se/SE/se-lib/Route/Install.php

<?php

Lib::loadClass('RouteBase');
Lib::loadClass('UI');

//TODO install nie kopiuje aktualnej /config/.config_base_structure.php @2017-09-24 bindera - sprawdzone na medicalu

class Route_Install extends RouteBase {

	public function handleAuth() {
		if (!User::logged()) {
			throw new HttpException('Unauthorized', 401);
		}
		if (!User::isAdmin()) {
			throw new HttpException('Unauthorized - only for administrators', 401);
		}
	}

	public function defaultAction() {
		UI::gora();
		UI::menu();
		$this->menu();
		UI::dol();
	}

	public function menu() {
		$serversList = $this->fetchActiveLicences();
		?>
<div class="jumbotron">
  <div class="container">
		<form class="form-inline" method="GET">
			<input type="hidden" name="_route" value="Install" />
			<input type="hidden" name="_task" value="createApp" />
			<label>Przygotuj kod źródłowy do aktualizacji na serwerze klienta:</label>
			<select id="servers_list" class="form-control" name="licence_id">
				<?php foreach ($serversList as $srv) : ?>
					<option value="<?php echo $srv->ID; ?>">[<?php echo $srv->ID; ?>] <?php echo $srv->domain; ?></option>
				<?php endforeach; ?>
			</select>
			<button type="submit" id="fldSbmtBtn" class="btn btn-primary" autocomplete="off">
				Generuj
			</button>
			<div id="servers_list_react"></div>
		</form>
	</div>
</div>
<script type="text/javascript">
jQuery(document).ready(function () {
  jQuery('#fldSbmtBtn').on('click', function () {
    jQuery(this).text(jQuery(this).text() + '...').attr('disabled', 'disabled');
		jQuery(this).parent().submit();
  })
});
</script>
		<?php
		echo UI::h('script', ['src'=>"static/vendor.js", 'type'=>"text/javascript"]);
		// echo UI::h('script', ['src'=>"https://cdnjs.cloudflare.com/ajax/libs/react/15.4.2/react.js", 'type'=>"text/javascript"]);
		// echo UI::h('script', ['src'=>"https://cdnjs.cloudflare.com/ajax/libs/react/15.4.2/react-dom.js", 'type'=>"text/javascript"]);
		// echo UI::h('script', ['src'=>"https://cdnjs.cloudflare.com/ajax/libs/react-bootstrap-typeahead/0.10.4/react-bootstrap-typeahead.js", 'type'=>"text/javascript"]);

		$jsonServersList = array_values(array_map(
			function ($srv) {
				return [
					'id' => $srv->ID,
					'label' => "{$srv->domain} [{$srv->ID}]"
				];
			},
			$serversList
		));
		echo UI::h('script', ['type'=>"text/javascript"], "
			(function(global){
				if (!global.p5VendorJs) { console.warn('Brak p5VendorJs'); return; }
				if (!global.p5VendorJs.React) { console.warn('Brak p5VendorJs.React'); return; }
				if (!global.p5VendorJs.ReactDOM) { console.warn('Brak p5VendorJs.ReactDOM'); return; }
				if (!global.p5VendorJs.Typeahead) { console.warn('Brak p5VendorJs.Typeahead'); return; }
				const React = global.p5VendorJs.React;
				const ReactDOM = global.p5VendorJs.ReactDOM;
				const Typeahead = global.p5VendorJs.Typeahead;
				var options = ".json_encode($jsonServersList).";
				var selected = [];
				var onInputChange = function (query) {
					// console.log('onInputChange:: query', query);
				}
				var onChange = function (value) {
					// console.log('onChange:: value', value);
					if (value.length > 0) {
						var id = value[0]['id'];
						if (id > 0) {
							document.getElementById('servers_list').value = id;
						}
					}
				}

				ReactDOM.render(
					React.createElement(Typeahead, {
						options: options,
						emptyLabel: 'Brak danych',
						placeholder: 'Wybierz serwer',
						selected: selected,
						// onInputChange: onInputChange,
						onChange: onChange,
					}, null),
					document.getElementById('servers_list_react')
				);
			})(window);
		");
	}

	public function createAppAction() {
		session_write_close();
		$args = array();
		$args['licence_id'] = V::get('licence_id', 0, $_REQUEST, 'int');

