PC World 2000 February

home *** CD-ROM | disk | FTP | other *** search

/ PC World 2000 February / PCWorld_2000-02_cd.bin / live / usr / sbin / adduser < prev next >

Wrap

Text File | 1998-07-27 | 20.5 KB | 691 lines

#!/usr/bin/perl -w # # adduser 3.8 # # adduser: a utility to add users to the system # addgroup: a utility to add groups to the system # Copyright (C) 1997 Guy Maor <maor@debian.org> # Copyright (C) 1995 Ted Hajek <tedhajek@boombox.micro.umn.edu> # Ian A. Murdock <imurdock@gnu.ai.mit.edu> # General scheme of the program adapted by the original debian 'adduser' # program by Ian A. Murdock <imurdock@gnu.ai.mit.edu>. # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. # # #################### # the program can be called as: # # adduser [--home DIR] [--uid ID] [--ingroup GROUP | --gid ID] # [--disabled-password] [--gecos GECOS] user # add a normal user to the system # example: adduser fred # $action = "adduser" # # adduser --group [--gid ID] group # addgroup [--gid ID] group # add a system group # example: addgroup --quiet www-data # $action = "addgroup" # # adduser --system [--home DIR] [--uid ID] [--group | --ingroup GROUP # | --gid ID] [--disabled-password] [--gecos GECOS] user # add a system user. Create a like-named, like-id'd group with # --group, add to an existing group with --ingroup or --gid. Add # to "nogroup" with neither. # example: adduser --system --home /home/gopher-data --group gopher # $action = "addsysuser" # # adduser user group # add the existing user to an existing group. # $action = "addusertogroup" # # all commands take the following options: # --quiet don't give progress information on STDOUT # --force-badname disable checking of names for funny characters # --help usage message # --version version number and copyright # --conf FILE use FILE instead of /etc/adduser.conf ############ $verbose = 1; # should we be verbose? $allow_badname = 0; # should we allow bad names? $ask_passwd = 1; # ask for a passwd? $defaults = "/etc/adduser.conf"; $nogroup_id = getgrnam("nogroup") || 65534; $0 =~ s+.*/++; $config{"dshell"} = "/bin/bash"; $config{"first_system_uid"} = 100; $config{"last_system_uid"} = 999; $config{"first_uid"} = 1000; $config{"last_uid"} = 29999; $config{"dhome"} = "/home"; $config{"skel"} = "/etc/skel"; $config{"usergroups"} = "yes"; $config{"users_gid"} = "100"; $config{"grouphomes"} = "no"; $config{"letterhomes"} = "no"; $config{"quotauser"} = ""; $action = $0 eq "addgroup" ? "addgroup" : "adduser"; while ($arg = shift(@ARGV)) { die "$0: No options allowed after names.\n" if ($names[0] && $arg =~ /^--/); if ($arg eq "--quiet") { $verbose = 0; } elsif ($arg eq "--force-badname") { $allow_badname = 1; } elsif ($arg eq "--help") { &usage(); exit 0; } elsif ($arg eq "--version") { &version(); exit 0; } elsif ($arg eq "--system") { $action = "addsysuser"; } elsif ($arg eq "--group") { $found_group_opt = 1; } elsif ($arg eq "--ingroup") { die "$0: --ingroup requires an argument.\n" if (!($ingroup_name = shift(@ARGV))); } elsif ($arg eq "--home") { die "$0: --home requires an argument.\n" if (!($special_home = shift(@ARGV))); print "$0: Warning: The home dir you specified already exists.\n" if (-d $special_home && $verbose); die "$0: The home dir must be an absolute path.\n" if ($special_home !~ m+^/+ ); } elsif ($arg eq "--gecos") { $new_gecos = shift(@ARGV); } elsif ($arg eq "--disabled-password") { $ask_passwd = 0; } elsif ($arg eq "--uid") { die "$0: --uid requires a numeric argument.\n" if (!($new_uid = shift(@ARGV)) || $new_uid !~ /^\d+$/); } elsif ($arg eq "--gid") { die "$0: --gid requires a numeric argument.\n" if (!($new_gid = shift(@ARGV)) || $new_gid !