X-Git-Url: http://git.hcoop.net/clinton/scripts.git/blobdiff_plain/64f69c080c7221b8ab7016a5403c0272510ec6b5..35636de0d6504f7859c1004973ac207d2c2259fa:/create-user

diff --git a/create-user b/create-user
index 6ffab03..7cc369b 100755
--- a/create-user
+++ b/create-user
@@ -175,7 +175,6 @@ mkdir -p `dirname $MAILPATH`
 fs ls $MAILPATH || fs mkm $MAILPATH         mail.$USER
 fs ls $HOMEPATH/Maildir || fs mkm $HOMEPATH/Maildir mail.$USER
 fs sa $MAILPATH $USER            all
-fs sa $MAILPATH system:anyuser   l
 fs sa $MAILPATH $USER.mailfilter all
 
 # DATABASE VOLUME
@@ -223,16 +222,10 @@ vos syncvldb deleuze
 fs checkvolumes
 ssh mire.hcoop.net fs checkvolumes
 
-#
-# Finally, set password for main user's principal
-# Aborting this operation is harmless. Just re-invoke cpw.
-#
-# kadmin.local doesn't report errors properly, so we have to
-# check manually
-# 
-sudo rm -f /tmp/kadmin.out
-sudo kadmin.local -p root/admin -q "cpw $USER@HCOOP.NET" \
-  2>&1 | tee /tmp/kadmin.out
-cat /tmp/kadmin.out | grep 'Password for .* changed'
-sudo rm -f /tmp/kadmin.out
-
+# Technically this is not idempotent.  This is not *too* bad because
+# of the fact that in AFS non-system:administrators users can't change
+# the group/owner of a file anyways.  However, users still might want
+# to know which other users created certain files (in, say, a dropbox
+# or something like that).  FIMXE.
+chown -R $USER:nogroup $HOMEPATH
+chown -R $USER:nogroup $MAILPATH