[WIP] Allow multiple installations of same blueprint (#88)

* Multi-install support, Blueprints and config changes. Initial commit * Migrating jails to blueprints, first steps. Tested Working: - Transmission - Lidarr - Sonarr - Radarr fix lidarr config (+10 squashed commit) Squashed commit: [5f14653] always link ports folders [f18f2f0] Optional (blueprint) ports mount Fixes #89 [96ef7e7] chmod all the things [129e707] same mistake... again... [e1596dc] missing reference [6da3567] Forgot one reference [d78b5b6] Update wiki.yml [cecc53a] Update filecheck.yml [5244abd] basic settings changed. More involved blueprints still need changes, such as: Bitwarden, nextcloud, Mariadb [6568e92] jails -> blueprints * Added Tested Working: - KMS - Plex - Tautulli - Organizr - InfluxDB - MariaDB Many squashed small fixes included: Make *.rc executable (+13 squashed commit) Squashed commit: [b28aa83] use .rc for rc.d config files [e940a48] some mariadb cleanup [dc27aff] testing another way [83bd91b] Mariadb root password alter instead of update, initial config for unifi [0ca3074] some light config cleanup [a0d4352] also remove database from influxdb example config (db should be created when required) [2c218cc] Prepare influxdb and remove unneeded content [1b34109] more shellcheck fixups [c96566c] Some shellcheck cleanup [8969ca7] bitwarden mostly done, some work on nextcloud and unifi [7f89bfa] initial mariadb patch [dd7e85f] missed one problem [f814cb7] Initial pseudo-compatibility patch for unifi * Enable Bitwarden support and some small fixes/tweaks Fixes #95 more bugs and typo's (+3 squashed commit) Squashed commit: [3b5213e] Bitwarden not correctly installing db [b7438a5] yeah thats not gonna cut it... >.< [e7987c2] some slight bitwarden tweaks * Enable Unifi support and some small fixes/tweaks small unifi cleanup. Unifi is working (+3 squashed commit) Squashed commit: [d906d2d] chmod unifi [545e999] Add extra sanity, remove unneeded variables from example [b8c0b24] Some small Unifi Tweaks * Nextcloud Cleanup, Some fixes, Initial support for blueprintsystem Fixes #96 Fixes #97 Fixes #98 some bloat and syntax fixes (+5 squashed commit) Squashed commit: [78f6428] Some more nextcloud cleanup and tweaks - combines multiple variables for cert system selection (Fixes #98 ) - Default to self signed cert - Force manual admin password [7cacae4] slight fixes [3d81cda] More cleanup [50496cc] small mariadb fix and more nextcloud cleanup [c1b2c20] Cleaning nextcloud - Remove external DB (Fixes #97 ) - Remove Postgresql (Fixes #96 ) - Some preparation for blueprint * Nextcloud done and.. another... (+5 squashed commit) Squashed commit: [c65751b] caddy not installed right. [e5da66b] more fixes [a33300e] Damnit, two typo's same scentence [4292a7a] another typo [1b820cf] typo and example hotfix * Introduce version checking for config file
2020-05-02 17:45:13 +02:00 · 2020-05-02 17:45:13 +02:00 · dbfbd489fa
commit dbfbd489fa
parent 66e997069a
140 changed files with 1361 additions and 1888 deletions
--- a/.github/workflows/filecheck.yml
+++ b/.github/workflows/filecheck.yml
@ -13,9 +13,9 @@ jobs:
      - uses: actions/checkout@v1
      - name: check existance
        run: |
-         for pathname in jails/*; do test -e $pathname/readme.md || { echo "File missing: $pathname/readme.md"; error="true"; }; done
+         for pathname in blueprints/*; do test -e $pathname/readme.md || { echo "File missing: $pathname/readme.md"; error="true"; }; done
-         for pathname in jails/*; do test -e $pathname/install.sh || { echo "File missing: $pathname/install.sh"; error="true"; }; done
+         for pathname in blueprints/*; do test -e $pathname/install.sh || { echo "File missing: $pathname/install.sh"; error="true"; }; done
-         for pathname in jails/*; do test -e $pathname/update.sh || { echo "File missing: $pathname/update.sh"; error="true"; }; done
+         for pathname in blueprints/*; do test -e $pathname/update.sh || { echo "File missing: $pathname/update.sh"; error="true"; }; done
-         for pathname in jails/*; do test -e $pathname/config.yml || { echo "File missing: $pathname/config.yml"; error="true"; }; done
+         for pathname in blueprints/*; do test -e $pathname/config.yml || { echo "File missing: $pathname/config.yml"; error="true"; }; done
         if [ "${error}" == "true" ]; then echo "Missing files detected" && exit 1; fi
        shell: bash
--- a/.github/workflows/wiki.yml
+++ b/.github/workflows/wiki.yml
@ -15,10 +15,7 @@ jobs:
          ref: 'master'
      - name: rename-readme
        run: |
-          for pathname in jails/*/README.MD; do ! cp "$pathname" "docs/jails/$( basename "$( dirname "$pathname" )" ).md"; done
+          for pathname in blueprints/*/readme.md; do ! cp "$pathname" "docs/blueprints/$( basename "$( dirname "$pathname" )" ).md"; done
          for pathname in jails/*/README.md; do ! cp "$pathname" "docs/jails/$( basename "$( dirname "$pathname" )" ).md"; done 
          for pathname in jails/*/readme.md; do ! cp "$pathname" "docs/jails/$( basename "$( dirname "$pathname" )" ).md"; done
          for pathname in jails/*/Readme.md; do ! cp "$pathname" "docs/jails/$( basename "$( dirname "$pathname" )" ).md"; done
        shell: bash
      - name: Deploy docs
        uses: mhausenblas/mkdocs-deploy-gh-pages@master
--- a/blueprints/bitwarden/config.yml
+++ b/blueprints/bitwarden/config.yml
@ -0,0 +1,3 @@
 blueprint:
  bitwarden:
    pkgs: sqlite3 nginx git sudo vim-tiny bash node npm python27-2.7.17_1 mariadb104-client
--- a/blueprints/bitwarden/includes/bitwarden.rc
+++ b/blueprints/bitwarden/includes/bitwarden.rc
--- a/blueprints/bitwarden/includes/bitwarden.rc.conf
+++ b/blueprints/bitwarden/includes/bitwarden.rc.conf
--- a/blueprints/bitwarden/install.sh
+++ b/blueprints/bitwarden/install.sh
@ -0,0 +1,119 @@
 #!/usr/local/bin/bash
 # This file contains the install script for bitwarden
 # Initialise defaults
 JAIL_IP="jail_${1}_ip4_addr"
 JAIL_IP="${!JAIL_IP%/*}"
 HOST_NAME="jail_${1}_host_name"
 DB_DATABASE="jail_${1}_db_database"
 DB_DATABASE="${!DB_DATABASE:-$1}"
 DB_USER="jail_${1}_db_user"
 DB_USER="${!DB_USER:-$DB_DATABASE}"
 # shellcheck disable=SC2154
 INSTALL_TYPE="jail_${1}_db_type"
 INSTALL_TYPE="${!INSTALL_TYPE:-mariadb}"
 DB_JAIL="jail_${1}_db_jail"
 # shellcheck disable=SC2154
 DB_HOST="jail_${!DB_JAIL}_ip4_addr"
 DB_HOST="${!DB_HOST%/*}:3306"
 # shellcheck disable=SC2154
 DB_PASSWORD="jail_${1}_db_password"
 DB_STRING="mysql://${DB_USER}:${!DB_PASSWORD}@${DB_HOST}/${DB_DATABASE}"
 # shellcheck disable=SC2154
 ADMIN_TOKEN="jail_${1}_admin_token"
 if [ -z "${!DB_PASSWORD}" ]; then
 	echo "db_password can't be empty"
 	exit 1
 fi
 if [ -z "${!DB_JAIL}" ]; then
 	echo "db_jail can't be empty"
 	exit 1
 fi
 if [ -z "${!JAIL_IP}" ]; then
 	echo "ip4_addr can't be empty"
 	exit 1
 fi
 if [ -z "${!ADMIN_TOKEN}" ]; then
 ADMIN_TOKEN=$(openssl rand -base64 16)
 fi
 # install latest rust version, pkg version is outdated and can't build bitwarden_rs
 iocage exec "${1}" "curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y"
 # Install Bitwarden_rs
 iocage exec "${1}" mkdir -p /usr/local/share/bitwarden/src
 iocage exec "${1}" git clone https://github.com/dani-garcia/bitwarden_rs/ /usr/local/share/bitwarden/src
 TAG=$(iocage exec "${1}" "git -C /usr/local/share/bitwarden/src tag --sort=v:refname | tail -n1")
 iocage exec "${1}" "git -C /usr/local/share/bitwarden/src checkout ${TAG}"
 #TODO replace with: cargo build --features mysql --release
 if [ "${INSTALL_TYPE}" == "mariadb" ]; then
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo build --features mysql --release"
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo install diesel_cli --no-default-features --features mysql"
 else
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo build --features sqlite --release"
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo install diesel_cli --no-default-features --features sqlite-bundled"
 fi
 iocage exec "${1}" cp -r /usr/local/share/bitwarden/src/target/release /usr/local/share/bitwarden/bin
 # Download and install webvault
 WEB_RELEASE_URL=$(curl -Ls -o /dev/null -w "%{url_effective}" https://github.com/dani-garcia/bw_web_builds/releases/latest)
 WEB_TAG="${WEB_RELEASE_URL##*/}"
 iocage exec "${1}" "fetch http://github.com/dani-garcia/bw_web_builds/releases/download/$WEB_TAG/bw_web_$WEB_TAG.tar.gz -o /usr/local/share/bitwarden"
 iocage exec "${1}" "tar -xzvf /usr/local/share/bitwarden/bw_web_$WEB_TAG.tar.gz -C /usr/local/share/bitwarden/"
 iocage exec "${1}" rm /usr/local/share/bitwarden/bw_web_"$WEB_TAG".tar.gz
 # shellcheck disable=SC2154
 if [ -f "/mnt/${global_dataset_config}/${1}/ssl/bitwarden-ssl.crt" ]; then
    echo "certificate exist... Skipping cert generation"
 else
 	"No ssl certificate present, generating self signed certificate"
 	if [ ! -d "/mnt/${global_dataset_config}/${1}/ssl" ]; then
 		echo "cert folder not existing... creating..."
 		iocage exec "${1}" mkdir /config/ssl
 	fi
 	openssl req -new -newkey rsa:2048 -days 365 -nodes -x509 -subj "/C=US/ST=Denial/L=Springfield/O=Dis/CN=localhost" -keyout /mnt/"${global_dataset_config}"/"${1}"/ssl/bitwarden-ssl.key -out /mnt/"${global_dataset_config}"/"${1}"/ssl/bitwarden-ssl.crt
 fi
 if [ -f "/mnt/${global_dataset_config}/${1}/bitwarden.log" ]; then
 	echo "Reinstall of Bitwarden detected... using existing config and database"
 elif [ "${INSTALL_TYPE}" == "mariadb" ]; then
 	echo "No config detected, doing clean install, utilizing the Mariadb database ${DB_HOST}"
 	iocage exec "${!DB_JAIL}" mysql -u root -e "CREATE DATABASE ${DB_DATABASE};"
 	iocage exec "${!DB_JAIL}" mysql -u root -e "GRANT ALL ON ${DB_DATABASE}.* TO ${DB_USER}@${JAIL_IP} IDENTIFIED BY '${!DB_PASSWORD}';"
 	iocage exec "${!DB_JAIL}" mysqladmin reload
 else
 	echo "No config detected, doing clean install."
