[hcoop/scripts.git] / create-user-new

#!/bin/bash -ex

# MUST be executed:
#  - on fritz
#  - as a user with an /etc/sudoers line
#  - member of "wheel" unix group on deleuze (FIXME: TRUE?)
#  - while holding tickets for a user who can 'ssh -K' to all nodes
#  - while holding tokens for a user who is:
#     - a member of system:administrator
#     - listed in 'bos listusers fritz'
#  - and who has been set up with Domtool admin privileges by:
#     - running 'domtool-adduser $USER' while holding AFS admin tokens as
#       someone who is already a Domtool admin
#     - running 'domtool-admin grant $USER priv all' as someone who is already a
#       Domtool admin
#       (To bootstrap yourself into admindom:
#         1. Run '/etc/init.d/domtool-server stop' on deleuze.
#         2. Run '/etc/init.d/domtool-slave stop' on all Domtool slave machines
#         3. Edit ~domtool/acl, following the example of adamc_admin to grant
#             yourself 'priv all'.
#         4. Run '/etc/init.d/domtool-server start' on deleuze.
#         5. Run '/etc/init.d/domtool-slave start' on all Domtool slave
#            machines.
#         6. Run 'domtool-adduser' as above.)

NEWUSER=$1

if test -z "$NEWUSER"; then
	echo "Invoke as create-user <USERNAME>"
	exit 1
fi

source /afs/hcoop.net/common/etc/scripts/lib/create-user-lib.sh

create_pts_user
create_pts_user_daemon
export_user_keytabs

create_home_volume
create_mail_volume

ensure_afs_servers_synced

seed_user_hcoop_directories
setup_user_databases
create_dav_locks

enable_domtool

subscribe_to_lists
Commit	Line	Data
abfe84ca CE	1	#!/bin/bash -ex
	2
	3	# MUST be executed:
	4	# - on fritz
	5	# - as a user with an /etc/sudoers line
	6	# - member of "wheel" unix group on deleuze (FIXME: TRUE?)
652feaf6	7	# - while holding tickets for a user who can 'ssh -K' to all nodes
abfe84ca CE	8	# - while holding tokens for a user who is:
	9	# - a member of system:administrator
	10	# - listed in 'bos listusers fritz'
	11	# - and who has been set up with Domtool admin privileges by:
	12	# - running 'domtool-adduser $USER' while holding AFS admin tokens as
	13	# someone who is already a Domtool admin
	14	# - running 'domtool-admin grant $USER priv all' as someone who is already a
	15	# Domtool admin
	16	# (To bootstrap yourself into admindom:
	17	# 1. Run '/etc/init.d/domtool-server stop' on deleuze.
	18	# 2. Run '/etc/init.d/domtool-slave stop' on all Domtool slave machines
abfe84ca CE	19	# 3. Edit ~domtool/acl, following the example of adamc_admin to grant
	20	# yourself 'priv all'.
	21	# 4. Run '/etc/init.d/domtool-server start' on deleuze.
	22	# 5. Run '/etc/init.d/domtool-slave start' on all Domtool slave
	23	# machines.
	24	# 6. Run 'domtool-adduser' as above.)
	25
	26	NEWUSER=$1
	27
	28	if test -z "$NEWUSER"; then
	29	echo "Invoke as create-user <USERNAME>"
	30	exit 1
	31	fi
	32
	33	source /afs/hcoop.net/common/etc/scripts/lib/create-user-lib.sh
	34
	35	create_pts_user
	36	create_pts_user_daemon
	37	export_user_keytabs
	38
	39	create_home_volume
	40	create_mail_volume
	41
	42	ensure_afs_servers_synced
	43
	44	seed_user_hcoop_directories
	45	setup_user_databases
	46	create_dav_locks
	47
	48	enable_domtool
	49
	50	subscribe_to_lists