2023-02-09 22:18:06 +03:00
#!/bin/bash
red = '\033[0;31m'
green = '\033[0;32m'
yellow = '\033[0;33m'
plain = '\033[0m'
#Add some basic function here
function LOGD( ) {
echo -e " ${ yellow } [DEG] $* ${ plain } "
}
function LOGE( ) {
echo -e " ${ red } [ERR] $* ${ plain } "
}
function LOGI( ) {
echo -e " ${ green } [INF] $* ${ plain } "
}
2023-04-18 08:51:21 +03:00
2023-02-09 22:18:06 +03:00
# check root
[ [ $EUID -ne 0 ] ] && LOGE "ERROR: You must be root to run this script! \n" && exit 1
2023-03-08 01:34:07 +03:00
# Check OS and set release variable
2023-03-11 18:05:35 +03:00
if [ [ -f /etc/os-release ] ] ; then
source /etc/os-release
release = $ID
elif [ [ -f /usr/lib/os-release ] ] ; then
source /usr/lib/os-release
release = $ID
2023-02-09 22:18:06 +03:00
else
2023-03-08 01:34:07 +03:00
echo "Failed to check the system OS, please contact the author!" >& 2
exit 1
2023-02-09 22:18:06 +03:00
fi
2023-03-08 01:34:07 +03:00
echo " The OS release is: $release "
2023-02-09 22:18:06 +03:00
os_version = ""
2023-03-11 18:05:35 +03:00
os_version = $( grep -i version_id /etc/os-release | cut -d \" -f2 | cut -d . -f1)
2023-02-09 22:18:06 +03:00
2023-03-11 18:38:43 +03:00
if [ [ " ${ release } " = = "centos" ] ] ; then
2023-03-11 18:05:35 +03:00
if [ [ ${ os_version } -lt 8 ] ] ; then
echo -e " ${ red } Please use CentOS 8 or higher ${ plain } \n " && exit 1
fi
2023-03-11 18:38:43 +03:00
elif [ [ " ${ release } " = = "ubuntu" ] ] ; then
2023-03-11 18:05:35 +03:00
if [ [ ${ os_version } -lt 20 ] ] ; then
2023-04-18 08:51:21 +03:00
echo -e " ${ red } please use Ubuntu 20 or higher version! ${ plain } \n " && exit 1
2023-03-11 18:05:35 +03:00
fi
2023-03-11 18:38:43 +03:00
elif [ [ " ${ release } " = = "fedora" ] ] ; then
2023-03-11 18:05:35 +03:00
if [ [ ${ os_version } -lt 36 ] ] ; then
2023-04-18 08:51:21 +03:00
echo -e " ${ red } please use Fedora 36 or higher version! ${ plain } \n " && exit 1
2023-03-11 18:05:35 +03:00
fi
2023-03-11 18:38:43 +03:00
elif [ [ " ${ release } " = = "debian" ] ] ; then
2023-03-11 18:05:35 +03:00
if [ [ ${ os_version } -lt 10 ] ] ; then
echo -e " ${ red } Please use Debian 10 or higher ${ plain } \n " && exit 1
fi
fi
2023-03-08 01:34:07 +03:00
2023-02-09 22:18:06 +03:00
confirm( ) {
if [ [ $# > 1 ] ] ; then
echo && read -p " $1 [Default $2 ]: " temp
if [ [ x" ${ temp } " = = x"" ] ] ; then
temp = $2
fi
else
read -p " $1 [y/n]: " temp
fi
if [ [ x" ${ temp } " = = x"y" || x" ${ temp } " = = x"Y" ] ] ; then
return 0
else
return 1
fi
}
confirm_restart( ) {
confirm "Restart the panel, Attention: Restarting the panel will also restart xray" "y"
if [ [ $? = = 0 ] ] ; then
restart
else
show_menu
fi
}
before_show_menu( ) {
echo && echo -n -e " ${ yellow } Press enter to return to the main menu: ${ plain } " && read temp
show_menu
}
install( ) {
2023-03-11 18:05:35 +03:00
bash <( curl -Ls https://raw.githubusercontent.com/MHSanaei/3x-ui/main/install.sh)
2023-02-09 22:18:06 +03:00
if [ [ $? = = 0 ] ] ; then
if [ [ $# = = 0 ] ] ; then
start
else
start 0
fi
fi
}
update( ) {
confirm "This function will forcefully reinstall the latest version, and the data will not be lost. Do you want to continue?" "n"
if [ [ $? != 0 ] ] ; then
LOGE "Cancelled"