		UI::gora();
		UI::menu();
		//$this->menu($args['licence_id']);// TODO: GO BACK BTN

		try {
			$appLicenceInfo = $this->getAppLicenceInfo($args['licence_id']);
		} catch (Exception $e) {
			$this->_endWithException($e);
		}
		//$this->generateApp($args['licence_id']);
		//DBG::_(true, true, "appLicenceInfo", $appLicenceInfo, __CLASS__, __FUNCTION__, __LINE__);
?>
<div class="jumbotron">
  <div class="container">
		<h3>Generowanie aplikacji dla licencji <?php echo $appLicenceInfo->ID; ?></h3>
		<p>Licencja dla domen: <?php echo implode(', ', $appLicenceInfo->domains); ?></p>
		<p>Katalog z zakodowanymi plikami: <?php echo $appLicenceInfo->installFolderName; ?></p>
		<form class="form-inline" method="POST">
			<input type="hidden" name="_task" value="createApp" />
			<input type="hidden" name="licence_id" value="<?php echo $appLicenceInfo->ID; ?>" />
			<input type="hidden" name="_generateEncryptedSource" value="1" />
			<button type="submit" id="fldSbmtBtn" class="btn btn-primary" autocomplete="off">
				Generuj
			</button>
		</form>
		<?php if ($appLicenceInfo->installFolderGitExists) : ?>
			<br>
			<div class="alert alert-info">
				Katalog istnieje i zawiera już repozytorium git:
				<br> - <a href="index.php?_route=Install&_task=gitResetHard&licence_id=<?php echo $appLicenceInfo->ID; ?>"
					 target="_blank"
					 class="btn btn-xs btn-default">aktualizuj werjsę</a> (git reset --hard, git pull, set SE/VERSION - tak samo co 'rm -rf; git clone', ale szybciej)
				<br> - <a href="index.php?_route=Install&_task=encodeSource&licence_id=<?php echo $appLicenceInfo->ID; ?>"
					 target="_blank"
					 class="btn btn-xs btn-default">encode files</a>
				<br> - <a href="index.php?_route=Install&_task=sendToRemoteTestDir&licence_id=<?php echo $appLicenceInfo->ID; ?>"
					 target="_blank"
					 class="btn btn-xs btn-default">send encoded files to remote server test folder (generates ssh key if not set)</a>
				<p style="margin-top:30px">
Test online: <a target="_blank" href="https://<?php echo $appLicenceInfo->mainServer; ?>/se.encrypted.upgrade/">https://<?php echo $appLicenceInfo->mainServer; ?>/se.encrypted.upgrade/</a>
				</p>
				<br> - <a href="index.php?_route=Install&_task=upgradeRemoteFromTestDir&licence_id=<?php echo $appLicenceInfo->ID; ?>"
									onclick="return confirm('Uruchomić aktualizację SE na https://<?php echo $appLicenceInfo->mainServer; ?>/SE/?')"
									target="_blank"
									class="btn btn-xs btn-warning">UPGRADE Production folder from uploaded dir: ~/se.encrypted.upgrade/</a>
			</div>
		<?php endif; ?>
	</div>
</div>
<script type="text/javascript">
jQuery(document).ready(function () {
  jQuery('#fldSbmtBtn').on('click', function () {
    jQuery(this).text(jQuery(this).text() + '...').attr('disabled', 'disabled');
		jQuery(this).parent().submit();
  })
});
</script>
<?php
		$generateEncryptedSource = (1 == V::get('_generateEncryptedSource', 0, $_REQUEST, 'int'));
		if ($generateEncryptedSource) {
			echo '<div class="container">';
			echo '<h4>' . "Generowanie..." . '</h4>';
			echo '<div style="border:1px solid silver; max-height:400px; overflow-y:scroll">';
			try {
				$this->generateApp($appLicenceInfo);
			} catch (Exception $e) {
				echo '</div></div>';// .container/ scroll
				$this->_endWithException($e);
			}
			echo '</div>';// .container
			UI::alert('success', "<strong>Gotowe</strong> Aplikacja znajduje się w katalogu {$appLicenceInfo->installFolderName}");
		}
		UI::dol();
	}

	public function gitResetHardAction() {
		session_write_close();
		$args = array();
		$args['licence_id'] = V::get('licence_id', 0, $_REQUEST, 'int');
		UI::gora();
		UI::menu();
		//$this->menu($args['licence_id']);// TODO: GO BACK BTN
		try {
			$appLicenceInfo = $this->getAppLicenceInfo($args['licence_id']);
			$this->_gitResetHard($appLicenceInfo);
		} catch (Exception $e) {
			$this->_endWithException($e);
		}
		UI::dol();
	}

	public function _gitResetHard($appLicenceInfo) {
		if (empty($appLicenceInfo->ID)) throw new Exception("Nie wybrano serwera/licencji.");
		if (empty($appLicenceInfo->domains)) throw new Exception("Domains not found");
		$installPath = $appLicenceInfo->installPath;
		if (empty($installPath)) throw new Exception("Install path not found");
		$cmds = array();
		$cmds[] = "cd {$installPath} && git reset --hard";
		$cmds[] = "cd {$installPath} && git pull";
		$cmds[] = "cd {$installPath} && echo `git show-ref --head|head -1|head -c 8` > SE/VERSION ";
		foreach ($cmds as $cmd) {
			$out = ''; $ret = '';
			exec($cmd, $out, $ret);
			echo'<pre>cmd: '. $cmd . ': (return:'.$ret.')'."\n";print_r($out);echo'</pre>';
		}
	}

