Commit | Line | Data |
---|---|---|
abfe84ca CE |
1 | #!/bin/bash -ex |
2 | ||
3 | # MUST be executed: | |
4 | # - on fritz | |
5 | # - as a user with an /etc/sudoers line | |
6 | # - member of "wheel" unix group on deleuze (FIXME: TRUE?) | |
7 | # - while holding tickets for a user who can 'ssh -K' to mire | |
8 | # - and is a member of "wheel" on mire | |
9 | # - while holding tokens for a user who is: | |
10 | # - a member of system:administrator | |
11 | # - listed in 'bos listusers fritz' | |
12 | # - and who has been set up with Domtool admin privileges by: | |
13 | # - running 'domtool-adduser $USER' while holding AFS admin tokens as | |
14 | # someone who is already a Domtool admin | |
15 | # - running 'domtool-admin grant $USER priv all' as someone who is already a | |
16 | # Domtool admin | |
17 | # (To bootstrap yourself into admindom: | |
18 | # 1. Run '/etc/init.d/domtool-server stop' on deleuze. | |
19 | # 2. Run '/etc/init.d/domtool-slave stop' on all Domtool slave machines | |
20 | # (e.g., mire). | |
21 | # 3. Edit ~domtool/acl, following the example of adamc_admin to grant | |
22 | # yourself 'priv all'. | |
23 | # 4. Run '/etc/init.d/domtool-server start' on deleuze. | |
24 | # 5. Run '/etc/init.d/domtool-slave start' on all Domtool slave | |
25 | # machines. | |
26 | # 6. Run 'domtool-adduser' as above.) | |
27 | ||
28 | NEWUSER=$1 | |
29 | ||
30 | if test -z "$NEWUSER"; then | |
31 | echo "Invoke as create-user <USERNAME>" | |
32 | exit 1 | |
33 | fi | |
34 | ||
35 | source /afs/hcoop.net/common/etc/scripts/lib/create-user-lib.sh | |
36 | ||
37 | create_pts_user | |
38 | create_pts_user_daemon | |
39 | export_user_keytabs | |
40 | ||
41 | create_home_volume | |
42 | create_mail_volume | |
43 | ||
44 | ensure_afs_servers_synced | |
45 | ||
46 | seed_user_hcoop_directories | |
47 | setup_user_databases | |
48 | create_dav_locks | |
49 | ||
50 | enable_domtool | |
51 | ||
52 | subscribe_to_lists |