Remote Repository WAPTHttpServer
Paquet d’installation silencieuse pour Remote Repository WAPTHttpServer
2.6.1.17765-11
- package: tis-remote-repo-http
- name: Remote Repository WAPTHttpServer
- version: 2.6.1.17765-11
- maintainer: WAPT Team,Tranquil IT
- target_os: windows
- architecture: x64
- signature_date:
- size: 2.96 Mo
- conflicts :
package : tis-remote-repo-http
version : 2.6.1.17765-11
architecture : x64
section : base
priority : optional
name : Remote Repository WAPTHttpServer
categories :
maintainer : WAPT Team,Tranquil IT
description : Package for installing WAPTHttpServer for remote repositories agents
depends :
conflicts : tis-remote-repo-nginx
maturity : PROD
locale :
target_os : windows
min_wapt_version : 2.5.5
sources :
installed_size :
impacted_process :
description_fr :
description_pl :
description_de :
description_es :
description_pt :
description_it :
description_nl :
description_ru :
audit_schedule :
editor :
keywords :
licence :
homepage :
package_uuid : 97303d8a-d953-4d4b-ae91-85229a1ba54c
valid_from :
valid_until :
forced_install_on :
changelog :
min_os_version :
max_os_version :
icon_sha256sum : 7891f1ca19ac8a9e41cb2963c0833bb3424a1dcc3f89e6ae484b1841a67063b2
signer : Tranquil IT
signer_fingerprint: 8c5127a75392be9cc9afd0dbae1222a673072c308c14d88ab246e23832e8c6bb
signature_date : 2026-04-24T14:00:27.000000
signed_attributes : package,version,architecture,section,priority,name,categories,maintainer,description,depends,conflicts,maturity,locale,target_os,min_wapt_version,sources,installed_size,impacted_process,description_fr,description_pl,description_de,description_es,description_pt,description_it,description_nl,description_ru,audit_schedule,editor,keywords,licence,homepage,package_uuid,valid_from,valid_until,forced_install_on,changelog,min_os_version,max_os_version,icon_sha256sum,signer,signer_fingerprint,signature_date,signed_attributes
signature : IqrlePgVlX3Mh7h/0bly//zseb92xXH3V4cbo83599fyl3Hz24N63Hx23efbMH5VDqlMKpO88+kyOUWeMKinKjO6E5qp71i+OR7u3MxWpKqAlsMU/aOfLVsi2y6+cOujqDh+/BrMIRVSmuuKkMXTQKl/ilfd2bKYF49o2CPDOA7uFgS3tyFNqpYHUjgK7yigqy9IrRN1Sg6/Me7C5kz8vvsBrIuUK6rkf0W8zbPRKJlvIie7e6ubDkONqX+Q74rEaBbX1+WMXKm2qd4vV5cLj+ZLP1gWIRPcGnowj076rtdMlC0Ujb//PjFYVrrfNXpnB9oXoEkI3V2oCRa4SwQd/g==# -*- coding: utf-8 -*-
from setuphelpers import *
import time
from waptcrypto import SSLPrivateKey, SSLCertificate
import datetime
bin_name = "wapthttpserver.exe"
service_name = "WAPTHttpServer"
def install():
if params.get("install_with_luti", False):
WAPT.install("tis-remote-repo-conf")
global service_name
waptconf_file = makepath(WAPT.wapt_base_dir, "wapt-get.ini")
is_default_repo_conf_enabled = inifile_readstring(waptconf_file, 'default_repo-sync', 'enable_remote_repo')
is_repo_conf_enabled = inifile_readstring(waptconf_file, 'repo-sync', 'enable_remote_repo')
if is_default_repo_conf_enabled == "True" or is_repo_conf_enabled == "True":
if installed_softwares('WAPT Server_is1'):
error('Wapt server installed on this host. Aborting')
def make_wapthttpserver_config(local_repo):
#moving certificate if allready exists
nginx_ssl_dir = makepath(WAPT.wapt_base_dir, "waptservice", "nginx", "ssl")
wapthttpserver_ssl_dir = makepath(WAPT.wapt_base_dir, "wapthttpserver", "ssl")
mkdirs(wapthttpserver_ssl_dir)
#moving certificate if allready exists