	public function encodeSourceAction() {
		session_write_close();
		$args = array();
		$args['licence_id'] = V::get('licence_id', 0, $_REQUEST, 'int');
		UI::gora();
		UI::menu();
		//$this->menu($args['licence_id']);// TODO: GO BACK BTN
		try {
			$appLicenceInfo = $this->getAppLicenceInfo($args['licence_id']);
			$this->_encodeSource($appLicenceInfo);
		} catch (Exception $e) {
			$this->_endWithException($e);
		}
		UI::dol();
	}

	public function _encodeSource($appLicenceInfo) {
		if (empty($appLicenceInfo->ID)) throw new Exception("Nie wybrano serwera/licencji.");
		if (empty($appLicenceInfo->domains)) throw new Exception("Domains not found");
		if (empty($appLicenceInfo->installPath)) throw new Exception("Install path not found");
		UI::startContainer();
		$this->encodeSourceFiles($appLicenceInfo->installPath, $appLicenceInfo->domains, $dbg = true);
		// try {
		// 	$this->encodeSourceFiles($appLicenceInfo->installPath, $appLicenceInfo->domains, $dbg = false);
		// 	UI::alert('success', "OK");
		// } catch (Exception $e) {
		// 	UI::alert('danger', $e->getMessage());
		// }
		UI::endContainer();
	}

	// @usage: Router::getRoute('Install')->encodeSourceFiles($installPath = '/path_to_git_repo', $domains = [ 'domain.com', 'localhost' ], $dbg = false);
	public function encodeSourceFiles($installPath, $domains, $dbg = false) {
		if (empty($installPath)) throw new Exception("Install path not found");
		if (empty($domains)) throw new Exception("Domains not found");

		$phpVersionsForSgencoder = '--phpversion 5.5 --phpversion 5.6';// encode for PHP 5.x (currently supported PHP 5.0-5.6)

		if ('1' == V::get('DBG_ENCODER_HELP', '', $_REQUEST)) {// encoder help
			$cmd = "cd {$installPath}/SE && /Applications/SourceGuardian.app/Contents/MacOS/sgencoder --help ";
			$out = ''; $ret = '';
			exec($cmd, $out, $ret);
			DBG::nicePrint($out, "cmd: `{$cmd}` (return:{$ret})");
			exit;
		}

		$domainEncodePhpFiles = [
			'ant.php',
			'api.php',
			'budynki.php',
			'index-ajax.php',
			'index.php',
			'procesy5.php',
			'session-expire.php',
			'test-sync.php',
			'wfs-data.php',
			'wfs-qgis.php',
			'wfs.php',
		];

		$cmd = "find . -name '*.php' ";
		$out = ''; $ret = '';
		exec("cd {$installPath}/SE && {$cmd}", $out, $ret);
		if ($dbg) DBG::nicePrint($out, "cmd: `{$cmd}` (return:{$ret})");
		else DBG::log($out, 'array', "cmd: `{$cmd}` (return:{$ret})");
		if (0 !== $ret) throw new Exception("Error at find php files");
		if (empty($out)) throw new Exception("No php files found");
		$allPhpFiles = array_map(function ($phpFilePath) {
			return ('./' == substr($phpFilePath, 0, 2))? substr($phpFilePath, 2) : $phpFilePath;
		}, $out);
		$freeEncodePhpFiles = array_filter($allPhpFiles, function ($phpFilePath) use ($domainEncodePhpFiles) {
			if ('se-lib/Vendor/' === substr($phpFilePath, 0, strlen('se-lib/Vendor/'))) return false; // SKIP se-lib/Vendor/*
			if ('.ini.php' === substr($phpFilePath, -1 * strlen('.ini.php'))) return false; // SKIP *.ini.php
			return (!in_array($phpFilePath, $domainEncodePhpFiles));
		});
		DBG::log($freeEncodePhpFiles, 'array', "\$freeEncodePhpFiles");
		if (empty($freeEncodePhpFiles)) throw new Exception("No php files to encode");

		$cmdTempl = "cd {$installPath}/SE && /Applications/SourceGuardian.app/Contents/MacOS/sgencoder {$phpVersionsForSgencoder} -b- ";
		$cmdDomainEncodeDomainsTempl = " --domain " . implode(" --domain ", array_merge($domains, ['localhost']));
		$cmdDomainEncodeFilesTempl = " " . implode(" ", $domainEncodePhpFiles);
		$cmdFreeEncodeFilesTempl = " " . implode(" ", $freeEncodePhpFiles);

