Home Explore Help
Sign In
mbuesch
/
cms
Watch 1
Star 0
Fork 0
Files Pull Requests 0
Branch: master
Branches Tags
cms
/
create-users.sh

create-users.sh 2.0 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. #!/bin/sh
    2. 

  2. # -*- coding: utf-8 -*-
    3. 

  3. 

  4. info()
    5. 

  5. {
    6. 

  6.     echo "--- $*"
    7. 

  7. }
    8. 

  8. 

  9. error()
    10. 

  10. {
    11. 

  11.     echo "=== ERROR: $*" >&2
    12. 

  12. }
    13. 

  13. 

  14. warning()
    15. 

  15. {
    16. 

  16.     echo "=== WARNING: $*" >&2
    17. 

  17. }
    18. 

  18. 

  19. die()
    20. 

  20. {
    21. 

  21.     error "$*"
    22. 

  22.     exit 1
    23. 

  23. }
    24. 

  24. 

  25. sys_groupadd()
    26. 

  26. {
    27. 

  27.     local args="--system"
    28. 

  28.     info "groupadd $args $*"
    29. 

  29.     groupadd $args "$@" || die "Failed groupadd"
    30. 

  30. }
    31. 

  31. 

  32. sys_useradd()
    33. 

  33. {
    34. 

  34.     local args="--system -s /usr/sbin/nologin -d /nonexistent -M -N"
    35. 

  35.     info "useradd $args $*"
    36. 

  36.     useradd $args "$@" || die "Failed useradd"
    37. 

  37. }
    38. 

  38. 

  39. do_usermod()
    40. 

  40. {
    41. 

  41.     info "usermod $*"
    42. 

  42.     usermod "$@" || die "Failed usermod"
    43. 

  43. }
    44. 

  44. 

  45. # Stop the daemons.
    46. 

  46. systemctl stop cms-fsd.socket >/dev/null 2>&1
    47. 

  47. systemctl stop cms-fsd.service >/dev/null 2>&1
    48. 

  48. systemctl stop cms-postd.socket >/dev/null 2>&1
    49. 

  49. systemctl stop cms-postd.service >/dev/null 2>&1
    50. 

  50. systemctl stop cms-backd.socket >/dev/null 2>&1
    51. 

  51. systemctl stop cms-backd.service >/dev/null 2>&1
    52. 

  52. 

  53. # Delete all existing users, if any.
    54. 

  54. userdel cms-fsd >/dev/null 2>&1
    55. 

  55. userdel cms-postd >/dev/null 2>&1
    56. 

  56. userdel cms-backd >/dev/null 2>&1
    57. 

  57. 

  58. # Delete all existing groups, if any.
    59. 

  59. groupdel cms-fsd >/dev/null 2>&1
    60. 

  60. groupdel cms-postd >/dev/null 2>&1
    61. 

  61. groupdel cms-backd >/dev/null 2>&1
    62. 

  62. groupdel cms-fs-ro >/dev/null 2>&1
    63. 

  63. groupdel cms-fs-x >/dev/null 2>&1
    64. 

  64. groupdel cms-sock-db >/dev/null 2>&1
    65. 

  65. groupdel cms-sock-post >/dev/null 2>&1
    66. 

  66. groupdel cms-sock-back >/dev/null 2>&1
    67. 

  67. 

  68. # Create system groups.
    69. 

  69. sys_groupadd cms-fsd
    70. 

  70. sys_groupadd cms-postd
    71. 

  71. sys_groupadd cms-backd
    72. 

  72. sys_groupadd cms-fs-ro
    73. 

  73. sys_groupadd cms-fs-x
    74. 

  74. sys_groupadd cms-sock-db
    75. 

  75. sys_groupadd cms-sock-post
    76. 

  76. sys_groupadd cms-sock-back
    77. 

  77. 

  78. # Create system users.
    79. 

  79. sys_useradd -G cms-sock-db,cms-fs-ro -g cms-fsd cms-fsd
    80. 

  80. sys_useradd -G cms-sock-post,cms-fs-x -g cms-postd cms-postd
    81. 

  81. sys_useradd -G cms-sock-back,cms-sock-db,cms-sock-post -g cms-backd cms-backd
    82. 

  82. 

  83. # Add the communication socket to the web server process user.
    84. 

  84. if grep -q '^www-data:' /etc/passwd; then
    85. 

  85.     do_usermod -a -G cms-sock-back www-data
    86. 

  86. fi
    87. 

  87. 

  88. # The git-user shall be able to give group permissions in db.
    89. 

  89. if grep -q '^git:' /etc/passwd; then
    90. 

  90.     do_usermod -a -G cms-fs-ro,cms-fs-x git
    91. 

  91. fi
    92. 

  92. 

  93. # vim: ts=4 sw=4 expandtab
    94. 

  94.