summary |
shortlog |
log |
commit | commitdiff |
tree
raw |
patch |
inline | side by side (from parent 1:
83bc6c4)
* Replaced `echo ~$USER` trick with our standard $PATHBITS implementation
-domtool-admin grant $1 user $1
-domtool-admin grant $1 path `sh -c "echo ~$1"`
+USER="$1"
+if test -z "$USER"; then
+ echo Usage: domtool-addacl USERNAME
+ exit 1
+fi
+
+PATHBITS=`echo $USER | head -c 1`/`echo $USER | head -c 2`/$USER
+HOMEPATH=/afs/hcoop.net/user/$PATHBITS
+
+domtool-admin grant $USER user $USER
+domtool-admin grant $USER path $HOMEPATH
# disabled since we want to discourage the use of unix groups
# disabled since we want to discourage the use of unix groups
-#domtool-admin grant $1 group $1
\ No newline at end of file
+#domtool-admin grant $USER group $USER
+USER="$1"
+if test -z "$USER"; then
+ echo Usage: domtool-addcert USERNAME
+ exit 1
+fi
+
KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$1
KEYFILE=$KEYDIR/key.pem
CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$1.pem
KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$1
KEYFILE=$KEYDIR/key.pem
CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$1.pem
mkdir -p $KEYDIR
openssl genrsa -out $KEYFILE
chown -R domtool.domtool $KEYDIR
mkdir -p $KEYDIR
openssl genrsa -out $KEYFILE
chown -R domtool.domtool $KEYDIR
+fs sa $KEYDIR $USER read
echo "." >$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
-echo "$1" >>$KEYIN
-echo "$1@hcoop.net" >>$KEYIN
+echo "$USER" >>$KEYIN
+echo "$USER@hcoop.net" >>$KEYIN
echo "" >>$KEYIN
echo "" >>$KEYIN
openssl req -new -key $KEYFILE -out $NEWREQ -days 365 <$KEYIN
echo "" >>$KEYIN
echo "" >>$KEYIN
openssl req -new -key $KEYFILE -out $NEWREQ -days 365 <$KEYIN
- KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$1
+USER="$1"
+if test -z "$USER"; then
+ echo Usage: domtool-addcert USERNAME
+ exit 1
+fi
+
+ KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$USER
-CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$1.pem
+CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$USER.pem
NEWREQ=~/.newreq.pem
NEW=~/.new.pem
KEYIN=~/.keyin
NEWREQ=~/.newreq.pem
NEW=~/.new.pem
KEYIN=~/.keyin
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
-echo "$1" >>$KEYIN
-echo "$1@hcoop.net" >>$KEYIN
+echo "$USER" >>$KEYIN
+echo "$USER@hcoop.net" >>$KEYIN
echo "" >>$KEYIN
echo "" >>$KEYIN
openssl req -new -key $KEYFILE -out $NEWREQ -days 365 <$KEYIN
echo "" >>$KEYIN
echo "" >>$KEYIN
openssl req -new -key $KEYFILE -out $NEWREQ -days 365 <$KEYIN
-rm -rf /afs/hcoop.net/common/etc/domtool/keys/$1
-rm /afs/hcoop.net/common/etc/domtool/certs/$1.pem
-domtool-admin rmuser $1
+USER="$1"
+
+if test -z "$USER"; then
+ echo Usage: domtool-rmuser USERNAME
+ exit 1
+fi
+
+rm -rf /afs/hcoop.net/common/etc/domtool/keys/$USER
+rm /afs/hcoop.net/common/etc/domtool/certs/$USER.pem
+domtool-admin rmuser $USER