mirror of
https://git.FreeBSD.org/src.git
synced 2025-01-16 15:11:52 +00:00
Add the -M command-line option, which will set home directory permissions.
Works both in interactive or batch mode. This is a heavily modified version of the patch submitted in the PR. PR: bin/105060 MFC after: 1 week
This commit is contained in:
parent
cfcb2a4c82
commit
43cb08ceb6
Notes:
svn2git
2020-12-20 02:59:44 +00:00
svn path=/head/; revision=175719
@ -37,6 +37,7 @@
|
||||
.Op Fl CDENShq
|
||||
.Op Fl G Ar groups
|
||||
.Op Fl L Ar login_class
|
||||
.Op Fl M Ar mode
|
||||
.Op Fl d Ar partition
|
||||
.Op Fl f Ar file
|
||||
.Op Fl g Ar login_group
|
||||
@ -239,6 +240,9 @@ Please note that the message
|
||||
file can reference the internal variables of the
|
||||
.Nm
|
||||
script.
|
||||
.It Fl M Ar mode
|
||||
Create the home directory with permissions set to
|
||||
.Ar mode .
|
||||
.It Fl N
|
||||
Do not read the default configuration file.
|
||||
.It Fl q
|
||||
|
@ -81,6 +81,7 @@ show_usage() {
|
||||
echo " -E disable this account after creation"
|
||||
echo " -G additional groups to add accounts to"
|
||||
echo " -L login class of the user"
|
||||
echo " -M file permission for home directory"
|
||||
echo " -N do not read configuration file"
|
||||
echo " -S a nonexistent shell is not an error"
|
||||
echo " -d home directory"
|
||||
@ -190,6 +191,7 @@ save_config() {
|
||||
echo "# NOTE: only *some* variables are saved." >> ${ADDUSERCONF}
|
||||
echo "# Last Modified on `${DATECMD}`." >> ${ADDUSERCONF}
|
||||
echo '' >> ${ADDUSERCONF}
|
||||
echo "defaultHomePerm=$uhomeperm" >> ${ADDUSERCONF}
|
||||
echo "defaultLgroup=$ulogingroup" >> ${ADDUSERCONF}
|
||||
echo "defaultclass=$uclass" >> ${ADDUSERCONF}
|
||||
echo "defaultgroups=$ugroups" >> ${ADDUSERCONF}
|
||||
@ -246,9 +248,14 @@ add_user() {
|
||||
# means the user has no home directory.
|
||||
if [ "$uhome" = "$NOHOME" ]; then
|
||||
_home='-d "$uhome"'
|
||||
else
|
||||
# Use home directory permissions if specified
|
||||
if [ -n "$uhomeperm" ]; then
|
||||
_home='-m -d "$uhome" -M "$uhomeperm"'
|
||||
else
|
||||
_home='-m -d "$uhome"'
|
||||
fi
|
||||
fi
|
||||
elif [ -n "$Dflag" -a -n "$uhome" ]; then
|
||||
_home='-d "$uhome"'
|
||||
fi
|
||||
@ -449,6 +456,29 @@ get_homedir() {
|
||||
fi
|
||||
}
|
||||
|
||||
# get_homeperm
|
||||
# Reads the account's home directory permissions.
|
||||
#
|
||||
get_homeperm() {
|
||||
uhomeperm=$defaultHomePerm
|
||||
_input=
|
||||
_prompt=
|
||||
|
||||
if [ -n "$uhomeperm" ]; then
|
||||
_prompt="Home directory permissions [${uhomeperm}]: "
|
||||
else
|
||||
_prompt="Home directory permissions (Leave empty for default): "
|
||||
fi
|
||||
if [ -z "$fflag" ]; then
|
||||
echo -n "$_prompt"
|
||||
read _input
|
||||
fi
|
||||
|
||||
if [ -n "$_input" ]; then
|
||||
uhomeperm="$_input"
|
||||
fi
|
||||
}
|
||||
|
||||
# get_uid
|
||||
# Reads a numeric userid in an interactive or batch session. Automatically
|
||||
# allocates one if it is not specified.
|
||||
@ -601,6 +631,7 @@ input_from_file() {
|
||||
get_class
|
||||
get_shell
|
||||
get_homedir
|
||||
get_homeperm
|
||||
get_password
|
||||
get_expire_dates
|
||||
ugroups="$defaultgroups"
|
||||
@ -670,6 +701,7 @@ input_interactive() {
|
||||
get_class
|
||||
get_shell
|
||||
get_homedir
|
||||
get_homeperm
|
||||
|
||||
while : ; do
|
||||
echo -n "Use password-based authentication? [$_usepass]: "
|
||||
@ -780,6 +812,7 @@ input_interactive() {
|
||||
printf "%-10s : %s\n" "Class" "$uclass"
|
||||
printf "%-10s : %s %s\n" "Groups" "${ulogingroup:-$username}" "$ugroups"
|
||||
printf "%-10s : %s\n" "Home" "$uhome"
|
||||
printf "%-10s : %s\n" "Home Mode" "$uhomeperm"
|
||||
printf "%-10s : %s\n" "Shell" "$ushell"
|
||||
printf "%-10s : %s\n" "Locked" "$_disable"
|
||||
while : ; do
|
||||
@ -824,6 +857,7 @@ ugecos=
|
||||
ulogingroup=
|
||||
uclass=
|
||||
uhome=
|
||||
uhomeperm=
|
||||
upass=
|
||||
ushell=
|
||||
udotdir=/usr/share/skel
|
||||
@ -850,6 +884,7 @@ defaultclass=
|
||||
defaultLgroup=
|
||||
defaultgroups=
|
||||
defaultshell="${DEFAULTSHELL}"
|
||||
defaultHomePerm=
|
||||
|
||||
# Make sure the user running this program is root. This isn't a security
|
||||
# measure as much as it is a usefull method of reminding the user to
|
||||
@ -938,6 +973,10 @@ for _switch ; do
|
||||
esac
|
||||
shift; shift
|
||||
;;
|
||||
-M)
|
||||
defaultHomePerm=$2
|
||||
shift; shift
|
||||
;;
|
||||
-N)
|
||||
readconfig=
|
||||
shift
|
||||
|
Loading…
Reference in New Issue
Block a user