Use groupOfUniqueNames groups (with an optional posixGroup class) instead of separate groupOfNames and posixGroup; removed several obsolete tools as well
parent
a2955221ac
commit
6f36a83ea2
|
@ -0,0 +1,11 @@
|
||||||
|
#!/bin/bash
|
||||||
|
#% add-dn-to-group dn group
|
||||||
|
#% Add dn to group. group should be a groupOfUniqueNames
|
||||||
|
. $LIB_DIR/common.sh
|
||||||
|
if [[ $# < 2 ]]; then
|
||||||
|
show-usage
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
tag-begin "Add DN $1 to group $2"
|
||||||
|
basic-attr-op add $2 uniqueMember $1
|
||||||
|
tag-end
|
|
@ -1,11 +0,0 @@
|
||||||
#!/bin/bash
|
|
||||||
#% add-dn-to-ldap-group dn group
|
|
||||||
#% Add dn to group. group should be a regular LDAP groupOfNames
|
|
||||||
. $LIB_DIR/common.sh
|
|
||||||
if [[ $# < 2 ]]; then
|
|
||||||
show-usage
|
|
||||||
exit 1
|
|
||||||
fi
|
|
||||||
tag-begin "Add DN $1 to group $2"
|
|
||||||
basic-attr-op add $2 member $1
|
|
||||||
tag-end
|
|
|
@ -1,11 +0,0 @@
|
||||||
#!/bin/bash
|
|
||||||
#% add-to-posix-group login group
|
|
||||||
#% Add user (identified by login) to group. group should be a posixGroup
|
|
||||||
. $LIB_DIR/common.sh
|
|
||||||
if [[ $# < 2 ]]; then
|
|
||||||
show-usage
|
|
||||||
exit 1
|
|
||||||
fi
|
|
||||||
tag-begin "Add user $1 to posix group $2"
|
|
||||||
basic-attr-op add "$2" memberUid "$1"
|
|
||||||
tag-end
|
|
|
@ -1,4 +1,4 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
#% add-to-wiki user
|
#% add-to-wiki user
|
||||||
#% Give user access to wiki.
|
#% Give user access to wiki.
|
||||||
add-user-to-ldap-group $1 'cn=wikiuser,ou=Group,dc=hackerspace,dc=pl'
|
add-user-to-group $1 'cn=wikiuser,ou=Group,dc=hackerspace,dc=pl'
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
#% add-user-to-ldap-group login groupdn
|
#% add-user-to-group login groupdn
|
||||||
#% Add user with login=login to group groupdn. groupdn should be a regular LDAP groupOfNames
|
#% Add user with login=login to group groupdn. groupdn should be a regular LDAP groupOfNames
|
||||||
. $LIB_DIR/common.sh
|
. $LIB_DIR/common.sh
|
||||||
if [[ $# < 2 ]]; then
|
if [[ $# < 2 ]]; then
|
||||||
show-usage
|
show-usage
|
||||||
exit 1
|
exit 1
|
||||||
fi
|
fi
|
||||||
add-dn-to-ldap-group "uid=$1,ou=People,dc=hackerspace,dc=pl" "$2"
|
add-dn-to-group "uid=$1,ou=People,dc=hackerspace,dc=pl" "$2"
|
|
@ -7,6 +7,7 @@ tag-begin "Create group $1 (gid: $2)"
|
||||||
push <<EOF
|
push <<EOF
|
||||||
dn: cn=$1,ou=Group,dc=hackerspace,dc=pl
|
dn: cn=$1,ou=Group,dc=hackerspace,dc=pl
|
||||||
changetype: add
|
changetype: add
|
||||||
|
objectClass: groupOfUniqueNames
|
||||||
objectClass: posixGroup
|
objectClass: posixGroup
|
||||||
cn: $1
|
cn: $1
|
||||||
gidNumber: $2
|
gidNumber: $2
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
#% enable-boston-shell user
|
#% enable-boston-shell user
|
||||||
#% Give user shell access to boston-packets. User still needs a valid login shell.