if os.path.isfile(nginx_ssl_dir) and not os.path.isfile(makepath(wapthttpserver_ssl_dir, "key.pem")):
filecopyto(makepath(nginx_ssl_dir, "key.pem"), wapthttpserver_ssl_dir)
#moving certificate if allready exists
if os.path.isfile(nginx_ssl_dir) and not os.path.isfile(makepath(wapthttpserver_ssl_dir, "cert.pem")):
filecopyto(makepath(nginx_ssl_dir, "cert.pem"), wapthttpserver_ssl_dir)
key_fn = makepath(wapthttpserver_ssl_dir, "key.pem")
key = SSLPrivateKey(key_fn)
if not os.path.isfile(key_fn):
print("Create SSL RSA Key %s" % key_fn)
key.create()
key.save_as_pem()
cert_fn = makepath(wapthttpserver_ssl_dir, "cert.pem")
if os.path.isfile(cert_fn):
crt = SSLCertificate(cert_fn)
if crt.cn != get_fqdn():
os.rename(cert_fn, "%s-%s.old" % (cert_fn, "{:%Y%m%d-%Hh%Mm%Ss}".format(datetime.datetime.now())))
crt = key.build_sign_certificate(cn=get_fqdn(), dnsname=get_fqdn(), is_server_auth=True, is_client_auth=False, is_code_signing=False, is_ca=False, key_usages=['digital_signature'])
print("Create X509 cert %s" % cert_fn)
crt.save_as_pem(cert_fn)
else:
crt = key.build_sign_certificate(cn=get_fqdn(), dnsname=get_fqdn(), is_server_auth=True, is_client_auth=False, is_code_signing=False, is_ca=False, key_usages=['digital_signature'])
print("Create X509 cert %s" % cert_fn)
crt.save_as_pem(cert_fn)
#create config
waptconf_file = makepath(WAPT.wapt_base_dir, "wapt-get.ini")
if os.path.isfile(waptconf_file):
inifile_writestring(waptconf_file, 'wapthttpserver', 'root_dir', local_repo)
inifile_writestring(waptconf_file, 'wapthttpserver', 'http_port', '80')
inifile_writestring(waptconf_file, 'wapthttpserver', 'https_port', '443')
inifile_writestring(waptconf_file, 'wapthttpserver', 'cert_file', cert_fn)
inifile_writestring(waptconf_file, 'wapthttpserver', 'private_key_file', key_fn)
inifile_writestring(waptconf_file, 'wapthttpserver', 'enable_logging', '1')
inifile_writestring(waptconf_file, 'wapthttpserver', 'lib_folder_path', makepath(WAPT.wapt_base_dir, "wapthttpserver"))
oldnginxbin = os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx",'nginx.exe')
if isfile(oldnginxbin):
killalltasks('nginx.exe')
remove_file(oldnginxbin)
oldnginxpath = os.path.join(WAPT.wapt_base_dir, "waptservice", "nginx")
if isdir(oldnginxpath):
remove_tree(oldnginxpath)
servicenginxfile = os.path.join(WAPT.wapt_base_dir, "waptservice", "services",'waptnginx.service')
if isfile(servicenginxfile):
remove_file(servicenginxfile)
print("Checking if ports 80 and 443 are available")
try:
sortie_cmd=run(cmd="wapt-get checkport 0.0.0.0:80", timeout=10, accept_returncodes=[1003, 1004])
except:
print("Port 80 is not available")
raise
try:
sortie_cmd=run(cmd="wapt-get checkport 0.0.0.0:443", timeout=10, accept_returncodes=[1003, 1004])
except:
print("Port 443 is not available")
raise
def install_wapthttpserver_service(local_repo):
print("Register wapthttpserver frontend")
# rights
for repo_path in ("wapt", "wapt-host", "waptwua"):
p = makepath(local_repo, repo_path)
mkdirs(p)
run(r'icacls "%s" /grant "*S-1-5-20":(OI)(CI)(M)' % (p))
run(r'icacls "%s" /grant "*S-1-5-20":(OI)(CI)(M)' % makepath(WAPT.wapt_base_dir, "log"))
run(r'"%s" /install' % makepath(WAPT.wapt_base_dir, bin_name))
make_wapthttpserver_config(local_repo)
print("installing %s" % control.asrequirement())
