Kapisi/roles/Password/package/ldap-adduser

#!/bin/bash

nameRegEx='^[A-Z,a-z,0-9,\.,-]+$'
lockfile="/tmp/""$(echo $0 | rev | cut -f 1 -d '/' | rev)"

function helptext {
    echo "$0 username [ userid ]"
}

# match email against regex and create shortname from email ID.
if [ ! -z "$1" ] && [[ "$1" =~ $nameRegEx ]]; then
    username="$(echo $1)"
    if getent passwd "$username"; then
        echo User already exists!
        exit 1;
    fi
elif [ "$1" == "-h" ] || [ "$1" == "--help" ]; then
    helptext;
    exit 0;
else
    echo Need an username.
    helptext
    exit 1;
fi

# Create a new user ID.
if [ -z "$2" ]; then
    newuserid="$(($(getent passwd | sort -k 3 -n -t ':' | tail -n 1 | cut -f 3 -d ':') + 1))"
else
    if id "$newuserid" &>/dev/null; then
        echo "User id $newuserid already exist!"
        exit 2
    else
        newuserid="$2"
    fi
fi

printf "Username: %s\nID: %s\n\nReady to add? [YES/no]   " "$username" "$newuserid"


mkdir "$lockfile" 2>/dev/null
if [ "$?" -eq 0 ]; then
    read answer
    if [ "$answer" == "YES" ]; then
        file="/etc/openldap/users.d/$username.ldif"
        cp /opt/aninix/Password/sample-user.ldif "$file"
        line="$(grep -E '^uid: ' "$file")"; sed -i "s/$line/uid: $username/" "$file"
        line="$(grep -E '^dn: ' "$file" | cut -f 2 -d ' ' | cut -f 1 -d ',')"; sed -i "s/$line/uid=$username/" "$file"
        line="$(grep -E '^homeDirectory: ' "$file")"; sed -i "s#$line#homeDirectory: /$username/#" "$file"
        line="$(grep -E '^cn: ' "$file")"; sed -i "s/$line/cn: $username/" "$file"
        line="$(grep -E '^mail: ' "$file")"; sed -i "s#$line#mail: ircs://aninix.net:6697/$username#" "$file"
        line="$(grep -E '^uidNumber: ' "$file")"; sed -i "s/$line/uidNumber: $newuserid/" "$file"
        ldapadd -D 'cn=root,dc=aninix,dc=net' -W -f "$file"
        ldap-resetpass "$username"
        cp -r /etc/skel "/home/$username"; chmod 0027 "/home/$username"; chown -R "$username": "/home/$username"
    fi
    rmdir "$lockfile"
    exit 0;
else
    echo "Cannot add -- locked."
    exit 1;
fi
Cleaning up to fit AniNIX/Uniglot hooks; catching up with testing 2023-02-20 16:50:10 -06:00			`#!/bin/bash`

			`nameRegEx='^[A-Z,a-z,0-9,\.,-]+$'`
			`lockfile="/tmp/""$(echo $0 \| rev \| cut -f 1 -d '/' \| rev)"`

			`function helptext {`
			`echo "$0 username [ userid ]"`
			`}`

			`# match email against regex and create shortname from email ID.`
			`if [ ! -z "$1" ] && [[ "$1" =~ $nameRegEx ]]; then`
			`username="$(echo $1)"`
			`if getent passwd "$username"; then`
			`echo User already exists!`
			`exit 1;`
			`fi`
			`elif [ "$1" == "-h" ] \|\| [ "$1" == "--help" ]; then`
			`helptext;`
			`exit 0;`
			`else`
			`echo Need an username.`
			`helptext`
			`exit 1;`
			`fi`

			`# Create a new user ID.`
			`if [ -z "$2" ]; then`
			`newuserid="$(($(getent passwd \| sort -k 3 -n -t ':' \| tail -n 1 \| cut -f 3 -d ':') + 1))"`
			`else`
			`if id "$newuserid" &>/dev/null; then`
			`echo "User id $newuserid already exist!"`
			`exit 2`
			`else`
			`newuserid="$2"`
			`fi`
			`fi`

			`printf "Username: %s\nID: %s\n\nReady to add? [YES/no] " "$username" "$newuserid"`


			`mkdir "$lockfile" 2>/dev/null`
			`if [ "$?" -eq 0 ]; then`
			`read answer`
			`if [ "$answer" == "YES" ]; then`
			`file="/etc/openldap/users.d/$username.ldif"`
Update for automated response around poorly behaving archlinux-keyring weekly timer; rename Sora role to Password 2024-03-07 12:27:21 -06:00			`cp /opt/aninix/Password/sample-user.ldif "$file"`
Cleaning up to fit AniNIX/Uniglot hooks; catching up with testing 2023-02-20 16:50:10 -06:00			`line="$(grep -E '^uid: ' "$file")"; sed -i "s/$line/uid: $username/" "$file"`
			`line="$(grep -E '^dn: ' "$file" \| cut -f 2 -d ' ' \| cut -f 1 -d ',')"; sed -i "s/$line/uid=$username/" "$file"`
Simplifying group management 2024-04-01 00:49:02 -05:00			`line="$(grep -E '^homeDirectory: ' "$file")"; sed -i "s#$line#homeDirectory: /$username/#" "$file"`
Cleaning up to fit AniNIX/Uniglot hooks; catching up with testing 2023-02-20 16:50:10 -06:00			`line="$(grep -E '^cn: ' "$file")"; sed -i "s/$line/cn: $username/" "$file"`
			`line="$(grep -E '^mail: ' "$file")"; sed -i "s#$line#mail: ircs://aninix.net:6697/$username#" "$file"`
			`line="$(grep -E '^uidNumber: ' "$file")"; sed -i "s/$line/uidNumber: $newuserid/" "$file"`
Update for automated response around poorly behaving archlinux-keyring weekly timer; rename Sora role to Password 2024-03-07 12:27:21 -06:00			`ldapadd -D 'cn=root,dc=aninix,dc=net' -W -f "$file"`
Cleaning up to fit AniNIX/Uniglot hooks; catching up with testing 2023-02-20 16:50:10 -06:00			`ldap-resetpass "$username"`
Simplifying group management 2024-04-01 00:49:02 -05:00			`cp -r /etc/skel "/home/$username"; chmod 0027 "/home/$username"; chown -R "$username": "/home/$username"`
Cleaning up to fit AniNIX/Uniglot hooks; catching up with testing 2023-02-20 16:50:10 -06:00			`fi`
			`rmdir "$lockfile"`
			`exit 0;`
			`else`
			`echo "Cannot add -- locked."`
			`exit 1;`
			`fi`