initial commit

Author: catern

README

@@ -0,0 +1,16 @@
+These are scripts related to LDAP!
+
+migrate_common.ph/migrate_passwd.pl is a script from
+https://packages.debian.org/wheezy/migrationtools hacked up to follow
+some CClub conventions. It takes an /etc/passwd file and converts it
+into an LDIF, "LDAP Import Format".
+
+add_user.sh takes a single /etc/passwd line as a command line
+argument, converts it into an LDIF with migrate_passwd.pl, and then
+imports it into the CClub LDAP server. If it isn't passed any
+arguments, it will grab the last line from
+/afs/club.cc.cmu.edu/service/etc/passwd.user and try importing that.
+
+make_user_admin.sh doesn't exist but should eventually.
+
+delete_user.sh doesn't exist but should eventually.

add_user.sh

@@ -0,0 +1,66 @@
+#!/bin/bash
+set -o nounset
+set -o errexit
+
+LDAP_ACCMAKER_PASSWORD_FILE=/afs/club.cc.cmu.edu/service/ldap/secret/ldap_accmaker_password
+LDAP_IMPORT_SCRIPTS_DIR=/afs/club.cc.cmu.edu/service/ldap/import/
+
+LDAP_URL=ldaps://ldap1.club.cc.cmu.edu
+LDAP_ADMIN_DN="cn=accmaker,ou=Administrators,ou=TopologyManagement,o=NetscapeRoot"
+
+if [[ -z "$(klist | grep admin)" ]]; then
+    echo "You need admin kerb credentials"
+    exit 1
+fi
+aklog club.cc.cmu.edu
+
+if [[ "$#" == "0" ]]; then
+    # automagically try to add the most recent user
+    PASSWD_LINE=$(tail -n 1 /afs/club.cc.cmu.edu/service/etc/passwd.user)
+    echo "Will try to add the following user to LDAP"
+    echo "$PASSWD_LINE"
+    echo "If this is incorrect, press Ctrl-c now."
+    echo "Then find the correct etc/passwd line for the user you wish"
+    echo "to add to LDAP and provide it as an argument to this script."
+    echo "It should be in /afs/club.cc.cmu.edu/service/etc/passwd.user maybe?"
+    echo "Otherwise, if this is correct, press enter."
+    read
+elif [[ $# -ne 1 ]]; then
+    echo "Provide a single /etc/passwd line as an argument."
+    echo "You'll need to quote it."
+    exit 1
+else
+    PASSWD_LINE=$1
+fi
+
+# convert passwd format to LDIF format
+# we use our own version of migrate_passwd.pl because we've modified migrate_common.ph with cclub defaults
+TMP_LDIF=$(mktemp)
+cd $LDAP_IMPORT_SCRIPTS_DIR
+./migrate_passwd.pl <(echo "$PASSWD_LINE") $TMP_LDIF 
+
+# load LDIF format file into LDAP
+ldapadd -x -y $LDAP_ACCMAKER_PASSWORD_FILE -D $LDAP_ADMIN_DN -c -f $TMP_LDIF -H $LDAP_URL
+
+echo "Successfully added user, probably"
+
+### I might use this later, it's a template similar to what's generated by migrate_passwd.pl
+### template: 
+# cat <<_HEREDOC_
+# dn: uid=$NEWUSER_USERNAME,ou=users,dc=club,dc=cc,dc=cmu,dc=edu
+# uid: $NEWUSER_USERNAME
+# cn: $NEWUSER_REALNAME
+# sn: $NEWUSER_SURNAME
+# objectClass: person
+# objectClass: organizationalPerson
+# objectClass: inetOrgPerson
+# objectClass: account
+# objectClass: posixAccount
+# objectClass: top
+# userPassword: {crypt}K
+# loginShell: $NEWUSER_SHELL
+# uidNumber: $NEWUSER_UID
+# gidNumber: $NEWUSER_GID
+# homeDirectory: /afs/club.cc.cmu.edu/usr/$NEWUSER_USERNAME
+# gecos: $NEWUSER_REALNAME
+# _HEREDOC_