 fi
 iocage exec "${1}" "pw user add bitwarden -c bitwarden -u 725 -d /nonexistent -s /usr/bin/nologin"
 iocage exec "${1}" chown -R bitwarden:bitwarden /usr/local/share/bitwarden /config
 iocage exec "${1}" mkdir /usr/local/etc/rc.d /usr/local/etc/rc.conf.d
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/bitwarden/includes/bitwarden.rc /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.d/bitwarden
 cp "${SCRIPT_DIR}"/blueprints/bitwarden/includes/bitwarden.rc.conf /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.conf.d/bitwarden
 echo 'export DATABASE_URL="'"${DB_STRING}"'"' >> /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.conf.d/bitwarden
 echo 'export ADMIN_TOKEN="'"${!ADMIN_TOKEN}"'"' >> /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.conf.d/bitwarden
 if [ "${!ADMIN_TOKEN}" == "NONE" ]; then
 	echo "Admin_token set to NONE, disabling admin portal"
 else
 	echo "Admin_token set and admin portal enabled"
 	iocage exec "${1}" echo "${DB_NAME} Admin Token is ${!ADMIN_TOKEN}" > /root/"${1}"_admin_token.txt
 fi
 iocage exec "${1}" chmod u+x /usr/local/etc/rc.d/bitwarden
 iocage exec "${1}" sysrc "bitwarden_enable=YES"
 iocage exec "${1}" service bitwarden restart
 echo "Jail ${1} finished Bitwarden install."
 echo "Admin Token is ${!ADMIN_TOKEN}"
--- a/blueprints/bitwarden/readme.md
+++ b/blueprints/bitwarden/readme.md
--- a/blueprints/bitwarden/update.sh
+++ b/blueprints/bitwarden/update.sh
@ -0,0 +1,100 @@
 #!/usr/local/bin/bash
 # This file contains the update script for bitwarden
 # Due to it being build from scratch or downloaded directly to execution dir, 
 # Update for Bitwarden is pretty similair to installation
 # Initialise defaults
 JAIL_IP="jail_${1}_ip4_addr"
 JAIL_IP="${!JAIL_IP%/*}"
 HOST_NAME="jail_${1}_host_name"
 DB_DATABASE="jail_${1}_db_datavase"
 DB_USER="jail_${1}_db_user"
 # shellcheck disable=SC2154
 INSTALL_TYPE="jail_${1}_type"
 DB_JAIL="jail_${1}_db_jail"
 DB_JAIL="${!DB_JAIL}"
 # shellcheck disable=SC2154
 DB_HOST="${DB_JAIL}_ip4_addr"
 DB_HOST="${!DB_HOST%/*}:3306"
 # shellcheck disable=SC2154
 DB_PASSWORD="jail_${1}_db_password"
 DB_STRING="mysql://${!DB_USER}:${!DB_PASSWORD}@${DB_HOST}/${!DB_DATABASE}"
 # shellcheck disable=SC2154
 ADMIN_TOKEN="jail_${1}_admin_token"
 if [ -z "${!DB_USER}" ]; then
 	echo "db_user can't be empty"
 	exit 1
 fi
 if [ -z "${!DB_DATABASE}" ]; then
 	echo "db_database can't be empty"
 	exit 1
 fi
 if [ -z "${!DB_PASSWORD}" ]; then
 	echo "db_password can't be empty"
 	exit 1
 fi
 if [ -z "${!DB_JAIL}" ]; then
 	echo "db_jail can't be empty"
 	exit 1
 	fi
 if [ -z "${!JAIL_IP}" ]; then
 	echo "ip4_addr can't be empty"
 	exit 1
 fi
 if [ -z "${!ADMIN_TOKEN}" ]; then
 ADMIN_TOKEN=$(openssl rand -base64 16)
 fi
 iocage exec "${1}" service bitwarden stop
 # install latest rust version, pkg version is outdated and can't build bitwarden_rs
 iocage exec "${1}" "curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y"
 # Install Bitwarden_rs
 iocage exec "${1}" "git -C /usr/local/share/bitwarden/src fetch"
 TAG=$(iocage exec "${1}" "git -C /usr/local/share/bitwarden/src tag --sort=v:refname | tail -n1")
 iocage exec "${1}" "git -C /usr/local/share/bitwarden/src checkout ${TAG}"
 #TODO replace with: cargo build --features mysql --release
 if [ "${INSTALL_TYPE}" == "mariadb" ]; then
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo build --features mysql --release"
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo install diesel_cli --no-default-features --features mysql"
 else
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo build --features sqlite --release"
 	iocage exec "${1}" "cd /usr/local/share/bitwarden/src && $HOME/.cargo/bin/cargo install diesel_cli --no-default-features --features sqlite-bundled"
 fi
 iocage exec "${1}" cp -r /usr/local/share/bitwarden/src/target/release /usr/local/share/bitwarden/bin
 # Download and install webvault
 WEB_RELEASE_URL=$(curl -Ls -o /dev/null -w "%{url_effective}" https://github.com/dani-garcia/bw_web_builds/releases/latest)
 WEB_TAG="${WEB_RELEASE_URL##*/}"
 iocage exec "${1}" "fetch http://github.com/dani-garcia/bw_web_builds/releases/download/$WEB_TAG/bw_web_$WEB_TAG.tar.gz -o /usr/local/share/bitwarden"
 iocage exec "${1}" "tar -xzvf /usr/local/share/bitwarden/bw_web_$WEB_TAG.tar.gz -C /usr/local/share/bitwarden/"
 iocage exec "${1}" rm /usr/local/share/bitwarden/bw_web_"$WEB_TAG".tar.gz
 iocage exec "${1}" chown -R bitwarden:bitwarden /usr/local/share/bitwarden /config
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/"${1}"/includes/bitwarden.rc /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.d/bitwarden
 cp "${SCRIPT_DIR}"/blueprints/"${1}"/includes/bitwarden.rc.conf /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.conf.d/bitwarden
 echo 'export DATABASE_URL="'"${DB_STRING}"'"' >> /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.conf.d/bitwarden
 echo 'export ADMIN_TOKEN="'"${!ADMIN_TOKEN}"'"' >> /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.conf.d/bitwarden
 if [ "${!ADMIN_TOKEN}" == "NONE" ]; then
 	echo "Admin_token set to NONE, disabling admin portal"
 else
 	echo "Admin_token set and admin portal enabled"
 	iocage exec "${1}" echo "${DB_NAME} Admin Token is ${!ADMIN_TOKEN}" > /root/"${1}"_admin_token.txt
 fi
 iocage exec "${1}" chmod u+x /usr/local/etc/rc.d/bitwarden
 iocage exec "${1}" service bitwarden restart
 echo "Jail ${1} finished Bitwarden update."
 echo "Admin Token is ${!ADMIN_TOKEN}"
--- a/blueprints/influxdb/config.yml
+++ b/blueprints/influxdb/config.yml
@ -0,0 +1,3 @@
 blueprint:
  influxdb:
    pkgs: influxdb
--- a/blueprints/influxdb/includes/influxd.conf
+++ b/blueprints/influxdb/includes/influxd.conf
--- a/blueprints/influxdb/install.sh
+++ b/blueprints/influxdb/install.sh
@ -0,0 +1,32 @@
 #!/usr/local/bin/bash
 # This script installs the current release of InfluxDB
 #####
 # 
 # Init and Mounts
 #
 #####
 # Initialise variables
 # shellcheck disable=SC2154
 JAIL_IP="jail_${1}_ip4_addr"
 JAIL_IP="${!JAIL_IP%/*}"
 INCLUDES_PATH="${SCRIPT_DIR}/blueprints/influxdb/includes"
 # Mount and configure proper configuration location
 # shellcheck disable=SC2154
 cp -rf "${INCLUDES_PATH}/influxd.conf" "/mnt/${global_dataset_config}/${1}/influxd.conf"
 iocage exec "${1}" mkdir -p /config/db/data /config/db/meta /config/db/wal
 iocage exec "${1}" chown -R influxd:influxd /config/db
 iocage exec "${1}" sysrc influxd_conf="/config/influxd.conf"
 iocage exec "${1}" sysrc influxd_enable="YES"
 # Start influxdb and wait for it to startup
 iocage exec "${1}" service influxd start
 sleep 15
 # Done!
 echo "Installation complete!"
 echo "Your may connect InfluxDB plugins to the InfluxDB jail at http://${JAIL_IP}:8086."
 echo "You may connect InfluxDB plugins to the InfluxDB jail at http://${JAIL_IP}:8086."