print("Install wapthttpserver to permit WAPTAgent to become a repository")
local_repo = inifile_readstring(WAPT.config_filename, "repo-sync", "local_repo_path") or makepath(WAPT.wapt_base_dir, "repository")
mkdirs(makepath(WAPT.wapt_base_dir, "wapthttpserver", "ssl"))
if service_installed(service_name):
if service_is_running(service_name):
service_stop(service_name)
time.sleep(30)
service_delete(service_name)
print("Remove firewall rule")
run_notfatal(
'netsh advfirewall firewall delete rule name="%s" program="%s"'
% (service_name, makepath(WAPT.wapt_base_dir, bin_name))
)
print("Copy binary file for wapthttpserver")
if isfile(makepath(WAPT.wapt_base_dir, bin_name)):
remove_file(makepath(WAPT.wapt_base_dir, bin_name))
filecopyto(bin_name, makepath(WAPT.wapt_base_dir,bin_name))
print("Copy dlls for wapthttpserver")
mkdirs(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls"))
if isfile(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libcrypto-3-x64.dll")):
remove_file(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libcrypto-3-x64.dll"))
filecopyto(makepath(WAPT.wapt_base_dir, "dlls", "libcrypto-3-x64.dll"), makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libcrypto-3-x64.dll"))
if isfile(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libssl-3-x64.dll")):
remove_file(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libssl-3-x64.dll"))
filecopyto(makepath(WAPT.wapt_base_dir, "dlls", "libssl-3-x64.dll"), makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libssl-3-x64.dll"))
print("Install wapthttpserver")
install_wapthttpserver_service(local_repo)
service_start(service_name)
print("Add firewall rule for wapthttpserver")
run(
'netsh advfirewall firewall add rule name="%s" dir=in profile=private,domain,public protocol=tcp localport=80,443 action=allow program="%s" enable=yes'
% (service_name, makepath(WAPT.wapt_base_dir, bin_name))
)
else:
error(r'[ERROR]This package needs configuration : section "default_repo-sync" or section "repo-sync", key "enable_remote_repo" must be "True". Please install package tis-remote-repo-conf or your own configuration package before installing this one.')
# def install_wapthttpserver_service(local_repo):
# print("Register wapthttpserver frontend")
# # rights
# for repo_path in ("wapt", "wapt-host", "waptwua"):
# p = makepath(local_repo, repo_path)
# mkdirs(p)
# run(r'icacls "%s" /grant "*S-1-5-20":(OI)(CI)(M)' % (p))
# run(r'icacls "%s" /grant "*S-1-5-20":(OI)(CI)(M)' % makepath(WAPT.wapt_base_dir, "log"))
# run(r'"%s" /install' % makepath(WAPT.wapt_base_dir, bin_name))
# make_wapthttpserver_config(local_repo)
# print("installing %s" % control.asrequirement())
# print("Install wapthttpserver to permit WAPTAgent to become a repository")
# local_repo = inifile_readstring(WAPT.config_filename, "repo-sync", "local_repo_path") or makepath(WAPT.wapt_base_dir, "repository")
# mkdirs(makepath(WAPT.wapt_base_dir, "wapthttpserver", "ssl"))
# if service_installed(service_name):
# if service_is_running(service_name):
# service_stop(service_name)
# time.sleep(30)
# service_delete(service_name)
# print("Remove firewall rule")
# run_notfatal(
# 'netsh advfirewall firewall delete rule name="%s" program="%s"'
# % (service_name, makepath(WAPT.wapt_base_dir, bin_name))
# )
# print("Copy binary file for