~ /^\d+$/); } elsif ($arg eq "--conf") { die "$0: --conf requires an argument.\n" if (!($defaults = shift(@ARGV))); die "$0: `$defaults' doesn't exist.\n" if (! -f $defaults); } elsif ($arg eq "--debug") { $debugging = 1; } elsif ($arg =~ /^--/) { # bad argument! die "$0: Unknown argument `$arg'.\n"; } else { # it's a username push (@names, $arg); } } die "$0: Only root may add a user or group to the system.\n" if ($> != 0); die "$0: I need a name to add.\n" if (@names == 0); die "$0: No more than two names.\n" if (@names > 2); if (@names == 2) { # must be addusertogroup die "$0: Specify only one name in this mode.\n" if ($action eq "addsysuser" || $found_group_opt); $action = "addusertogroup"; $existing_user = shift (@names); $existing_group = shift (@names); } else { $new_name = shift (@names); } if ($found_group_opt) { if ($action eq "addsysuser") { $make_group_also = 1; } else { $action = "addgroup"; } } die "$0: --group, --ingroup, and --gid options are mutually exclusive.\n" if ($action ne "addgroup" && defined($found_group_opt) +defined($ingroup_name) +defined($new_gid) > 1); ##### # OK, we've processed the arguments. $action equals one of the following, # and the appropriate variables have been set: # # $action = "adduser" # $new_name - the name of the new user. # $ingroup_name | $new_gid - the group to add the user to # $special_home, $new_uid, $new_gecos - optional overrides # $action = "addgroup" # $new_name - the name of the new group # $new_gid - optional override # $action = "addsysuser" # $new_name - the name of the new user # $make_group_also | $ingroup_name | $new_gid | 0 - which group # $special_home, $new_uid, $new_gecos - optional overrides # $action = "addusertogroup" # $existing_user - the user to be added # $existing_group - the group to add her to ##### &read_config($defaults); &checkname($new_name) if $new_name; $SIG{'INT'} = $SIG{'QUIT'} = $SIG{'HUP'} = 'handler'; ############## ## addgroup ## ############## if ($action eq "addgroup") { die "$0: The group `$new_name' already exists.\n" if (getgrnam($new_name)); die "$0: The GID `$new_gid' is already in use.\n" if (defined($new_gid) && getgrgid($new_gid)); if (!defined($new_gid)) { $new_gid = &first_avail_id($config{"first_system_uid"}, $config{"last_system_uid"}, &get_current_gids); die "$0: No GID is available in the range ", "$config{\"first_system_uid\"} - $config{\"last_system_uid\"}\n", "(FIRST_SYS_UID - LAST_SYS_UID). ", "Group `$new_name' not created.\n" if ($new_gid == -1); } print "Adding group $new_name ($new_gid)...\n" if $verbose; &systemcall('groupadd', '-g', $new_gid, $new_name); print "Done.\n" if $verbose; exit 0; } #################### ## addusertogroup ## #################### elsif ($action eq "addusertogroup") { die "$0: The user `$existing_user' doesn't exist.\n" if (!getpwnam($existing_user)); die "$0: The group `$existing_group' doesn't exist.\n" if (!getgrnam($existing_group)); if (&user_is_member($existing_user, $existing_group)) { print "The user `$existing_user' is already a member of ", "`$existing_group'.\n" if $verbose; exit 0; # not really an error } print "Adding user $existing_user to group $existing_group...\n" if $verbose; &systemcall('usermod', '-G', join(",", get_users_groups($existing_user), $existing_group), $existing_user); print "Done.\n" if $verbose; exit 0; } ################ ## addsysuser ## ################ elsif ($action eq "addsysuser") { $new_gid = $nogroup_id if (!$ingroup_name && !defined($new_gid) && !$make_group_also); &check_user_group(); print "Adding system user $new_name...