 echo ""
--- a/blueprints/influxdb/readme.md
+++ b/blueprints/influxdb/readme.md
--- a/blueprints/influxdb/update.sh
+++ b/blueprints/influxdb/update.sh
@ -1,6 +1,6 @@
 #!/usr/local/bin/bash
 # This file contains the update script for influxdb
-iocage exec influxdb service influxd stop
+iocage exec "$1" service influxd stop
 # InfluxDB is updated during PKG update, this file is mostly just a placeholder
-iocage exec influxdb service influxd restart
+iocage exec "$1" service influxd restart
--- a/blueprints/jackett/config.yml
+++ b/blueprints/jackett/config.yml
@ -0,0 +1,3 @@
 blueprint:
  jackett:
    pkgs: mono
--- a/blueprints/jackett/includes/jackett.rc
+++ b/blueprints/jackett/includes/jackett.rc
--- a/blueprints/jackett/install.sh
+++ b/blueprints/jackett/install.sh
@ -0,0 +1,14 @@
 #!/usr/local/bin/bash
 # This file contains the install script for jackett
 iocage exec "$1" "fetch https://github.com/Jackett/Jackett/releases/download/v0.11.502/Jackett.Binaries.Mono.tar.gz -o /usr/local/share"
 iocage exec "$1" "tar -xzvf /usr/local/share/Jackett.Binaries.Mono.tar.gz -C /usr/local/share"
 iocage exec "$1" rm /usr/local/share/Jackett.Binaries.Mono.tar.gz
 iocage exec "$1" "pw user add jackett -c jackett -u 818 -d /nonexistent -s /usr/bin/nologin"
 iocage exec "$1" chown -R jackett:jackett /usr/local/share/Jackett /config
 iocage exec "$1" mkdir /usr/local/etc/rc.d
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/jackett/includes/jackett.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/jackett
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/jackett
 iocage exec "$1" sysrc "jackett_enable=YES"
 iocage exec "$1" service jackett restart
--- a/blueprints/jackett/readme.md
+++ b/blueprints/jackett/readme.md
--- a/blueprints/jackett/update.sh
+++ b/blueprints/jackett/update.sh
@ -0,0 +1,10 @@
 #!/usr/local/bin/bash
 # This file contains the update script for jackett
 iocage exec "$1" service jackett stop
 #TODO insert code to update jacket itself here
 iocage exec "$1" chown -R jackett:jackett /usr/local/share/Jackett /config
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/jackett/includes/jackett.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/jackett
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/jackett
 iocage exec "$1" service jackett restart
--- a/blueprints/kms/config.yml
+++ b/blueprints/kms/config.yml
@ -0,0 +1,3 @@
 blueprint:
  kms:
    pkgs: bash py37-tkinter py37-pip py37-sqlite3 git
--- a/blueprints/kms/includes/Activate_Office_2019_Pro.bat
+++ b/blueprints/kms/includes/Activate_Office_2019_Pro.bat
--- a/blueprints/kms/includes/Activate_Windows_10_Pro.bat
+++ b/blueprints/kms/includes/Activate_Windows_10_Pro.bat
--- a/blueprints/kms/includes/Activate_Windows_Server_2019_Standard.bat
+++ b/blueprints/kms/includes/Activate_Windows_Server_2019_Standard.bat
--- a/blueprints/kms/includes/Office-2019-Pro-VLK-Config.xml
+++ b/blueprints/kms/includes/Office-2019-Pro-VLK-Config.xml
--- a/blueprints/kms/includes/Readme.md
+++ b/blueprints/kms/includes/Readme.md
--- a/blueprints/kms/includes/Setup_Office_2019_Pro.txt
+++ b/blueprints/kms/includes/Setup_Office_2019_Pro.txt
--- a/blueprints/kms/includes/py_kms.rc
+++ b/blueprints/kms/includes/py_kms.rc
--- a/blueprints/kms/install.sh
+++ b/blueprints/kms/install.sh
@ -0,0 +1,12 @@
 #!/usr/local/bin/bash
 # This file contains the install script for KMS
 iocage exec "$1" svn checkout https://github.com/SystemRage/py-kms/trunk/py-kms /usr/local/share/py-kms
 iocage exec "$1" "pw user add kms -c kms -u 666 -d /nonexistent -s /usr/bin/nologin"
 iocage exec "$1" chown -R kms:kms /usr/local/share/py-kms /config
 iocage exec "$1" mkdir /usr/local/etc/rc.d
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/kms/includes/py_kms.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/py_kms
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/py_kms
 iocage exec "$1" sysrc "py_kms_enable=YES"
 iocage exec "$1" service py_kms start
--- a/blueprints/kms/readme.md
+++ b/blueprints/kms/readme.md
--- a/blueprints/kms/update.sh
+++ b/blueprints/kms/update.sh
@ -0,0 +1,10 @@
 #!/usr/local/bin/bash
 # This file contains the update script for KMS
 iocage exec "$1" service py_kms stop
 iocage exec "$1" svn checkout https://github.com/SystemRage/py-kms/trunk/py-kms /usr/local/share/py-kms
 iocage exec "$1" chown -R kms:kms /usr/local/share/py-kms /config
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/kms/includes/py_kms.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/py_kms
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/py_kms
 iocage exec "$1" service py_kms start
--- a/blueprints/lidarr/config.yml
+++ b/blueprints/lidarr/config.yml
@ -0,0 +1,3 @@
 blueprint:
  lidarr: lidarr
    pkgs: mono mediainfo sqlite3
--- a/blueprints/lidarr/includes/lidarr.rc
+++ b/blueprints/lidarr/includes/lidarr.rc
--- a/blueprints/lidarr/install.sh
+++ b/blueprints/lidarr/install.sh
@ -0,0 +1,25 @@
 #!/usr/local/bin/bash
 # This file contains the install script for lidarr
 # Check if dataset for completed download and it parent dataset exist, create if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_downloads}"
 createmount "$1" "${global_dataset_downloads}"/complete /mnt/fetched
 # Check if dataset for media library and the dataset for movies exist, create if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_media}"
 createmount "$1" "${global_dataset_media}"/music /mnt/music
 iocage exec "$1" "fetch https://github.com/lidarr/Lidarr/releases/download/v0.2.0.371/Lidarr.develop.0.2.0.371.linux.tar.gz -o /usr/local/share"
 iocage exec "$1" "tar -xzvf /usr/local/share/Lidarr.develop.0.2.0.371.linux.tar.gz -C /usr/local/share"
 iocage exec "$1" "rm /usr/local/share/Lidarr.develop.0.2.0.371.linux.tar.gz"
 iocage exec "$1" "pw user add lidarr -c lidarr -u 353 -d /nonexistent -s /usr/bin/nologin"
 iocage exec "$1" chown -R lidarr:lidarr /usr/local/share/Lidarr /config
 iocage exec "$1" mkdir /usr/local/etc/rc.d
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/lidarr/includes/lidarr.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/lidarr
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/lidarr
 iocage exec "$1" sysrc "lidarr_enable=YES"
 iocage exec "$1" service lidarr start
--- a/blueprints/lidarr/readme.md
+++ b/blueprints/lidarr/readme.md
--- a/blueprints/lidarr/update.sh
+++ b/blueprints/lidarr/update.sh
@ -0,0 +1,10 @@
 #!/usr/local/bin/bash
 # This file contains the update script for lidarr
 iocage exec "$1" service lidarr stop
 #TODO insert code to update lidarr itself here
 iocage exec "$1" chown -R lidarr:lidarr /usr/local/share/lidarr /config
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/lidarr/includes/lidarr.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/lidarr
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/lidarr
 iocage exec "$1" service lidarr restart
--- a/blueprints/mariadb/config.yml
+++ b/blueprints/mariadb/config.yml
@ -0,0 +1,3 @@
 blueprint:
  mariadb:
    pkgs: mariadb104-server git  php74-session php74-xml php74-ctype php74-openssl php74-filter php74-gd php74-json php74-mysqli php74-mbstring php74-zlib php74-zip php74-bz2 phpMyAdmin5-php74 php74-pdo_mysql php74-mysqli phpMyAdmin5-php74-5.0.1
--- a/blueprints/mariadb/includes/Caddyfile
+++ b/blueprints/mariadb/includes/Caddyfile
--- a/blueprints/mariadb/includes/caddy.rc
+++ b/blueprints/mariadb/includes/caddy.rc
--- a/blueprints/mariadb/includes/my-system.cnf
+++ b/blueprints/mariadb/includes/my-system.cnf
--- a/blueprints/mariadb/includes/my.cnf
+++ b/blueprints/mariadb/includes/my.cnf
--- a/blueprints/mariadb/install.sh
+++ b/blueprints/mariadb/install.sh
@ -0,0 +1,117 @@
 #!/usr/local/bin/bash
 # This script installs the current release of Mariadb and PhpMyAdmin into a created jail
 #####
 # 
 # Init and Mounts
 #
 #####
 # Initialise defaults
 # shellcheck disable=SC2154
 JAIL_IP="jail_${1}_ip4_addr"
 JAIL_IP="${!JAIL_IP%/*}"
 INCLUDES_PATH="${SCRIPT_DIR}/blueprints/mariadb/includes"
 # shellcheck disable=SC2154
 CERT_EMAIL="jail_${1}_cert_email"
 CERT_EMAIL="${!CERT_EMAIL:-placeholder@email.fake}"
 # shellcheck disable=SC2154
 DB_ROOT_PASSWORD="jail_${1}_db_root_password"
 HOST_NAME="jail_${1}_host_name"
 DL_FLAGS=""
 DNS_ENV=""
 # Check that necessary variables were set by nextcloud-config
 if [ -z "${JAIL_IP}" ]; then
  echo 'Configuration error: The mariadb jail does NOT accept DHCP'
  echo 'Please reinstall using a fixed IP adress'
  exit 1
 fi
 # Make sure DB_PATH is empty -- if not, MariaDB/PostgreSQL will choke
 # shellcheck disable=SC2154
 if [ "$(ls -A "/mnt/${global_dataset_config}/${1}/db")" ]; then
 	echo "Reinstall of mariadb detected... Continuing"
 	REINSTALL="true"
 fi
 # Mount database dataset and set zfs preferences
 createmount "${1}" "${global_dataset_config}"/"${1}"/db /var/db/mysql
 zfs set recordsize=16K "${global_dataset_config}"/"${1}"/db
 zfs set primarycache=metadata "${global_dataset_config}"/"${1}"/db
 iocage exec "${1}" chown -R 88:88 /var/db/mysql
 # Install includes fstab
 iocage exec "${1}" mkdir -p /mnt/includes
 iocage fstab -a "${1}" "${INCLUDES_PATH}" /mnt/includes nullfs rw 0 0
 iocage exec "${1}" mkdir -p /usr/local/www/phpmyadmin
 iocage exec "${1}" chown -R www:www /usr/local/www/phpmyadmin
 #####
 # 
 # Install mariadb, Caddy and PhpMyAdmin
 #
 #####
 fetch -o /tmp https://getcaddy.com
 if ! iocage exec "${1}" bash -s personal "${DL_FLAGS}" < /tmp/getcaddy.com
 then
 	echo "Failed to download/install Caddy"
 	exit 1
 fi
 iocage exec "${1}" sysrc mysql_enable="YES"
 # Copy and edit pre-written config files
 echo "Copying Caddyfile for no SSL"
 iocage exec "${1}" cp -f /mnt/includes/caddy.rc /usr/local/etc/rc.d/caddy
 iocage exec "${1}" cp -f /mnt/includes/Caddyfile /usr/local/www/Caddyfile
 # shellcheck disable=SC2154
 iocage exec "${1}" sed -i '' "s/yourhostnamehere/${!HOST_NAME}/" /usr/local/www/Caddyfile
 iocage exec "${1}" sed -i '' "s/JAIL-IP/${JAIL_IP}/" /usr/local/www/Caddyfile
 iocage exec "${1}" sysrc caddy_enable="YES"
 iocage exec "${1}" sysrc php_fpm_enable="YES"
 iocage exec "${1}" sysrc caddy_cert_email="${CERT_EMAIL}"
 iocage exec "${1}" sysrc caddy_env="${DNS_ENV}"
 iocage restart "${1}"
 sleep 10
 if [ "${REINSTALL}" == "true" ]; then
 	echo "Reinstall detected, skipping generaion of new config and database"
 else
 	# Secure database, set root password, create Nextcloud DB, user, and password
 	iocage exec "${1}" cp -f /mnt/includes/my-system.cnf /var/db/mysql/my.cnf
 	iocage exec "${1}" mysql -u root -e "DELETE FROM mysql.user WHERE User='';"
 	iocage exec "${1}" mysql -u root -e "DELETE FROM mysql.user WHERE User='root' AND Host NOT IN ('localhost', '127.0.0.1', '::1');"
 	iocage exec "${1}" mysql -u root -e "DROP DATABASE IF EXISTS test;"
 	iocage exec "${1}" mysql -u root -e "DELETE FROM mysql.db WHERE Db='test' OR Db='test\\_%';"
 	iocage exec "${1}" mysqladmin --user=root password "${!DB_ROOT_PASSWORD}"
 	iocage exec "${1}" mysqladmin reload
 fi
 iocage exec "${1}" cp -f /mnt/includes/my.cnf /root/.my.cnf
 iocage exec "${1}" sed -i '' "s|mypassword|${!DB_ROOT_PASSWORD}|" /root/.my.cnf
 # Save passwords for later reference
 iocage exec "${1}" echo "MariaDB root password is ${!DB_ROOT_PASSWORD}" > /root/"${1}"_db_password.txt
 # Don't need /mnt/includes any more, so unmount it
 iocage fstab -r "${1}" "${INCLUDES_PATH}" /mnt/includes nullfs rw 0 0
 # Done!
 echo "Installation complete!"
