free
/
freedombone
关注 1
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
6948 提交
5 分支
目录树: 86d1c1a7d3
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 '86d1c1a7d3'
${ noResults }
freedombone/src/freedombone-rmuser

freedombone-rmuser 4.0KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152 
  1. #!/bin/bash

  2. #

  3. # .---.                  .              .

  4. # |                      |              |

  5. # |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.

  6. # |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'

  7. # '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'

  8. #

  9. #                    Freedom in the Cloud

  10. #

  11. 

  12. # Removes a user from the system

  13. 

  14. # License

  15. # =======

  16. #

  17. # Copyright (C) 2015-2016 Bob Mottram <bob@freedombone.net>

  18. #

  19. # This program is free software: you can redistribute it and/or modify

  20. # it under the terms of the GNU Affero General Public License as published by

  21. # the Free Software Foundation, either version 3 of the License, or

  22. # (at your option) any later version.

  23. #

  24. # This program is distributed in the hope that it will be useful,

  25. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  26. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  27. # GNU Affero General Public License for more details.

  28. #

  29. # You should have received a copy of the GNU Affero General Public License

  30. # along with this program.  If not, see <http://www.gnu.org/licenses/>.

  31. 

  32. PROJECT_NAME='freedombone'

  33. 

  34. export TEXTDOMAIN=${PROJECT_NAME}-rmuser

  35. export TEXTDOMAINDIR="/usr/share/locale"

  36. 

  37. COMPLETION_FILE=$HOME/${PROJECT_NAME}-completed.txt

  38. 

  39. UTILS_FILES=/usr/share/${PROJECT_NAME}/utils/${PROJECT_NAME}-utils-*

  40. for f in $UTILS_FILES

  41. do

  42.     source $f

  43. done

  44. 

  45. APP_FILES=/usr/share/${PROJECT_NAME}/apps/${PROJECT_NAME}-app-*

  46. for f in $APP_FILES

  47. do

  48.     source $f

  49. done

  50. 

  51. read_config_param MY_USERNAME

  52. 

  53. REMOVE_USERNAME=$1

  54. REMOVE_OPTIONS="$2"

  55. 

  56. if [ ! $REMOVE_USERNAME ]; then

  57.     echo $'Please specify a username to remove'

  58.     exit 1

  59. fi

  60. 

  61. if [[ "$REMOVE_USERNAME" == "$MY_USERNAME" ]]; then

  62.     echo $'You cannot remove the administrator user'

  63.     exit 2

  64. fi

  65. 

  66. if [[ $(is_valid_user "$REMOVE_USERNAME") == "0" ]]; then

  67.     echo $'Cannot remove reserved users'

  68.     exit 3

  69. fi

  70. 

  71. if [ ! -d /home/$REMOVE_USERNAME ]; then

  72.     echo $"Home directory does not exist for $REMOVE_USERNAME"

  73.     exit 4

  74. fi

  75. 

  76. if [ ! -f $COMPLETION_FILE ]; then

  77.     echo $"$COMPLETION_FILE not found"

  78.     exit 5

  79. fi

  80. 

  81. if ! grep -q "Admin user" $COMPLETION_FILE; then

  82.     echo $"No admin user specified in $COMPLETION_FILE"

  83.     exit 6

  84. fi

  85. 

  86. ADMIN_USERNAME=$(get_completion_param "Admin user")

  87. if [ ! $ADMIN_USERNAME ]; then

  88.     echo $"No admin username specified in $COMPLETION_FILE"

  89.     exit 7

  90. fi

  91. 

  92. if [[ $REMOVE_USERNAME == $ADMIN_USERNAME ]]; then

  93.     echo $"The administrator user cannot be removed"

  94.     exit 8

  95. fi

  96. 

  97. if [[ "$REMOVE_OPTIONS" != '-f' && "$REMOVE_OPTIONS" != '-y' && "$REMOVE_OPTIONS" != '--force' ]]; then

  98.     echo $'>>> REMOVE USER <<<'

  99.     read -p $"Do you really wish to remove the user '$REMOVE_USERNAME' (y/n) ?" yn

  100.     if [[ $yn != 'y' && $yn != 'Y' && $yn != 'yes' && $yn != 'Yes' && $yn != 'YES' ]]; then

  101.         echo $"User $REMOVE_USERNAME was not removed"

  102.         exit 9

  103.     fi

  104. else

  105.     echo $"Forced removal of user $REMOVE_USERNAME"

  106. fi

  107. 

  108. if [ -f /etc/nginx/.htpasswd ]; then

  109.     if grep "${REMOVE_USERNAME}:" /etc/nginx/.htpasswd; then

  110.         htpasswd -D /etc/nginx/.htpasswd $REMOVE_USERNAME

  111.     fi

  112. fi

  113. 

  114. # remove gpg keys

  115. if [ -d /home/$REMOVE_USERNAME/.gnupg ]; then

  116.     shred -zu /home/$REMOVE_USERNAME/.gnupg/*

  117. fi

  118. 

  119. # remove ssh keys

  120. if [ -d /home/$REMOVE_USERNAME/.ssh ]; then

  121.     shred -zu /home/$REMOVE_USERNAME/.ssh/*

  122. fi

  123. 

  124. echo $'Detecting installed apps...'

  125. detect_apps

  126. get_apps_installed_names

  127. for app_name in "${APPS_INSTALLED_NAMES[@]}"

  128. do

  129.     if [[ $(function_exists remove_user_${app_name}) == "1" ]]; then

  130.         echo $"Removing user from ${app_name}"

  131.         app_load_variables ${app_name}

  132.         remove_user_${app_name} "$REMOVE_USERNAME"

  133.         if grep -q "${app_name}_${REMOVE_USERNAME}" $APP_USERS_FILE; then

  134.             sed -i "/${app_name}_${REMOVE_USERNAME}/d" $APP_USERS_FILE

  135.         fi

  136.     fi

  137. done

  138. 

  139. chmod 600 /etc/shadow

  140. chmod 600 /etc/gshadow

  141. userdel -r $REMOVE_USERNAME

  142. groupdel $REMOVE_USERNAME

  143. chmod 0000 /etc/shadow

  144. chmod 0000 /etc/gshadow

  145. 

  146. if [ -d /home/$REMOVE_USERNAME ]; then

  147.     rm -rf /home/$REMOVE_USERNAME

  148. fi

  149. 

  150. echo $"User $REMOVE_USERNAME was removed"

  151. 

  152. exit 0