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
return 0
fi
2023-03-11 18:05:35 +03:00
bash <( curl -Ls https://raw.githubusercontent.com/MHSanaei/3x-ui/main/install.sh)
2023-02-09 22:18:06 +03:00
if [ [ $? = = 0 ] ] ; then
LOGI "Update is complete, Panel has automatically restarted "
exit 0
fi
}
uninstall( ) {
confirm "Are you sure you want to uninstall the panel? xray will also uninstalled!" "n"
if [ [ $? != 0 ] ] ; then
if [ [ $# = = 0 ] ] ; then
show_menu
fi
return 0
fi
systemctl stop x-ui
systemctl disable x-ui
rm /etc/systemd/system/x-ui.service -f
systemctl daemon-reload
systemctl reset-failed
rm /etc/x-ui/ -rf
rm /usr/local/x-ui/ -rf
echo ""
2023-04-18 08:51:21 +03:00
echo -e " Uninstalled Successfully, If you want to remove this script, then after exiting the script run ${ green } rm /usr/bin/x-ui -f ${ plain } to delete it. "
2023-02-09 22:18:06 +03:00
echo ""
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
reset_user( ) {
confirm "Reset your username and password to admin?" "n"
if [ [ $? != 0 ] ] ; then
if [ [ $# = = 0 ] ] ; then
show_menu
fi
return 0
fi
/usr/local/x-ui/x-ui setting -username admin -password admin
2023-04-18 08:51:21 +03:00
echo -e " Username and password have been reset to ${ green } admin ${ plain } , Please restart the panel now. "
2023-02-09 22:18:06 +03:00
confirm_restart
}
reset_config( ) {
2023-04-18 08:51:21 +03:00
confirm "Are you sure you want to reset all panel settings, Account data will not be lost, Username and password will not change" "n"
2023-02-09 22:18:06 +03:00
if [ [ $? != 0 ] ] ; then
if [ [ $# = = 0 ] ] ; then
show_menu
fi
return 0
fi
/usr/local/x-ui/x-ui setting -reset
2023-04-18 08:51:21 +03:00
echo -e " All panel settings have been reset to default, Please restart the panel now, and use the default ${ green } 2053 ${ plain } Port to Access the web Panel "
2023-02-09 22:18:06 +03:00
confirm_restart
}
check_config( ) {
info = $( /usr/local/x-ui/x-ui setting -show true )
if [ [ $? != 0 ] ] ; then
2023-04-18 08:51:21 +03:00
LOGE "get current settings error, please check logs"
2023-02-09 22:18:06 +03:00
show_menu
fi
LOGI " ${ info } "
}
set_port( ) {
echo && echo -n -e "Enter port number[1-65535]: " && read port
if [ [ -z " ${ port } " ] ] ; then
LOGD "Cancelled"
before_show_menu
else
/usr/local/x-ui/x-ui setting -port ${ port }
2023-04-18 08:51:21 +03:00
echo -e " The port is set, Please restart the panel now, and use the new port ${ green } ${ port } ${ plain } to access web panel "
2023-02-09 22:18:06 +03:00
confirm_restart
fi
}
start( ) {
check_status
if [ [ $? = = 0 ] ] ; then
echo ""
2023-04-18 08:51:21 +03:00
LOGI "Panel is running, No need to start again, If you need to restart, please select restart"
2023-02-09 22:18:06 +03:00
else
systemctl start x-ui
sleep 2
check_status
if [ [ $? = = 0 ] ] ; then
LOGI "x-ui Started Successfully"
else
2023-04-18 08:51:21 +03:00
LOGE "panel Failed to start, Probably because it takes longer than two seconds to start, Please check the log information later"
2023-02-09 22:18:06 +03:00
fi
fi
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
stop( ) {
check_status
if [ [ $? = = 1 ] ] ; then
echo ""
2023-04-18 08:51:21 +03:00
LOGI "Panel stopped, No need to stop again!"
