#!/bin/bash

echo "配置KYDLP敏感信息发现权限"

# 敏感信息扫描后端引擎
KYDLP_ENGINE_BASE_DIR=/opt/kydlp-control-discovery
KYDLP_ENGINE_BIN_DIR=$KYDLP_ENGINE_BASE_DIR/bin
KYDLP_ENGINE_CONFIG_DIR=$KYDLP_ENGINE_BASE_DIR/config
KYDLP_ENGINE_DATABASE_DIR=$KYDLP_ENGINE_BASE_DIR/db
KYDLP_ENGINE_SOCKET_DIR=$KYDLP_ENGINE_BASE_DIR/sock
KYDLP_ENGINE_LOG_DIR=$KYDLP_ENGINE_BASE_DIR/log

KYDLP_ENGINE_POLICY_DATABASE_PATH=$KYDLP_ENGINE_DATABASE_DIR/kydlp.policy.db
KYDLP_ENGINE_SCANTASK_DATABASE_PATH=$KYDLP_ENGINE_DATABASE_DIR/kydlp.scantask.db
KYDLP_ENGINE_INCIDENT_DATABASE_PATH=$KYDLP_ENGINE_DATABASE_DIR/kydlp.incident.db
KYDLP_ENGINE_KWTEMPLATE_DATABASE_PATH=$KYDLP_ENGINE_DATABASE_DIR/kydlp.kwtemplate.db

# 敏感信息扫描客户端
KYDLP_ENGINE_CLIENT_BASE_DIR=/opt/kydlp-control-discovery-client
KYDLP_ENGINE_CLIENT_LOG_DIR=$KYDLP_ENGINE_CLIENT_BASE_DIR/log

if [ ! -d $KYDLP_ENGINE_DATABASE_DIR ]; then
        mkdir -p $KYDLP_ENGINE_DATABASE_DIR
fi
chmod -R 777 $KYDLP_ENGINE_DATABASE_DIR

if [ ! -d $KYDLP_ENGINE_SOCKET_DIR ]; then
        mkdir -p $KYDLP_ENGINE_SOCKET_DIR
fi
chmod -R 777 $KYDLP_ENGINE_SOCKET_DIR

if [ ! -d $KYDLP_ENGINE_LOG_DIR ]; then
        mkdir -p $KYDLP_ENGINE_LOG_DIR
fi
chmod -R 777 $KYDLP_ENGINE_LOG_DIR

if [ -e $KYDLP_ENGINE_POLICY_DATABASE_PATH ]; then
        chmod 644 $KYDLP_ENGINE_POLICY_DATABASE_PATH
fi
if [ -e $KYDLP_ENGINE_SCANTASK_DATABASE_PATH ]; then
        chmod 644 $KYDLP_ENGINE_SCANTASK_DATABASE_PATH
fi
if [ -e $KYDLP_ENGINE_INCIDENT_DATABASE_PATH ]; then
        chmod 644 $KYDLP_ENGINE_INCIDENT_DATABASE_PATH
fi
if [ -e $KYDLP_ENGINE_KWTEMPLATE_DATABASE_PATH ]; then
        chmod 644 $KYDLP_ENGINE_KWTEMPLATE_DATABASE_PATH
fi

if [ ! -d $KYDLP_ENGINE_CLIENT_LOG_DIR ]; then
        mkdir -p $KYDLP_ENGINE_CLIENT_LOG_DIR
fi
chmod -R 777 $KYDLP_ENGINE_CLIENT_LOG_DIR
