[clinton/scripts.git] / destroy-user

#!/bin/bash

# MUST be executed:
#  - on deleuze
#  - as a user with an /etc/sudoers line
#  - while holding system:administrator tokens

USER=$1
if test -z "$USER"; then
	echo Usage: destroy-user USERNAME
	exit 1
fi

PATHBITS=`echo $USER | head -c 1`/`echo $USER | head -c 2`/$USER
HOMEPATH=/afs/hcoop.net/user/$PATHBITS
MAILPATH=/afs/hcoop.net/common/email/$PATHBITS
DBPATH=/afs/.hcoop.net/common/.databases/$PATHBITS
# We don't use separate partitions for logs
#LOGSPATH=/afs/.hcoop.net/common/.logs/$USER

sudo rm -f /etc/keytabs/mailfilter/$USER
sudo rm -f /etc/keytabs/cgi/$USER
sudo rm -f /etc/keytabs/user.daemon/$USER

# LDAP
sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	uid=$USER,ou=People,dc=hcoop,dc=net
sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	uid=$USER.cgi,ou=People,dc=hcoop,dc=net
sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	uid=$USER.mailfilter,ou=People,dc=hcoop,dc=net
sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	cn=$USER,ou=Group,dc=hcoop,dc=net
sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	cn=$USER.cgi,ou=Group,dc=hcoop,dc=net
sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	cn=$USER.mailfilter,ou=Group,dc=hcoop,dc=net
sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	cn=$USER.daemon,ou=Group,dc=hcoop,dc=net

# Remove from domtool
domtool-rmuser $USER

# Invalidate nscd cache
sudo nscd -i passwd
sudo nscd -i group

# Remove from databases
sudo -u postgres psql -c "DROP TABLESPACE user_$USER"
#sudo -u postgres psql -c "DROP USER $USER"
#sudo -H mysql -e "DROP USER $USER@localhost"

fs rm $MAILPATH
fs rm $HOMEPATH
#fs rm $LOGSPATH
fs rm $DBPATH
fs rm /afs/.hcoop.net/old/user/$PATHBITS
fs rm /afs/.hcoop.net/old/mail/$PATHBITS
#vos remove deleuze.hcoop.net /vicepa user.$USER
#vos remove deleuze.hcoop.net /vicepa mail.$USER
#vos remove deleuze.hcoop.net /vicepa db.$USER
#vos remove deleuze.hcoop.net /vicepa logs.$USER

vos release common.databases
#vos release common.logs

sudo kadmin.local -q "delprinc -force $USER@HCOOP.NET"
sudo kadmin.local -q "delprinc -force $USER/mailfilter@HCOOP.NET"
sudo kadmin.local -q "delprinc -force $USER/cgi@HCOOP.NET"
sudo kadmin.local -q "delprinc -force $USER/daemon@HCOOP.NET"

pts delete $USER
pts delete $USER.mailfilter
pts delete $USER.cgi
pts delete $USER.daemon

#fs rm /afs/hcoop.net/old/user/$PATHBITS
#fs rm /afs/hcoop.net/old/mail/$PATHBITS
#fs rm /afs/hcoop.net/old/logs/$PATHBITS

vos syncserv deleuze
vos syncvldb deleuze
fs checkvolumes

# Remove user from all of our mailing lists
echo $USER@hcoop.net | sudo -u list \
    /var/lib/mailman/bin/remove_members --fromall -f -
Commit	Line	Data
d2462e94	1	#!/bin/bash
	2
	3	# MUST be executed:
	4	# - on deleuze
	5	# - as a user with an /etc/sudoers line
	6	# - while holding system:administrator tokens
	7
	8	USER=$1
1311d6b0	9	if test -z "$USER"; then
	10	echo Usage: destroy-user USERNAME
	11	exit 1
	12	fi
d2462e94	13
	14	PATHBITS=`echo $USER \| head -c 1`/`echo $USER \| head -c 2`/$USER
	15	HOMEPATH=/afs/hcoop.net/user/$PATHBITS
	16	MAILPATH=/afs/hcoop.net/common/email/$PATHBITS
	17	DBPATH=/afs/.hcoop.net/common/.databases/$PATHBITS
	18	# We don't use separate partitions for logs
	19	#LOGSPATH=/afs/.hcoop.net/common/.logs/$USER
	20
	21	sudo rm -f /etc/keytabs/mailfilter/$USER
	22	sudo rm -f /etc/keytabs/cgi/$USER
03807e61	23	sudo rm -f /etc/keytabs/user.daemon/$USER
d2462e94	24
	25	# LDAP
	26	sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	27	uid=$USER,ou=People,dc=hcoop,dc=net
	28	sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	29	uid=$USER.cgi,ou=People,dc=hcoop,dc=net
	30	sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	31	uid=$USER.mailfilter,ou=People,dc=hcoop,dc=net
	32	sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	33	cn=$USER,ou=Group,dc=hcoop,dc=net
	34	sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	35	cn=$USER.cgi,ou=Group,dc=hcoop,dc=net
	36	sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
	37	cn=$USER.mailfilter,ou=Group,dc=hcoop,dc=net
03807e61	38	sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
03807e61	39	cn=$USER.daemon,ou=Group,dc=hcoop,dc=net
d2462e94	40
8791f670	41	# Remove from domtool
	42	domtool-rmuser $USER
	43
d2462e94	44	# Invalidate nscd cache
	45	sudo nscd -i passwd
	46	sudo nscd -i group
	47
	48	# Remove from databases
	49	sudo -u postgres psql -c "DROP TABLESPACE user_$USER"
	50	#sudo -u postgres psql -c "DROP USER $USER"
	51	#sudo -H mysql -e "DROP USER $USER@localhost"
	52
	53	fs rm $MAILPATH
	54	fs rm $HOMEPATH
	55	#fs rm $LOGSPATH
	56	fs rm $DBPATH
1311d6b0	57	fs rm /afs/.hcoop.net/old/user/$PATHBITS
1311d6b0	58	fs rm /afs/.hcoop.net/old/mail/$PATHBITS
2639c68f	59	#vos remove deleuze.hcoop.net /vicepa user.$USER
	60	#vos remove deleuze.hcoop.net /vicepa mail.$USER
	61	#vos remove deleuze.hcoop.net /vicepa db.$USER
d2462e94	62	#vos remove deleuze.hcoop.net /vicepa logs.$USER
	63
	64	vos release common.databases
	65	#vos release common.logs
	66
	67	sudo kadmin.local -q "delprinc -force $USER@HCOOP.NET"
	68	sudo kadmin.local -q "delprinc -force $USER/mailfilter@HCOOP.NET"
	69	sudo kadmin.local -q "delprinc -force $USER/cgi@HCOOP.NET"
03807e61	70	sudo kadmin.local -q "delprinc -force $USER/daemon@HCOOP.NET"
d2462e94	71
	72	pts delete $USER
	73	pts delete $USER.mailfilter
	74	pts delete $USER.cgi
03807e61	75	pts delete $USER.daemon
d2462e94	76
	77	#fs rm /afs/hcoop.net/old/user/$PATHBITS
	78	#fs rm /afs/hcoop.net/old/mail/$PATHBITS
	79	#fs rm /afs/hcoop.net/old/logs/$PATHBITS
	80
	81	vos syncserv deleuze
	82	vos syncvldb deleuze
	83	fs checkvolumes
	84
2a2fcc8e	85	# Remove user from all of our mailing lists
	86	echo $USER@hcoop.net \| sudo -u list \
	87	/var/lib/mailman/bin/remove_members --fromall -f -
1311d6b0	88