#!/bin/bash
# MUST be executed:
-# - on deleuze
+# - on the kerberos domain controller
# - as a user with an /etc/sudoers line
+# - as a user with domtool-admin rights
# - while holding system:administrator tokens
USER=$1
PATHBITS=`echo $USER | head -c 1`/`echo $USER | head -c 2`/$USER
HOMEPATH=/afs/hcoop.net/user/$PATHBITS
MAILPATH=/afs/hcoop.net/common/email/$PATHBITS
-DBPATH=/afs/.hcoop.net/common/.databases/$PATHBITS
# We don't use separate partitions for logs
#LOGSPATH=/afs/.hcoop.net/common/.logs/$USER
sudo rm -f /etc/keytabs/user.daemon/$USER
# LDAP
-sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
- uid=$USER,ou=People,dc=hcoop,dc=net
-sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
- uid=$USER.cgi,ou=People,dc=hcoop,dc=net
-sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
- uid=$USER.mailfilter,ou=People,dc=hcoop,dc=net
-sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
- cn=$USER,ou=Group,dc=hcoop,dc=net
-sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
- cn=$USER.cgi,ou=Group,dc=hcoop,dc=net
-sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
- cn=$USER.mailfilter,ou=Group,dc=hcoop,dc=net
-sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
- cn=$USER.daemon,ou=Group,dc=hcoop,dc=net
+# sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
+# uid=$USER,ou=People,dc=hcoop,dc=net
+# sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
+# uid=$USER.cgi,ou=People,dc=hcoop,dc=net
+# sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
+# uid=$USER.mailfilter,ou=People,dc=hcoop,dc=net
+# sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
+# cn=$USER,ou=Group,dc=hcoop,dc=net
+# sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
+# cn=$USER.cgi,ou=Group,dc=hcoop,dc=net
+# sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
+# cn=$USER.mailfilter,ou=Group,dc=hcoop,dc=net
+# sudo ldapdelete -v -x -D cn=admin,dc=hcoop,dc=net -y /etc/ldap.secret \
+# cn=$USER.daemon,ou=Group,dc=hcoop,dc=net
# Remove from domtool
domtool-rmuser $USER
vos rename mail.$USER mail.$USER.d
#XXX vos rename db.$USER db.$USER.d
-vos release common.databases
+#vos release common.databases
#vos release common.logs
sudo kadmin.local -q "delprinc -force $USER@HCOOP.NET"
#fs rm /afs/hcoop.net/old/mail/$PATHBITS
#fs rm /afs/hcoop.net/old/logs/$PATHBITS
-vos syncserv deleuze
-vos syncvldb deleuze
+vos syncserv fritz
+vos syncvldb fritz
fs checkvolumes
# Remove user from all of our mailing lists
-echo $USER@hcoop.net | sudo -u list \
+echo $USER@hcoop.net | ssh -K deleuze sudo -u list \
/var/lib/mailman/bin/remove_members --fromall -f -