\n" if $verbose; if (!defined($new_uid) && $make_group_also) { $new_uid = &first_avail_id($config{"first_system_uid"}, $config{"last_system_uid"}, &get_current_uids, &get_current_gids); die "$0: No UID/GID pair is available in the range ", "$config{\"first_system_uid\"} - $config{\"last_system_uid\"}\n", "(FIRST_SYS_UID - LAST_SYS_UID). ", "User `$new_name' not created.\n" if ($new_uid == -1); $new_gid = $new_uid; $ingroup_name = $new_name; } elsif (!defined($new_uid) && !$make_group_also) { $new_uid = &first_avail_id($config{"first_system_uid"}, $config{"last_system_uid"}, &get_current_uids); die "$0: No UID is available in the range ", "$config{\"first_system_uid\"} - $config{\"last_system_uid\"}\n", "(FIRST_SYS_UID - LAST_SYS_UID). ", "User `$new_name' not created.\n" if ($new_uid == -1); if (defined($new_gid)) { $ingroup_name = getgrgid($new_gid); } elsif ($ingroup_name) { $new_gid = getgrnam($ingroup_name); } else { die "Internal error"; } } else { if (defined($new_gid)) { $ingroup_name = getgrgid($new_gid); } elsif ($ingroup_name) { $new_gid = getgrnam($ingroup_name); } elsif ($make_group_also){ $new_gid=$new_uid; $ingroup_name=$new_name; } else { die "Internal error"; } } if ($make_group_also) { print "Adding new group $new_name ($new_gid).\n" if $verbose; $undogroup = $new_name; &systemcall('groupadd', '-g', $new_gid, $new_name); } print "Adding new user $new_name ($new_uid) with group $ingroup_name.\n" if $verbose; $home_dir = $special_home || &homedir($new_name, $ingroup_name); $undouser = $new_name; &systemcall('useradd', '-d', $home_dir, '-g', $ingroup_name, '-s', '/bin/false', '-u', $new_uid, $new_name); &systemcall('chfn', '-f', $new_gecos, $new_name) if ($new_gecos); if (-d $home_dir) { print "Home directory $home_dir already exists.\n" if $verbose; } else { print "Creating home directory $home_dir.\n" if $verbose; $undohome = $home_dir; &mktree($home_dir) || &cleanup("Couldn't create $home_dir: $!.\n"); chown($new_uid, $new_gid, $home_dir) || &cleanup("chown $new_uid:$new_gid $home_dir: $!\n"); $dir_mode = $make_group_also ? 02755 : 0755; chmod ($dir_mode, $home_dir) || &cleanup("chmod $dir_mode $home_dir: $!\n"); } exit 0; } ############# ## adduser ## ############# elsif ($action eq "adduser") { if (!$ingroup_name && !defined($new_gid)) { if ($config{"usergroups"} eq "yes") { $make_group_also = 1; } else { $new_gid = $config{"users_gid"}; } } &check_user_group(); print "Adding user $new_name...\n" if $verbose; if (!defined($new_uid) && $make_group_also) { $new_uid = &first_avail_id($config{"first_uid"}, $config{"last_uid"}, &get_current_uids, &get_current_gids); die "$0: No UID/GID pair is available in the range ", "$config{\"first_uid\"} - $config{\"last_uid\"}\n", "(FIRST_UID - LAST_UID). ", "User `$new_name' not created.\n" if ($new_uid == -1); $new_gid = $new_uid; $ingroup_name = $new_name; } elsif (!defined($new_uid) && !$make_group_also) { $new_uid = &first_avail_id($config{"first_uid"}, $config{"last_uid"}, &get_current_uids); die "$0: No UID is available in the range ", "$config{\"first_uid\"} - $config{\"last_uid\"}\n", "(FIRST_UID - LAST_UID). ", "User `$new_name' not created.\n" if ($new_uid == -1); if (defined($new_gid)) { $ingroup_name = getgrgid($new_gid); } elsif ($ingroup_name) { $new_gid = getgrnam($ingroup_name); } else { die "Internal error"; } } else { if (defined($new_gid)) { $ingroup_name = getgrgid($new_gid); } elsif ($ingroup_name) { $new_gid = getgrnam($ingroup_name); } elsif ($make_group_also){ $new_gid=$new_uid; $ingroup_name=$new_name; } else { die "Internal error"; } } if ($make_group_also) { print "Adding new group $new_name ($new_gid).\n" if $verbose; $undogroup = $new_name; &systemcall('groupadd', '-g', $new_gid, $new_name); } print "Adding new user $new_name ($new_uid) with group $ingroup_name.