lesavka/scripts/install-server.sh

#!/usr/bin/env bash
set -euo pipefail
ORIG_USER=${SUDO_USER:-$(id -un)}

# 1. base packages (Arch + yay if missing)
sudo pacman -Syq --needed --noconfirm git rustup protobuf gcc pipewire pipewire-pulse tailscale base-devel
if ! command -v yay >/dev/null 2>&1; then
  echo "→ installing yay from AUR ..."
  sudo -u "$ORIG_USER" bash -c '
    cd /tmp && git clone --depth 1 https://aur.archlinux.org/yay.git &&
    cd yay && makepkg -si --noconfirm'
fi

# 2. Rust tool-chain for both accounts
sudo rustup default stable
sudo -u "$ORIG_USER" rustup default stable

# 3. writable build tree under /var/src  (create once, chown to user)
SRC_DIR=/var/src/navka
REPO_URL=ssh://git@scm.bstein.dev:2242/brad_stein/navka.git
if [[ ! -d $SRC_DIR ]]; then
  sudo mkdir -p /var/src
  sudo chown "$ORIG_USER":"$ORIG_USER" /var/src
fi
if [[ -d $SRC_DIR/.git ]]; then
  sudo -u "$ORIG_USER" git -C "$SRC_DIR" pull --ff-only
else
  sudo -u "$ORIG_USER" git clone "$REPO_URL" "$SRC_DIR"
fi

# 4. build (as the normal user – avoids root-owned Cargo.lock)
sudo -u "$ORIG_USER" bash -c "cd '$SRC_DIR/server' && cargo build --release"

# 5. install payload
sudo install -Dm755 "$SRC_DIR/server/target/release/navka-server" /usr/local/bin/navka-server
sudo install -Dm755 "$SRC_DIR/scripts/navka-core.sh"              /usr/local/bin/navka-core.sh

# 6. systemd units
cat <<'UNIT' | sudo tee /etc/systemd/system/navka-core.service >/dev/null
[Unit]
Description=Navka USB gadget bring-up
After=sys-kernel-config.mount
Requires=sys-kernel-config.mount
[Service]
Type=oneshot
ExecStart=/usr/local/bin/navka-core.sh
RemainAfterExit=yes
CapabilityBoundingSet=CAP_SYS_ADMIN
[Install]
WantedBy=multi-user.target
UNIT

cat <<'UNIT' | sudo tee /etc/systemd/system/navka-server.service >/dev/null
[Unit]
Description=Navka gRPC relay
After=network.target navka-core.service
[Service]
ExecStart=/usr/local/bin/navka-server
Restart=always
User=root
[Install]
WantedBy=multi-user.target
UNIT

sudo systemctl daemon-reload
sudo systemctl enable --now navka-core.service navka-server.service
sudo systemctl restart navka-core.service navka-server.service
echo "✅  navka-server installed and running."
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
+								#!/usr/bin/env bash
 								set -euo pipefail
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								ORIG_USER=${SUDO_USER:-$(id -un)}
 								# 1. base packages (Arch + yay if missing)
 								sudo pacman -Syq --needed --noconfirm git rustup protobuf gcc pipewire pipewire-pulse tailscale base-devel
 								if ! command -v yay >/dev/null 2>&1; then
 								  echo "→ installing yay from AUR ..."
 								  sudo -u "$ORIG_USER" bash -c '
 								    cd /tmp && git clone --depth 1 https://aur.archlinux.org/yay.git &&
 								    cd yay && makepkg -si --noconfirm'
-												update to edition 2024

											
										
										
											2025-06-01 16:04:00 -05:00
+								fi
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								# 2. Rust tool-chain for both accounts
 								sudo rustup default stable
 								sudo -u "$ORIG_USER" rustup default stable
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								# 3. writable build tree under /var/src  (create once, chown to user)
 								SRC_DIR=/var/src/navka
-												added url

											
										
										
											2025-06-01 22:12:09 -05:00
+								REPO_URL=ssh://git@scm.bstein.dev:2242/brad_stein/navka.git
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								if [[ ! -d $SRC_DIR ]]; then
 								  sudo mkdir -p /var/src
 								  sudo chown "$ORIG_USER":"$ORIG_USER" /var/src
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
+								fi
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								if [[ -d $SRC_DIR/.git ]]; then
 								  sudo -u "$ORIG_USER" git -C "$SRC_DIR" pull --ff-only
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
+								else
-												added url

											
										
										
											2025-06-01 22:12:09 -05:00
+								  sudo -u "$ORIG_USER" git clone "$REPO_URL" "$SRC_DIR"
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
+								fi
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								# 4. build (as the normal user – avoids root-owned Cargo.lock)
 								sudo -u "$ORIG_USER" bash -c "cd '$SRC_DIR/server' && cargo build --release"
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								# 5. install payload
 								sudo install -Dm755 "$SRC_DIR/server/target/release/navka-server" /usr/local/bin/navka-server
-												added url

											
										
										
											2025-06-01 22:12:09 -05:00
+								sudo install -Dm755 "$SRC_DIR/scripts/navka-core.sh"              /usr/local/bin/navka-core.sh
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								# 6. systemd units
 								cat <<'UNIT' | sudo tee /etc/systemd/system/navka-core.service >/dev/null
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
+								[Unit]
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								Description=Navka USB gadget bring-up
-												updates

											
										
										
											2025-06-06 00:04:55 -05:00
+								After=sys-kernel-config.mount
 								Requires=sys-kernel-config.mount
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
+								[Service]
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
+								Type=oneshot
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								ExecStart=/usr/local/bin/navka-core.sh
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
+								RemainAfterExit=yes
-												updates

											
										
										
											2025-06-06 00:04:55 -05:00
+								CapabilityBoundingSet=CAP_SYS_ADMIN
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
+								[Install]
 								WantedBy=multi-user.target
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								UNIT
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								cat <<'UNIT' | sudo tee /etc/systemd/system/navka-server.service >/dev/null
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
+								[Unit]
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								Description=Navka gRPC relay
 								After=network.target navka-core.service
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
+								[Service]
-												moved proto

											
										
										
											2025-06-01 14:18:42 -05:00
+								ExecStart=/usr/local/bin/navka-server
 								Restart=always
 								User=root
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
+								[Install]
 								WantedBy=multi-user.target
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								UNIT
-												poc to app overhaul

											
										
										
											2025-06-01 13:31:22 -05:00
 								sudo systemctl daemon-reload
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								sudo systemctl enable --now navka-core.service navka-server.service
-												updates

											
										
										
											2025-06-06 00:04:55 -05:00
+								sudo systemctl restart navka-core.service navka-server.service
-												removed gadget sub-dir

											
										
										
											2025-06-01 21:30:55 -05:00
+								echo "✅  navka-server installed and running."