2015-04-23 23:45:50 +00:00
|
|
|
#!/bin/sh
|
|
|
|
# vim: set noet ts=8:
|
2015-08-18 13:12:51 +00:00
|
|
|
# postinst script for ceph-commont
|
2015-04-23 23:45:50 +00:00
|
|
|
#
|
|
|
|
# see: dh_installdeb(1)
|
|
|
|
|
|
|
|
set -e
|
|
|
|
|
|
|
|
# summary of how this script can be called:
|
|
|
|
#
|
|
|
|
# postinst configure <most-recently-configured-version>
|
|
|
|
# old-postinst abort-upgrade <new-version>
|
|
|
|
# conflictor's-postinst abort-remove in-favour <package> <new-version>
|
|
|
|
# postinst abort-remove
|
|
|
|
# deconfigured's-postinst abort-deconfigure in-favour <failed-install-package> <version> [<removing conflicting-package> <version>]
|
|
|
|
#
|
|
|
|
|
|
|
|
# for details, see http://www.debian.org/doc/debian-policy/ or
|
|
|
|
# the debian-policy package
|
|
|
|
|
|
|
|
|
|
|
|
# Let the admin override these distro-specified defaults. This is NOT
|
|
|
|
# recommended!
|
|
|
|
[ -f "/etc/default/ceph" ] && . /etc/default/ceph
|
|
|
|
|
|
|
|
[ -z "$SERVER_HOME" ] && SERVER_HOME=/var/lib/ceph
|
|
|
|
[ -z "$SERVER_USER" ] && SERVER_USER=ceph
|
|
|
|
[ -z "$SERVER_NAME" ] && SERVER_NAME="Ceph storage service"
|
|
|
|
[ -z "$SERVER_GROUP" ] && SERVER_GROUP=ceph
|
|
|
|
[ -z "$SERVER_UID" ] && SERVER_UID=64045 # alloc by Debian base-passwd maintainer
|
|
|
|
|
|
|
|
# Groups that the user will be added to, if undefined, then none.
|
|
|
|
[ -z "$SERVER_ADDGROUP" ] && SERVER_ADDGROUP=
|
|
|
|
|
|
|
|
case "$1" in
|
|
|
|
configure)
|
|
|
|
# create user to avoid running server as root
|
|
|
|
# 1. create group if not existing
|
|
|
|
if ! getent group | grep -q "^$SERVER_GROUP:" ; then
|
|
|
|
echo -n "Adding group $SERVER_GROUP.."
|
|
|
|
addgroup --quiet --system --gid $SERVER_GID \
|
|
|
|
$SERVER_GROUP 2>/dev/null ||true
|
|
|
|
echo "..done"
|
|
|
|
fi
|
|
|
|
# 2. create user if not existing
|
|
|
|
if ! getent passwd | grep -q "^$SERVER_USER:"; then
|
|
|
|
echo -n "Adding system user $SERVER_USER.."
|
|
|
|
adduser --quiet \
|
|
|
|
--system \
|
|
|
|
--ingroup $SERVER_GROUP \
|
|
|
|
--no-create-home \
|
|
|
|
--disabled-password \
|
|
|
|
--uid $SERVER_UID \
|
|
|
|
--gid $SERVER_GID \
|
|
|
|
$SERVER_USER 2>/dev/null || true
|
|
|
|
echo "..done"
|
|
|
|
fi
|
|
|
|
# 3. adjust passwd entry
|
|
|
|
usermod -c "$SERVER_NAME" \
|
|
|
|
-d $SERVER_HOME \
|
|
|
|
-g $SERVER_GROUP \
|
|
|
|
$SERVER_USER
|
|
|
|
# 4. Add the user to extra groups
|
|
|
|
if test -n $SERVER_ADDGROUP
|
|
|
|
then
|
|
|
|
if ! groups $SERVER_USER | cut -d: -f2 | \
|
|
|
|
grep -qw $SERVER_ADDGROUP; then
|
|
|
|
echo -n "Adding user $SERVER_USER to groups $SERVER_ADDGROUP.."
|
|
|
|
adduser $SERVER_USER $SERVER_ADDGROUP
|
|
|
|
echo "..done"
|
|
|
|
fi
|
|
|
|
fi
|
|
|
|
|
2015-04-24 00:03:02 +00:00
|
|
|
# 5. adjust file and directory permissions
|
|
|
|
if ! dpkg-statoverride --list $SERVER_HOME >/dev/null
|
|
|
|
then
|
|
|
|
chown $SERVER_USER:$SERVER_GROUP $SERVER_HOME
|
|
|
|
chmod u=rwx,g=rx,o= $SERVER_HOME
|
|
|
|
fi
|
2015-04-24 00:03:39 +00:00
|
|
|
if ! dpkg-statoverride --list /var/log/ceph >/dev/null
|
|
|
|
then
|
|
|
|
chown -R $SERVER_USER:$SERVER_GROUP /var/log/ceph
|
2015-08-18 17:46:34 +00:00
|
|
|
# members of group ceph can log here, but cannot remove
|
|
|
|
# others' files. non-members cannot read any logs.
|
|
|
|
chmod u=rwx,g=rwxs,o=t /var/log/ceph
|
2015-04-24 00:03:39 +00:00
|
|
|
fi
|
2015-04-24 00:03:02 +00:00
|
|
|
|
2015-04-23 23:45:50 +00:00
|
|
|
;;
|
|
|
|
abort-upgrade|abort-remove|abort-deconfigure)
|
|
|
|
:
|
|
|
|
;;
|
|
|
|
|
|
|
|
*)
|
|
|
|
echo "postinst called with unknown argument \`$1'" >&2
|
|
|
|
exit 1
|
|
|
|
;;
|
|
|
|
esac
|
|
|
|
|
|
|
|
# dh_installdeb will replace this with shell code automatically
|
|
|
|
# generated by other debhelper scripts.
|
|
|
|
|
|
|
|
#DEBHELPER#
|
|
|
|
|
|
|
|
exit 0
|