[hcoop/zz_old/machine-template.git] / navajos-postinstall.sh

#!/bin/bash

# Run on newly created node as a kerberos/afs admin with local sudo rights

set -e
set -v
set -x

# Misc postinst stuff
# Unfortunately has to be run after the first reboot by an admin user

sudo apt-get install hcoop-admin-common-config

# Extract host keytab
sudo kadmin -p ${USER}@HCOOP.NET -r HCOOP.NET -q "ktadd -k /etc/krb5.keytab host/navajos.hcoop.net@HCOOP.NET"
sudo chown root:root /etc/krb5.keytab
sudo chmod go-rwx /etc/krb5.keytab

# Sync initial set of keytabs
sudo mkdir -p /etc/keytabs

(ssh fritz.hcoop.net cd /etc/keytabs \; sudo tar clpf - . | \
     (cd /etc/keytabs; sudo tar xlpf -))

# deploy domtool locally
sudo touch /var/log/domtool.log
sudo chown domtool:nogroup /var/log/domtool.log
sudo chmod 600 /var/log/domtool.log

sudo mkdir -p /var/domtool
sudo chown domtool:nogroup /var/domtool
sudo chmod 755 /var/domtool

sudo mkdir -p /var/log/apache2
sudo mkdir -p /var/log/apache2/user
sudo chown domtool:nogroup /var/log/apache2/user
sudo chmod 755 /var/log/apache2/user

sudo -u domtool mkdir -p /var/domtool/vhosts
sudo -u domtool touch /var/domtool/local_domains.cfg
sudo -u domtool mkdir -p /var/domtool/firewall

# FIXME: move this script to the common scripts volume
~clinton_admin/deploy-domtool-on-host.sh --slave --bootstrap

# Basic Packages Needed for Web Serving
sudo apt-get install apache2-mpm-prefork hcoop-apache2-config

echo "Manually run 'domtool-admin regen' if needed"
Commit	Line	Data
fa86f70c CE	1	#!/bin/bash
	2
	3	# Run on newly created node as a kerberos/afs admin with local sudo rights
	4
	5	set -e
	6	set -v
	7	set -x
	8
	9	# Misc postinst stuff
	10	# Unfortunately has to be run after the first reboot by an admin user
	11
0db78dd3 CE	12	sudo apt-get install hcoop-admin-common-config
0db78dd3 CE	13
fa86f70c CE	14	# Extract host keytab
	15	sudo kadmin -p ${USER}@HCOOP.NET -r HCOOP.NET -q "ktadd -k /etc/krb5.keytab host/navajos.hcoop.net@HCOOP.NET"
	16	sudo chown root:root /etc/krb5.keytab
	17	sudo chmod go-rwx /etc/krb5.keytab
	18
	19	# Sync initial set of keytabs
	20	sudo mkdir -p /etc/keytabs
	21
	22	(ssh fritz.hcoop.net cd /etc/keytabs \; sudo tar clpf - . \| \
	23	(cd /etc/keytabs; sudo tar xlpf -))
	24
	25	# deploy domtool locally
	26	sudo touch /var/log/domtool.log
	27	sudo chown domtool:nogroup /var/log/domtool.log
	28	sudo chmod 600 /var/log/domtool.log
	29
	30	sudo mkdir -p /var/domtool
	31	sudo chown domtool:nogroup /var/domtool
	32	sudo chmod 755 /var/domtool
	33
	34	sudo mkdir -p /var/log/apache2
	35	sudo mkdir -p /var/log/apache2/user
	36	sudo chown domtool:nogroup /var/log/apache2/user
	37	sudo chmod 755 /var/log/apache2/user
	38
	39	sudo -u domtool mkdir -p /var/domtool/vhosts
	40	sudo -u domtool touch /var/domtool/local_domains.cfg
	41	sudo -u domtool mkdir -p /var/domtool/firewall
	42
	43	# FIXME: move this script to the common scripts volume
74fc1a97	44	~clinton_admin/deploy-domtool-on-host.sh --slave --bootstrap
fa86f70c CE	45
	46	# Basic Packages Needed for Web Serving
	47	sudo apt-get install apache2-mpm-prefork hcoop-apache2-config
	48
	49	echo "Manually run 'domtool-admin regen' if needed"