| 1 | #!/bin/bash -e |
| 2 | |
| 3 | WHERE="'%.hcoop.net'" |
| 4 | |
| 5 | case $1 in |
| 6 | adduser) |
| 7 | USERNAME=$2 |
| 8 | PASSWORD=$3 |
| 9 | |
| 10 | sudo -H mysql -e "CREATE USER '$USERNAME'@$WHERE IDENTIFIED BY '$PASSWORD';" |
| 11 | ;; |
| 12 | |
| 13 | passwd) |
| 14 | USERNAME=$2 |
| 15 | PASSWORD=$3 |
| 16 | |
| 17 | sudo -H mysql -e "SET PASSWORD FOR '$USERNAME'@$WHERE = PASSWORD('$PASSWORD');" |
| 18 | ;; |
| 19 | |
| 20 | createdb) |
| 21 | USERNAME=$2 |
| 22 | DBNAME_BASE=$3 |
| 23 | DBNAME="${USERNAME}_${DBNAME_BASE}" |
| 24 | DIR=/afs/hcoop.net/common/databases/${USERNAME:0:1}/${USERNAME:0:2}/$USERNAME/mysql |
| 25 | |
| 26 | kinit -k -t /etc/keytabs/root.admin.keytab root/admin |
| 27 | aklog |
| 28 | |
| 29 | if [ ! -d $DIR ]; then |
| 30 | echo WARNING: $DIR must already exist! |
| 31 | fi |
| 32 | |
| 33 | mkdir $DIR/$DBNAME |
| 34 | chown mysql:mysql $DIR/$DBNAME |
| 35 | chmod 770 $DIR/$DBNAME |
| 36 | ln -sf $DIR/$DBNAME /var/lib/mysql/$DBNAME |
| 37 | fs setacl -dir $DIR/$DBNAME/ -acl system:mysql all |
| 38 | sudo -H mysql -e "GRANT CREATE,CREATE TEMPORARY TABLE,SELECT,INSERT,UPDATE,DELETE,INDEX,ALTER,CREATE VIEW,SHOW VIEW,LOCK TABLES,GRANT OPTION ON TABLE * TO '$USERNAME'@$WHERE;" $DBNAME |
| 39 | |
| 40 | sudo -H mysql -e "FLUSH PRIVILEGES;" |
| 41 | ;; |
| 42 | |
| 43 | dropdb) |
| 44 | USERNAME=$2 |
| 45 | DBNAME_BASE=$3 |
| 46 | DBNAME="${USERNAME}_${DBNAME_BASE}" |
| 47 | |
| 48 | sudo -H mysql -e "DROP DATABASE $DBNAME;" |
| 49 | ;; |
| 50 | |
| 51 | grant) |
| 52 | USERNAME=$2 |
| 53 | DBNAME_BASE=$3 |
| 54 | DBNAME="${USERNAME}_${DBNAME_BASE}" |
| 55 | |
| 56 | sudo -H mysql -e "GRANT CREATE,SELECT,INSERT,UPDATE,DELETE,INDEX,ALTER,CREATE VIEW,SHOW VIEW,LOCK TABLES,GRANT OPTION ON TABLE * TO '$USERNAME'@$WHERE;" $DBNAME |
| 57 | ;; |
| 58 | |
| 59 | *) |
| 60 | echo "Usage: domtool-mysql [adduser <user> <password> | passwd <user> <password> | createdb <user> <db> | dropdb <user> <db> | grant <user> <db>]" |
| 61 | ;; |
| 62 | esac |