createMichaeluser

#!/usr/bin/env bash

ACL="Open"
michael_users="michael-users-request@ucl.ac.uk"
# Email address that subscribe command notification goes to.
# Can't be rc-support or we get tickets and bounce messages
mailing_requestor="h.kelly@ucl.ac.uk"
email_cc=""

usage () {
  echo "Usage: $0 [options] -u <username> -e <email> -k <ssh_key>

  Options:
    -h    show this help message
    -n    do not send welcome email
    -m <email> mailing list request confirmation goes here
    -c <email> welcome email is CCed here
  "
}

while getopts ":hu:e:k:nm:c:" opt; do
  case $opt in
    h)
      usage
      exit 0
      ;;
    u)
      username="$OPTARG"
      #echo "Username: $username"
      ;;
    e)
      email="$OPTARG"
      #echo "Email: $email"
      ;;
    k)
      ssh_key="$OPTARG"
      #echo "ssh key: $ssh_key"
      ;;
    n)
      do_not_mail="y"
      ;;
    m)
      mailing_requestor="$OPTARG"
      ;;
    c)
      email_cc="$OPTARG"
      ;;
    \?)
      echo "Invalid option: -$OPTARG" >&2
      exit 4
      ;;
  esac
done

# make sure all arguments are supplied (checks for unset or empty)
if [ ! "$username" ] || [ ! "$email" ] || [ ! "$ssh_key" ]
then
  usage
  exit 1
fi

# become user, create ssh directory and add key
#echo "Becoming ${username}, creating ssh dir and adding key"
#become_output=$(sudo /shared/ucl/sysops/libexec/become $username <<EOF
#echo "Beacon"
#mkdir -p .ssh
#chmod go-rwx .ssh
#echo "${ssh_key}" >> ~/.ssh/authorized_keys
#EOF
#)
#become_exit_status=$?
#if [ "${become_output:0:6}" != "Beacon" ]; then
#  echo "Error: could not become user ${username}" >&2
#  exit 1
#fi

# replacement for become - creates homedir and adds key
if ! sudo /shared/ucl/sysops/libexec/add_sshkeys "${username}" "${ssh_key}"
then
  echo $(date) ": Creation of ${username} homedir or addition of key failed, exiting." >&2
  exit 1
fi

# add user to ACL so they can log in and submit jobs
if ! qconf -au "$username" "$ACL"
then
  echo $(date) ": Adding ${username} to $ACL ACL failed, exiting." >&2
  exit 1
fi

# check that the qconf change actually worked!
# Try 3 times.
for i in 1 2 3
do
  qconf -su "$ACL" | grep -q "$username"
  if [ $? == 0 ]
  then
    echo ""
    echo $(date) ": Successfully allowed ${username} to log in"
    break
  elif (( $i < 3 ))
  # failed, try again
  then
    sleep 5
  else
    echo $(date) ": Grid Engine failed to add ${username} to $ACL ACL three times - please contact rc-support@ucl.ac.uk" >&2
    exit 1
  fi
done

# add user to michael-users mailing list
echo "  Emailing ${michael_users} to add ${email}"
/usr/sbin/sendmail -t<<EOF
From: ${mailing_requestor}
To: ${michael_users}
Subject: subscribe address=${email}

EOF

# email welcome to user, unless do_not_mail was set
if [ ! "$do_not_mail" ] 
then
  echo "  Emailing user ${username} at ${email}"
  /usr/sbin/sendmail -t<<EOF
From: rc-support@ucl.ac.uk
To: ${email}
CC: ${email_cc}
Subject: Michael: EPSRC Tier 2 MMM Hub account

We are happy to confirm that your account to use Michael is now active.
Michael is an extension to the UK National Tier 2 High Performance Computing 
Hub in Materials and Molecular Modelling for the Faraday Institution. 
You should be able to log in within 5 minutes of receiving this email.

Your username is ${username} and you should ssh to michael.rc.ucl.ac.uk.
You will be logging in using the ssh key you provided us.

GETTING HELP 

Information to help you get started in using Michael is available at 

https://www.rc.ucl.ac.uk/docs/Clusters/Michael/

including a user guide covering all of our systems.

ANNOUNCEMENTS 

Emails relating to planned outages, service changes etc will be sent to the
michael-users@ucl.ac.uk email list. You have been subscribed to this
list using the email address provided with your account application - please
make sure that you read all notices sent to this address promptly and
observe the requests/guidelines they contain. 

If you have any queries relating to this information please email the 
support address rc-support@ucl.ac.uk. 
EOF
else
  echo "Sending no welcome email"
fi