wapthttpserver")
# if isfile(makepath(WAPT.wapt_base_dir, bin_name)):
# remove_file(makepath(WAPT.wapt_base_dir, bin_name))
# filecopyto(bin_name, makepath(WAPT.wapt_base_dir,bin_name))
# print("Copy dlls for wapthttpserver")
# mkdirs(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls"))
# if isfile(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libcrypto-3-x64.dll")):
# remove_file(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libcrypto-3-x64.dll"))
# filecopyto(makepath(WAPT.wapt_base_dir, "dlls", "libcrypto-3-x64.dll"), makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libcrypto-3-x64.dll"))
# if isfile(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libssl-3-x64.dll")):
# remove_file(makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libssl-3-x64.dll"))
# filecopyto(makepath(WAPT.wapt_base_dir, "dlls", "libssl-3-x64.dll"), makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls", "libssl-3-x64.dll"))
# print("Install wapthttpserver")
# install_wapthttpserver_service(local_repo)
# service_start(service_name)
# print("Add firewall rule for wapthttpserver")
# run(
# 'netsh advfirewall firewall add rule name="%s" dir=in profile=private,domain,public protocol=tcp localport=80,443 action=allow program="%s" enable=yes'
# % (service_name, makepath(WAPT.wapt_base_dir, bin_name))
# )
def audit():
"""
Vérifie que tous les composants nécessaires pour WAPTHttpServer sont présents
et correctement configurés.
"""
errors = []
# 1. Vérification du binaire principal
http_bin = makepath(WAPT.wapt_base_dir, bin_name)
if not isfile(http_bin):
errors.append(f"Binaire manquant: {http_bin}")
# 2. Vérification du répertoire wapthttpserver
wapthttpserver_dir = makepath(WAPT.wapt_base_dir, "wapthttpserver")
if not isdir(wapthttpserver_dir):
errors.append(f"Répertoire manquant: {wapthttpserver_dir}")
# 3. Vérification du répertoire SSL
wapthttpserver_ssl_dir = makepath(WAPT.wapt_base_dir, "wapthttpserver", "ssl")
if not isdir(wapthttpserver_ssl_dir):
errors.append(f"Répertoire SSL manquant: {wapthttpserver_ssl_dir}")
else:
# Vérification des certificats SSL
key_fn = makepath(wapthttpserver_ssl_dir, "key.pem")
if not isfile(key_fn):
errors.append(f"Clé privée SSL manquante: {key_fn}")
cert_fn = makepath(wapthttpserver_ssl_dir, "cert.pem")
if not isfile(cert_fn):
errors.append(f"Certificat SSL manquant: {cert_fn}")
# 4. Vérification du répertoire des DLLs
dlls_dir = makepath(WAPT.wapt_base_dir, "wapthttpserver", "dlls")
if not isdir(dlls_dir):
errors.append(f"Répertoire des DLLs manquant: {dlls_dir}")
else:
# Vérification des DLLs OpenSSL
libcrypto = makepath(dlls_dir, "libcrypto-3-x64.dll")
if not isfile(libcrypto):
errors.append(f"DLL manquante: {libcrypto}")
libssl = makepath(dlls_dir, "libssl-3-x64.dll")
if not isfile(libssl):
errors.append(f"DLL manquante: {libssl}")
# 5. Vérification de la configuration dans wapt-get.ini
waptconf_file = makepath(WAPT.wapt_base_dir, "wapt-get.ini")
if not isfile(waptconf_file):
errors.append(f"Fichier de configuration manquant: {waptconf_file}")
else:
# Vérification des paramètres de configuration
root_dir = inifile_readstring(waptconf_file, 'wapthttpserver', 'root_dir')
if not root_dir:
errors.append(f"Paramètre 'root_dir' manquant dans: {waptconf_file}")
elif not isdir(root_dir):