 echo "Using your web browser, go to http://${!HOST_NAME} to log in"
 if [ "${REINSTALL}" == "true" ]; then
 	echo "You did a reinstall, please use your old database and account credentials"
 else
 	echo "Database Information"
 	echo "--------------------"
 	echo "The MariaDB root password is ${!DB_ROOT_PASSWORD}"
 	fi
 echo ""
 echo "All passwords are saved in /root/${1}_db_password.txt"
--- a/blueprints/mariadb/readme.md
+++ b/blueprints/mariadb/readme.md
--- a/blueprints/mariadb/update.sh
+++ b/blueprints/mariadb/update.sh
@ -0,0 +1,37 @@
 #!/usr/local/bin/bash
 # This file contains the update script for mariadb
 # shellcheck disable=SC2154
 JAIL_IP="jail_${1}_ip4_addr"
 JAIL_IP="${!JAIL_IP%/*}"
 HOST_NAME="jail_${1}_host_name"
 INCLUDES_PATH="${SCRIPT_DIR}/blueprints/mariadb/includes"
 # Install includes fstab
 iocage exec "${1}" mkdir -p /mnt/includes
 iocage fstab -a "${1}" "${INCLUDES_PATH}" /mnt/includes nullfs rw 0 0
 iocage exec "${1}" service caddy stop
 iocage exec "${1}" service php-fpm stop
 fetch -o /tmp https://getcaddy.com
 if ! iocage exec "${1}" bash -s personal "${DL_FLAGS}" < /tmp/getcaddy.com
 then
 	echo "Failed to download/install Caddy"
 	exit 1
 fi
 # Copy and edit pre-written config files
 echo "Copying Caddyfile for no SSL"
 iocage exec "${1}" cp -f /mnt/includes/caddy /usr/local/etc/rc.d/
 iocage exec "${1}" cp -f /mnt/includes/Caddyfile /usr/local/www/Caddyfile
 # shellcheck disable=SC2154
 iocage exec "${1}" sed -i '' "s/yourhostnamehere/${HOST_NAME}/" /usr/local/www/Caddyfile
 iocage exec "${1}" sed -i '' "s/JAIL-IP/${JAIL_IP}/" /usr/local/www/Caddyfile
 # Don't need /mnt/includes any more, so unmount it
 iocage fstab -r "${1}" "${INCLUDES_PATH}" /mnt/includes nullfs rw 0 0
 iocage exec "${1}" service caddy start
 iocage exec "${1}" service php-fpm start
--- a/blueprints/nextcloud/LICENSE
+++ b/blueprints/nextcloud/LICENSE
--- a/blueprints/nextcloud/config.yml
+++ b/blueprints/nextcloud/config.yml
@ -0,0 +1,4 @@
 blueprint:
  nextcloud:
    pkgs:   nano sudo redis php73-ctype gnupg php73-dom php73-gd php73-iconv php73-json php73-mbstring php73-posix php73-simplexml php73-xmlreader php73-xmlwriter php73-zip php73-zlib php73-hash php73-xml php73 php73-pecl-redis php73-session php73-wddx php73-xsl php73-filter php73-pecl-APCu php73-curl php73-fileinfo php73-bz2 php73-intl php73-openssl php73-ldap php73-ftp php73-imap php73-exif php73-gmp php73-pecl-memcache php73-pecl-imagick php73-pecl-smbclient perl5 p5-Locale-gettext help2man texinfo m4 autoconf
    ports: true
--- a/blueprints/nextcloud/includes/Caddyfile
+++ b/blueprints/nextcloud/includes/Caddyfile
--- a/blueprints/nextcloud/includes/Caddyfile-nossl
+++ b/blueprints/nextcloud/includes/Caddyfile-nossl
--- a/blueprints/nextcloud/includes/Caddyfile-selfsigned
+++ b/blueprints/nextcloud/includes/Caddyfile-selfsigned
--- a/blueprints/nextcloud/includes/caddy.rc
+++ b/blueprints/nextcloud/includes/caddy.rc
--- a/blueprints/nextcloud/includes/my-system.cnf
+++ b/blueprints/nextcloud/includes/my-system.cnf
--- a/blueprints/nextcloud/includes/my.cnf
+++ b/blueprints/nextcloud/includes/my.cnf
--- a/blueprints/nextcloud/includes/pgpass
+++ b/blueprints/nextcloud/includes/pgpass
--- a/blueprints/nextcloud/includes/php.ini
+++ b/blueprints/nextcloud/includes/php.ini
--- a/blueprints/nextcloud/includes/redis.conf
+++ b/blueprints/nextcloud/includes/redis.conf
--- a/blueprints/nextcloud/includes/remove-staging.sh
+++ b/blueprints/nextcloud/includes/remove-staging.sh
--- a/blueprints/nextcloud/includes/www-crontab
+++ b/blueprints/nextcloud/includes/www-crontab
--- a/blueprints/nextcloud/includes/www.conf
+++ b/blueprints/nextcloud/includes/www.conf
--- a/blueprints/nextcloud/install.sh
+++ b/blueprints/nextcloud/install.sh
@ -0,0 +1,321 @@
 #!/usr/local/bin/bash
 # This script installs the current release of Nextcloud into a create jail
 # Based on the example by danb35: https://github.com/danb35/freenas-iocage-nextcloud
 # Initialise defaults
 # General Defaults
 JAIL_IP="jail_${1}_ip4_addr"
 JAIL_IP="${!JAIL_IP%/*}"
 HOST_NAME="jail_${1}_host_name"
 TIME_ZONE="jail_${1}_time_zone"
 INCLUDES_PATH="${SCRIPT_DIR}/blueprints/nextcloud/includes"
 # SSL/CERT Defaults
 CERT_TYPE="jail_${1}_cert_type"
 CERT_TYPE="${!CERT_TYPE:-SELFSIGNED_CERT}"
 CERT_EMAIL="jail_${1}_cert_email"
 CERT_EMAIL="${!CERT_EMAIL:-placeholder@email.fake}"
 DNS_PLUGIN="jail_${1}_dns_plugin"
 DNS_ENV="jail_${1}_dns_env"
 # Database Defaults
 DB_TYPE="jail_${1}_db_type"
 DB_TYPE="${!DB_TYPE:-mariadb}"
 DB_JAIL="jail_${1}_db_jail"
 # shellcheck disable=SC2154
 DB_HOST="jail_${!DB_JAIL}_ip4_addr"
 DB_HOST="${!DB_HOST%/*}:3306"
 DB_PASSWORD="jail_${1}_db_password"
 DB_DATABASE="jail_${1}_db_database"
 DB_DATABASE="${!DB_DATABASE:-$1}"
 DB_USER="jail_${1}_db_user"
 DB_USER="${!DB_USER:-$DB_DATABASE}"
 ADMIN_PASSWORD="jail_${1}_admin_password"
 #####
 # 
 # Input Sanity Check 
 #
 #####
 # Check that necessary variables were set by nextcloud-config
 if [ -z "${JAIL_IP}" ]; then
  echo 'Configuration error: The Nextcloud jail does NOT accept DHCP'
  echo 'Please reinstall using a fixed IP adress'
  exit 1
 fi
 if [ -z "${ADMIN_PASSWORD}" ]; then
  echo 'Configuration error: The Nextcloud jail requires a admin_password'
  echo 'Please reinstall using a fixed IP adress'
  exit 1
 fi
 if [ -z "${!DB_PASSWORD}" ]; then
  echo 'Configuration error: The Nextcloud Jail needs a database password'
  echo 'Please reinstall with a defifined: db_password'
  exit 1
 fi
 # shellcheck disable=SC2154
 if [ -z "${!TIME_ZONE}" ]; then
  echo 'Configuration error: !TIME_ZONE must be set'
  exit 1
 fi
 if [ -z "${!HOST_NAME}" ]; then
  echo 'Configuration error: !HOST_NAME must be set'
  exit 1
 fi
 if [ "$CERT_TYPE" != "STANDALONE_CERT" ] && [ "$CERT_TYPE" != "DNS_CERT" ] && [ "$CERT_TYPE" != "NO_CERT" ] && [ "$CERT_TYPE" != "SELFSIGNED_CERT" ]; then
  echo 'Configuration error, cert_type options: STANDALONE_CERT, DNS_CERT, NO_CERT or SELFSIGNED_CERT'
  exit 1
 fi
 if [ "$CERT_TYPE" == "DNS_CERT" ]; then
 	if [ -z "${!DNS_PLUGIN}" ] ; then
 		echo "DNS_PLUGIN must be set to a supported DNS provider."
 		echo "See https://caddyserver.com/docs under the heading of \"DNS Providers\" for list."
 		echo "Be sure to omit the prefix of \"tls.dns.\"."
 		exit 1
 	elif [ -z "${!DNS_ENV}" ] ; then
 		echo "DNS_ENV must be set to a your DNS provider\'s authentication credentials."
 		echo "See https://caddyserver.com/docs under the heading of \"DNS Providers\" for more."
 		exit 1
 	else
 		DL_FLAGS="tls.dns.${DNS_PLUGIN}"
 		DNS_SETTING="dns ${DNS_PLUGIN}"
 	fi 
 fi  
 # Make sure DB_PATH is empty -- if not, MariaDB will choke
 # shellcheck disable=SC2154
 if [ "$(ls -A "/mnt/${global_dataset_config}/${1}/config")" ]; then
 	echo "Reinstall of Nextcloud detected... "
 	REINSTALL="true"
 fi
 #####
 	# 
 # Fstab And Mounts
 #
 #####
 # Create and Mount Nextcloud, Config and Files
 createmount "${1}" "${global_dataset_config}"/"${1}"/config /usr/local/www/nextcloud/config
 createmount "${1}" "${global_dataset_config}"/"${1}"/themes /usr/local/www/nextcloud/themes
 createmount "${1}" "${global_dataset_config}"/"${1}"/files /config/files
 # Install includes fstab
 iocage exec "${1}" mkdir -p /mnt/includes
 iocage fstab -a "${1}" "${INCLUDES_PATH}" /mnt/includes nullfs rw 0 0
 iocage exec "${1}" chown -R www:www /config/files
 iocage exec "${1}" chmod -R 770 /config/files
 #####
 # 
 # Basic dependency install
 #
 #####
 if [ "${DB_TYPE}" = "mariadb" ]; then
  iocage exec "${1}" pkg install -qy mariadb103-client php73-pdo_mysql php73-mysqli
 fi
 fetch -o /tmp https://getcaddy.com
 if ! iocage exec "${1}" bash -s personal "${DL_FLAGS}" < /tmp/getcaddy.com
 then
 	echo "Failed to download/install Caddy"
 	exit 1
 fi
 iocage exec "${1}" sysrc redis_enable="YES"
 iocage exec "${1}" sysrc php_fpm_enable="YES"
 iocage exec "${1}" sh -c "make -C /usr/ports/www/php73-opcache clean install BATCH=yes"
 iocage exec "${1}" sh -c "make -C /usr/ports/devel/php73-pcntl clean install BATCH=yes"
 #####
 # 
 # Install Nextcloud
 #
 #####
 FILE="latest-18.tar.bz2"
 if ! iocage exec "${1}" fetch -o /tmp https://download.nextcloud.com/server/releases/"${FILE}" https://download.nextcloud.com/server/releases/"${FILE}".asc https://nextcloud.com/nextcloud.asc
 then
 	echo "Failed to download Nextcloud"
 	exit 1
 fi
 iocage exec "${1}" gpg --import /tmp/nextcloud.asc
 if ! iocage exec "${1}" gpg --verify /tmp/"${FILE}".asc
 then
 	echo "GPG Signature Verification Failed!"
