[hcoop/scripts.git] / create-user-new

#!/bin/bash -ex

# MUST be executed:
#  - on fritz
#  - as a user with an /etc/sudoers line
#  - member of "wheel" unix group on deleuze (FIXME: TRUE?)
#  - while holding tickets for a user who can 'ssh -K' to mire
#     - and is a member of "wheel" on mire
#  - while holding tokens for a user who is:
#     - a member of system:administrator
#     - listed in 'bos listusers fritz'
#  - and who has been set up with Domtool admin privileges by:
#     - running 'domtool-adduser $USER' while holding AFS admin tokens as
#       someone who is already a Domtool admin
#     - running 'domtool-admin grant $USER priv all' as someone who is already a
#       Domtool admin
#       (To bootstrap yourself into admindom:
#         1. Run '/etc/init.d/domtool-server stop' on deleuze.
#         2. Run '/etc/init.d/domtool-slave stop' on all Domtool slave machines
#            (e.g., mire).
#         3. Edit ~domtool/acl, following the example of adamc_admin to grant
#             yourself 'priv all'.
#         4. Run '/etc/init.d/domtool-server start' on deleuze.
#         5. Run '/etc/init.d/domtool-slave start' on all Domtool slave
#            machines.
#         6. Run 'domtool-adduser' as above.)

NEWUSER=$1

if test -z "$NEWUSER"; then
	echo "Invoke as create-user <USERNAME>"
	exit 1
fi

source /afs/hcoop.net/common/etc/scripts/lib/create-user-lib.sh

create_pts_user
create_pts_user_daemon
export_user_keytabs

create_home_volume
create_mail_volume

ensure_afs_servers_synced

seed_user_hcoop_directories
setup_user_databases
create_dav_locks

enable_domtool

subscribe_to_lists
Commit	Line	Data
abfe84ca CE	1	#!/bin/bash -ex
	2
	3	# MUST be executed:
	4	# - on fritz
	5	# - as a user with an /etc/sudoers line
	6	# - member of "wheel" unix group on deleuze (FIXME: TRUE?)
	7	# - while holding tickets for a user who can 'ssh -K' to mire
	8	# - and is a member of "wheel" on mire
	9	# - while holding tokens for a user who is:
	10	# - a member of system:administrator
	11	# - listed in 'bos listusers fritz'
	12	# - and who has been set up with Domtool admin privileges by:
	13	# - running 'domtool-adduser $USER' while holding AFS admin tokens as
	14	# someone who is already a Domtool admin
	15	# - running 'domtool-admin grant $USER priv all' as someone who is already a
	16	# Domtool admin
	17	# (To bootstrap yourself into admindom:
	18	# 1. Run '/etc/init.d/domtool-server stop' on deleuze.
	19	# 2. Run '/etc/init.d/domtool-slave stop' on all Domtool slave machines
	20	# (e.g., mire).
	21	# 3. Edit ~domtool/acl, following the example of adamc_admin to grant
	22	# yourself 'priv all'.
	23	# 4. Run '/etc/init.d/domtool-server start' on deleuze.
	24	# 5. Run '/etc/init.d/domtool-slave start' on all Domtool slave
	25	# machines.
	26	# 6. Run 'domtool-adduser' as above.)
	27
	28	NEWUSER=$1
	29
	30	if test -z "$NEWUSER"; then
	31	echo "Invoke as create-user <USERNAME>"
	32	exit 1
	33	fi
	34
	35	source /afs/hcoop.net/common/etc/scripts/lib/create-user-lib.sh
	36
	37	create_pts_user
	38	create_pts_user_daemon
	39	export_user_keytabs
	40
	41	create_home_volume
	42	create_mail_volume
	43
	44	ensure_afs_servers_synced
	45
	46	seed_user_hcoop_directories
	47	setup_user_databases
	48	create_dav_locks
	49
	50	enable_domtool
	51
	52	subscribe_to_lists