deployment/scripts/serviceaccount.sh

#!/bin/bash

SUDOER_PSW=

function restofscript(){
    USERNAMETOADD=
    PASSWORDTOADD=
    echo "hello, $(whoami)"
    useradd -m -s /bin/bash ${USERNAMETOADD}
    echo "user added"
    echo "${USERNAMETOADD}:${PASSWORDTOADD}" | chpasswd
    echo "password updated"
    loginctl enable-linger ${USERNAMETOADD}
    echo "linger enabled"
    mkdir /home/${USERNAMETOADD}/.ssh
    echo "user has .ssh/"
    touch /home/${USERNAMETOADD}/authorized_keys
    echo "user has .ssh/authorized keys"
    cat ssh.pub >> /home/${USERNAMETOADD}/.ssh/authorized_keys
    echo "authorized keys should accept ssh.pub"
    chmod 600 /home/${USERNAMETOADD}/authorized_keys
    echo "authorized keys should be mode 600"
    chown -R "${USERNAMETOADD}:${USERNAMETOADD}" /home/${USERNAMETOADD}/.ssh
    echo "correct user should own his .ssh directory. done!"
}

echo "${SUDOER_PSW}" | sudo -S bash -c "$(declare -f restofscript); restofscript"
exit
new plan. forget end-document, doesn't cooperate. 2024-12-06 17:06:04 -05:00			`#!/bin/bash`

			`SUDOER_PSW=`

			`function restofscript(){`
service account needs exit 2024-12-06 18:04:58 -05:00			`USERNAMETOADD=`
			`PASSWORDTOADD=`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "hello, $(whoami)"`
new plan. forget end-document, doesn't cooperate. 2024-12-06 17:06:04 -05:00			`useradd -m -s /bin/bash ${USERNAMETOADD}`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "user added"`
new plan. forget end-document, doesn't cooperate. 2024-12-06 17:06:04 -05:00			`echo "${USERNAMETOADD}:${PASSWORDTOADD}" \| chpasswd`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "password updated"`
new plan. forget end-document, doesn't cooperate. 2024-12-06 17:06:04 -05:00			`loginctl enable-linger ${USERNAMETOADD}`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "linger enabled"`
don't command from within the new user's directory 2024-12-06 20:39:16 -05:00			`mkdir /home/${USERNAMETOADD}/.ssh`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "user has .ssh/"`
don't command from within the new user's directory 2024-12-06 20:39:16 -05:00			`touch /home/${USERNAMETOADD}/authorized_keys`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "user has .ssh/authorized keys"`
don't command from within the new user's directory 2024-12-06 20:39:16 -05:00			`cat ssh.pub >> /home/${USERNAMETOADD}/.ssh/authorized_keys`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "authorized keys should accept ssh.pub"`
don't command from within the new user's directory 2024-12-06 20:39:16 -05:00			`chmod 600 /home/${USERNAMETOADD}/authorized_keys`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "authorized keys should be mode 600"`
don't command from within the new user's directory 2024-12-06 20:39:16 -05:00			`chown -R "${USERNAMETOADD}:${USERNAMETOADD}" /home/${USERNAMETOADD}/.ssh`
more debugging junk 2024-12-06 20:53:57 -05:00			`echo "correct user should own his .ssh directory. done!"`
new plan. forget end-document, doesn't cooperate. 2024-12-06 17:06:04 -05:00			`}`

service account needs exit 2024-12-06 18:04:58 -05:00			`echo "${SUDOER_PSW}" \| sudo -S bash -c "$(declare -f restofscript); restofscript"`
			`exit`