		$cmds = [
			$cmdTempl . $cmdDomainEncodeDomainsTempl . $cmdDomainEncodeFilesTempl,
			$cmdTempl . $cmdFreeEncodeFilesTempl,
		];

		$returnValues = [];
		foreach ($cmds as $cmd) {
			$out = ''; $ret = '';
			exec($cmd, $out, $ret);
			$encoderSummaryLine = end($out);
			$returnValues[] = $encoderSummaryLine;
			if ($dbg) {
				DBG::nicePrint([$cmd], "cmd");
				DBG::nicePrint($out, "return: '{$ret}'");
				// DBG::nicePrint([$encoderSummaryLine], "cmd last line");
			}
			else DBG::log([$cmd, $out], 'array', "cmd return:'{$ret}'");
			// if (0 !== $ret) throw new Exception("Error at encode files");
			if (empty($out)) throw new Exception("No output for encode files command");
		}
		$statusInfo = array_reduce($returnValues, function ($ret, $encoderSummaryLine) {
			DBG::log([$ret, $encoderSummaryLine], 'array', "DBG reduce [\$ret, \$encoderSummaryLine]");
			$matches = [];
			preg_match_all('/(\d+) files, (\d+) processed, (\d+) errors/', $encoderSummaryLine, $matches, PREG_SET_ORDER, 0);
			return [
				'files' => $ret['files'] + (int)$matches[0][1],
				'processed' => $ret['processed'] + (int)$matches[0][2],
				'errors' => $ret['errors'] + (int)$matches[0][3],
			];
		}, [
			'files' => 0,
			'processed' => 0,
			'errors' => 0,
		]);
		if ($statusInfo['errors'] === 0 && $statusInfo['files'] > 0) {
			if ($dbg) UI::alert('success', "{$statusInfo['files']} files, {$statusInfo['processed']} processed, {$statusInfo['errors']} errors");
		} else {
			if ($dbg) UI::alert('danger', "{$statusInfo['files']} files, {$statusInfo['processed']} processed, {$statusInfo['errors']} errors");
			else throw new Exception("{$statusInfo['files']} files, {$statusInfo['processed']} processed, {$statusInfo['errors']} errors");
		}
	}

	public function getAppLicenceInfo($idLicence) {
		$idLicence = intval($idLicence);
		if (empty($idLicence)) throw new Exception("Nie wybrano serwera/licencji.");

		//DBG::_(true, true, 'idLicence', $idLicence, __CLASS__, __FUNCTION__, __LINE__);
		$appLicenceInfo = (object)$this->fetchAppLicenceInfo($idLicence);
		$appLicenceInfo->domains = $this->fetchDomainsByLicenceId($idLicence);
		$installRootPath = '/Library/Server/Web/Data/Sites/Default/PLIKI/SES_PROCESY5_A';
		$appLicenceInfo->installFolderName = "{$idLicence}_upgrade_SE_source_encrypted";
		$appLicenceInfo->installPath = "{$installRootPath}/{$appLicenceInfo->installFolderName}";
		//DBG::_(true, true, 'appLicenceInfo', $appLicenceInfo, __CLASS__, __FUNCTION__, __LINE__);
		if (empty($appLicenceInfo->domains)) throw new Exception("Domains not found.");
		$appLicenceInfo->installFolderExists = file_exists("{$appLicenceInfo->installPath}/SE");
		$appLicenceInfo->installFolderGitExists = file_exists("{$appLicenceInfo->installPath}/.git");
		return $appLicenceInfo;
	}

	public function generateApp($appLicenceInfo) {
		if (empty($appLicenceInfo->ID)) throw new Exception("Nie wybrano serwera/licencji.");
		if (empty($appLicenceInfo->domains)) throw new Exception("Domains not found");
		$installPath = $appLicenceInfo->installPath;
		if (empty($installPath)) throw new Exception("Install path not found");