errors.append(f"Répertoire root_dir manquant: {root_dir}")
http_port = inifile_readstring(waptconf_file, 'wapthttpserver', 'http_port')
if not http_port:
errors.append(f"Paramètre 'http_port' manquant dans: {waptconf_file}")
https_port = inifile_readstring(waptconf_file, 'wapthttpserver', 'https_port')
if not https_port:
errors.append(f"Paramètre 'https_port' manquant dans: {waptconf_file}")
cert_file = inifile_readstring(waptconf_file, 'wapthttpserver', 'cert_file')
if not cert_file:
errors.append(f"Paramètre 'cert_file' manquant dans: {waptconf_file}")
private_key_file = inifile_readstring(waptconf_file, 'wapthttpserver', 'private_key_file')
if not private_key_file:
errors.append(f"Paramètre 'private_key_file' manquant dans: {waptconf_file}")
# 6. Vérification du répertoire local_repo et ses sous-répertoires
local_repo = inifile_readstring(WAPT.config_filename, "repo-sync", "local_repo_path") or makepath(WAPT.wapt_base_dir, "repository")
if not isdir(local_repo):
errors.append(f"Répertoire local_repo manquant: {local_repo}")
else:
# Vérification des sous-répertoires du repository
for repo_path in ("wapt", "wapt-host", "waptwua"):
repo_subdir = makepath(local_repo, repo_path)
if not isdir(repo_subdir):
errors.append(f"Sous-répertoire manquant: {repo_subdir}")
# 7. Vérification du service Windows
if not service_installed(service_name):
errors.append(f"Service Windows non installé: {service_name}")
elif not service_is_running(service_name):
errors.append(f"Service Windows non démarré: {service_name}")
# Retour du résultat
if errors:
error_msg = "Erreurs détectées:\n" + "\n".join(f" - {err}" for err in errors)
print(error_msg)
return "ERROR"
else:
return "OK"
def uninstall():
print("Remove wapthttpserver service")
if service_installed(service_name):
if service_is_running(service_name):
service_stop(service_name)
time.sleep(30)
service_delete(service_name)
print("Remove firewall rule")
run(
'netsh advfirewall firewall delete rule name="%s" program="%s"'
% (service_name, makepath(WAPT.wapt_base_dir, bin_name))
)
print("Remove wapthttpserver files")
killalltasks('wapthttpserver.exe')
remove_tree(makepath(WAPT.wapt_base_dir, "wapthttpserver"))
remove_file(makepath(WAPT.wapt_base_dir, bin_name))
# -*- coding: utf-8 -*-
from setuphelpers import *
import re
def update_package():
# Declaring local variables
package_updated = False
proxies = get_proxies()
if not proxies:
proxies = get_proxies_from_wapt_console()
#todo wait new release
wget('https://wapt.tranquil.it/wapt/releases/latest/bin/win64/wapthttpserver.exe','wapthttpserver.exe',proxies=proxies)
version = get_version_from_binary('wapthttpserver.exe',property_name='FileVersion')
control.set_software_version(version)
control.save_control_to_wapt()
38d056ab130f7bf7c481c12636a4e9959de36561d3dfcbe54c6e3571bc0c1dc3 : WAPT/certificate.crt
1d91f0ce55bfcff517c4e21f54d41ba415f06a3bb7de5860ceda58edbaf7fb3c : WAPT/control
7891f1ca19ac8a9e41cb2963c0833bb3424a1dcc3f89e6ae484b1841a67063b2 : WAPT/icon.png
e3e9087f81e5cc2651f45ab44515c5cb9f421de0da2e0d51abd69588e6e07702 : luti.json
442dac21e8802d4a272c099966a2678f0646318a0adb1398080c7e641792c855 : setup.py
4a709c69d6232b3de4887a42d998369ae9c27cc71d45935d1d6493269574432b : update_package.py
87dd7e5c7f7acc151e70e3b5cc17bc6ae7a8cd7fa64f7781b30ce638bc996e2d : wapthttpserver.exe