allow makeitso to be re-run

remove aws stuff - will get from public site
2021-07-16 09:59:50 -07:00 · 2021-07-16 09:56:10 -07:00
1 changed files with 5 additions and 7 deletions
--- a/12
+++ b/12
@ -5,9 +5,12 @@ if [ $# -ne 1 ]; then
  exit 1
 fi

-#sudo adduser --disabled-login --gecos 'User for AuthorizedKeysCommand' authorizedkeysuser ||
-sudo useradd -c 'User for AuthorizedKeysCommand' -d /home/authorizedkeysuser -m -s/usr/sbin/nologin authorizedkeysuser
+if [ ! -d /home/authorizedkeysuser ]; then
+  #sudo adduser --disabled-login --gecos 'User for AuthorizedKeysCommand' authorizedkeysuser ||
+  sudo useradd -c 'User for AuthorizedKeysCommand' -d /home/authorizedkeysuser -m -s/usr/sbin/nologin authorizedkeysuser
+fi

+grep -q AuthorizedKeysCommand /etc/ssh/sshd_config || \
 sudo sh -c "echo 'Match User $1
  AuthorizedKeysCommand /etc/ssh/get_authorized_keys
  AuthorizedKeysCommandUser authorizedkeysuser' >> /etc/ssh/sshd_config"
@ -16,9 +19,4 @@ sudo cp get_authorized_keys /etc/ssh

 sudo chmod 755 /etc/ssh/get_authorized_keys

-sudo -u authorizedkeysuser mkdir ~authorizedkeysuser/.aws
-sudo -u authorizedkeysuser cp config ~authorizedkeysuser/.aws
-sudo -u authorizedkeysuser cp .credentials ~authorizedkeysuser/.aws/credentials
-sudo -u authorizedkeysuser chmod 600 ~authorizedkeysuser/.aws/*
-sudo -H -u authorizedkeysuser sh -c 'command -v aws > /dev/null 2>&1 || pip install --user awscli'
 sudo systemctl restart sshd
Author	SHA1	Message	Date
Emil Lerch	9e8d93d4ea	allow makeitso to be re-run	2021-07-16 09:59:50 -07:00
Emil Lerch	ae51e774ae	remove aws stuff - will get from public site	2021-07-16 09:56:10 -07:00