\n" if $verbose; $home_dir = $special_home || &homedir($new_name, $ingroup_name); $undouser = $new_name; &systemcall('useradd', '-d', $home_dir, '-g', $ingroup_name, '-s', $config{dshell}, '-u', $new_uid, $new_name); if (-d $home_dir) { print "Home directory $home_dir already exists. Not copying from", " $config{skel}\n" if $verbose; } else { print "Creating home directory $home_dir.\n" if $verbose; $undohome = $home_dir; &mktree($home_dir) || &cleanup("Couldn't create $home_dir: $!.\n"); chown($new_uid, $new_gid, $home_dir) || &cleanup("chown $new_uid:$new_gid $home_dir: $!\n"); $dir_mode = $make_group_also ? 02755 : 0755; chmod ($dir_mode, $home_dir) || &cleanup("chmod $dir_mode $home_dir: $!\n"); if ($config{"skel"}) { print "Copying files from $config{skel}\n" if $verbose; open(FIND, "cd $config{skel}; find . -print |") || &cleanup("fork for find: $!\n"); while (<FIND>) { chop; next if ($_ eq "."); ©_to_dir($config{"skel"}, $_, $home_dir, $new_uid, $new_gid, $make_group_also); } } } if ($ask_passwd) { &systemcall('passwd', $new_name); } if ($new_gecos) { &systemcall('chfn', '-f', $new_gecos, $new_name); } else { for (;;) { &systemcall('chfn', $new_name); print "Is the information correct? [y/n] "; chop ($answer=<STDIN>); last if ($answer =~ /^y/i); } } if ($config{"quotauser"}) { print "Setting quota from $config{quotauser}.\n"; &systemcall('edquota', '-p', $config{quotauser}, $new_name); } &systemcall('/usr/local/sbin/adduser.local', $new_name, $new_uid, $new_gid, $home_dir) if (-x "/usr/local/sbin/adduser.local"); exit 0; } # calculate home directory sub homedir { my $dir = $config{"dhome"}; $dir .= '/' . $_[1] if ($config{"grouphomes"} =~ /yes/i); $dir .= '/' . substr($_[0],0,1) if ($config{"letterhomes"} =~ /yes/i); $dir .= '/' . $_[0]; } # create a directory and all leading directories sub mktree { my($tree) = @_; my($done, @path); my $default_dir_mode = 0755; $tree =~ s:^/*(.*)/*$:$1:; # chop off leading & trailing slashes @path = split(/\//, $tree); $done = ""; while (@path) { $done .= '/' . shift(@path); -d $done || mkdir($done, $default_dir_mode) || return 0; } 1; } sub check_user_group() { die "$0: The user `$new_name' already exists.\n" if (getpwnam($new_name)); die "$0: The UID `$new_uid' already exists.\n" if (defined($new_uid) && getpwuid($new_uid)); if ($make_group_also) { die "$0: The group `$new_name' already exists.\n" if (getgrnam($new_name)); die "$0: The GID `$new_uid' already exists.\n" if (defined($new_uid) && getgrgid($new_uid)); } else { die "$0: The group `$ingroup_name' doesn't exist.\n" if ($ingroup_name && !getgrnam($ingroup_name)); die "$0: The GID `$new_gid' doesn't exist.\n" if (defined($new_gid) && !getgrgid($new_gid)); } } # copy files, directories, symlinks sub copy_to_dir { my($fromdir, $file, $todir, $newu, $newg, $sgiddir) = @_; if (-l "$fromdir/$file") { symlink(readlink("$fromdir/$file"), "$todir/$file") || &cleanup("symlink: $!\n"); } elsif (-f "$fromdir/$file") { open (FILE, "$fromdir/$file") || &cleanup("open $fromdir/$file: $!"); open (NEWFILE, ">$todir/$file") || &cleanup("open >$todir/$file: $!"); (print NEWFILE <FILE>) || &cleanup("print $todir/$file: $!"); close FILE; close(NEWFILE) || &cleanup("close $todir/$file "); } elsif (-d "$fromdir/$file") { mkdir("$todir/$file", 700) || &cleanup("mkdir: $!"); } else { &cleanup("Can't deal with $fromdir/$file. " ."Not a dir, file, or symlink.\n"); } chown($newu, $newg, "$todir/$file") || &cleanup("chown $newu:$newg $todir/$file: $!\n"); $perm = (stat("$fromdir/$file"))[2] & 07777; $perm |= 02000 if (-d "$fromdir/$file" && ($perm & 010) && $sgiddir); chmod($perm, "$todir/$file") || &cleanup("chmod $todir/$file: $!\n"); } # is name ok? sub checkname { my ($name) = @_; if ($allow_badname && $name !