create-user-new

   1 #!/bin/bash -ex
   2
   3 # MUST be executed:
   4 #  - on fritz
   5 #  - as a user with an /etc/sudoers line
   6 #  - member of "wheel" unix group on deleuze (FIXME: TRUE?)
   7 #  - while holding tickets for a user who can 'ssh -K' to mire
   8 #     - and is a member of "wheel" on mire
   9 #  - while holding tokens for a user who is:
  10 #     - a member of system:administrator
  11 #     - listed in 'bos listusers fritz'
  12 #  - and who has been set up with Domtool admin privileges by:
  13 #     - running 'domtool-adduser $USER' while holding AFS admin tokens as
  14 #       someone who is already a Domtool admin
  15 #     - running 'domtool-admin grant $USER priv all' as someone who is already a
  16 #       Domtool admin
  17 #       (To bootstrap yourself into admindom:
  18 #         1. Run '/etc/init.d/domtool-server stop' on deleuze.
  19 #         2. Run '/etc/init.d/domtool-slave stop' on all Domtool slave machines
  20 #            (e.g., mire).
  21 #         3. Edit ~domtool/acl, following the example of adamc_admin to grant
  22 #             yourself 'priv all'.
  23 #         4. Run '/etc/init.d/domtool-server start' on deleuze.
  24 #         5. Run '/etc/init.d/domtool-slave start' on all Domtool slave
  25 #            machines.
  26 #         6. Run 'domtool-adduser' as above.)
  27
  28 NEWUSER=$1
  29
  30 if test -z "$NEWUSER"; then
  31         echo "Invoke as create-user <USERNAME>"
  32         exit 1
  33 fi
  34
  35 source /afs/hcoop.net/common/etc/scripts/lib/create-user-lib.sh
  36
  37 create_pts_user
  38 create_pts_user_daemon
  39 export_user_keytabs
  40
  41 create_home_volume
  42 create_mail_volume
  43
  44 ensure_afs_servers_synced
  45
  46 seed_user_hcoop_directories
  47 setup_user_databases
  48 create_dav_locks
  49
  50 enable_domtool
  51
  52 subscribe_to_lists