2 # Usage: afs_create locker type cell path quota user group
4 require "/moira/bin/afs_utils.pl";
6 $protodir="/moira/dotfiles";
10 ("ATHENA.MIT.EDU", 'athena_proc' );
14 die "Usage: $0 locker type cell path user group\n" if (@ARGV != 6);
15 ($locker,$type,$cell,$path,$user,$group) = @ARGV;
18 ($c = $cell) =~ s/\./_/g;
19 $vname = &afs_vname($locker, $type, $cell);
20 die "Cannot create $type volumes in $cell\n" unless $vname;
23 ($asrv,$apart) = &afs_find($cell,$type,$quota);
24 die "Unable to find space to create $vname in $cell\n" unless ($asrv&&$apart);
27 system("$vos create $asrv $apart $vname -cell $cell >/dev/null") &&
28 &fatal("Unable to create $vname in $cell");
29 push(@clean, "$vos remove $asrv $apart $vname -cell $cell >/dev/null");
31 # Create mountpoint and set quota
32 $path =~ s:^/afs/([^.]):/afs/.\1:;
33 system("$fs checkv >/dev/null; $fs mkm $path $vname");
34 &fatal("Unable to create $path") if ($?);
35 push(@clean, "$fs rmm $path");
37 # Obtain user/group information (uid >= 0, gid <= 0)
39 open(PTS, "$pts ex $user -cell $cell|");
42 ($uid,$uid,$uid,$uid) = split(/[:,] /, $_) unless ($?);
44 open(PTS, "$pts ex system:$group -cell $cell|");
47 ($gid,$gid,$gid,$gid) = split(/[:,] /, $_) unless ($?);
49 # Dispatch to the cell-specific creation routines
53 # Set the filesystem quota
54 system("$fs sq $path $quota");
55 &fatal("Unable to set the quota on $path") if ($?);
57 # Release the parent volume
58 ($p = $path) =~ s:/[^/]+$::;
59 open(FS, "$fs lv $p|") || &fatal("Can't get information about $p");
62 &fatal("Can't get information about $p") if ($?);
63 @tmp = (split(/ /,$_));
64 system("$vos release $tmp[$#tmp] -cell $cell >/dev/null") &&
65 &fatal("Can't release $tmp[$#tmp] in cell $cell");
67 &afs_quota_adj($cell,$asrv,$apart,$quota);
78 warn "$locker: Cleanup failed: $cmd\n" if (system("$cmd"));
83 # Cell specific procedures
88 # ACTIVITY <user> all <group> all system:anyuser rl
89 # APROJ <user> all <group> all system:anyuser rl
90 # AREF <user> all <group> rl
91 # CONTRIB <user> all system:anyuser rl
92 # COURSE <user> all <group> all system:facdev all system:authuser rl
94 # PROJECT <user> all <group> all
95 # REF <user> all system:anyuser rl
96 # SW <user> all system:swmaint all system:authuser rl
97 # SYSTEM system:administrators all system:anyuser rl
98 # UROP <user> all <group> all system:facdev all system:authuser rl
101 # 1. All directories also have "system:expunge ld".
103 @acl=("system:expunge ld");
104 push(@acl,"system:facdev all") if ($type =~ /^(COURSE|UROP)/);
105 push(@acl,"system:swmaint all") if ($type =~ /^(SW)/);
106 push(@acl,"system:administrators all") if ($type =~ /^(SYSTEM)/);
107 push(@acl,"$user all")
108 if ($uid != 0 && $type =~ /^(ACTIVITY|APROJ|AREF|CONTRIB|COURSE|HOMEDIR|PROJECT|REF|SW|UROP)/);
109 push(@acl,"system:$group all")
110 if ($gid != 0 && $type =~ /^(ACTIVITY|APROJ|COURSE|PROJECT|UROP)/);
111 push(@acl,"system:$group rl") if ($gid != 0 && $type =~ /^(AREF)/);
112 push(@acl,"system:authuser rl")
113 if ($type =~ /^(COURSE|SW|UROP)/);
114 push(@acl,"system:anyuser rl")
115 if ($type =~ /^(ACTIVITY|APROJ|CONTRIB|REF|SYSTEM)/);
117 if ($type !~ /^(AREF|SYSTEM)/) {
118 system("$fs mkm $path/OldFiles $vname.backup");
119 warn "$locker: Unable to create OldFiles mountpoint\n" if ($?);
122 if ($type =~ /ACTIVITY|APROJ|PROJECT/) {
123 chown($gid,0,$path) ||
124 die "Unable to set volume ownership\n";
125 } elsif ($type =~ /HOMEDIR|UROP/) {
126 chown($uid,0,$path) ||
127 die "Unable to set volume ownership\n";
130 if ($type eq "HOMEDIR") {
131 die "Unable to get uid for user\n" unless ($uid);
133 mkdir("$path/Public",0755) && chown($uid,0,"$path/Public") &&
134 mkdir("$path/Private",0700) && mkdir("$path/Mail", 0700) &&
135 chown($uid,0,"$path/Public","$path/Private","$path/Mail") ||
136 die "Unable to create subdirectories\n";
137 system("$fs sa $path/Public @acl system:anyuser rl -clear") &&
138 die "Unable to set acl on Public directory";
139 system("$fs sa -dir $path/Private $path/Mail -acl @acl -clear") &&
140 die "Unable to set acl on Private and/or Mail directories\n";
142 opendir(DIR,$protodir) || die "Unable to open prototype directory\n";
147 next if ($i eq "." || $i eq "..");
148 next unless -f "$protodir/$i";
149 open(IN,"<$protodir/$i") || die "Unable to open $protodir/$i\n";
150 open(OUT,">$path/$i") || die "Unable to create $i\n";
151 while ($_=<IN>) { print OUT $_; };
154 chown($uid,0,"$path/$i");
156 system("$fs sa $path @acl system:anyuser l -clear") &&
157 die "Unable to set acl on top-level directory\n";
161 system("$fs sa $path @acl -clear") &&
162 die "Unable to set acl of $path\n";