serweb-labs · May 6, 2018 10:59
diff --git a/add_sftp_users_moss.sh b/add_sftp_users_moss.sh
 #! /bin/bash
 # $1 user
 # $2 from path

 # prerequisites:
 # create sftp-only group
 # sudo groupadd sftp-only

 # add sftp-only configurations
 # we need to modify the ssh configuration on file /etc/ssh/sshd_config replacing the following line:
 # Subsystem sftp /usr/lib/openssh/sftp-server
 # to: Subsystem sftp internal-sftp
 # and add in end of file:

 # Match group sftp-only
 #     PermitTunnel no
 #     X11Forwarding no
 #     AllowTcpForwarding no
 #     ForceCommand internal-sftp

 if test "$#" -ne 2; then
    echo "expected 2 params: {user} {from-path}"
    exit 1
 fi

 printf "add user $1\n"
 read -n 1 -s -r -p "Press any key to continue"
 printf "\n"

 # create user
 sudo adduser $1

 # prevent ssh access
 sudo usermod -s /bin/false $1

 # add to server group
 # (in moss.sh is "dev")
 sudo usermod -a -G dev $1

 # add sft-only group
 sudo usermod -a -G sftp-only $1

 # set de primary group 
 sudo usermod -g dev $1

 printf "mounting the directory /home/$1/$(basename $2)\n"
 read -n 1 -s -r -p "Press any key to continue"
 printf "\n"

 # create mountpoint container
 sudo mkdir /home/$1/$(basename $2)
 sudo chown $USER:dev /home/$1/$(basename $2)

 # mount the real path
 sudo mount --bind $2 /home/$1/$(basename $2)

 printf "add to crontab: mounting the directory /home/$1/$(basename $2)\n"
 read -n 1 -s -r -p "Press any key to continue"
 printf "\n"

 #write out current crontab
 crontab -l > /tmp/mycron
 #echo new cron into cron file
 echo "@reboot mount --bind $2 /home/$1/$(basename $2)" >> /tmp/mycron

 #install new cron file
 crontab /tmp/mycron
 rm /tmp/mycron

 printf "success\n"
	#! /bin/bash
	# $1 user
	# $2 from path

	# prerequisites:
	# create sftp-only group
	# sudo groupadd sftp-only

	# add sftp-only configurations
	# we need to modify the ssh configuration on file /etc/ssh/sshd_config replacing the following line:
	# Subsystem sftp /usr/lib/openssh/sftp-server
	# to: Subsystem sftp internal-sftp
	# and add in end of file:

	# Match group sftp-only
	# PermitTunnel no
	# X11Forwarding no
	# AllowTcpForwarding no
	# ForceCommand internal-sftp

	if test "$#" -ne 2; then
	echo "expected 2 params: {user} {from-path}"
	exit 1
	fi

	printf "add user $1\n"
	read -n 1 -s -r -p "Press any key to continue"
	printf "\n"

	# create user
	sudo adduser $1

	# prevent ssh access
	sudo usermod -s /bin/false $1

	# add to server group
	# (in moss.sh is "dev")
	sudo usermod -a -G dev $1

	# add sft-only group
	sudo usermod -a -G sftp-only $1

	# set de primary group
	sudo usermod -g dev $1

	printf "mounting the directory /home/$1/$(basename $2)\n"
	read -n 1 -s -r -p "Press any key to continue"
	printf "\n"

	# create mountpoint container
	sudo mkdir /home/$1/$(basename $2)
	sudo chown $USER:dev /home/$1/$(basename $2)

	# mount the real path
	sudo mount --bind $2 /home/$1/$(basename $2)

	printf "add to crontab: mounting the directory /home/$1/$(basename $2)\n"
	read -n 1 -s -r -p "Press any key to continue"
	printf "\n"

	#write out current crontab
	crontab -l > /tmp/mycron
	#echo new cron into cron file
	echo "@reboot mount --bind $2 /home/$1/$(basename $2)" >> /tmp/mycron

	#install new cron file
	crontab /tmp/mycron
	rm /tmp/mycron

	printf "success\n"