|
#% Give user shell access to boston-packets. User still needs a valid login shell.
|
||||||
add-to-posix-group $1 'cn=boston-shell,ou=Group,dc=hackerspace,dc=pl'
|
add-user-to-group $1 'cn=boston-shell,ou=Group,dc=hackerspace,dc=pl'
|
||||||
msg "A home directory on boston-packets is needed for $1."
|
msg "A home directory on boston-packets is needed for $1."
|
||||||
msg "You can create it by running:"
|
msg "You can create it by running:"
|
||||||
msg " [itanic ~ #] cp -R /etc/skel /home/$1"
|
msg " [itanic ~ #] cp -R /etc/skel /home/$1"
|
||||||
|
|
|
@ -1,4 +1,4 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
#% enable-vpn user
|
#% enable-vpn user
|
||||||
#% Give user access to VPN
|
#% Give user access to VPN
|
||||||
add-to-posix-group $1 'cn=vpn-users,ou=Group,dc=hackerspace,dc=pl'
|
add-user-to-group $1 'cn=vpn-users,ou=Group,dc=hackerspace,dc=pl'
|
||||||
|
|
|
@ -1,4 +1,4 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
#% enable-xmpp user
|
#% enable-xmpp user
|
||||||
#% Give user access to XMPP.
|
#% Give user access to XMPP.
|
||||||
add-user-to-ldap-group $1 'cn=xmpp-users,ou=Group,dc=hackerspace,dc=pl'
|
add-user-to-group $1 'cn=xmpp-users,ou=Group,dc=hackerspace,dc=pl'
|
||||||
|
|
|
@ -1,7 +0,0 @@
|
||||||
#!/bin/bash
|
|
||||||
#% enable-proliant-shell user
|
|
||||||
#% Give user shell access to zbigniew. User still needs a valid login shell.
|
|
||||||
add-to-posix-group $1 'cn=zbigniew-shell,ou=Group,dc=hackerspace,dc=pl'
|
|
||||||
msg "A home directory on zbigniew is needed for $1."
|
|
||||||
msg "You can create it by running:"
|
|
||||||
msg " [proliant ~ #] cp -R /etc/skel /home/$1"
|
|
|
@ -22,8 +22,9 @@ while [ "$1" ]; do
|
||||||
login="$1"; shift;
|
login="$1"; shift;
|
||||||
echo "$login: Adding member priviledges (membership group '$membership_group')"
|
echo "$login: Adding member priviledges (membership group '$membership_group')"
|
||||||
|
|
||||||
add-user-to-ldap-group $login "cn=$membership_group,ou=Group,dc=hackerspace,dc=pl"
|
add-user-to-group $login "cn=$membership_group,ou=Group,dc=hackerspace,dc=pl"
|
||||||
enable-xmpp $login
|
enable-xmpp $login
|
||||||
|
enable-boston-shell $login
|
||||||
enable-vpn $login
|
enable-vpn $login
|
||||||
set-shell $login /bin/bash
|
set-shell $login /bin/bash
|
||||||
done
|
done
|
||||||
|
|
|
@ -2,5 +2,5 @@
|
||||||
#% setup-boston-mailbox user
|
#% setup-boston-mailbox user
|
||||||
#% Sets up the local mailbox on boston-packets. Has to be run on boston-packets, obviously.
|
#% Sets up the local mailbox on boston-packets. Has to be run on boston-packets, obviously.
|
||||||
mkdir /var/spool/mail/$1
|
mkdir /var/spool/mail/$1
|
||||||
chown $1:mail /var/spool/mail/
|
chown $1:mail /var/spool/mail/$1
|
||||||
|
chmod go-rwx /var/spool/mail/$1
|
||||||
|
|
Loading…
Reference in New Issue