91 lines
2.8 KiB
Bash
91 lines
2.8 KiB
Bash
#!/bin/bash
|
|
|
|
set -e
|
|
|
|
. /usr/share/debconf/confmodule
|
|
|
|
TALER_HOME="/var/lib/taler-exchange"
|
|
CONFIG_FILE="/etc/default/taler-exchange"
|
|
_GROUPNAME=taler-exchange-secmod
|
|
_DBGROUPNAME=taler-exchange-db
|
|
_EUSERNAME=taler-exchange-httpd
|
|
_CLOSERUSERNAME=taler-exchange-closer
|
|
_RSECUSERNAME=taler-exchange-secmod-rsa
|
|
_ESECUSERNAME=taler-exchange-secmod-eddsa
|
|
_AGGRUSERNAME=taler-exchange-aggregator
|
|
_WIREUSERNAME=taler-exchange-wire
|
|
|
|
# usage: fixperm user:group perms file
|
|
function fixperm() {
|
|
chown "$1" "$3"
|
|
chmod "$2" "$3"
|
|
}
|
|
|
|
# usage: lncfg user home target
|
|
function lncfg() {
|
|
local cf=$TALER_HOME/$2/.config
|
|
if [ ! -e $cf ]; then
|
|
mkdir $cf
|
|
chown $(stat -L -c %u $TALER_HOME/$2):$(stat -L -c %g $TALER_HOME/$2) $cf
|
|
fi
|
|
ln -sf $3 $cf/taler.conf
|
|
}
|
|
|
|
case "${1}" in
|
|
configure)
|
|
|
|
# Create taler groups as needed
|
|
if ! getent group ${_GROUPNAME} >/dev/null; then
|
|
addgroup --quiet --system ${_GROUPNAME}
|
|
fi
|
|
if ! getent group ${_DBGROUPNAME} >/dev/null; then
|
|
addgroup --quiet --system ${_DBGROUPNAME}
|
|
fi
|
|
|
|
# Create taler users if needed
|
|
if ! getent passwd ${_EUSERNAME} >/dev/null; then
|
|
adduser --quiet --system --ingroup ${_GROUPNAME} --home ${TALER_HOME}/httpd ${_EUSERNAME}
|
|
adduser --quiet ${_EUSERNAME} ${_DBGROUPNAME}
|
|
fi
|
|
if ! getent passwd ${_RSECUSERNAME} >/dev/null; then
|
|
adduser --quiet --system --ingroup ${_GROUPNAME} --home ${TALER_HOME}/secmod-rsa ${_RSECUSERNAME}
|
|
fi
|
|
if ! getent passwd ${_ESECUSERNAME} >/dev/null; then
|
|
adduser --quiet --system --ingroup ${_GROUPNAME} --home ${TALER_HOME}/secmod-eddsa ${_ESECUSERNAME}
|
|
fi
|
|
if ! getent passwd ${_WIREUSERNAME} >/dev/null; then
|
|
adduser --quiet --system --home ${TALER_HOME}/wire ${_WIREUSERNAME}
|
|
adduser --quiet ${_WIREUSERNAME} ${_DBGROUPNAME}
|
|
fi
|
|
if ! getent passwd ${_CLOSERUSERNAME} >/dev/null; then
|
|
adduser --quiet --system --home ${TALER_HOME}/closer ${_CLOSERUSERNAME}
|
|
adduser --quiet ${_CLOSERUSERNAME} ${_DBGROUPNAME}
|
|
fi
|
|
if ! getent passwd ${_AGGRUSERNAME} >/dev/null; then
|
|
adduser --quiet --system --home ${TALER_HOME}/aggregator ${_AGGRUSERNAME}
|
|
adduser --quiet ${_AGGRUSERNAME} ${_DBGROUPNAME}
|
|
fi
|
|
|
|
fixperm ${_WIREUSERNAME}:root 460 /etc/taler/exchange-wire-gateway.conf
|
|
fixperm root:${_DBGROUPNAME} 640 /etc/taler/exchange-db.conf
|
|
|
|
lncfg ${_EUSERNAME} httpd /etc/taler/exchange-service-default.conf
|
|
lncfg ${_RSECUSERNAME} secmod-rsa /etc/taler/exchange-service-default.conf
|
|
lncfg ${_ESECUSERNAME} secmod-eddsa /etc/taler/exchange-service-default.conf
|
|
lncfg ${_AGGRUSERNAME} aggregator /etc/taler/exchange-service-default.conf
|
|
lncfg ${_CLOSERUSERNAME} closer /etc/taler/exchange-service-default.conf
|
|
lncfg ${_WIREUSERNAME} wire /etc/taler/exchange-service-wire.conf
|
|
;;
|
|
|
|
abort-upgrade | abort-remove | abort-deconfigure) ;;
|
|
|
|
*)
|
|
echo "postinst called with unknown argument \`${1}'" >&2
|
|
exit 1
|
|
;;
|
|
esac
|
|
|
|
#DEBHELPER#
|
|
|
|
exit 0
|