		$cmds = array();
		$cmds[] = "if [ -d {$installPath} ] ; then rm -rf '{$installPath}'; fi";
		$cmds[] = "mkdir {$installPath}";
		$cmds[] = "cd {$installPath} && git clone ssh://git@biuro.biall-net.pl:2222/plabudda/se.git .";
		$cmds[] = "cd {$installPath} && echo `git show-ref --head|head -1|head -c 8` > SE/VERSION ";
		//echo'<pre>cmds: ';print_r($cmds);echo'</pre>';
		foreach ($cmds as $cmd) {
			$out = ''; $ret = '';
			exec($cmd, $out, $ret);
			echo'<pre>cmd: '. $cmd . ': (return:'.$ret.')'."\n";print_r($out);echo'</pre>';
		}
		$this->_encodeSource($appLicenceInfo);
//	1763: $exec='cd '.$installer_dir.' && /Applications/SourceGuardian.app/Contents/MacOS/sgencoder -b-
//		'.INSTALL_SES_PROCESY_A::get_same_domains_for_install($h->SERVER_ADDRESS_SHORT).'
//		-r *.php
//		-x superedit-DB_PROCEDURES_CREATE.php
//		-x INI.php
//		-x .config_base_structure.php
//	';
//
//	INSTALL_SES_PROCESY_A::get_same_domains_for_install($h->SERVER_ADDRESS_SHORT):
//			$res2=DB::query("select SERVER_ADDRESS_SHORT from SES_PROCESY5_A where SERVER_ADDRESS_IP='".$h->SERVER_ADDRESS_IP."'");
//			while($h2=DB::fetch($res2)) {
//			 	$domain[]=' --domain '.$h2->SERVER_ADDRESS_SHORT;
//	ssh server@biuro.galeriaprzymorze.eu: PHP 5.5.20
//	ssh server@biuro.biall-net.pl
// cd /Users/plabudda/procesy5-install-galeriaprzymorze.eu/
// sudo chown -R server:admin SE/
// /Applications/SourceGuardian.app/Contents/MacOS/sgencoder --phpversion 5.5 -b- --domain galeriaprzymorze.eu -r SE/*.php SE/se-lib/*.php SE/se-lib/*/*.php SE/se-lib/*/*/*.php SE/procesy/*.php SE/odt2xhtml/*.php -x superedit-DB_PROCEDURES_CREATE.php  -x INI.php  -x .config_base_structure.php
	}

	public function fetchActiveLicences() {
		$activeLic = array();
		$sql = "
			select l.`ID`
				, l.`SERVER_ADDRESS`
				, l.`SERVER_ADDRESS_SHORT` as domain -- domain for sgencoder
				, l.`SERVER_ADDRESS_IP`
			from `SES_PROCESY5_A` l
			where 1=1
			-- TODO: and l.`A_STATUS` in('NORMAL','WAITING')
			order by l.`ID` DESC
		";
		$rows = DB::getPDO()->fetchAll($sql);
		foreach ($rows as $row) {
			$r = (object)$row;
			$activeLic[$r->ID] = $r;
		}
		return $activeLic;
	}

	public function fetchDomainsByLicenceId($licenceId) {
		$domains = array();
		$sql = "
			select g.`SERVER_ADDRESS_SHORT`, g.`SERVER_ADDRESS`
			from `SES_PROCESY5_A` g
			where g.`SERVER_ADDRESS_IP`=(select l.`SERVER_ADDRESS_IP`
				from `SES_PROCESY5_A` l
				where l.`ID`='{$licenceId}'
				-- TODO: and l.`A_STATUS` in('NORMAL','WAITING')
			 )
			-- TODO: and g.`A_STATUS` in('NORMAL','WAITING')
		";
		$rows = DB::getPDO()->fetchAll($sql);
		foreach ($rows as $row) {
			$r = (object)$row;
			$domains[] = $r->SERVER_ADDRESS_SHORT;
			if ($r->SERVER_ADDRESS != $r->SERVER_ADDRESS_SHORT) {
				$domains[] = $r->SERVER_ADDRESS;
			}
		}
		return $domains;
	}

	public function fetchMainServerByLicenceId($licenceId) {
		return DB::getPDO()->fetchValue("
			select g.`SERVER_ADDRESS`
			from `SES_PROCESY5_A` g
			where g.`ID`='{$licenceId}'
			-- TODO: and g.`A_STATUS` in('NORMAL','WAITING')
		");
	}

	public function fetchAppLicenceInfo($licenceId) {
		$licenceInfo = null;
		$sql = "
			select g.ID
				, g.SERVER_ADDRESS as mainServer
				, g.ADMIN_USERNAME as rootLogin
				, g.ADMIN_USERNAME_PASSWD as rootPassword
				, g.SSH_PORT as sshPort
			from SES_PROCESY5_A g
			where g.`ID`=:id_licence
			-- TODO: and g.A_STATUS in('NORMAL','WAITING')
		";
		$all = DB::getPDO()->fetchAll($sql, [ ':id_licence' => $licenceId ]);
		if (empty($all)) throw new Exception("Brak licencji o nr '{$licenceId}'");
		$licenceInfo = reset($all);
		if (!$licenceInfo['sshPort']) $licenceInfo['sshPort'] = 22;
		return $licenceInfo;
	}

	public function _endWithException($e) {
		echo UI::h('div', ['class'=>"container"], [
			UI::h('div', ['class' => "alert alert-danger"], "#" . $e->getLine() . ": " . $e->getMessage()),
			UI::h('p', [], [
				"Wróć do ",
				UI::h('a', ['href'=>"index.php?_route=Install"], "menu")
			])
		]);
		UI::dol();
		exit;
	}

	public function sendToRemoteTestDirAction() {
		session_write_close();
		$args = array();
		$args['licence_id'] = V::get('licence_id', 0, $_REQUEST, 'int');
		UI::gora();
		//UI::menu();
		//$this->menu($args['licence_id']);// TODO: GO BACK BTN
		try {
			$appLicenceInfo = $this->getAppLicenceInfo($args['licence_id']);

