From: Clinton Ebadi Date: Wed, 30 Nov 2011 05:42:56 +0000 (-0500) Subject: Update `create-user' to operate on fritz properly X-Git-Url: https://git.hcoop.net/hcoop/scripts.git/commitdiff_plain/6da4c990ed270b9e580b7812626a86d0c060f720 Update `create-user' to operate on fritz properly * It /appeared/ to succeed before for `mb0' but actually failed to do things like create his homedir so... * Tweak to where things work, there is still some needless reliance upon deleuze unfortunately --- diff --git a/create-user b/create-user index 244b6f8..89f44d4 100755 --- a/create-user +++ b/create-user @@ -1,14 +1,14 @@ #!/bin/bash -ex # MUST be executed: -# - on deleuze +# - on fritz # - as a user with an /etc/sudoers line -# - member of "wheel" unix group on deleuze +# - member of "wheel" unix group on deleuze (FIXME: TRUE?) # - while holding tickets for a user who can 'ssh -K' to mire # - and is a member of "wheel" on mire # - while holding tokens for a user who is: # - a member of system:administrator -# - listed in 'bos listusers deleuze' +# - listed in 'bos listusers fritz' # - and who has been set up with Domtool admin privileges by: # - running 'domtool-adduser $USER' while holding AFS admin tokens as # someone who is already a Domtool admin @@ -41,19 +41,23 @@ fi # Run a command on both mire and deleuze; assumes that no escaping is # needed. function mire_and_deleuze() { - $* - ssh -K mire.hcoop.net $* + execute_on_deleuze $* + execute_on_mire $* } -function execute_on_fritz () { - ssh -K fritz.hcoop.net $* +function execute_on_deleuze () { + ssh -K deleuze.hcoop.net $* +} + +function execute_on_mire () { + ssh -K mire.hcoop.net $* } function execute_on_all_machines () { $* ssh -K mire.hcoop.net $* ssh -K hopper.hcoop.net $* - ssh -K fritz.hcoop.net $* + ssh -K deleuze.hcoop.net $* } # @@ -162,7 +166,7 @@ sudo chmod 440 /etc/keytabs/user.daemon/$USER ssh hopper.hcoop.net cd /etc/keytabs\; sudo tar xlpf -) (cd /etc/keytabs sudo tar clpf - user.daemon/$USER | \ - ssh fritz.hcoop.net cd /etc/keytabs\; sudo tar xlpf -) + ssh deleuze.hcoop.net cd /etc/keytabs\; sudo tar xlpf -) # # Create/mount/set-perms on user's volumes (home, mail, databases, logs) @@ -214,7 +218,10 @@ mkdir -p $HOMEPATH/.public/.domtool chown $USER:nogroup $HOMEPATH/.public/.domtool test -e $HOMEPATH/.domtool || \ test -L $HOMEPATH/.domtool || \ - sudo -u $USER ln -s $HOMEPATH/.public/.domtool $HOMEPATH/.domtool + execute_on_deleuze sudo -u $USER ln -s $HOMEPATH/.public/.domtool $HOMEPATH/.domtool + # ^^ work around sudo env_reset crap without having to + # actually figure out how to make it work cleanly -- clinton, + # 2011-11-30 # Gitweb hosting test -L /var/cache/git/$USER || \ @@ -262,7 +269,7 @@ else fi # Create database tablespaces -execute_on_fritz sudo /afs/hcoop.net/common/etc/scripts/create-user-database $USER +sudo /afs/hcoop.net/common/etc/scripts/create-user-database $USER # # Mount points for backup volumes @@ -297,10 +304,10 @@ mire_and_deleuze sudo chmod ug=rwx,o= /var/lock/apache2/dav/$USER # Domtool integration # -domtool-adduser $USER +execute_on_deleuze domtool-adduser $USER # # Subscribe user to our mailing lists. # -echo $USER@hcoop.net | sudo -u list \ +echo $USER@hcoop.net | execute_on_deleuze sudo -u list \ /var/lib/mailman/bin/add_members -r - hcoop-announce