'root'@'%';
+EOF
+