			// TODO: if (59 ) => baratosz.sledz - na lokalnym kompie
			// bn:~/$ scp -r SE server@192.168.61.153:~/se.encrypted.upgrade
			// remote SE.git = '/Users/bartoszsledz/Desktop/production-se'
			// remote:~/$ mv SE ~/SE.bup.2017-07-03
			// remote:~/$ mv ~/se.encrypted.upgrade/SE SE
			// remote:~/$ cp -r ~/SE.bup.2017-07-03/config SE/
			// remote:~/$ sudo chown -R bartoszsledz:staff SE/

			$this->_sendToRemoteTestDir($appLicenceInfo);
			echo "Test online: ";
			echo UI::h('a', ['target'=>"_blank", 'href'=>"https://{$appLicenceInfo->mainServer}/se.encrypted.upgrade/"], "https://{$appLicenceInfo->mainServer}/se.encrypted.upgrade/");
		} catch (Exception $e) {
			$this->_endWithException($e);
		}
		UI::dol();
	}

	public function _fetchRemoteHomeDir($appLicenceInfo) {
		$this->_assertRsaKeyExists($appLicenceInfo);
		$sshHostUsr = "{$appLicenceInfo->rootLogin}@{$appLicenceInfo->mainServer}";
		$sshArgs = (22 != $appLicenceInfo->sshPort)? "-p {$appLicenceInfo->sshPort}" : '';
		$rsyncSshPort = (22 != $appLicenceInfo->sshPort)? "-e 'ssh -p {$appLicenceInfo->sshPort}'" : '';

		if (V::get('DBG_REMOTE', '', $_GET)) {// DBG
			$cmd = "echo ~";
			V::exec("ssh {$sshArgs} {$sshHostUsr} '{$cmd}'", $out, $ret);
			DBG::_(true, true, "exec(ssh ... 'cmd'): {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
			V::execRemote($appLicenceInfo->mainServer, $appLicenceInfo->rootLogin, $appLicenceInfo->rootPassword, $cmd, $out, $ret, $appLicenceInfo->sshPort);
			DBG::_(true, true, "execRemote(cmd): {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
			V::execRootRemote($appLicenceInfo->mainServer, $appLicenceInfo->rootLogin, $appLicenceInfo->rootPassword, $cmd, $out, $ret, $appLicenceInfo->sshPort);
			DBG::_(true, true, "execRootRemote(cmd): {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		}

		$cmd = "echo ~";
		V::exec("ssh {$sshArgs} {$sshHostUsr} '{$cmd}'", $out, $ret);
		DBG::_(true, true, "exec(ssh ... '{$cmd}') (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		if (empty($out) || empty($out[0])) throw new Exception("Cannot fetch remote home dir");
		return $out[0];
	}

	public function _sendToRemoteTestDir($appLicenceInfo) {
		$cmd = ''; $out = ''; $ret = '';

		$this->_assertRsaKeyExists($appLicenceInfo);

		$sshHostUsr = "{$appLicenceInfo->rootLogin}@{$appLicenceInfo->mainServer}";
		$sshArgs = (22 != $appLicenceInfo->sshPort)? "-p {$appLicenceInfo->sshPort}" : '';
		$rsyncSshPort = (22 != $appLicenceInfo->sshPort)? "-e 'ssh -p {$appLicenceInfo->sshPort}'" : '';
		// $appLicenceInfo->sshPort
		/* rsync options:
			-a, --archive               archive mode; same as -rlptgoD (no -H)
		  -u, --update                skip files that are newer on the receiver
			-t, --times                 preserve times
			    --delete                delete extraneous files from dest dirs
		*/
		DBG::_(true, true, "remote home dir:", $this->_fetchRemoteHomeDir($appLicenceInfo), __CLASS__, __FUNCTION__, __LINE__);

