Начало Каталог Помощ
Регистрация Вход
Apq
/
samba-domain
огледало от https://github.com/Fmstrat/samba-domain.git
1
0
Разклонения 0
Файлове Задачи 0 Уики
Клон: master
Клонове Маркери
samba-domain
/
domain.sh

domain.sh 4.5 KB
Постоянна връзка История Директен файл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184 
  1. #!/usr/bin/env bash
    2. 

  2. 

  3. if [ -z "${DOMAIN_DC}" ] || [ -z "${DOMAIN_EMAIL}" ]; then
    4. 

  4. 	echo 'You must have env variables set of:
    5. 

  5. DOMAIN_DC="dc=corp,dc=example,dc=com"
    6. 

  6. DOMAIN_EMAIL="example.com"
    7. 

  7. '
    8. 

  8. 	exit
    9. 

  9. fi
    10. 

  10. 

  11. #--------------------------------------------
    12. 

  12. 

  13. function usage() {
    14. 

  14. 	echo '
    15. 

  15. Usage:
    16. 

  16. 	domain info
    17. 

  17. 	domain ldapinfo
    18. 

  18. 	domain groups
    19. 

  19. 	domain group <group>
    20. 

  20. 	domain users
    21. 

  21. 	domain user <user>
    22. 

  22. 	domain create-group <group>
    23. 

  23. 	domain delete-group <group>
    24. 

  24. 	domain create-user <user>
    25. 

  25. 	domain delete-user <user>
    26. 

  26. 	domain change-password <user>
    27. 

  27. 	domain edit <user or group>
    28. 

  28. 	domain set-user-ssh-key <user> <pubkey>
    29. 

  29. 	domain set-user-photo-from-file <user> <"$(base64 -w0 /path/to/img)>">
    30. 

  30. 	domain set-user-photo-from-url <user> <url>
    31. 

  31. 	domain add-user-to-group <user> <group>
    32. 

  32. 	domain remove-user-from-group <user> <group>
    33. 

  33. 	domain update-ip <domain> <controller> <oldip> <newip>
    34. 

  34. 	domain flush-cache
    35. 

  35. 	domain reload-config
    36. 

  36. 	domain db-check-and-fix
    37. 

  37. ';
    38. 

  38. }
    39. 

  39. 

  40. case "${1}" in
    41. 

  41. 	info)
    42. 

  42. 		wbinfo -D "$(wbinfo --own-domain)"
    43. 

  43. 		;;
    44. 

  44. 	ldapinfo)
    45. 

  45. 		ldapsearch -b "${DOMAIN_DC}"
    46. 

  46. 		;;
    47. 

  47. 	edit)
    48. 

  48. 		ldbedit -H /var/lib/samba/private/sam.ldb "samaccountname=${2}"
    49. 

  49. 		;;
    50. 

  50. 	groups)
    51. 

  51. 		wbinfo -g
    52. 

  52. 		;;
    53. 

  53. 	group)
    54. 

  54. 		echo ""
    55. 

  55. 		echo "Info"
    56. 

  56. 		echo "----"
    57. 

  57. 		wbinfo --group-info "${2}"
    58. 

  58. 		echo ""
    59. 

  59. 		echo "Members"
    60. 

  60. 		echo "-------"
    61. 

  61. 		samba-tool group listmembers "${2}"
    62. 

  62. 		echo ""
    63. 

  63. 		;;
    64. 

  64. 	users)
    65. 

  65. 		#samba-tool user list
    66. 

  66. 		wbinfo -u
    67. 

  67. 		;;
    68. 

  68. 	user)
    69. 

  69. 		echo ""
    70. 

  70. 		echo "User:"
    71. 

  71. 		echo "-----"
    72. 

  72. 		wbinfo -i "${2}"
    73. 

  73. 		echo ""
    74. 

  74. 		echo "Groups:"
    75. 

  75. 		echo "-----"
    76. 

  76. 		GL=$(wbinfo -r "${2}" | sed 's/\r//g')
    77. 

  77. 		for G in ${GL}; do
    78. 

  78. 			wbinfo --gid-info "${G}"
    79. 

  79. 		done
    80. 

  80. 		echo ""
    81. 

  81. 		;;
    82. 

  82. 	create-group)
    83. 

  83. 		samba-tool group add "${2}"
    84. 

  84. 		;;
    85. 

  85. 	delete-group)
    86. 

  86. 		samba-tool group delete "${2}"
    87. 

  87. 		;;
    88. 

  88. 	create-user)
    89. 

  89. 		echo -n "Firstname: "
    90. 

  90. 		read F
    91. 

  91. 		echo -n "Lastname: "
    92. 

  92. 		read L
    93. 

  93. 		E="${2}@${DOMAIN_EMAIL}"
    94. 

  94. 		samba-tool user create "${2}" --surname "${L}" --given-name "${F}" --mail-address "${E}"
    95. 

  95. 		samba-tool user setexpiry "${2}" --noexpiry
    96. 

  96. 		;;
    97. 

  97. 	delete-user)
    98. 

  98. 		samba-tool user delete "${2}"
    99. 

  99. 		;;
    100. 

  100. 	change-password)
    101. 

  101. 		samba-tool user setpassword "${2}"
    102. 

  102. 		;;
    103. 

  103. 	add-user-to-group)
    104. 

  104. 		samba-tool group addmembers "${3}" "${2}" --object-types=user
    105. 

