Crawl4AI RAG MCP Server

#!/bin/bash -eu cmd="$1" function running_as_root { test "$(id -u)" = "0" } # If we're running as root, then run as the neo4j user. Otherwise # docker is running with --user and we simply use that user. Note # that su-exec, despite its name, does not replicate the functionality # of exec, so we need to use both if running_as_root; then userid="neo4j" groupid="neo4j" exec_cmd="exec su-exec neo4j" else userid="$(id -u)" groupid="$(id -g)" exec_cmd="exec" fi readonly userid readonly groupid readonly exec_cmd # Need to chown the home directory - but a user might have mounted a # volume here (notably a conf volume). So take care not to chown # volumes (stuff not owned by neo4j) if running_as_root; then # Non-recursive chown for the base directory chown "${userid}":"${groupid}" "${NEO4J_HOME}" chmod 700 "${NEO4J_HOME}" fi while IFS= read -r -d '' dir do if running_as_root && [[ "$(stat -c %U "${dir}")" = "neo4j" ]]; then # Using mindepth 1 to avoid the base directory here so recursive is OK chown -R "${userid}":"${groupid}" "${dir}" chmod -R 700 "${dir}" fi done < <(find "${NEO4J_HOME}" -type d -mindepth 1 -maxdepth 1 -print0) # Data dir is chowned later if [ "${cmd}" == "dump-config" ]; then if [ -d /conf ]; then ${exec_cmd} cp --recursive "${NEO4J_HOME}"/conf/* /conf exit 0 else echo >&2 "You must provide a /conf volume" exit 1 fi fi # Env variable naming convention: # - prefix NEO4J_ # - double underscore char '__' instead of single underscore '_' char in the setting name # - underscore char '_' instead of dot '.' char in the setting name # Example: # NEO4J_dbms_tx__log_rotation_retention__policy env variable to set # dbms.tx_log.rotation.retention_policy setting # Backward compatibility - map old hardcoded env variables into new naming convention (if they aren't set already) # Set some to default values if unset : ${NEO4J_dbms_tx__log_rotation_retention__policy:=${NEO4J_dbms_txLog_rotation_retentionPolicy:-"100M size"}} : ${NEO4J_wrapper_java_additional:=${NEO4J_UDC_SOURCE:-"-Dneo4j.ext.udc.source=docker"}} : ${NEO4J_dbms_memory_heap_initial__size:=${NEO4J_dbms_memory_heap_maxSize:-"512M"}} : ${NEO4J_dbms_memory_heap_max__size:=${NEO4J_dbms_memory_heap_maxSize:-"512M"}} : ${NEO4J_dbms_unmanaged__extension__classes:=${NEO4J_dbms_unmanagedExtensionClasses:-}} : ${NEO4J_dbms_allow__format__migration:=${NEO4J_dbms_allowFormatMigration:-}} : ${NEO4J_dbms_connectors_default__advertised__address:=${NEO4J_dbms_connectors_defaultAdvertisedAddress:-}} : ${NEO4J_ha_server__id:=${NEO4J_ha_serverId:-}} : ${NEO4J_ha_initial__hosts:=${NEO4J_ha_initialHosts:-}} : ${NEO4J_causal__clustering_expected__core__cluster__size:=${NEO4J_causalClustering_expectedCoreClusterSize:-}} : ${NEO4J_causal__clustering_initial__discovery__members:=${NEO4J_causalClustering_initialDiscoveryMembers:-}} : ${NEO4J_causal__clustering_discovery__listen__address:=${NEO4J_causalClustering_discoveryListenAddress:-"0.0.0.0:5000"}} : ${NEO4J_causal__clustering_discovery__advertised__address:=${NEO4J_causalClustering_discoveryAdvertisedAddress:-"$(hostname):5000"}} : ${NEO4J_causal__clustering_transaction__listen__address:=${NEO4J_causalClustering_transactionListenAddress:-"0.0.0.0:6000"}} : ${NEO4J_causal__clustering_transaction__advertised__address:=${NEO4J_causalClustering_transactionAdvertisedAddress:-"$(hostname):6000"}} : ${NEO4J_causal__clustering_raft__listen__address:=${NEO4J_causalClustering_raftListenAddress:-"0.0.0.0:7000"}} : ${NEO4J_causal__clustering_raft__advertised__address:=${NEO4J_causalClustering_raftAdvertisedAddress:-"$(hostname):7000"}} : ${NEO4J_dbms_connectors_default__listen__address:="0.0.0.0"} : ${NEO4J_dbms_connector_http_listen__address:="0.0.0.0:7474"} : ${NEO4J_dbms_connector_https_listen__address:="0.0.0.0:7473"} : ${NEO4J_dbms_connector_bolt_listen__address:="0.0.0.0:7687"} : ${NEO4J_ha_host_coordination:="$(hostname):5001"} : ${NEO4J_ha_host_data:="$(hostname):6001"} # unset old hardcoded unsupported env variables unset NEO4J_dbms_txLog_rotation_retentionPolicy NEO4J_UDC_SOURCE \ NEO4J_dbms_memory_heap_maxSize NEO4J_dbms_memory_heap_maxSize \ NEO4J_dbms_unmanagedExtensionClasses NEO4J_dbms_allowFormatMigration \ NEO4J_dbms_connectors_defaultAdvertisedAddress NEO4J_ha_serverId \ NEO4J_ha_initialHosts NEO4J_causalClustering_expectedCoreClusterSize \ NEO4J_causalClustering_initialDiscoveryMembers \ NEO4J_causalClustering_discoveryListenAddress \ NEO4J_causalClustering_discoveryAdvertisedAddress \ NEO4J_causalClustering_transactionListenAddress \ NEO4J_causalClustering_transactionAdvertisedAddress \ NEO4J_causalClustering_raftListenAddress \ NEO4J_causalClustering_raftAdvertisedAddress if [ -d /conf ]; then find /conf -type f -exec cp {} "${NEO4J_HOME}"/conf \; fi if [ -d /ssl ]; then NEO4J_dbms_directories_certificates="/ssl" fi if [ -d /plugins ]; then NEO4J_dbms_directories_plugins="/plugins" fi if [ -d /logs ]; then NEO4J_dbms_directories_logs="/logs" fi if [ -d /import ]; then NEO4J_dbms_directories_import="/import" fi if [ -d /metrics ]; then NEO4J_dbms_directories_metrics="/metrics" fi # set the neo4j initial password only if you run the database server if [ "${cmd}" == "neo4j" ]; then if [ "${NEO4J_AUTH:-}" == "none" ]; then NEO4J_dbms_security_auth__enabled=false elif [[ "${NEO4J_AUTH:-}" == neo4j/* ]]; then password="${NEO4J_AUTH#neo4j/}" if [ "${password}" == "neo4j" ]; then echo >&2 "Invalid value for password. It cannot be 'neo4j', which is the default." exit 1 fi # Will exit with error if users already exist (and print a message explaining that) bin/neo4j-admin set-initial-password "${password}" || true elif [ -n "${NEO4J_AUTH:-}" ]; then echo >&2 "Invalid value for NEO4J_AUTH: '${NEO4J_AUTH}'" exit 1 fi fi # list env variables with prefix NEO4J_ and create settings from them unset NEO4J_AUTH NEO4J_SHA256 NEO4J_TARBALL for i in $( set | grep ^NEO4J_ | awk -F'=' '{print $1}' | sort -rn ); do setting=$(echo ${i} | sed 's|^NEO4J_||' | sed 's|_|.|g' | sed 's|\.\.|_|g') value=$(echo ${!i}) # Don't allow settings with no value or settings that start with a number (neo4j converts settings to env variables and you cannot have an env variable that starts with a number) if [[ -n ${value} ]]; then if [[ ! "${setting}" =~ ^[0-9]+.*$ ]]; then if grep -q -F "${setting}=" "${NEO4J_HOME}"/conf/neo4j.conf; then # Remove any lines containing the setting already sed --in-place "/^${setting}=.*/d" "${NEO4J_HOME}"/conf/neo4j.conf fi # Then always append setting to file echo "${setting}=${value}" >> "${NEO4J_HOME}"/conf/neo4j.conf else echo >&2 "WARNING: ${setting} not written to conf file because settings that start with a number are not permitted" fi fi done # Chown the data dir now that (maybe) an initial password has been # set (this is a file in the data dir) if running_as_root; then chmod -R 777 /data chown -R "${userid}":"${groupid}" /data fi # if we're running as root and the logs directory is not writable by the neo4j user, then chown it. # this situation happens if no user is passed to docker run and the /logs directory is mounted. if running_as_root && [[ "$(stat -c %U /logs)" != "neo4j" ]]; then #if [[ $(stat -c %u /logs) != $(id -u "${userid}") ]]; then echo "/logs directory is not writable. Changing the directory owner to ${userid}:${groupid}" # chown the log dir if it's not writable chmod -R 777 /logs chown -R "${userid}":"${groupid}" /logs fi # If we're running as a non-default user and we can't write to the logs directory then user needs to change directory permissions manually. # This happens if a user is passed to docker run and an unwritable log directory is mounted. if ! running_as_root && [[ ! -w /logs ]]; then echo "User does not have write permissions to mounted log directory." echo "Manually grant write permissions for the directory and try again." exit 1 fi [ -f "${EXTENSION_SCRIPT:-}" ] && . ${EXTENSION_SCRIPT} # Use su-exec to drop privileges to neo4j user # Note that su-exec, despite its name, does not replicate the # functionality of exec, so we need to use both if [ "${cmd}" == "neo4j" ]; then ${exec_cmd} neo4j console else ${exec_cmd} "$@" fi