web-add.sh: use AllowGroups or AllowUsers as needed
This commit is contained in:
parent
9ff6846c36
commit
99ee37b408
|
@ -284,7 +284,17 @@ create_www_account() {
|
||||||
lxc-attach -n php${php_version} -- /usr/sbin/adduser --disabled-password --home $HOME_DIR_USER/www --no-create-home --shell /bin/false --gecos "WWW $in_login" www-$in_login --uid $www_uid --ingroup $in_login --force-badname >/dev/null
|
lxc-attach -n php${php_version} -- /usr/sbin/adduser --disabled-password --home $HOME_DIR_USER/www --no-create-home --shell /bin/false --gecos "WWW $in_login" www-$in_login --uid $www_uid --ingroup $in_login --force-badname >/dev/null
|
||||||
done
|
done
|
||||||
|
|
||||||
sed -i "s/^AllowUsers .*/& $in_login/" /etc/ssh/sshd_config
|
if grep -qE '^AllowGroups' /etc/ssh/sshd_config; then
|
||||||
|
if ! grep -qE "^AllowGroups(\s+\S+)*(\s+evoadmin-ssh)" /etc/ssh/sshd_config; then
|
||||||
|
sed -i "s/^AllowGroups .*/& evoadmin-ssh/" /etc/ssh/sshd_config
|
||||||
|
groupadd --force evoadmin-ssh
|
||||||
|
fi
|
||||||
|
usermod -a -G evoadmin-ssh "$in_login"
|
||||||
|
else
|
||||||
|
if grep -qE '^AllowUsers' /etc/ssh/sshd_config; then
|
||||||
|
sed -i "s/^AllowUsers .*/& $in_login/" /etc/ssh/sshd_config
|
||||||
|
fi
|
||||||
|
fi
|
||||||
/etc/init.d/ssh reload
|
/etc/init.d/ssh reload
|
||||||
|
|
||||||
step_ok "Création des utilisateurs"
|
step_ok "Création des utilisateurs"
|
||||||
|
@ -567,9 +577,11 @@ op_del() {
|
||||||
sed -i.bak "/^www-$login:/d" /etc/aliases
|
sed -i.bak "/^www-$login:/d" /etc/aliases
|
||||||
fi
|
fi
|
||||||
|
|
||||||
sed -i "s/^\(AllowUsers .*\)$login/\1/" /etc/ssh/sshd_config
|
if grep -qE '^AllowUsers' /etc/ssh/sshd_config; then
|
||||||
/etc/init.d/ssh reload
|
sed -i "s/^AllowUsers .*/& $in_login/" /etc/ssh/sshd_config
|
||||||
|
/etc/init.d/ssh reload
|
||||||
|
fi
|
||||||
|
|
||||||
if [ -d "$HOME_DIR/$login" ]; then
|
if [ -d "$HOME_DIR/$login" ]; then
|
||||||
mv -i $HOME_DIR/$login $HOME_DIR/$login.`date '+%Y%m%d-%H%M%S'`.bak
|
mv -i $HOME_DIR/$login $HOME_DIR/$login.`date '+%Y%m%d-%H%M%S'`.bak
|
||||||
else
|
else
|
||||||
|
|
Loading…
Reference in a new issue