~ /^[A-Za-z_][-_A-Za-z0-9]*$/) { print STDERR "$0: To avoid problems, the username should consist of a letter or underscore followed by letters, digits, underscores, and dashes.\n"; exit 1; } elsif ($name !~ /^[a-z][a-z0-9]*$/) { if (!$allow_badname) { print STDERR "$0: Please enter a username consisting of a lower case letter followed by lower case letters and numbers. Use the `--force-badname' option to allow underscores, dashes, and uppercase.\n"; exit 1; } print "Allowing use of questionable username.\n" if ($verbose); } } # return the smallest X such that # $min <= X <= $max, and X is not an element of @ids # or -1 if no such X sub first_avail_id { my ($min, $max, @ids) = @_; @ids = sort {$a <=> $b} @ids; print "Selecting from $min $max (" . join(",",@ids) . ").\n" if $debugging; while ($min <= $max) { return $min if ($min < $ids[0] || @ids==0); shift @ids if ($min > $ids[0]); $min++ if ($min == $ids[0]); } -1; # nothing available } # return an array containing all the GIDs sub get_current_gids { my(@gids, $gid); setgrent; push @gids, $gid while defined($gid = (getgrent)[2]); endgrent; @gids; } # return an array containing all the UIDs sub get_current_uids { my(@uids, $uid); setpwent; push @uids, $uid while defined($uid = (getpwent)[2]); endpwent; @uids; } # return a user's groups sub get_users_groups { my($user) = @_; my($name,$members,@groups); setgrent; while (($name,$members) = (getgrent)[0,3]) { for (split(/ /, $members)) { if ($user eq $_) { push @groups, $name; last; } } } endgrent; @groups; } # user is member of group? sub user_is_member { my($user, $group) = @_; for (split(/ /, (getgrnam($group))[3])) { return 1 if ($user eq $_); } 0; } # parse the configuration file sub read_config { my ($conf_file) = @_; my ($var, $lcvar, $val); if (! -f $conf_file) { print "$0: $conf_file doesn't exist. Using defaults.\n" if $verbose; return; } open (CONF, $conf_file) || die "$0: $conf_file: $!\n"; while (<CONF>) { chomp; next if /^#/ || /^\s*$/; if ((($var, $val) = /^\s*(\S+)\s*=\s*(.*)/) != 2) { warn "$0: Couldn't parse $conf_file:$..\n"; next; } $lcvar = lc $var; if (!defined($config{$lcvar})) { warn "$0: Unknown variable `$var' at $conf_file:$..\n"; next; } $val =~ s/^"(.*)"$/$1/; $val =~ s/^'(.*)'$/$1/; $config{$lcvar} = $val; } close CONF || die "$!"; } sub systemcall { my $c = join(' ', @_); print "$c\n" if $debugging; system(@_) && &cleanup("$0: `$c' returned error code $?. Aborting.\n"); } sub cleanup { print "@{_}Cleaning up.\n"; if ($undohome) { print "Removing directory `$undohome'\n"; system('rm', '-rf', $undohome); } if ($undouser) { print "Removing user `$undouser'.\n"; system('userdel', $undouser); } if ($undogroup) { print "Removing group `$undogroup'.\n"; system('groupdel', $undogroup); } exit 1; } sub handler { my($sig) = @_; &cleanup("Caught a SIG$sig.\n"); } sub version { print "$0: add a user or group to the system. Version 3.8 Copyright (C) 1997 Guy Maor <maor\@debian.org> Copyright (C) 1995 Ian Murdock <imurdock\@gnu.ai.mit.edu>, Ted Hajek <tedhajek\@boombox.micro.umn.edu>, This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License, /usr/doc/copyright/GPL, for more details. "; } sub usage { print "adduser [--home DIR] [--uid ID] [--ingroup GROUP | --gid ID] [--disabled-password] [--gecos GECOS] user Add a normal user adduser --system [--home DIR] [--uid ID] [--group | --ingroup GROUP | --gid ID] [--disabled-password] [--gecos GECOS] user Add a system user adduser --group [--gid ID] group addgroup [--gid ID] group Add a system group adduser user group Add an existing user to an existing group Global configuration is in the file $defaults. Other options are [--quiet] [--force-badname] [--help] [--version] [--conf FILE]. "; }