2023-02-09 22:18:06 +03:00
else
systemctl stop x-ui
sleep 2
check_status
if [ [ $? = = 1 ] ] ; then
LOGI "x-ui and xray stopped successfully"
else
2023-04-18 08:51:21 +03:00
LOGE "Panel stop failed, Probably because the stop time exceeds two seconds, Please check the log information later"
2023-02-09 22:18:06 +03:00
fi
fi
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
restart( ) {
systemctl restart x-ui
sleep 2
check_status
if [ [ $? = = 0 ] ] ; then
LOGI "x-ui and xray Restarted successfully"
else
2023-04-18 08:51:21 +03:00
LOGE "Panel restart failed, Probably because it takes longer than two seconds to start, Please check the log information later"
2023-02-09 22:18:06 +03:00
fi
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
status( ) {
systemctl status x-ui -l
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
enable( ) {
systemctl enable x-ui
if [ [ $? = = 0 ] ] ; then
LOGI "x-ui Set to boot automatically on startup successfully"
else
LOGE "x-ui Failed to set Autostart"
fi
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
disable( ) {
systemctl disable x-ui
if [ [ $? = = 0 ] ] ; then
LOGI "x-ui Autostart Cancelled successfully"
else
LOGE "x-ui Failed to cancel autostart"
fi
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
show_log( ) {
journalctl -u x-ui.service -e --no-pager -f
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
}
2023-03-08 01:34:07 +03:00
enable_bbr( ) {
2023-04-18 08:51:21 +03:00
if grep -q "net.core.default_qdisc=fq" /etc/sysctl.conf && grep -q "net.ipv4.tcp_congestion_control=bbr" /etc/sysctl.conf; then
echo -e " ${ green } BBR is already enabled! ${ plain } "
exit 0
fi
2023-02-09 22:18:06 +03:00
2023-04-18 08:51:21 +03:00
# Check the OS and install necessary packages
if [ [ " $( cat /etc/os-release | grep -E '^ID=' | awk -F '=' '{print $2}' ) " = = "ubuntu" ] ] ; then
sudo apt-get update && sudo apt-get install -yqq --no-install-recommends ca-certificates
elif [ [ " $( cat /etc/os-release | grep -E '^ID=' | awk -F '=' '{print $2}' ) " = = "debian" ] ] ; then
sudo apt-get update && sudo apt-get install -yqq --no-install-recommends ca-certificates
elif [ [ " $( cat /etc/os-release | grep -E '^ID=' | awk -F '=' '{print $2}' ) " = = "fedora" ] ] ; then
sudo dnf -y update && sudo dnf -y install ca-certificates
elif [ [ " $( cat /etc/os-release | grep -E '^ID=' | awk -F '=' '{print $2}' ) " = = "centos" ] ] ; then
sudo yum -y update && sudo yum -y install ca-certificates
else
echo "Unsupported operating system. Please check the script and install the necessary packages manually."
exit 1
fi
2023-03-08 01:34:07 +03:00
2023-04-18 08:51:21 +03:00
# Enable BBR
echo "net.core.default_qdisc=fq" | sudo tee -a /etc/sysctl.conf
echo "net.ipv4.tcp_congestion_control=bbr" | sudo tee -a /etc/sysctl.conf
2023-03-08 01:34:07 +03:00
2023-04-18 08:51:21 +03:00
# Apply changes
sudo sysctl -p
2023-02-09 22:18:06 +03:00
2023-04-18 08:51:21 +03:00
# Verify that BBR is enabled
if [ [ $( sysctl net.ipv4.tcp_congestion_control | awk '{print $3}' ) = = "bbr" ] ] ; then
echo -e " ${ green } BBR has been enabled successfully. ${ plain } "
else
echo -e " ${ red } Failed to enable BBR. Please check your system configuration. ${ plain } "
fi
2023-02-09 22:18:06 +03:00
}
update_shell( ) {
2023-03-11 18:05:35 +03:00
wget -O /usr/bin/x-ui -N --no-check-certificate https://github.com/MHSanaei/3x-ui/raw/main/x-ui.sh