 	echo "The Nextcloud download is corrupt."
 	exit 1
 fi
 iocage exec "${1}" tar xjf /tmp/"${FILE}" -C /usr/local/www/
 iocage exec "${1}" chown -R www:www /usr/local/www/nextcloud/
 # Generate and install self-signed cert, if necessary
 if [ "$CERT_TYPE" == "SELFSIGNED_CERT" ] && [ ! -f "/mnt/${global_dataset_config}/${1}/ssl/privkey.pem" ]; then
 	echo "No ssl certificate present, generating self signed certificate"
 	if [ ! -d "/mnt/${global_dataset_config}/${1}/ssl" ]; then
 		echo "cert folder not existing... creating..."
 		iocage exec "${1}" mkdir /config/ssl
 	fi
 	openssl req -new -newkey rsa:4096 -days 3650 -nodes -x509 -subj "/C=US/ST=Denial/L=Springfield/O=Dis/CN=${!HOST_NAME}" -keyout "${INCLUDES_PATH}"/privkey.pem -out "${INCLUDES_PATH}"/fullchain.pem
 	iocage exec "${1}" cp /mnt/includes/privkey.pem /config/ssl/privkey.pem
 	iocage exec "${1}" cp /mnt/includes/fullchain.pem /config/ssl/fullchain.pem
 fi
 # Copy and edit pre-written config files
 iocage exec "${1}" cp -f /mnt/includes/php.ini /usr/local/etc/php.ini
 iocage exec "${1}" cp -f /mnt/includes/redis.conf /usr/local/etc/redis.conf
 iocage exec "${1}" cp -f /mnt/includes/www.conf /usr/local/etc/php-fpm.d/
 if [ "$CERT_TYPE" == "STANDALONE_CERT" ] && [ "$CERT_TYPE" == "DNS_CERT" ]; then
 	iocage exec "${1}" cp -f /mnt/includes/remove-staging.sh /root/
 fi
 if [ "$CERT_TYPE" == "NO_CERT" ]; then
 	echo "Copying Caddyfile for no SSL"
 	iocage exec "${1}" cp -f /mnt/includes/Caddyfile-nossl /usr/local/www/Caddyfile
 elif [ "$CERT_TYPE" == "SELFSIGNED_CERT" ]; then
 	echo "Copying Caddyfile for self-signed cert"
 	iocage exec "${1}" cp -f /mnt/includes/Caddyfile-selfsigned /usr/local/www/Caddyfile
 else
 	echo "Copying Caddyfile for Let's Encrypt cert"
 	iocage exec "${1}" cp -f /mnt/includes/Caddyfile /usr/local/www/
 fi
 iocage exec "${1}" cp -f /mnt/includes/caddy.rc /usr/local/etc/rc.d/caddy
 iocage exec "${1}" sed -i '' "s/yourhostnamehere/${!HOST_NAME}/" /usr/local/www/Caddyfile
 iocage exec "${1}" sed -i '' "s/DNS-PLACEHOLDER/${DNS_SETTING}/" /usr/local/www/Caddyfile
 iocage exec "${1}" sed -i '' "s/JAIL-IP/${JAIL_IP}/" /usr/local/www/Caddyfile
 iocage exec "${1}" sed -i '' "s|mytimezone|${!TIME_ZONE}|" /usr/local/etc/php.ini
 iocage exec "${1}" sysrc caddy_enable="YES"
 iocage exec "${1}" sysrc caddy_cert_email="${CERT_EMAIL}"
 iocage exec "${1}" sysrc caddy_SNI_default="${!HOST_NAME}"
 iocage exec "${1}" sysrc caddy_env="${!DNS_ENV}"
 iocage restart "${1}"
 if [ "${REINSTALL}" == "true" ]; then
 	echo "Reinstall detected, skipping generaion of new config and database"
 else
 	# Secure database, set root password, create Nextcloud DB, user, and password
 	if  [ "${DB_TYPE}" = "mariadb" ]; then
 		iocage exec "mariadb" mysql -u root -e "CREATE DATABASE ${DB_DATABASE};"
 		iocage exec "mariadb" mysql -u root -e "GRANT ALL ON ${DB_DATABASE}.* TO ${DB_USER}@${JAIL_IP} IDENTIFIED BY '${!DB_PASSWORD}';"
 		iocage exec "mariadb" mysqladmin reload
 	fi
 	# Save passwords for later reference
 	iocage exec "${1}" echo "${DB_NAME} root password is ${DB_ROOT_PASSWORD}" > /root/"${1}"_db_password.txt
 	iocage exec "${1}" echo "Nextcloud database password is ${!DB_PASSWORD}" >> /root/"${1}"_db_password.txt
 	iocage exec "${1}" echo "Nextcloud Administrator password is ${ADMIN_PASSWORD}" >> /root/"${1}"_db_password.txt
 	# CLI installation and configuration of Nextcloud
 	if [ "${DB_TYPE}" = "mariadb" ]; then
 		iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ maintenance:install --database=\"mysql\" --database-name=\"${DB_DATABASE}\" --database-user=\"${DB_USER}\" --database-pass=\"${!DB_PASSWORD}\" --database-host=\"${DB_HOST}\" --admin-user=\"admin\" --admin-pass=\"${!ADMIN_PASSWORD}\" --data-dir=\"/config/files\""
 		iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set mysql.utf8mb4 --type boolean --value=\"true\""
 	fi
 	iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ db:add-missing-indices"
 	iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ db:convert-filecache-bigint --no-interaction"
 	iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set logtimezone --value=\"${!TIME_ZONE}\""
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set log_type --value="file"'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set logfile --value="/var/log/nextcloud.log"'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set loglevel --value="2"'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set logrotate_size --value="104847600"'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set memcache.local --value="\OC\Memcache\APCu"'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set redis host --value="/tmp/redis.sock"'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set redis port --value=0 --type=integer'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set memcache.locking --value="\OC\Memcache\Redis"'
 	iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set overwritehost --value=\"${!HOST_NAME}\""
 	iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set overwriteprotocol --value=\"https\""
 	if [ "$CERT_TYPE" == "NO_CERT" ]; then
 		iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set overwrite.cli.url --value=\"http://${!HOST_NAME}/\""
 	else
 		iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set overwrite.cli.url --value=\"https://${!HOST_NAME}/\""
 	fi
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ config:system:set htaccess.RewriteBase --value="/"'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ maintenance:update:htaccess'
 	iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set trusted_domains 1 --value=\"${!HOST_NAME}\""
 	iocage exec "${1}" su -m www -c "php /usr/local/www/nextcloud/occ config:system:set trusted_domains 2 --value=\"${JAIL_IP}\""
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ app:enable encryption'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ encryption:enable'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ encryption:disable'
 	iocage exec "${1}" su -m www -c 'php /usr/local/www/nextcloud/occ background:cron'
 fi
 iocage exec "${1}" touch /var/log/nextcloud.log
 iocage exec "${1}" chown www /var/log/nextcloud.log
 iocage exec "${1}" su -m www -c 'php -f /usr/local/www/nextcloud/cron.php'
 iocage exec "${1}" crontab -u www /mnt/includes/www-crontab
 # Don't need /mnt/includes any more, so unmount it
 iocage fstab -r "${1}" "${INCLUDES_PATH}" /mnt/includes nullfs rw 0 0
 # Done!
 echo "Installation complete!"
 if [ "$CERT_TYPE" == "NO_CERT" ]; then
  echo "Using your web browser, go to http://${!HOST_NAME} to log in"
 else
  echo "Using your web browser, go to https://${!HOST_NAME} to log in"
 fi
 if [ "${REINSTALL}" == "true" ]; then
 	echo "You did a reinstall, please use your old database and account credentials"
 else
 	echo "Default user is admin, password is ${ADMIN_PASSWORD}"
 	echo ""
 	echo "Database Information"
 	echo "--------------------"
 	echo "Database user = ${DB_USER}"
 	echo "Database password = ${!DB_PASSWORD}"
 	echo ""
 	echo "All passwords are saved in /root/${1}_db_password.txt"
 fi
 echo ""
 if [ "$CERT_TYPE" == "STANDALONE_CERT" ] && [ "$CERT_TYPE" == "DNS_CERT" ]; then
  echo "You have obtained your Let's Encrypt certificate using the staging server."
  echo "This certificate will not be trusted by your browser and will cause SSL errors"
  echo "when you connect.  Once you've verified that everything else is working"
  echo "correctly, you should issue a trusted certificate.  To do this, run:"
  echo "iocage exec ${1}/root/remove-staging.sh"
  echo ""
 elif [ "$CERT_TYPE" == "SELFSIGNED_CERT" ]; then
  echo "You have chosen to create a self-signed TLS certificate for your Nextcloud"
  echo "installation.  This certificate will not be trusted by your browser and"
  echo "will cause SSL errors when you connect.  If you wish to replace this certificate"
  echo "with one obtained elsewhere, the private key is located at:"
  echo "/config/ssl/privkey.pem"
  echo "The full chain (server + intermediate certificates together) is at:"
  echo "/config/ssl/fullchain.pem"
  echo ""
 fi
--- a/blueprints/nextcloud/readme.md
+++ b/blueprints/nextcloud/readme.md
--- a/blueprints/nextcloud/update.sh
+++ b/blueprints/nextcloud/update.sh
--- a/blueprints/organizr/config.yml
+++ b/blueprints/organizr/config.yml
@ -0,0 +1,3 @@
 blueprint:
  organizr:
    pkgs: nginx php72 php72-filter php72-curl php72-hash php72-json php72-openssl php72-pdo php72-pdo_sqlite php72-session php72-simplexml php72-sqlite3 php72-zip git
--- a/blueprints/organizr/includes/custom/organizr.conf
+++ b/blueprints/organizr/includes/custom/organizr.conf
--- a/blueprints/organizr/includes/custom/phpblock.conf
+++ b/blueprints/organizr/includes/custom/phpblock.conf
--- a/blueprints/organizr/includes/nginx.conf
+++ b/blueprints/organizr/includes/nginx.conf
--- a/blueprints/organizr/install.sh
+++ b/blueprints/organizr/install.sh
@ -0,0 +1,34 @@
 #!/usr/local/bin/bash
 # This file contains the install script for Organizr
 iocage exec "$1" sed -i '' -e 's?listen = 127.0.0.1:9000?listen = /var/run/php-fpm.sock?g' /usr/local/etc/php-fpm.d/www.conf
 iocage exec "$1" sed -i '' -e 's/;listen.owner = www/listen.owner = www/g' /usr/local/etc/php-fpm.d/www.conf
 iocage exec "$1" sed -i '' -e 's/;listen.group = www/listen.group = www/g' /usr/local/etc/php-fpm.d/www.conf
 iocage exec "$1" sed -i '' -e 's/;listen.mode = 0660/listen.mode = 0600/g' /usr/local/etc/php-fpm.d/www.conf
 iocage exec "$1" cp /usr/local/etc/php.ini-production /usr/local/etc/php.ini
 iocage exec "$1" sed -i '' -e 's?;date.timezone =?date.timezone = "Universal"?g' /usr/local/etc/php.ini
 iocage exec "$1" sed -i '' -e 's?;cgi.fix_pathinfo=1?cgi.fix_pathinfo=0?g' /usr/local/etc/php.ini
 # shellcheck disable=SC2154
 mv /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/nginx/nginx.conf /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/nginx/nginx.conf.bak
 cp "${SCRIPT_DIR}"/blueprints/organizr/includes/nginx.conf /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/nginx/nginx.conf
 cp -Rf "${SCRIPT_DIR}"/blueprints/organizr/includes/custom /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/nginx/custom
 # shellcheck disable=SC2154
 if [ ! -d "/mnt/${global_dataset_config}/$1/ssl" ]; then
 	echo "cert folder doesn't exist... creating..."
