Modification : vm_{host,hosted,remote} -> {host,local,remote}/ .

[lhc/ateliers.git] / local / duplicity-configure

diff --git a/local/duplicity-configure b/local/duplicity-configure
new file mode 100755 (executable)
index 0000000..6c81e05
--- /dev/null
+++ b/local/duplicity-configure
@@ -0,0 +1,35 @@
+#!/bin/sh -eu
+tool=$(readlink -e "${0%/*}/..")
+. "$tool"/local/lib.sh
+
+"$tool"/local/apt-get-install duplicity
+home="/home/backup"
+"$tool"/local/adduser backup \
+ --disabled-password \
+ --group \
+ --home "$home" \
+ --shell /bin/bash \
+ --system
+sudo usermod --home "$home" backup
+sudo install -d -m 750 -o backup -g backup \
+ "$home" \
+ "$home"/etc \
+ "$home"/etc/gpg \
+ "$home"/etc/ssh
+sudo install -d -m 770 -o backup -g backup \
+ "$home"/mysql \
+ "$home"/postgres
+getent group sudo backup |
+while IFS=: read -r group x x users
+ do while test -n "$users" && IFS=, read -r user users <<-EOF
+               $users
+               EOF
+        do eval home="~$user"
+               sudo cat "$home"/etc/ssh/authorized_keys
+        done
+ done |
+sudo install -m 640 -o backup -g backup /dev/stdin \
+ "$home"/etc/ssh/authorized_keys
+sudo ln -fns etc/gpg "$home"/.gnupg
+#sudo adduser backup mysql-data
+#sudo adduser backup postgres-data