2023-02-09 22:18:06 +03:00
if [ [ $? != 0 ] ] ; then
echo ""
2023-04-18 08:51:21 +03:00
LOGE "Failed to download script, Please check whether the machine can connect Github"
2023-02-09 22:18:06 +03:00
before_show_menu
else
chmod +x /usr/bin/x-ui
2023-04-18 08:51:21 +03:00
LOGI "Upgrade script succeeded, Please rerun the script" && exit 0
2023-02-09 22:18:06 +03:00
fi
}
# 0: running, 1: not running, 2: not installed
check_status( ) {
if [ [ ! -f /etc/systemd/system/x-ui.service ] ] ; then
return 2
fi
temp = $( systemctl status x-ui | grep Active | awk '{print $3}' | cut -d "(" -f2 | cut -d ")" -f1)
if [ [ x" ${ temp } " = = x"running" ] ] ; then
return 0
else
return 1
fi
}
check_enabled( ) {
temp = $( systemctl is-enabled x-ui)
if [ [ x" ${ temp } " = = x"enabled" ] ] ; then
return 0
else
return 1
fi
}
check_uninstall( ) {
check_status
if [ [ $? != 2 ] ] ; then
echo ""
2023-04-18 08:51:21 +03:00
LOGE "Panel installed, Please do not reinstall"
2023-02-09 22:18:06 +03:00
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
return 1
else
return 0
fi
}
check_install( ) {
check_status
if [ [ $? = = 2 ] ] ; then
echo ""
LOGE "Please install the panel first"
if [ [ $# = = 0 ] ] ; then
before_show_menu
fi
return 1
else
return 0
fi
}
show_status( ) {
check_status
case $? in
0)
2023-02-20 20:29:55 +03:00
echo -e " Panel state: ${ green } Running ${ plain } "
2023-02-09 22:18:06 +03:00
show_enable_status
; ;
1)
echo -e " Panel state: ${ yellow } Not Running ${ plain } "
show_enable_status
; ;
2)
echo -e " Panel state: ${ red } Not Installed ${ plain } "
; ;
esac
show_xray_status
}
show_enable_status( ) {
check_enabled
if [ [ $? = = 0 ] ] ; then
echo -e " Start automatically: ${ green } Yes ${ plain } "
else
echo -e " Start automatically: ${ red } No ${ plain } "
fi
}
check_xray_status( ) {
count = $( ps -ef | grep "xray-linux" | grep -v "grep" | wc -l)
if [ [ count -ne 0 ] ] ; then
return 0
else
return 1
fi
}
show_xray_status( ) {
check_xray_status
if [ [ $? = = 0 ] ] ; then
2023-02-20 20:29:55 +03:00
echo -e " xray state: ${ green } Running ${ plain } "
2023-02-09 22:18:06 +03:00
else
echo -e " xray state: ${ red } Not Running ${ plain } "
fi
}
2023-02-15 21:57:42 +03:00
#this will be an entrance for ssl cert issue
#here we can provide two different methods to issue cert
#first.standalone mode second.DNS API mode
2023-02-09 22:18:06 +03:00
ssl_cert_issue( ) {
2023-02-15 21:57:42 +03:00
local method = ""
2023-02-09 22:18:06 +03:00
echo -E ""
2023-02-15 21:57:42 +03:00
LOGD "********Usage********"
LOGI "this shell script will use acme to help issue certs."
LOGI "here we provide two methods for issuing certs:"
LOGI "method 1:acme standalone mode,need to keep port:80 open"
LOGI "method 2:acme DNS API mode,need provide Cloudflare Global API Key"
LOGI "recommend method 2 first,if it fails,you can try method 1."
LOGI "certs will be installed in /root/cert directory"
read -p "please choose which method do you want,type 1 or 2" : method
LOGI " you choosed method: ${ method } "
if [ " ${ method } " = = "1" ] ; then
ssl_cert_issue_standalone
elif [ " ${ method } " = = "2" ] ; then
ssl_cert_issue_by_cloudflare
else
LOGE "invalid input,please check it..."
exit 1
fi
}
2023-04-02 17:42:00 +03:00
open_ports( ) {
2023-04-18 08:51:21 +03:00
if ! command -v ufw & > /dev/null
then
echo "ufw firewall is not installed. Installing now..."