 	iocage exec "$1" mkdir /config/ssl
 fi
 if [ -f "/mnt/${global_dataset_config}/$1/ssl/Organizr-Cert.crt" ]; then
    echo "certificate exists... Skipping cert generation"
 else
 	echo "No ssl certificate present, generating self signed certificate"
 	openssl req -new -newkey rsa:2048 -days 365 -nodes -x509 -subj "/C=US/ST=Denial/L=Springfield/O=Dis/CN=localhost" -keyout /mnt/"${global_dataset_config}"/"$1"/ssl/Organizr-Cert.key -out /mnt/"${global_dataset_config}"/"$1"/ssl/Organizr-Cert.crt
 fi
 iocage exec "$1" git clone https://github.com/causefx/Organizr.git /usr/local/www/Organizr
 iocage exec "$1" chown -R www:www /usr/local/www /config /usr/local/etc/nginx/nginx.conf /usr/local/etc/nginx/custom
 iocage exec "$1" ln -s /config/config.php /usr/local/www/Organizr/api/config/config.php
 iocage exec "$1" sysrc nginx_enable=YES
 iocage exec "$1" sysrc php_fpm_enable=YES
 iocage exec "$1" service nginx start
 iocage exec "$1" service php-fpm start
--- a/blueprints/organizr/readme.md
+++ b/blueprints/organizr/readme.md
--- a/blueprints/organizr/update.sh
+++ b/blueprints/organizr/update.sh
@ -0,0 +1,12 @@
 #!/usr/local/bin/bash
 # This file contains the update script for Organizr
 iocage exec "$1" service nginx stop
 iocage exec "$1" service php-fpm stop
 # TODO setup cli update for Organizr here.
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/organizr/includes/nginx.conf /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/nginx/nginx.conf
 iocage exec "$1" "cd /usr/local/www/Organizr && git pull"
 iocage exec "$1" chown -R www:www /usr/local/www /config /usr/local/etc/nginx/nginx.conf /usr/local/etc/nginx/custom
 iocage exec "$1" service nginx start
 iocage exec "$1" service php-fpm start
--- a/blueprints/plex/config.yml
+++ b/blueprints/plex/config.yml
@ -0,0 +1,3 @@
 blueprint:
  plex:
    pkgs: plexmediaserver
--- a/blueprints/plex/includes/FreeBSD.conf
+++ b/blueprints/plex/includes/FreeBSD.conf
--- a/blueprints/plex/install.sh
+++ b/blueprints/plex/install.sh
@ -0,0 +1,51 @@
 #!/usr/local/bin/bash
 # This file contains the install script for plex
 iocage exec plex mkdir -p /usr/local/etc/pkg/repos
 # Change to to more frequent FreeBSD repo to stay up-to-date with plex more.
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/plex/includes/FreeBSD.conf /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/pkg/repos/FreeBSD.conf
 # Check if datasets for media librarys exist, create them if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_media}" /mnt/media
 createmount "$1" "${global_dataset_media}"/movies /mnt/media/movies
 createmount "$1" "${global_dataset_media}"/music /mnt/media/music
 createmount "$1" "${global_dataset_media}"/shows /mnt/media/shows
 # Create plex ramdisk if specified
 # shellcheck disable=SC2154
 if [ -z "${plex_ramdisk}" ]; then
 	echo "no ramdisk specified for plex, continuing without randisk"
 else
 	iocage fstab -a "$1" tmpfs /tmp_transcode tmpfs rw,size="${plex_ramdisk}",mode=1777 0 0
 fi
 iocage exec "$1" chown -R plex:plex /config
 # Force update pkg to get latest plex version
 iocage exec "$1" pkg update
 iocage exec "$1" pkg upgrade -y
 # Add plex user to video group for future hw-encoding support
 iocage exec "$1" pw groupmod -n video -m plex
 # Run different install procedures depending on Plex vs Plex Beta
 # shellcheck disable=SC2154
 if [ "$plex_beta" == "true" ]; then
 	echo "beta enabled in config.yml... using plex beta for install"
 	iocage exec "$1" sysrc "plexmediaserver_plexpass_enable=YES"
 	iocage exec "$1" sysrc plexmediaserver_plexpass_support_path="/config"
 	iocage exec "$1" chown -R plex:plex /usr/local/share/plexmediaserver-plexpass/
 	iocage exec "$1" service plexmediaserver_plexpass restart
 else
 	echo "beta disabled in config.yml... NOT using plex beta for install"
 	iocage exec "$1" sysrc "plexmediaserver_enable=YES"
 	iocage exec "$1" sysrc plexmediaserver_support_path="/config"
 	iocage exec "$1" chown -R plex:plex /usr/local/share/plexmediaserver/
 	iocage exec "$1" service plexmediaserver restart
 fi
 echo "Finished installing plex"
--- a/blueprints/plex/readme.md
+++ b/blueprints/plex/readme.md
--- a/blueprints/plex/update.sh
+++ b/blueprints/plex/update.sh
@ -5,16 +5,16 @@
 # shellcheck disable=SC2154
 if [ "$plex_plexpass" == "true" ]; then
 	echo "beta enabled in config.yml... using plex beta for update..."
-	iocage exec plex service plexmediaserver_plexpass stop
+	iocage exec "$1" service plexmediaserver_plexpass stop
 	# Plex is updated using PKG already, this is mostly a placeholder
-	iocage exec plex chown -R plex:plex /usr/local/share/plexmediaserver-plexpass/
+	iocage exec "$1" chown -R plex:plex /usr/local/share/plexmediaserver-plexpass/
-	iocage exec plex service plexmediaserver_plexpass restart
+	iocage exec "$1" service plexmediaserver_plexpass restart
 else
 	echo "beta disabled in config.yml... NOT using plex beta for update..."
-	iocage exec plex service plexmediaserver stop
+	iocage exec "$1" service plexmediaserver stop
 	# Plex is updated using PKG already, this is mostly a placeholder
-	iocage exec plex chown -R plex:plex /usr/local/share/plexmediaserver/
+	iocage exec "$1" chown -R plex:plex /usr/local/share/plexmediaserver/
-	iocage exec plex service plexmediaserver restart
+	iocage exec "$1" service plexmediaserver restart
 fi
--- a/blueprints/radarr/config.yml
+++ b/blueprints/radarr/config.yml
@ -0,0 +1,3 @@
 blueprint:
  radarr:
    pkgs: mono mediainfo sqlite3 libgdiplus
--- a/blueprints/radarr/includes/radarr.rc
+++ b/blueprints/radarr/includes/radarr.rc
--- a/blueprints/radarr/install.sh
+++ b/blueprints/radarr/install.sh
@ -0,0 +1,24 @@
 #!/usr/local/bin/bash
 # This file contains the install script for radarr
 # Check if dataset for completed download and it parent dataset exist, create if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_downloads}"
 createmount "$1" "${global_dataset_downloads}"/complete /mnt/fetched
 # Check if dataset for media library and the dataset for movies exist, create if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_media}"
 createmount "$1" "${global_dataset_media}"/movies /mnt/movies
 iocage exec "$1" "fetch https://github.com/Radarr/Radarr/releases/download/v0.2.0.1480/Radarr.develop.0.2.0.1480.linux.tar.gz -o /usr/local/share"
 iocage exec "$1" "tar -xzvf /usr/local/share/Radarr.develop.0.2.0.1480.linux.tar.gz -C /usr/local/share"
 iocage exec "$1" rm /usr/local/share/Radarr.develop.0.2.0.1480.linux.tar.gz
 iocage exec "$1" "pw user add radarr -c radarr -u 352 -d /nonexistent -s /usr/bin/nologin"
 iocage exec "$1" chown -R radarr:radarr /usr/local/share/Radarr /config
 iocage exec "$1" mkdir /usr/local/etc/rc.d
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/radarr/includes/radarr.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/radarr
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/radarr
 iocage exec "$1" sysrc "radarr_enable=YES"
 iocage exec "$1" service radarr restart
--- a/blueprints/radarr/readme.md
+++ b/blueprints/radarr/readme.md
--- a/blueprints/radarr/update.sh
+++ b/blueprints/radarr/update.sh
@ -0,0 +1,10 @@
 #!/usr/local/bin/bash
 # This file contains the update script for radarr
 iocage exec "$1" service radarr stop
 #TODO insert code to update radarr itself here
 iocage exec "$1" chown -R radarr:radarr /usr/local/share/Radarr /config
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/radarr/includes/radarr.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/radarr
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/radarr
 iocage exec "$1" service radarr restart
--- a/blueprints/sonarr/config.yml
+++ b/blueprints/sonarr/config.yml
@ -0,0 +1,3 @@
 blueprint:
  sonarr:
    pkgs: mono mediainfo sqlite3
--- a/blueprints/sonarr/includes/sonarr.rc
+++ b/blueprints/sonarr/includes/sonarr.rc
--- a/blueprints/sonarr/install.sh
+++ b/blueprints/sonarr/install.sh
@ -0,0 +1,24 @@
 #!/usr/local/bin/bash
 # This file contains the install script for sonarr
 # Check if dataset for completed download and it parent dataset exist, create if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_downloads}"
 createmount "$1" "${global_dataset_downloads}"/complete /mnt/fetched
 # Check if dataset for media library and the dataset for tv shows exist, create if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_media}"
 createmount "$1" "${global_dataset_media}"/shows /mnt/shows
 iocage exec "$1" "fetch http://download.sonarr.tv/v2/master/mono/NzbDrone.master.tar.gz -o /usr/local/share"
 iocage exec "$1" "tar -xzvf /usr/local/share/NzbDrone.master.tar.gz -C /usr/local/share"
 iocage exec "$1" rm /usr/local/share/NzbDrone.master.tar.gz
 iocage exec "$1" "pw user add sonarr -c sonarr -u 351 -d /nonexistent -s /usr/bin/nologin"
 iocage exec "$1" chown -R sonarr:sonarr /usr/local/share/NzbDrone /config
 iocage exec "$1" mkdir /usr/local/etc/rc.d
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/sonarr/includes/sonarr.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/sonarr
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/sonarr
 iocage exec "$1" sysrc "sonarr_enable=YES"
 iocage exec "$1" service sonarr restart
--- a/blueprints/sonarr/readme.md
+++ b/blueprints/sonarr/readme.md
--- a/blueprints/sonarr/update.sh
+++ b/blueprints/sonarr/update.sh
@ -0,0 +1,10 @@
 #!/usr/local/bin/bash
 # This file contains the update script for sonarr
 iocage exec "$1" service sonarr stop
 #TODO insert code to update sonarr itself here
 iocage exec "$1" chown -R sonarr:sonarr /usr/local/share/NzbDrone /config
 # shellcheck disable=SC2154
 cp "${SCRIPT_DIR}"/blueprints/sonarr/includes/sonarr.rc /mnt/"${global_dataset_iocage}"/jails/"$1"/root/usr/local/etc/rc.d/sonarr
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/sonarr
 iocage exec "$1" service sonarr restart
--- a/blueprints/tautulli/config.yml
+++ b/blueprints/tautulli/config.yml
@ -0,0 +1,3 @@
 blueprint:
  tautulli:
    pkgs: python2 py27-sqlite3 py27-openssl git
--- a/blueprints/tautulli/install.sh
+++ b/blueprints/tautulli/install.sh
@ -0,0 +1,11 @@
 #!/usr/local/bin/bash
 # This file contains the install script for Tautulli
 iocage exec "$1" git clone https://github.com/Tautulli/Tautulli.git /usr/local/share/Tautulli
 iocage exec "$1" "pw user add tautulli -c tautulli -u 109 -d /nonexistent -s /usr/bin/nologin"
 iocage exec "$1" chown -R tautulli:tautulli /usr/local/share/Tautulli /config
 iocage exec "$1" cp /usr/local/share/Tautulli/init-scripts/init.freenas /usr/local/etc/rc.d/tautulli
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/tautulli
 iocage exec "$1" sysrc "tautulli_enable=YES"
 iocage exec "$1" sysrc "tautulli_flags=--datadir /config"
 iocage exec "$1" service tautulli start
--- a/blueprints/tautulli/readme.md
+++ b/blueprints/tautulli/readme.md
--- a/blueprints/tautulli/update.sh
+++ b/blueprints/tautulli/update.sh
@ -0,0 +1,9 @@
 #!/usr/local/bin/bash
 # This file contains the update script for Tautulli
 iocage exec "$1" service tautulli stop
 # Tautulli is updated through pkg, this is mostly just a placeholder
 iocage exec "$1" chown -R tautulli:tautulli /usr/local/share/Tautulli /config
 iocage exec "$1" cp /usr/local/share/Tautulli/init-scripts/init.freenas /usr/local/etc/rc.d/tautulli
 iocage exec "$1" chmod u+x /usr/local/etc/rc.d/tautulli
 iocage exec "$1" service tautulli restart
--- a/blueprints/transmission/config.yml
+++ b/blueprints/transmission/config.yml
@ -0,0 +1,3 @@
 blueprint:
  transmission:
    pkgs: bash unzip unrar transmission
--- a/blueprints/transmission/install.sh
+++ b/blueprints/transmission/install.sh
@ -0,0 +1,19 @@
 #!/usr/local/bin/bash
 # This file contains the install script for transmission
 # Check if dataset Downloads dataset exist, create if they do not.
 # shellcheck disable=SC2154
 createmount "$1" "${global_dataset_downloads}" /mnt/downloads
 # Check if dataset Complete Downloads dataset exist, create if they do not.
 createmount "$1" "${global_dataset_downloads}"/complete /mnt/downloads/complete
 # Check if dataset InComplete Downloads dataset exist, create if they do not.
 createmount "$1" "${global_dataset_downloads}"/incomplete /mnt/downloads/incomplete
 iocage exec "$1" chown -R transmission:transmission /config
 iocage exec "$1" sysrc "transmission_enable=YES"
 iocage exec "$1" sysrc "transmission_conf_dir=/config"
 iocage exec "$1" sysrc "transmission_download_dir=/mnt/downloads/complete"
 iocage exec "$1" service transmission restart
--- a/blueprints/transmission/readme.md
+++ b/blueprints/transmission/readme.md
--- a/blueprints/transmission/update.sh
+++ b/blueprints/transmission/update.sh
@ -0,0 +1,7 @@
 #!/usr/local/bin/bash
 # This file contains the update script for transmission
 iocage exec "$1" service transmission stop
 # Transmision is updated during PKG update, this file is mostly just a placeholder
 iocage exec "$1" chown -R transmission:transmission /config
 iocage exec "$1" service transmission restart
--- a/blueprints/unifi/config.yml
+++ b/blueprints/unifi/config.yml
@ -0,0 +1,3 @@
 blueprint:
  unifi:
    pkgs: jq unifi5
--- a/blueprints/unifi/includes/mongodb.conf
+++ b/blueprints/unifi/includes/mongodb.conf
--- a/blueprints/unifi/includes/rc/mongod.rc
+++ b/blueprints/unifi/includes/rc/mongod.rc
--- a/blueprints/unifi/includes/rc/unifi.rc
+++ b/blueprints/unifi/includes/rc/unifi.rc
--- a/blueprints/unifi/includes/rc/unifi_poller.rc
+++ b/blueprints/unifi/includes/rc/unifi_poller.rc
--- a/blueprints/unifi/includes/up.conf
+++ b/blueprints/unifi/includes/up.conf
--- a/blueprints/unifi/install.sh
+++ b/blueprints/unifi/install.sh
@ -0,0 +1,117 @@
 #!/usr/local/bin/bash
 # This file contains the install script for unifi-controller & unifi-poller
 # Initialize variables
 # shellcheck disable=SC2154
 JAIL_IP="jail_${1}_ip4_addr"
 JAIL_IP="${!JAIL_IP%/*}"
 # shellcheck disable=SC2154
 DB_JAIL="jail_${1}_db_jail"
 POLLER="jail_${1}_unifi_poller"
 # shellcheck disable=SC2154
 DB_IP="jail_${!DB_JAIL}_ip4_addr"
 DB_IP="${!DB_IP%/*}"
 # shellcheck disable=SC2154
 DB_NAME="jail_${1}_up_db_name"
 DB_NAME="${!DB_NAME:-$1}"
 # shellcheck disable=SC2154
 DB_USER="jail_${1}_up_db_user"
 DB_USER="${!DB_USER:-$DB_NAME}"
 # shellcheck disable=SC2154
 DB_PASS="jail_${1}_up_db_password"
 # shellcheck disable=SC2154
 UP_USER="jail_${1}_up_user"
 UP_USER="${!UP_USER:-$1}"
 # shellcheck disable=SC2154
 UP_PASS="jail_${1}_up_password"
 INCLUDES_PATH="${SCRIPT_DIR}/blueprints/unifi/includes"
 if [ -z "${!DB_PASSWORD}" ]; then
 	echo "up_db_password can't be empty"
 	exit 1
 fi
 if [ -z "${!DB_JAIL}" ]; then
 	echo "db_jail can't be empty"
 	exit 1
 fi
 if [ -z "${!UP_PASS}" ]; then
 	echo "up_password can't be empty"
 	exit 1
 fi
 # Enable persistent Unifi Controller data
 iocage exec "${1}" mkdir -p /config/controller/mongodb
 iocage exec "${1}" cp -Rp /usr/local/share/java/unifi /config/controller
 iocage exec "${1}" chown -R mongodb:mongodb /config/controller/mongodb
 # shellcheck disable=SC2154
 cp "${INCLUDES_PATH}"/mongodb.conf /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc
 # shellcheck disable=SC2154
 cp "${INCLUDES_PATH}"/rc/mongod.rc /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.d/mongod
 # shellcheck disable=SC2154
 cp "${INCLUDES_PATH}"/rc/unifi.rc /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.d/unifi
 iocage exec "${1}" sysrc unifi_enable=YES
 iocage exec "${1}" service unifi start
 # shellcheck disable=SC2154
 if [[ ! "${!POLLER}" ]]; then
  echo "Installation complete!"
  echo "Unifi Controller is accessible at https://${JAIL_IP}:8443."
 else
  # Check if influxdb container exists, create unifi database if it does, error if it is not.
  echo "Checking if the database jail and database exist..."
  if [[ -d /mnt/"${global_dataset_iocage}"/jails/"${!DB_JAIL}" ]]; then
    DB_EXISTING=$(iocage exec "${!DB_JAIL}" curl -G http://localhost:8086/query --data-urlencode 'q=SHOW DATABASES' | jq '.results [] | .series [] | .values []' | grep "$DB_NAME" | sed 's/"//g' | sed 's/^ *//g')
    if [[ "$DB_NAME" == "$DB_EXISTING" ]]; then
      echo "${!DB_JAIL} jail with database ${DB_NAME} already exists. Skipping database creation... "
    else
      echo "${!DB_JAIL} jail exists, but database ${DB_NAME} does not. Creating database ${DB_NAME}."
      if [[ -z "${DB_USER}" ]] || [[ -z "${!DB_PASS}" ]]; then
        echo "Database username and password not provided. Cannot create database without credentials. Exiting..."
        exit 1
      else
        iocage exec "${!DB_JAIL}" "curl -XPOST -u ${DB_USER}:${!DB_PASS} http://localhost:8086/query --data-urlencode 'q=CREATE DATABASE ${DB_NAME}'"
        echo "Database ${DB_NAME} created with username ${DB_USER} with password ${!DB_PASS}."
      fi
    fi
  else
    echo "Influxdb jail does not exist. Unifi-Poller requires Influxdb jail. Please install the Influxdb jail."
    exit 1
  fi
  # Download and install Unifi-Poller
  FILE_NAME=$(curl -s https://api.github.com/repos/unifi-poller/unifi-poller/releases/latest | jq -r ".assets[] | select(.name | contains(\"amd64.txz\")) | .name")
  DOWNLOAD=$(curl -s https://api.github.com/repos/unifi-poller/unifi-poller/releases/latest | jq -r ".assets[] | select(.name | contains(\"amd64.txz\")) | .browser_download_url")
  iocage exec "${1}" fetch -o /config "${DOWNLOAD}"
  # Install downloaded Unifi-Poller package, configure and enable 
  iocage exec "${1}" pkg install -qy /config/"${FILE_NAME}"
  # shellcheck disable=SC2154
  cp "${INCLUDES_PATH}"/up.conf /mnt/"${global_dataset_config}"/"${1}"
  # shellcheck disable=SC2154
  cp "${INCLUDES_PATH}"/rc/unifi_poller.rc /mnt/"${global_dataset_iocage}"/jails/"${1}"/root/usr/local/etc/rc.d/unifi_poller
  iocage exec "${1}" sed -i '' "s|influxdbuser|${DB_USER}|" /config/up.conf
  iocage exec "${1}" sed -i '' "s|influxdbpass|${!DB_PASS}|" /config/up.conf
  iocage exec "${1}" sed -i '' "s|unifidb|${DB_NAME}|" /config/up.conf
  iocage exec "${1}" sed -i '' "s|unifiuser|${UP_USER}|" /config/up.conf
  iocage exec "${1}" sed -i '' "s|unifipassword|${!UP_PASS}|" /config/up.conf
  iocage exec "${1}" sed -i '' "s|dbip|http://${DB_IP}:8086|" /config/up.conf
  iocage exec "${1}" sysrc unifi_poller_enable=YES
  iocage exec "${1}" service unifi_poller start
  echo "Installation complete!"
  echo "Unifi Controller is accessible at https://${JAIL_IP}:8443."
  echo "Please login to the Unifi Controller and add ${UP_USER} as a read-only user."
  echo "In Grafana, add Unifi-Poller as a data source."
 fi
--- a/blueprints/unifi/readme.md
+++ b/blueprints/unifi/readme.md
--- a/blueprints/unifi/update.sh
+++ b/blueprints/unifi/update.sh
@ -2,21 +2,20 @@
 # This file contains the update script for unifi
 # Unifi Controller is updated through pkg, Unifi-Poller is not. This script updates Unifi-Poller
 JAIL_NAME="unifi"
 FILE_NAME=$(curl -s https://api.github.com/repos/unifi-poller/unifi-poller/releases/latest | jq -r ".assets[] | select(.name | contains(\"amd64.txz\")) | .name")
 DOWNLOAD=$(curl -s https://api.github.com/repos/unifi-poller/unifi-poller/releases/latest | jq -r ".assets[] | select(.name | contains(\"amd64.txz\")) | .browser_download_url")
 # Check to see if there is an update.
 # shellcheck disable=SC2154
-if [[ -f /mnt/"${global_dataset_config}"/"${JAIL_NAME}"/"${FILE_NAME}" ]]; then
+if [[ -f /mnt/"${global_dataset_config}"/"${1}"/"${FILE_NAME}" ]]; then
  echo "Unifi-Poller is up to date."
  exit 1
 else
  # Download and install the package
-  iocage exec "${JAIL_NAME}" fetch -o /config "${DOWNLOAD}"
+  iocage exec "${1}" fetch -o /config "${DOWNLOAD}"
-  iocage exec "${JAIL_NAME}" pkg install -qy /config/"${FILE_NAME}"
+  iocage exec "${1}" pkg install -qy /config/"${FILE_NAME}"
-  iocage exec "${JAIL_NAME}" service unifi restart
+  iocage exec "${1}" service unifi restart
-  iocage exec "${JAIL_NAME}" service unifi_poller restart
+  iocage exec "${1}" service unifi_poller restart
 fi
 echo "Update complete!"
