Commit | Line | Data |
---|---|---|
fa86f70c CE |
1 | #!/bin/bash |
2 | ||
3 | # Run on newly created node as a kerberos/afs admin with local sudo rights | |
4 | ||
5 | set -e | |
6 | set -v | |
7 | set -x | |
8 | ||
9 | # Misc postinst stuff | |
10 | # Unfortunately has to be run after the first reboot by an admin user | |
11 | ||
0db78dd3 CE |
12 | sudo apt-get install hcoop-admin-common-config |
13 | ||
fa86f70c CE |
14 | # Extract host keytab |
15 | sudo kadmin -p ${USER}@HCOOP.NET -r HCOOP.NET -q "ktadd -k /etc/krb5.keytab host/navajos.hcoop.net@HCOOP.NET" | |
16 | sudo chown root:root /etc/krb5.keytab | |
17 | sudo chmod go-rwx /etc/krb5.keytab | |
18 | ||
19 | # Sync initial set of keytabs | |
20 | sudo mkdir -p /etc/keytabs | |
21 | ||
22 | (ssh fritz.hcoop.net cd /etc/keytabs \; sudo tar clpf - . | \ | |
23 | (cd /etc/keytabs; sudo tar xlpf -)) | |
24 | ||
25 | # deploy domtool locally | |
26 | sudo touch /var/log/domtool.log | |
27 | sudo chown domtool:nogroup /var/log/domtool.log | |
28 | sudo chmod 600 /var/log/domtool.log | |
29 | ||
30 | sudo mkdir -p /var/domtool | |
31 | sudo chown domtool:nogroup /var/domtool | |
32 | sudo chmod 755 /var/domtool | |
33 | ||
34 | sudo mkdir -p /var/log/apache2 | |
35 | sudo mkdir -p /var/log/apache2/user | |
36 | sudo chown domtool:nogroup /var/log/apache2/user | |
37 | sudo chmod 755 /var/log/apache2/user | |
38 | ||
39 | sudo -u domtool mkdir -p /var/domtool/vhosts | |
40 | sudo -u domtool touch /var/domtool/local_domains.cfg | |
41 | sudo -u domtool mkdir -p /var/domtool/firewall | |
42 | ||
43 | # FIXME: move this script to the common scripts volume | |
74fc1a97 | 44 | ~clinton_admin/deploy-domtool-on-host.sh --slave --bootstrap |
fa86f70c CE |
45 | |
46 | # Basic Packages Needed for Web Serving | |
47 | sudo apt-get install apache2-mpm-prefork hcoop-apache2-config | |
48 | ||
49 | echo "Manually run 'domtool-admin regen' if needed" |