sudo apt-get update
sudo apt-get install -y ufw
2023-04-02 17:42:00 +03:00
else
2023-04-18 08:51:21 +03:00
echo "ufw firewall is already installed"
2023-04-02 17:42:00 +03:00
fi
2023-04-18 08:51:21 +03:00
# Check if the firewall is inactive
if sudo ufw status | grep -q "Status: active" ; then
echo "firewall is already active"
else
# Open the necessary ports
sudo ufw allow ssh
sudo ufw allow http
sudo ufw allow https
sudo ufw allow 2053/tcp
# Enable the firewall
sudo ufw --force enable
fi
# Prompt the user to enter a list of ports
read -p "Enter the ports you want to open (e.g. 80,443,2053 or range 400-500): " ports
# Check if the input is valid
if ! [ [ $ports = ~ ^( [ 0-9] +| [ 0-9] +-[ 0-9] +) ( ,( [ 0-9] +| [ 0-9] +-[ 0-9] +) ) *$ ] ] ; then
echo "Error: Invalid input. Please enter a comma-separated list of ports or a range of ports (e.g. 80,443,2053 or 400-500)." >& 2; exit 1
fi
# Open the specified ports using ufw
IFS = ',' read -ra PORT_LIST <<< " $ports "
for port in " ${ PORT_LIST [@] } " ; do
if [ [ $port = = *-* ] ] ; then
# Split the range into start and end ports
start_port = $( echo $port | cut -d'-' -f1)
end_port = $( echo $port | cut -d'-' -f2)
# Loop through the range and open each port
for ( ( i = start_port; i<= end_port; i++) ) ; do
sudo ufw allow $i
done
else
sudo ufw allow " $port "
fi
done
2023-04-02 17:42:00 +03:00
2023-04-18 08:51:21 +03:00
# Confirm that the ports are open
sudo ufw status | grep $ports
}
2023-04-02 17:42:00 +03:00
2023-04-18 08:51:21 +03:00
update_geo( ) {
local defaultBinFolder = "/usr/local/x-ui/bin"
read -p " Please enter x-ui bin folder path. Leave blank for default. (Default: ' ${ defaultBinFolder } ') " binFolder
binFolder = ${ binFolder :- ${ defaultBinFolder } }
if [ [ ! -d ${ binFolder } ] ] ; then
LOGE " Folder ${ binFolder } not exists! "
LOGI " making bin folder: ${ binFolder } ... "
mkdir -p ${ binFolder }
fi
2023-04-02 17:42:00 +03:00
systemctl stop x-ui
2023-04-18 08:51:21 +03:00
cd ${ binFolder }
2023-04-02 17:42:00 +03:00
rm -f geoip.dat geosite.dat iran.dat
wget -N https://github.com/Loyalsoldier/v2ray-rules-dat/releases/latest/download/geoip.dat
wget -N https://github.com/Loyalsoldier/v2ray-rules-dat/releases/latest/download/geosite.dat
wget -N https://github.com/bootmortis/iran-hosted-domains/releases/latest/download/iran.dat
systemctl start x-ui
2023-04-18 08:51:21 +03:00
echo -e " ${ green } Geosite.dat + Geoip.dat + Iran.dat have been updated successfully in bin folder ' ${ binfolder } '! ${ plain } "
before_show_menu
2023-04-02 17:42:00 +03:00
}
2023-02-15 21:57:42 +03:00
install_acme( ) {
cd ~
LOGI "install acme..."
curl https://get.acme.sh | sh
if [ $? -ne 0 ] ; then
LOGE "install acme failed"
return 1
else
LOGI "install acme succeed"
fi
return 0
}
#method for standalone mode
ssl_cert_issue_standalone( ) {
2023-02-20 20:29:55 +03:00
#check for acme.sh first
if ! command -v ~/.acme.sh/acme.sh & >/dev/null; then
echo "acme.sh could not be found. we will install it"
install_acme
if [ $? -ne 0 ] ; then
LOGE "install acme failed, please check logs"
exit 1
fi
2023-02-15 21:57:42 +03:00
fi
#install socat second
if [ [ x" ${ release } " = = x"centos" ] ] ; then
yum install socat -y
else
apt install socat -y
fi
if [ $? -ne 0 ] ; then
LOGE "install socat failed,please check logs"
exit 1
else
LOGI "install socat succeed..."
fi
2023-04-02 20:31:08 +03:00
2023-02-15 21:57:42 +03:00
#get the domain here,and we need verify it
local domain = ""
read -p "please input your domain:" domain
LOGD " your domain is: ${ domain } ,check it... "
#here we need to judge whether there exists cert already
local currentCert = $( ~/.acme.sh/acme.sh --list | tail -1 | awk '{print $1}' )
if [ ${ currentCert } = = ${ domain } ] ; then
local certInfo = $( ~/.acme.sh/acme.sh --list)
LOGE "system already have certs here,can not issue again,current certs details:"
LOGI " $certInfo "
exit 1
else
LOGI "your domain is ready for issuing cert now..."
