2011-03-06 20:43:51 +00:00
#!/bin/bash -e
2013-08-07 14:56:47 +00:00
set -x
2006-05-16 18:20:14 +00:00
#
# ----------------------------------------------------------------------
# AlternC - Web Hosting System
2012-08-24 08:51:00 +00:00
# Copyright (C) 2000-2012 by the AlternC Development Team.
# https://alternc.org/
2006-05-16 18:20:14 +00:00
# ----------------------------------------------------------------------
# LICENSE
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License (GPL)
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# To read the license please visit http://www.gnu.org/copyleft/gpl.html
# ----------------------------------------------------------------------
2012-08-24 08:51:00 +00:00
# Purpose of file: Fix permission, ACL and ownership of AlternC's files
2006-05-16 18:20:14 +00:00
# ----------------------------------------------------------------------
#
2013-08-14 13:16:34 +00:00
# four optionals argument to chose from
2011-12-31 15:46:11 +00:00
# -l string : a specific login to fix
2012-08-24 08:51:00 +00:00
# -u integer : a specific uid to fix
2013-04-25 13:05:27 +00:00
# -f string : a specific file to fix according to a given uid
2013-08-14 13:16:34 +00:00
# -d string : a specific subdirectory to fix according to a given uid
# The u and l switch are used to fix a given user whole directory including his base directory ($ALTERNC_HTML/<letter>/<login>/
# The f and d switch are used to fix a given file or directory under the user's base directory. They use the base directory to get the permissions they should use.
# Be sure to have correct base directory permissions before attemplting to fix use those two switch
query = "SELECT uid,login FROM membres"
sub_dir = ""
file = ""
2012-06-12 17:11:46 +00:00
while getopts "l:u:f:d:" optname
2013-08-14 13:16:34 +00:00
do
case " $optname " in
"l" )
if [ [ " $OPTARG " = ~ ^[ a-zA-Z0-9_] +$ ] ] ; then
query = " SELECT uid,login FROM membres WHERE login LIKE ' $OPTARG ' "
else
echo "Bad login provided"
exit
fi
; ;
"u" )
if [ [ " $OPTARG " = ~ ^[ 0-9] +$ ] ] ; then
query = " SELECT uid,login FROM membres WHERE uid LIKE ' $OPTARG ' "
else
echo "Bad uid provided"
exit
fi
; ;
"f" )
#Is this kinf of escaping enough ?
file = $( printf %q $OPTARG )
echo $file
; ;
"d" )
#Is this kinf of escaping enough ?
sub_dir = $( printf %q $OPTARG )
echo $sub_dir
; ;
"?" )
echo " Unknown option $OPTARG - stop processing "
exit
; ;
":" )
echo " No argument value for option $OPTARG - stop processing "
exit
; ;
*)
# Should not occur
echo "Unknown error while processing options"
exit
; ;
esac
done
2011-12-31 15:46:11 +00:00
2006-05-16 18:20:14 +00:00
PATH = /sbin:/bin:/usr/sbin:/usr/bin
umask 022
2013-02-18 13:11:25 +00:00
CONFIG_FILE = "/usr/lib/alternc/functions.sh"
2006-05-16 18:20:14 +00:00
if [ ! -r " $CONFIG_FILE " ] ; then
echo " Can't access $CONFIG_FILE . "
exit 1
fi
2013-02-18 13:11:25 +00:00
source " $CONFIG_FILE "
2006-05-16 18:20:14 +00:00
if [ ` id -u` -ne 0 ] ; then
2013-02-18 13:11:25 +00:00
echo " $0 must be launched as root "
2006-05-16 18:20:14 +00:00
exit 1
fi
2008-04-24 16:10:27 +00:00
doone( ) {
2012-08-24 09:06:19 +00:00
read GID LOGIN || true
2011-05-22 09:22:45 +00:00
while [ " $LOGIN " ] ; do
2006-05-16 18:20:14 +00:00
if [ " $DEBUG " ] ; then
2011-05-22 19:18:43 +00:00
echo " Setting rights and ownership for user $LOGIN having gid $GID "
2006-05-16 18:20:14 +00:00
fi
2013-02-18 15:28:17 +00:00
REP = " $( get_html_path_by_name " $LOGIN " ) "
2013-03-04 17:53:51 +00:00
# Clean the line, then add a ligne indicating current working directory
printf '\r%*s' " ${ COLUMNS :- $( tput cols) } " ''