--- a/config.yml.example
+++ b/config.yml.example
@ -1,4 +1,6 @@
 global:
  # Config file syntax version (not same as script version)
  version: 1.2
  # Relevant dataset paths, please use the ZFS dataset syntax such as: tank/apps
  dataset:
   # dataset for internal jail config files
@ -15,100 +17,89 @@ global:
   # Please use standard space delimited pkg install syntax.
   pkgs: curl ca_root_nss bash
-
+jail:
-# Example configuration, showing how to customise network config. 
+  plex: 
-# Use the same jailname on both sides of this variable example: example
+    blueprint: plex
-example: example
+    ip4_addr: 192.168.1.99/24
-  #interfaces is optional and will be autmatically replace with vnet0:bridge0 if not present
+    gateway: 192.168.1.1
-  interfaces: vnet0:bridge0
+    beta: false
  ip4_addr: 192.168.1.99/24
  gateway: 192.168.1.1
  # Jail specific pkgs. 
  # Please use standard space delimited pkg install syntax.
  pkgs: mono
-plex: plex
+  lidarr: 
-  ip4_addr: 192.168.1.99/24
+    blueprint: lidarr
-  gateway: 192.168.1.1
+    ip4_addr: 192.168.1.99/24
-  beta: false
+    gateway: 192.168.1.1
-
+    
-lidarr: lidarr
+  sonarr: 
-  ip4_addr: 192.168.1.99/24
+    blueprint: sonarr
-  gateway: 192.168.1.1
+    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
  radarr: 
    blueprint: radarr
    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
  kms: 
    blueprint: kms
    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
-sonarr: sonarr
+  jackett: 
-  ip4_addr: 192.168.1.99/24
+    blueprint: jackett
-  gateway: 192.168.1.1
+    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
  organizr: 
    blueprint: organizr
    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
  tautulli: 
    blueprint: tautulli
    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
-radarr: radarr
+  transmission: 
-  ip4_addr: 192.168.1.99/24
+    blueprint: transmission
-  gateway: 192.168.1.1
+    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
 kms: kms
  ip4_addr: 192.168.1.99/24
  gateway: 192.168.1.1
 jackett: jackett
  ip4_addr: 192.168.1.99/24
  gateway: 192.168.1.1
-organizr: organizr
+  nextcloud: 
-  ip4_addr: 192.168.1.99/24
+    blueprint: nextcloud
-  gateway: 192.168.1.1
+    ip4_addr: 192.168.1.99/24
    gateway: 192.168.1.1
    time_zone: Europe/Amsterdam
    host_name: cloud.example.com
    db_jail: "mariadb"
    admin_password: "PUTYOUROWNADMINPASSWORDHERE"
 	db_password: "PLEASEALSOPUTYOURPASSWORDHEREADIFFERNTONE"
  mariadb: 
    blueprint: mariadb
    ip4_addr: 192.168.1.98/24
    gateway: 192.168.1.1
    db_root_password: ReplaceThisWithYourOwnRootPAssword
    host_name: mariadb.local.example
-tautulli: tautulli
+  bitwarden:
-  ip4_addr: 192.168.1.99/24
+    blueprint: bitwarden
-  gateway: 192.168.1.1
+    ip4_addr: 192.168.1.97/24
    gateway: 192.168.1.1
 	db_jail: "mariadb"
    db_password: "YourDBPasswordHerePLEASE"
    admin_token: "PUTYOURADMINTOKENHEREANDREMOVETHIS"
-transmission: transmission
+  influxdb: 
-  ip4_addr: 192.168.1.99/24
+    blueprint: influxdb
-  gateway: 192.168.1.1
+    ip4_addr: 192.168.1.250/24
    gateway: 192.168.1.1
-
+  unifi:
-nextcloud: nextcloud
+    blueprint: unifi
-  ip4_addr: 192.168.1.99/24
+    ip4_addr: 192.168.1.251/24
-  gateway: 192.168.1.1
+    gateway: 192.168.1.1
-  time_zone: Europe/Amsterdam
+    unifi_poller: true
-  host_name: cloud.example.com
+    db_jail: influxdb
-  database: mariadb
+    up_db_password: unifi-poller
-  standalone_cert: 0
+    up_password: upoller
  selfsigned_cert: 0
  dns_cert: 0
  no_cert: 1
  dl_flags: ""
  dns_settings: ""
  cert_email: "placeholder@holdplace.org"
  database: mariadb
 #  db_database:
 #  db_user:
 #  db_password
 #  db_host
 mariadb: mariadb
  ip4_addr: 192.168.1.98/24
  gateway: 192.168.1.1
  db_root_password: ReplaceThisWithYourOwnRootPAssword
  host_name: mariadb.local.example
 bitwarden: bitwarden
  ip4_addr: 192.168.1.97/24
  gateway: 192.168.1.1
  db_password: "YourDBPasswordHerePLEASE"
  type: mariadb
  admin_token: "PUTYOURADMINTOKENHEREANDREMOVETHIS"
 influxdb: influxdb
  ip4_addr: 192.168.1.250/24
  gateway: 192.168.1.1
  database: influxdb
 unifi: unifi
  ip4_addr: 192.168.1.251/24
  gateway: 192.168.1.1
  unifi_poller: true
  db_jail: influxdb
  up_db_name: unifi
  up_db_user: unifi-poller
  up_db_password: unifi-poller
  up_user: upoller
  up_password: upoller
--- a/global.sh
+++ b/global.sh
@ -43,12 +43,12 @@ fi
 jailcreate() {
 echo "Checking config..."
-jailname="${1}"
+blueprintpkgs="blueprint_${2}_pkgs"
-jailpkgs="${1}_pkgs"
+blueprintports="blueprint_${2}_ports"
-jailinterfaces="${1}_interfaces"
+jailinterfaces="jail_${1}_interfaces"
-jailip4="${1}_ip4_addr"
+jailip4="jail_${1}_ip4_addr"
-jailgateway="${1}_gateway"
+jailgateway="jail_${1}_gateway"
-jaildhcp="${1}_dhcp"
+jaildhcp="jail_${1}_dhcp"
 setdhcp=${!jaildhcp}
 if [ -z "${!jailinterfaces}" ]; then 
@ -62,49 +62,47 @@ if [ -z "${setdhcp}" ] && [ -z "${!jailip4}" ] && [ -z "${!jailgateway}" ]; then
 	setdhcp="on"
 fi
-if [ -z "${!jailname}" ]; then 
+echo "Creating jail for $1"
-	echo "ERROR, jail not defined in config.yml"
+# shellcheck disable=SC2154
-	exit 1
+pkgs="$(sed 's/[^[:space:]]\{1,\}/"&"/g;s/ /,/g' <<<"${global_jails_pkgs} ${!blueprintpkgs}")"
-else
+echo '{"pkgs":['"${pkgs}"']}' > /tmp/pkg.json
-	echo "Creating jail for $1"
+if [ "${setdhcp}" == "on" ]
 then
 	# shellcheck disable=SC2154
-	pkgs="$(sed 's/[^[:space:]]\{1,\}/"&"/g;s/ /,/g' <<<"${global_jails_pkgs} ${!jailpkgs}")"
+	if ! iocage create -n "${1}" -p /tmp/pkg.json -r "${global_jails_version}" interfaces="${jailinterfaces}" dhcp="on" vnet="on" allow_raw_sockets="1" boot="on" -b
 	echo '{"pkgs":['"${pkgs}"']}' > /tmp/pkg.json
 	if [ "${setdhcp}" == "on" ]
 	then
-		# shellcheck disable=SC2154
+		echo "Failed to create jail"
-		if ! iocage create -n "${1}" -p /tmp/pkg.json -r "${global_jails_version}" interfaces="${jailinterfaces}" dhcp="on" vnet="on" allow_raw_sockets="1" boot="on" -b
+		exit 1
 		then
 			echo "Failed to create jail"
 			exit 1
 		fi
 	else
 		# shellcheck disable=SC2154
 		if ! iocage create -n "${1}" -p /tmp/pkg.json -r "${global_jails_version}" interfaces="${jailinterfaces}" ip4_addr="vnet0|${!jailip4}" defaultrouter="${!jailgateway}" vnet="on" allow_raw_sockets="1" boot="on" -b
 		then
 			echo "Failed to create jail"
 			exit 1
 		fi
 	fi
-
+else
 	rm /tmp/pkg.json
 	echo "creating jail config directory"
 	# shellcheck disable=SC2154
-	createmount "${1}" "${global_dataset_config}"
+	if ! iocage create -n "${1}" -p /tmp/pkg.json -r "${global_jails_version}" interfaces="${jailinterfaces}" ip4_addr="vnet0|${!jailip4}" defaultrouter="${!jailgateway}" vnet="on" allow_raw_sockets="1" boot="on" -b
-	createmount "${1}" "${global_dataset_config}"/"${1}" /config
+	then
-	
+		echo "Failed to create jail"
-	# Create and Mount portsnap
+		exit 1
 	fi
 fi
 rm /tmp/pkg.json
 echo "creating jail config directory"
 # shellcheck disable=SC2154
 createmount "${1}" "${global_dataset_config}"
 createmount "${1}" "${global_dataset_config}"/"${1}" /config
 # Create and Mount portsnap
 createmount "${1}" "${global_dataset_config}"/portsnap
 createmount "${1}" "${global_dataset_config}"/portsnap/db /var/db/portsnap
 createmount "${1}" "${global_dataset_config}"/portsnap/ports /usr/ports
 if [ "${!blueprintports}" == "true" ]
 then
 	echo "Mounting and fetching ports"
 	createmount "${1}" "${global_dataset_config}"/portsnap
 	createmount "${1}" "${global_dataset_config}"/portsnap/db /var/db/portsnap
 	createmount "${1}" "${global_dataset_config}"/portsnap/ports /usr/ports
 	iocage exec "${1}" "if [ -z /usr/ports ]; then portsnap fetch extract; else portsnap auto; fi"
-	
+else
-	echo "Jail creation completed for ${1}"
+	echo "Ports not enabled for blueprint, skipping"
-fi	
+fi
-	
+
 echo "Jail creation completed for ${1}"
 }
 # $1 = jail name
--- a/Show More
+++ b/Show More