fi
2023-04-02 20:31:08 +03:00
#create a directory for install cert
certPath = " /root/cert/ ${ domain } "
if [ ! -d " $certPath " ] ; then
mkdir -p " $certPath "
else
rm -rf " $certPath "
mkdir -p " $certPath "
fi
2023-02-15 21:57:42 +03:00
#get needed port here
local WebPort = 80
read -p "please choose which port do you use,default will be 80 port:" WebPort
if [ [ ${ WebPort } -gt 65535 || ${ WebPort } -lt 1 ] ] ; then
LOGE " your input ${ WebPort } is invalid,will use default port "
fi
LOGI " will use port: ${ WebPort } to issue certs,please make sure this port is open... "
#NOTE:This should be handled by user
#open the port and kill the occupied progress
~/.acme.sh/acme.sh --set-default-ca --server letsencrypt
~/.acme.sh/acme.sh --issue -d ${ domain } --standalone --httpport ${ WebPort }
if [ $? -ne 0 ] ; then
LOGE "issue certs failed,please check logs"
rm -rf ~/.acme.sh/${ domain }
exit 1
else
LOGE "issue certs succeed,installing certs..."
fi
#install cert
2023-04-02 20:31:08 +03:00
~/.acme.sh/acme.sh --installcert -d ${ domain } \
--key-file /root/cert/${ domain } /privkey.pem \
--fullchain-file /root/cert/${ domain } /fullchain.pem
2023-02-15 21:57:42 +03:00
if [ $? -ne 0 ] ; then
LOGE "install certs failed,exit"
rm -rf ~/.acme.sh/${ domain }
exit 1
else
LOGI "install certs succeed,enable auto renew..."
fi
2023-04-02 20:31:08 +03:00
~/.acme.sh/acme.sh --upgrade --auto-upgrade
if [ $? -ne 0 ] ; then
LOGE "auto renew failed, certs details:"
ls -lah cert/*
chmod 755 $certPath /*
exit 1
else
LOGI "auto renew succeed, certs details:"
ls -lah cert/*
chmod 755 $certPath /*
fi
2023-02-15 21:57:42 +03:00
}
#method for DNS API mode
ssl_cert_issue_by_cloudflare( ) {
echo -E ""
LOGD "******Preconditions******"
LOGI "1.need Cloudflare account associated email"
LOGI "2.need Cloudflare Global API Key"
LOGI "3.your domain use Cloudflare as resolver"
confirm "I have confirmed all these info above[y/n]" "y"
2023-02-09 22:18:06 +03:00
if [ $? -eq 0 ] ; then
2023-02-15 21:57:42 +03:00
install_acme
2023-02-09 22:18:06 +03:00
if [ $? -ne 0 ] ; then
2023-02-15 21:57:42 +03:00
LOGE "install acme failed,please check logs"
2023-02-09 22:18:06 +03:00
exit 1
fi
CF_Domain = ""
CF_GlobalKey = ""
CF_AccountEmail = ""
2023-04-02 20:31:08 +03:00
2023-02-15 21:57:42 +03:00
LOGD "please input your domain:"
2023-02-09 22:18:06 +03:00
read -p "Input your domain here:" CF_Domain
2023-02-15 21:57:42 +03:00
LOGD " your domain is: ${ CF_Domain } ,check it... "
#here we need to judge whether there exists cert already
local currentCert = $( ~/.acme.sh/acme.sh --list | tail -1 | awk '{print $1}' )
if [ ${ currentCert } = = ${ CF_Domain } ] ; then
local certInfo = $( ~/.acme.sh/acme.sh --list)
LOGE "system already have certs here,can not issue again,current certs details:"
LOGI " $certInfo "
exit 1
else
LOGI "your domain is ready for issuing cert now..."
