#!/bin/bash
set -e

# Set permissions for bitcoind
echo "## Set permissions on /var/lib/tor dir ###"
chmod 750 /var/lib/tor

echo "## Start tor #############################"

tor_options=(
  --SocksPort "$NET_DOJO_TOR_IPV4:9050"
  --SocksPolicy "accept 172.28.0.0/16"
  --SocksPolicy "reject *"
  --DataDirectory /var/lib/tor/.tor
  --DataDirectoryGroupReadable 1
  --HiddenServiceDir /var/lib/tor/hsv2dojo
  --HiddenServiceVersion 2
  --HiddenServicePort "80 $NET_DMZ_NGINX_IPV4:80"
  --HiddenServiceDir /var/lib/tor/hsv3dojo
  --HiddenServiceVersion 3
  --HiddenServicePort "80 $NET_DMZ_NGINX_IPV4:80"
)

if [ "$BITCOIND_INSTALL" == "on" ]; then
  if [ "$BITCOIND_LISTEN_MODE" == "on" ]; then
    tor_options+=(--HiddenServiceDir /var/lib/tor/hsv2bitcoind)
    tor_options+=(--HiddenServiceVersion 2)
    tor_options+=(--HiddenServicePort "8333 $NET_DOJO_BITCOIND_IPV4:8333")
    tor_options+=(--HiddenServiceDirGroupReadable 1)

    tor_options+=(--HiddenServiceDir /var/lib/tor/hsv3bitcoind)
    tor_options+=(--HiddenServiceVersion 3)
    tor_options+=(--HiddenServicePort "8333 $NET_DOJO_BITCOIND_IPV4:8333")
    tor_options+=(--HiddenServiceDirGroupReadable 1)
  fi
fi

if [ "$EXPLORER_INSTALL" == "on" ]; then
  tor_options+=(--HiddenServiceDir /var/lib/tor/hsv2explorer)
  tor_options+=(--HiddenServiceVersion 2)
  tor_options+=(--HiddenServicePort "80 $NET_DMZ_NGINX_IPV4:9080")
  tor_options+=(--HiddenServiceDirGroupReadable 1)

  tor_options+=(--HiddenServiceDir /var/lib/tor/hsv3explorer)
  tor_options+=(--HiddenServiceVersion 3)
  tor_options+=(--HiddenServicePort "80 $NET_DMZ_NGINX_IPV4:9080")
  tor_options+=(--HiddenServiceDirGroupReadable 1)
fi

if [ "$WHIRLPOOL_INSTALL" == "on" ]; then
  tor_options+=(--HiddenServiceDir /var/lib/tor/hsv2whirlpool)
  tor_options+=(--HiddenServiceVersion 2)
  tor_options+=(--HiddenServicePort "80 $NET_DMZ_NGINX_IPV4:8898")
  tor_options+=(--HiddenServiceDirGroupReadable 1)

  tor_options+=(--HiddenServiceDir /var/lib/tor/hsv3whirlpool)
  tor_options+=(--HiddenServiceVersion 3)
  tor_options+=(--HiddenServicePort "80 $NET_DMZ_NGINX_IPV4:8898")
  tor_options+=(--HiddenServiceDirGroupReadable 1)
fi

if [ "$TOR_USE_BRIDGES" == "on" ]; then
  tor_options+=(--ClientTransportPlugin "obfs4 exec /usr/local/bin/obfs4proxy")
  tor_options+=(--UseBridges 1)
  tor_options+=(--Bridge "$TOR_BRIDGE_1")
  tor_options+=(--Bridge "$TOR_BRIDGE_2")
  tor_options+=(--Bridge "$TOR_BRIDGE_3")
fi

tor "${tor_options[@]}"