  105. 		;;
    106. 

  106. 	remove-user-from-group)
    107. 

  107. 		samba-tool group removemembers "${3}" "${2}" --object-types=user
    108. 

  108. 		;;
    109. 

  109. 	update-ip)
    110. 

  110. 		samba-tool dns update 127.0.0.1 ${2} ${3} A ${4} ${5} -U administrator
    111. 

  111. 		samba-tool dns update 127.0.0.1 ${2} @ A ${4} ${5} -U administrator
    112. 

  112. 		;;
    113. 

  113. 	flush-cache)
    114. 

  114. 		net cache flush
    115. 

  115. 		;;
    116. 

  116. 	reload-config)
    117. 

  117. 		if [ -f /etc/samba/external/smb.conf ]; then
    118. 

  118. 			cp -f /etc/samba/external/smb.conf /etc/samba/smb.conf
    119. 

  119. 		fi
    120. 

  120. 		net cache flush
    121. 

  121. 		;;
    122. 

  122. 	db-check-and-fix)
    123. 

  123. 		samba-tool dbcheck --cross-ncs --fix --yes
    124. 

  124. 		;;
    125. 

  125. 	set-user-ssh-key)
    126. 

  126. 		DN=$(ldbedit -H /var/lib/samba/private/sam.ldb -e cat "samaccountname=${2}" | grep ^dn: |sed 's/^dn: //g')
    127. 

  127. 		CURKEY=$(ldbedit -H /var/lib/samba/private/sam.ldb -e cat "samaccountname=${2}" | { grep ^sshPublicKey: || true; })
    128. 

  128. 		if [ -z "${CURKEY}" ]; then
    129. 

  129. 			MOD="dn: ${DN}
    130. 

  130. changetype: modify
    131. 

  131. add: objectClass
    132. 

  132. objectClass: ldapPublicKey"
    133. 

  133. 			echo "${MOD}" | ldbmodify -H /var/lib/samba/private/sam.ldb
    134. 

  134. 			MOD="dn: ${DN}
    135. 

  135. changetype: modify
    136. 

  136. add: sshPublicKey
    137. 

  137. sshPublicKey: ${3}"
    138. 

  138. 			echo "${MOD}" | ldbmodify -H /var/lib/samba/private/sam.ldb
    139. 

  139. 		else
    140. 

  140. 			MOD="dn: ${DN}
    141. 

  141. changetype: modify
    142. 

  142. replace: sshPublicKey
    143. 

  143. sshPublicKey: ${3}"
    144. 

  144. 			echo "${MOD}" | ldbmodify -H /var/lib/samba/private/sam.ldb
    145. 

  145. 		fi
    146. 

  146. 		;;
    147. 

  147. 	set-user-photo-from-file)
    148. 

  148. 		DN=$(ldbedit -H /var/lib/samba/private/sam.ldb -e cat "samaccountname=${2}" | grep ^dn: |sed 's/^dn: //g')
    149. 

  149. 		CURPHOTO=$(ldbedit -H /var/lib/samba/private/sam.ldb -e cat "samaccountname=${2}" | { grep ^jpegPhoto: || true; })
    150. 

  150. 		if [ -z "${CURPHOTO}" ]; then
    151. 

  151. 			MOD="dn: ${DN}
    152. 

  152. changetype: modify
    153. 

  153. add: jpegPhoto
    154. 

  154. jpegPhoto::${3}"
    155. 

  155. 			echo "${MOD}" | ldbmodify -H /var/lib/samba/private/sam.ldb
    156. 

  156. 		else
    157. 

  157. 			MOD="dn: ${DN}
    158. 

  158. changetype: modify
    159. 

  159. replace: jpegPhoto
    160. 

  160. jpegPhoto::${3}"
    161. 

  161. 			echo "${MOD}" | ldbmodify -H /var/lib/samba/private/sam.ldb
    162. 

  162. 		fi
    163. 

  163. 		;;
    164. 

  164. 	set-user-photo-from-url)
    165. 

  165. 		DN=$(ldbedit -H /var/lib/samba/private/sam.ldb -e cat "samaccountname=${2}" | grep ^dn: |sed 's/^dn: //g')
    166. 

  166. 		CURPHOTO=$(ldbedit -H /var/lib/samba/private/sam.ldb -e cat "samaccountname=${2}" | { grep ^jpegPhoto: || true; })
    167. 

  167. 		B64=$(curl -s "${3}" |base64 -w0)
    168. 

  168. 		if [ -z "${CURPHOTO}" ]; then
    169. 

  169. 			MOD="dn: ${DN}
    170. 

  170. changetype: modify
    171. 

  171. add: jpegPhoto
    172. 

  172. jpegPhoto::${B64}"
    173. 

  173. 			echo "${MOD}" | ldbmodify -H /var/lib/samba/private/sam.ldb
    174. 

  174. 		else
    175. 

  175. 			MOD="dn: ${DN}
    176. 

  176. changetype: modify
    177. 

  177. replace: jpegPhoto
    178. 

  178. jpegPhoto::${B64}"
    179. 

  179. 			echo "${MOD}" | ldbmodify -H /var/lib/samba/private/sam.ldb
    180. 

  180. 		fi
    181. 

  181. 		;;
    182. 

  182. 	*)
    183. 

  183. 		usage;
    184. 

  184. esac
    185.