SiteForge

1.0.0

functions/Get-SiteForgeStatus.ps1

                                function Get-SiteForgeStatus {

    [CmdletBinding()]

    param()

    Write-Host "`n🧭 Gathering SiteForge status..." -ForegroundColor Cyan

    $status = [ordered]@{}

    # ───── Basic System Info ─────

    $status['Hostname']    = (hostname)

    $status['OS']          = (lsb_release -ds 2>$null) -replace '"'

    $status['Uptime']      = (uptime -p) -replace '^up ', ''

    $status['Date & Time'] = (date)

    $status['PowerShell']  = $PSVersionTable.PSVersion.ToString()

    # ───── NGINX Info ─────

    try {

        $nginxVersion = (nginx -v 2>&1) -replace 'nginx version: ', ''

        $status['NGINX Version'] = $nginxVersion

        $status['NGINX Status']  = (sudo systemctl is-active nginx)

    } catch {

        $status['NGINX Version'] = "Not installed"

        $status['NGINX Status']  = "N/A"

    }

    # ───── Git Info ─────

    try {

        $status['Git Version'] = (git --version) -replace 'git version ', ''

    } catch {

        $status['Git Version'] = "Not installed"

    }

    # --- SSL certificate existence ---

    try {

        if ($webDomain) {

            $sslDomain = $webDomain

        } else {

            $nginxConf = Get-ChildItem /etc/nginx/sites-available -File | Select-Object -First 1

            $sslDomain = if ($nginxConf) { $nginxConf.BaseName } else { (hostname) }

        }

        $sslPath = "/etc/letsencrypt/live/$sslDomain/fullchain.pem"

        if (Test-Path $sslPath) {

            $file = Get-Item $sslPath

            $kbSize = [math]::Round($file.Length / 1KB, 1)

            if ($kbSize -lt 1) { $sizeText = "<1 KB" } else { $sizeText = "$kbSize KB" }

            $status['SSL Certificate'] = "Detected for $sslDomain ($sizeText, modified $($file.LastWriteTime.ToString('yyyy-MM-dd HH:mm')))"

        } else {

            $status['SSL Certificate'] = "Missing at /etc/letsencrypt/live/$sslDomain/"

        }

    } catch {

        $status['SSL Certificate'] = "Error checking SSL certificate"

    }

    # ───── Web Root Info ─────

    if (Test-Path "/var/www/html") {

        $webFiles = (Get-ChildItem /var/www/html -Recurse -ErrorAction SilentlyContinue | Measure-Object).Count

        $status['Web Root'] = "/var/www/html ($webFiles files)"

    } else {

        $status['Web Root'] = "Missing"

    }

    # ───── Git Repo Info ─────

    if ($gitRepo) {

        $status['Git Repo'] = $gitRepo

    } else {

        $status['Git Repo'] = "Not configured (`$gitRepo missing in profile)"

    }

    # ───── Firewall Info ─────

    try {

        if (Get-Command ufw -ErrorAction SilentlyContinue) {

            $ufwOutput = (sudo ufw status | Out-String)

            if ($ufwOutput -match "Status: active") {

                $ports = ($ufwOutput -split "`n" | Where-Object {$_ -match "ALLOW"}) -replace '\s+ALLOW.*',''

                $ports = ($ports | Where-Object {$_ -ne ""}) -join ', '

                if (-not $ports) { $ports = "custom rules" }

                $status['Firewall'] = "active ($ports)"

            } else {

                $status['Firewall'] = "inactive"

            }

        } else {

            $status['Firewall'] = "not installed"

        }

    } catch {

        $status['Firewall'] = "Error checking firewall"

    }

# ───── Fail2Ban Info ─────

try {

    if (Get-Command fail2ban-client -ErrorAction SilentlyContinue) {

        $fbStatus = (sudo systemctl is-active fail2ban 2>$null)

        if ($fbStatus -eq "active") {

            # Get the client summary quietly

            $summary = (sudo fail2ban-client status 2>&1) | Out-String

            if ($summary -match "Jail list:") {

                $jails = ($summary -split "Jail list:")[1].Trim() -split ",\s*"

                $jails = $jails | Where-Object { $_ -and $_.Trim() -ne "" }

                $jailCount = $jails.Count

                $totalBanned = 0

                foreach ($j in $jails) {

                    $cleanName = $j.Trim()

                    $bannedLine = (sudo fail2ban-client status $cleanName 2>$null |

                                   Select-String "Currently banned:" -Quiet)

                    if ($bannedLine) {

                        $bannedCount = ((sudo fail2ban-client status $cleanName |

                                         Select-String "Currently banned:").ToString().Split(":")[-1].Trim())

                        if ([int]::TryParse($bannedCount, [ref]0)) {

                            $totalBanned += [int]$bannedCount

                        }

                    }

                }

                $status['Fail2Ban'] = "active ($jailCount jail(s), $totalBanned banned)"

            }

            else {

                $status['Fail2Ban'] = "active (no jails listed)"

            }

        }

        else {

            $status['Fail2Ban'] = "installed but inactive"

        }

    }

    else {

        $status['Fail2Ban'] = "not installed"

    }

} catch {

    $status['Fail2Ban'] = "Error checking Fail2Ban: $($_.Exception.Message)"

}

    # ───── Output ─────

    Write-Host "`n🧩 SITEFORGE STATUS" -ForegroundColor Green

    Write-Host "───────────────────────────────"

    foreach ($key in $status.Keys) {

        Write-Host ("{0,-18} : {1}" -f $key, $status[$key])

    }

    Write-Host "───────────────────────────────"

    Write-Host "`n💡 Tip: Run 'Update-Website' to redeploy your latest version."

}