		$cmd = "
ssh {$sshArgs} {$sshHostUsr} '[ ! -d ~/se.encrypted.upgrade ] && mkdir ~/se.encrypted.upgrade || echo 1';
ssh {$sshArgs} {$sshHostUsr} 'rm -rf ~/se.encrypted.upgrade/SE';
ssh {$sshArgs} {$sshHostUsr} 'cp -r /Library/Server/Web/Data/Sites/Default/SE ~/se.encrypted.upgrade/SE';
ssh {$sshArgs} {$sshHostUsr} 'rm -rf ~/se.encrypted.upgrade/SE/config';
rsync --archive --times --delete --compress --one-file-system --omit-dir-times --no-g --no-perms \
	--verbose {$rsyncSshPort} \
	--exclude='stuff/qgis__kyngchaos.com' \
	--exclude='stuff/qgis__kyngchaos.com/QGIS-2.14.3-1.dmg' \
	--exclude='stuff/postgis' \
	--exclude='stuff/postgis2' \
	--exclude='stuff/KindleGen_Mac_i386_v2_9' \
	--exclude='stuff/jdk-8u121-macosx-x64.dmg' \
	--exclude='stuff/jre-8u112-macosx-x64.tar.gz' \
	--exclude='stuff/jre-8u121-macosx-x64.dmg' \
	--exclude='schema/default_db.instance.xml' \
	--exclude='schema/default_db_xml_cache.public' \
	--exclude='schema/default_db.instance.xml/**' \
	--exclude='schema/default_db_xml_cache.public/**' \
	'{$appLicenceInfo->installPath}/SE/' {$sshHostUsr}:~/se.encrypted.upgrade/SE/;
ssh {$sshArgs} {$sshHostUsr} 'cp -r /Library/Server/Web/Data/Sites/Default/SE/config ~/se.encrypted.upgrade/SE/';
ssh {$sshArgs} {$sshHostUsr} 'rm /Library/Server/Web/Data/Sites/Default/se.encrypted.upgrade'
ssh {$sshArgs} {$sshHostUsr} 'ln -s ~/se.encrypted.upgrade/SE /Library/Server/Web/Data/Sites/Default/se.encrypted.upgrade'
		";
		// --dry-run \
		V::exec($cmd, $out, $ret);
		DBG::_(true, true, "cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		if (0 !== $ret) throw new Exception("Cannot run remote command using rsa key! #{$ret}");
	}

	public function upgradeRemoteFromTestDirAction() {
		session_write_close();
		$args = array();
		$args['licence_id'] = V::get('licence_id', 0, $_REQUEST, 'int');
		UI::gora();
		//UI::menu();
		//$this->menu($args['licence_id']);// TODO: GO BACK BTN
		try {
			$appLicenceInfo = $this->getAppLicenceInfo($args['licence_id']);
			$this->_upgradeRemoteFromTestDir($appLicenceInfo);
			echo "Test online: ";
			echo UI::h('a', ['target'=>"_blank", 'href'=>"https://{$appLicenceInfo->mainServer}/SE/"], "https://{$appLicenceInfo->mainServer}/SE/");
		} catch (Exception $e) {
			$this->_endWithException($e);
		}
		UI::dol();
	}

	public function _upgradeRemoteFromTestDir($appLicenceInfo) {
		$cmd = ''; $out = ''; $ret = '';

		$this->_assertRsaKeyExists($appLicenceInfo);

		$dateStr = date("Y-m-d_H-i-s");
		// $remoteHomeDir = "/Users/{$appLicenceInfo->rootLogin}";// BUG: alias like in ams - login = prezes is alias for arkadiuszbinder
		$remoteHomeDir = $this->_fetchRemoteHomeDir($appLicenceInfo);
		$cmd = "
rm -rf /Library/Server/Web/Data/Sites/Default/SE.test 2>&1
cp -r {$remoteHomeDir}/se.encrypted.upgrade/SE /Library/Server/Web/Data/Sites/Default/SE.test 2>&1
[ ! -d {$remoteHomeDir}/bup.se.upgrade ] && mkdir {$remoteHomeDir}/bup.se.upgrade || echo 1
[ ! -d {$remoteHomeDir}/bup.se.upgrade ] && exit 1
[ ! -d {$remoteHomeDir}/bup.se.upgrade-testttttt ] && exit 1
[ ! -f /Library/Server/Web/Data/Sites/Default/SE.test/VERSION ] && echo \"Error: plik VERSION nie istnieje\" || echo \"check VERSION OK\"
[ ! -f /Library/Server/Web/Data/Sites/Default/SE.test/VERSION ] && exit 1
[ ! -f /Library/Server/Web/Data/Sites/Default/SE.test/index.php ] && echo \"Error: plik index.php nie istnieje\" || echo \"check index.php OK\"
[ ! -f /Library/Server/Web/Data/Sites/Default/SE.test/index.php ] && exit 1
[ ! -d /Library/Server/Web/Data/Sites/Default/SE.test/se-lib ] && echo \"Error: plik se-lib nie istnieje\" || echo \"check se-lib OK\"
[ ! -d /Library/Server/Web/Data/Sites/Default/SE.test/se-lib ] && exit 1
exit 0
		";
		V::execRootRemote($appLicenceInfo->mainServer, $appLicenceInfo->rootLogin, $appLicenceInfo->rootPassword, $cmd, $out, $ret, $appLicenceInfo->sshPort);
		$cmd = "
mv /Library/Server/Web/Data/Sites/Default/SE {$remoteHomeDir}/bup.se.upgrade/bup.{$dateStr} 2>&1
mv /Library/Server/Web/Data/Sites/Default/SE.test /Library/Server/Web/Data/Sites/Default/SE 2>&1
exit 0
		";
		V::execRootRemote($appLicenceInfo->mainServer, $appLicenceInfo->rootLogin, $appLicenceInfo->rootPassword, $cmd, $out, $ret, $appLicenceInfo->sshPort);
		DBG::_(true, true, "cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		if (0 !== $ret) throw new Exception("Cannot run remote command as root! #{$ret}");

