d2583946 |
1 | #!/bin/sh -e |
2 | |
3 | case $1 in |
4 | adduser) |
62367e51 |
5 | USERNAME=$2 |
6 | PASSWORD=$3 |
fd1241a4 |
7 | |
62367e51 |
8 | kinit -k -t /etc/keytabs/root.admin.keytab root/admin |
9 | aklog |
fd1241a4 |
10 | |
62367e51 |
11 | vos create -server afs -partition a -name db.$USERNAME -maxquota 5000 |
12 | fs mkmount -dir /afs/.hcoop.net/common/.databases/$USERNAME -vol db.$USERNAME -rw |
fd1241a4 |
13 | vos release common.databases |
62367e51 |
14 | fs setacl -dir /afs/hcoop.net/common/databases/$USERNAME -acl databases l |
15 | fs setacl -dir /afs/hcoop.net/common/databases/$USERNAME -acl system:backup rl |
fd1241a4 |
16 | sudo -H mysql -e "CREATE USER '$USERNAME'@'localhost' IDENTIFIED BY '$PASSWORD';" |
d2583946 |
17 | ;; |
18 | createdb) |
fd1241a4 |
19 | USERNAME=$2 |
20 | DBNAME_BASE=$3 |
21 | DBNAME="${USERNAME}_${DBNAME_BASE}" |
22 | DIR=/afs/hcoop.net/common/databases/$USERNAME/mysql |
23 | |
24 | kinit -k -t /etc/keytabs/root.admin.keytab root/admin |
25 | aklog |
26 | |
27 | mkdir -p $DIR |
28 | fs setacl -dir $DIR -acl mysql rlid |
29 | fs setacl -dir $DIR -acl databases none |
30 | fs setacl -dir $DIR -acl system:backup rl |
31 | mkdir $DIR/$DBNAME || exit |
32 | chown mysql:mysql $DIR/$DBNAME |
33 | chmod 770 $DIR/$DBNAME |
34 | ln -sf $DIR/$DBNAME /var/lib/mysql/$DBNAME |
35 | fs setacl -dir $DIR/$DBNAME/ -acl mysql all |
36 | |
37 | sudo -H mysql -e "GRANT CREATE,DROP,SELECT,INSERT,UPDATE,DELETE,INDEX,ALTER,CREATE VIEW,SHOW VIEW,GRANT OPTION ON * TO '$USERNAME'@'localhost';" $DBNAME |
38 | sudo -H mysql -e "FLUSH PRIVILEGES;" |
d2583946 |
39 | ;; |
40 | *) |
fd1241a4 |
41 | echo "Usage: domtool-mysql [adduser <user> <password> | createdb <user> <table>]" |
d2583946 |
42 | ;; |
43 | esac |