fi
2023-04-02 20:31:08 +03:00
#create a directory for install cert
certPath = " /root/cert/ ${ CF_Domain } "
if [ ! -d " $certPath " ] ; then
mkdir -p " $certPath "
else
rm -rf " $certPath "
mkdir -p " $certPath "
fi
2023-02-15 21:57:42 +03:00
LOGD "please inout your cloudflare global API key:"
2023-02-09 22:18:06 +03:00
read -p "Input your key here:" CF_GlobalKey
2023-02-15 21:57:42 +03:00
LOGD " your cloudflare global API key is: ${ CF_GlobalKey } "
LOGD "please input your cloudflare account email:"
2023-02-09 22:18:06 +03:00
read -p "Input your email here:" CF_AccountEmail
2023-02-15 21:57:42 +03:00
LOGD " your cloudflare account email: ${ CF_AccountEmail } "
2023-02-09 22:18:06 +03:00
~/.acme.sh/acme.sh --set-default-ca --server letsencrypt
if [ $? -ne 0 ] ; then
2023-02-15 21:57:42 +03:00
LOGE "change the default CA to Lets'Encrypt failed,exit"
2023-02-09 22:18:06 +03:00
exit 1
fi
export CF_Key = " ${ CF_GlobalKey } "
export CF_Email = ${ CF_AccountEmail }
~/.acme.sh/acme.sh --issue --dns dns_cf -d ${ CF_Domain } -d *.${ CF_Domain } --log
if [ $? -ne 0 ] ; then
2023-02-15 21:57:42 +03:00
LOGE "issue cert failed,exit"
rm -rf ~/.acme.sh/${ CF_Domain }
2023-02-09 22:18:06 +03:00
exit 1
2023-04-03 18:52:23 +03:00
else
LOGI "Certificate issued Successfully, Installing..."
fi
~/.acme.sh/acme.sh --installcert -d ${ CF_Domain } -d *.${ CF_Domain } \
--key-file /root/cert/${ CF_Domain } /privkey.pem \
--fullchain-file /root/cert/${ CF_Domain } /fullchain.pem
2023-04-02 20:31:08 +03:00
2023-04-03 18:52:23 +03:00
if [ $? -ne 0 ] ; then
LOGE "install cert failed,exit"
rm -rf ~/.acme.sh/${ CF_Domain }
exit 1
else
LOGI "Certificate installed Successfully,Turning on automatic updates..."
fi
2023-04-02 20:31:08 +03:00
~/.acme.sh/acme.sh --upgrade --auto-upgrade
if [ $? -ne 0 ] ; then
LOGE "auto renew failed, certs details:"
ls -lah cert/*
chmod 755 $certPath /*
exit 1
else
LOGI "auto renew succeed, certs details:"
ls -lah cert/*
chmod 755 $certPath /*
fi
2023-02-09 22:18:06 +03:00
else
show_menu
fi
}
2023-04-18 08:51:21 +03:00
2023-04-03 18:52:23 +03:00
google_recaptcha( ) {
2023-04-18 08:51:21 +03:00
curl -O https://raw.githubusercontent.com/jinwyp/one_click_script/master/install_kernel.sh && chmod +x ./install_kernel.sh && ./install_kernel.sh
echo ""
before_show_menu
2023-04-03 18:52:23 +03:00
}
run_speedtest( ) {
# Check if Speedtest is already installed
if ! command -v speedtest & > /dev/null; then
# If not installed, install it
2023-04-03 23:30:29 +03:00
if command -v dnf & > /dev/null; then
sudo dnf install -y curl
2023-04-12 23:11:34 +03:00
curl -s https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.rpm.sh | sudo bash
2023-04-03 23:30:29 +03:00
sudo dnf install -y speedtest
elif command -v yum & > /dev/null; then
sudo yum install -y curl
2023-04-12 23:11:34 +03:00
curl -s https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.rpm.sh | sudo bash
2023-04-03 23:30:29 +03:00
sudo yum install -y speedtest
elif command -v apt-get & > /dev/null; then
sudo apt-get update && sudo apt-get install -y curl
2023-04-12 23:11:34 +03:00
curl -s https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.deb.sh | sudo bash
2023-04-03 23:30:29 +03:00
sudo apt-get install -y speedtest
elif command -v apt & > /dev/null; then
sudo apt update && sudo apt install -y curl
2023-04-12 23:11:34 +03:00
curl -s https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.deb.sh | sudo bash
2023-04-03 23:30:29 +03:00
sudo apt install -y speedtest
else
echo "Error: Package manager not found. You may need to install Speedtest manually."