		// TODO: SE/bash_install_check.php requires $domain!
		// $cmd = "/usr/bin/php /Library/Server/Web/Data/Sites/Default/SE/bash_install_check.php {$domain}";
		// V::execRootRemote($appLicenceInfo->mainServer, $appLicenceInfo->rootLogin, $appLicenceInfo->rootPassword, $cmd, $out, $ret, $appLicenceInfo->sshPort);
		// DBG::_(true, true, "cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		// if (0 !== $ret) throw new Exception("Cannot run remote command as root! #{$ret}");
	}

	public function _assertRsaKeyExists($appLicenceInfo) {
		$cmd = ''; $out = ''; $ret = '';
		$cmd = "echo ~ && pwd";// /Library/WebServer
		$cmd = "ls -1 ~/.ssh/";
		//$cmd = "rm /tmp/id_rsa";
		//$cmd = "rm /tmp/id_rsa.pub";
		//$cmd = "ssh-keygen -t rsa -N '' -C '_www@biuro.biall-net.pl' -f /tmp/id_rsa";
		//$cmd = "ssh-keygen -t rsa -N '' -C '_www@biuro.biall-net.pl' -f /tmp/id_rsa";
		V::exec($cmd, $out, $ret);
		DBG::_(true, true, "cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		if (0 !== $ret) {// no ~/.ssh directory
			$rsaKeyPath = "~/.ssh";
			$cmds = array();
			$cmds[] = "mkdir {$rsaKeyPath}";
			$cmds[] = "ssh-keygen -t rsa -N '' -C '_www@biuro.biall-net.pl' -f {$rsaKeyPath}/id_rsa 2>&1";
			$cmds[] = "ls -1 $rsaKeyPath";
			foreach ($cmds as $cmd) {
				V::exec($cmd, $out, $ret);
				DBG::_(true, true, "cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
				if (0 !== $ret) throw new Exception("Error '{$ret}' cmd({$cmd}): " . implode("\n", $out));
			}
		}

		$cmd = "cat ~/.ssh/id_rsa.pub";
		V::exec($cmd, $out, $ret);
		DBG::_(true, true, "cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		if (0 !== $ret || empty($out) || empty($out[0])) throw new Exception("Cannot read rsa public key");
		$rsaPubKey = $out[0];

		$cmd = 'ls -1a';
		$cmd = "
[ ! -d ~/.ssh ] && mkdir ~/.ssh;
[ ! -d ~/.ssh ] && echo 'ERROR ~/.ssh not exists and cannot be created';
[ ! -f ~/.ssh/authorized_keys ] && echo '{$rsaPubKey}' > ~/.ssh/authorized_keys;
[ ! -f ~/.ssh/authorized_keys ] && echo 'ERROR ~/.ssh/authorized_keys not exists and cannot be created';
cat ~/.ssh/authorized_keys| grep '{$rsaPubKey}' && echo 'OK' || echo '{$rsaPubKey}' >> ~/.ssh/authorized_keys;
chmod 600 ~/.ssh/authorized_keys;
		";
		V::execRemote($appLicenceInfo->mainServer, $appLicenceInfo->rootLogin, $appLicenceInfo->rootPassword, $cmd, $out, $ret, $appLicenceInfo->sshPort);
		DBG::_(true, true, "remote cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);

		//$cmd = "ssh server@{$appLicenceInfo->mainServer} 'ls -1 .ssh/'";
		//$cmd = "ssh -i ~/.ssh/id_rsa server@{$appLicenceInfo->mainServer} 'ls -1'";
		$sshPort = (22 != $appLicenceInfo->sshPort)? "-p {$appLicenceInfo->sshPort}" : '';
		$cmd = "ssh {$sshPort} {$appLicenceInfo->rootLogin}@{$appLicenceInfo->mainServer} 'ls -1'";
		V::exec($cmd, $out, $ret);
		DBG::_(true, true, "cmd: {$cmd} (return: {$ret})", $out, __CLASS__, __FUNCTION__, __LINE__);
		if (0 !== $ret) throw new Exception("Cannot run remote command using rsa key! #{$ret}");
	}

}