printf " \r% ${ COLUMNS } s " " AlternC fixperms.sh -> working on $REP "
2011-12-31 15:46:11 +00:00
2012-08-24 08:51:00 +00:00
# Set the file readable only for the AlternC User
2012-08-25 09:52:03 +00:00
mkdir -p " $REP "
2013-08-07 14:56:47 +00:00
chown -R $GID :$GID " $REP "
2011-05-22 09:22:45 +00:00
chmod 2770 -R " $REP "
# Delete existings ACL
2011-05-22 17:23:59 +00:00
# Set the defaults acl on all the files
2012-06-19 15:29:15 +00:00
setfacl -b -k -n -R -m d:g:alterncpanel:rwx -m d:u::rwx -m d:g::rwx -m d:u:$GID :rwx -m d:g:$GID :rwx -m d:o::--- -m d:mask:rwx\
-Rm g:alterncpanel:rwx -m u:$GID :rwx -m g:$GID :rwx -m mask:rwx\
2012-06-12 17:11:46 +00:00
" $REP "
2011-05-22 09:22:45 +00:00
2012-08-24 08:51:00 +00:00
read GID LOGIN || true
2006-05-16 18:20:14 +00:00
done
2013-03-04 17:53:51 +00:00
echo -e "\nDone"
2006-05-16 18:20:14 +00:00
}
2013-04-25 13:05:27 +00:00
fixdir( ) {
if [ " $DEBUG " ] ; then
echo " Setting rights and ownership for user $LOGIN having gid $GID "
fi
REP = " $sub_dir "
2013-08-14 13:16:34 +00:00
# We assume that the owner of the directory should be the one from the html user base directory ( $ALTERNC_HTML/<letter>/<login>)
2013-08-07 14:56:47 +00:00
REP_ID = " $( get_uid_by_path " $REP " ) "
2013-04-25 13:05:27 +00:00
# Clean the line, then add a ligne indicating current working directory
printf '\r%*s' " ${ COLUMNS :- $( tput cols) } " ''
printf " \r% ${ COLUMNS } s " " AlternC fixperms.sh -> working on $REP "
# Set the file readable only for the AlternC User
mkdir -p " $REP "
2013-08-07 14:56:47 +00:00
chown -R $REP_ID :$REP_ID " $REP "
2013-04-25 13:05:27 +00:00
chmod 2770 -R " $REP "
# Delete existings ACL
# Set the defaults acl on all the files
2013-08-07 14:56:47 +00:00
setfacl -b -k -n -R -m d:g:alterncpanel:rwx -m d:u::rwx -m d:g::rwx -m d:u:$REP_ID :rwx -m d:g:$REP_ID :rwx -m d:o::--- -m d:mask:rwx\
-Rm g:alterncpanel:rwx -m u:$REP_ID :rwx -m g:$REP_ID :rwx -m mask:rwx\
2013-04-25 13:05:27 +00:00
" $REP "
2013-08-14 13:16:34 +00:00
echo -e "\nDone"
2013-04-25 13:05:27 +00:00
}
2012-08-24 08:51:00 +00:00
fixfile( ) {
2013-08-14 13:16:34 +00:00
/usr/bin/setfacl -bk " $file "
# We assume that the owner of the file should be the one from the html user base directory ( $ALTERNC_HTML/<letter>/<login>)
REP_ID = " $( get_uid_by_path " $file " ) "
chown $REP_ID :$REP_ID " $file "
chmod 0770 " $file "
/usr/bin/setfacl -m u:$REP_ID :rw- -m g:$REP_ID :rw- -m g:alterncpanel:rw- -m u:$REP_ID :rw- -m g:$REP_ID :rw- " $file "
echo file ownership and ACLs changed
2012-06-12 17:11:46 +00:00
}
2013-08-19 08:58:15 +00:00
ctrl_c( ) {
echo -e "\n***** INTERRUPT *****"
echo " $0 was interrupted. Default is to return an error code. "
echo "Do you want to *ignore* the error code (y/n)?"
echo "(default is n)"
read -N 1 ans
case " $ans " in
y| Y )
exit 0
; ;
* )
exit -5
; ;
esac
}
trap ctrl_c SIGINT
2013-08-14 13:16:34 +00:00
#Start of the script actions
if [ [ " $file " != "" ] ] ; then # if we are dealing with a file
2012-08-24 08:51:00 +00:00
if [ -e " $file " ] ; then
2013-08-14 13:16:34 +00:00
fixfile
2012-06-12 17:11:46 +00:00
else
echo "file not found"
fi
2013-08-14 13:16:34 +00:00
elif [ [ " $sub_dir " != "" ] ] ; then #if we are dealing with a directory
2013-04-25 13:05:27 +00:00
if [ -d " $sub_dir " ] ; then
2013-08-14 13:16:34 +00:00
fixdir
2013-04-25 13:05:27 +00:00
else
echo "dir not found"
fi
2012-06-12 17:11:46 +00:00
else
2013-08-14 13:16:34 +00:00
#we are fixing the whole html directory
#either for all user (default) or a specific one ( -u or -l switch )
2012-06-12 17:11:46 +00:00
mysql --defaults-file= /etc/alternc/my.cnf --skip-column-names -B -e " $query " | doone
fi