return 1
fi
2023-04-03 18:52:23 +03:00
fi
# Run Speedtest
speedtest
}
2023-02-09 22:18:06 +03:00
2023-04-03 23:30:29 +03:00
2023-02-09 22:18:06 +03:00
show_usage( ) {
echo "x-ui control menu usages: "
echo "------------------------------------------"
2023-02-15 21:57:42 +03:00
echo -e "x-ui - Enter control menu"
echo -e "x-ui start - Start x-ui "
echo -e "x-ui stop - Stop x-ui "
echo -e "x-ui restart - Restart x-ui "
echo -e "x-ui status - Show x-ui status"
echo -e "x-ui enable - Enable x-ui on system startup"
echo -e "x-ui disable - Disable x-ui on system startup"
echo -e "x-ui log - Check x-ui logs"
echo -e "x-ui update - Update x-ui "
echo -e "x-ui install - Install x-ui "
echo -e "x-ui uninstall - Uninstall x-ui "
2023-02-09 22:18:06 +03:00
echo "------------------------------------------"
}
show_menu( ) {
echo -e "
2023-02-20 20:29:55 +03:00
${ green } 3X-ui Panel Management Script${ plain }
2023-02-15 21:57:42 +03:00
${ green } 0.${ plain } Exit Script
2023-02-09 22:18:06 +03:00
————————————————
${ green } 1.${ plain } Install x-ui
${ green } 2.${ plain } Update x-ui
${ green } 3.${ plain } Uninstall x-ui
————————————————
2023-02-15 21:57:42 +03:00
${ green } 4.${ plain } Reset Username And Password
${ green } 5.${ plain } Reset Panel Settings
${ green } 6.${ plain } Change Panel Port
${ green } 7.${ plain } View Current Panel Settings
2023-02-09 22:18:06 +03:00
————————————————
${ green } 8.${ plain } Start x-ui
2023-02-15 21:57:42 +03:00
${ green } 9.${ plain } Stop x-ui
${ green } 10.${ plain } Restart x-ui
${ green } 11.${ plain } Check x-ui Status
${ green } 12.${ plain } Check x-ui Logs
2023-02-09 22:18:06 +03:00
————————————————
2023-03-11 18:05:35 +03:00
${ green } 13.${ plain } Enable x-ui On System Startup
2023-04-14 16:52:49 +03:00
${ green } 14.${ plain } Disable x-ui On System Startup
2023-02-09 22:18:06 +03:00
————————————————
2023-02-15 21:57:42 +03:00
${ green } 15.${ plain } Enable BBR
2023-04-02 20:31:08 +03:00
${ green } 16.${ plain } Apply for an SSL Certificate
${ green } 17.${ plain } Update Geo Files
${ green } 18.${ plain } Active Firewall and open ports
2023-04-03 18:52:23 +03:00
${ green } 19.${ plain } Fixing Google reCAPTCHA
${ green } 20.${ plain } Speedtest by Ookla
2023-02-09 22:18:06 +03:00
"
show_status
2023-04-03 18:52:23 +03:00
echo && read -p "Please enter your selection [0-20]: " num
2023-02-09 22:18:06 +03:00
case " ${ num } " in
0)
exit 0
; ;
1)
check_uninstall && install
; ;
2)
check_install && update
; ;
3)
check_install && uninstall
; ;
4)
check_install && reset_user
; ;
5)
check_install && reset_config
; ;
6)
check_install && set_port
; ;
7)
check_install && check_config
; ;
8)
check_install && start
; ;
9)
check_install && stop
; ;
10)
check_install && restart
; ;
11)
check_install && status
; ;
12)
check_install && show_log
; ;
13)
check_install && enable
; ;
14)
check_install && disable
; ;
15)
2023-03-08 01:34:07 +03:00
enable_bbr
2023-02-09 22:18:06 +03:00
; ;
16)
ssl_cert_issue
; ;
2023-04-02 17:42:00 +03:00
17)
update_geo
; ;
18)
open_ports
; ;
2023-04-03 18:52:23 +03:00
19)
google_recaptcha
; ;
20)
run_speedtest
; ;
2023-02-09 22:18:06 +03:00
*)
2023-04-03 18:52:23 +03:00
LOGE "Please enter the correct number [0-20]"
2023-02-09 22:18:06 +03:00
; ;
esac
}
if [ [ $# > 0 ] ] ; then
case $1 in
"start" )
check_install 0 && start 0
; ;
"stop" )
check_install 0 && stop 0
; ;
"restart" )
check_install 0 && restart 0
; ;
"status" )
check_install 0 && status 0
; ;
"enable" )
check_install 0 && enable 0
; ;
"disable" )
check_install 0 && disable 0
; ;
"log" )
check_install 0 && show_log 0
; ;
"update" )
check_install 0 && update 0
; ;
"install" )
check_uninstall 0 && install 0
; ;
"uninstall" )
check_install 0 && uninstall 0
; ;
*) show_usage ; ;
esac
else
show_menu
fi
