Compare commits

..

2 Commits

Author SHA1 Message Date
9e8d93d4ea
allow makeitso to be re-run 2021-07-16 09:59:50 -07:00
ae51e774ae
remove aws stuff - will get from public site 2021-07-16 09:56:10 -07:00

View File

@ -5,9 +5,12 @@ if [ $# -ne 1 ]; then
exit 1 exit 1
fi fi
#sudo adduser --disabled-login --gecos 'User for AuthorizedKeysCommand' authorizedkeysuser || if [ ! -d /home/authorizedkeysuser ]; then
sudo useradd -c 'User for AuthorizedKeysCommand' -d /home/authorizedkeysuser -m -s/usr/sbin/nologin authorizedkeysuser #sudo adduser --disabled-login --gecos 'User for AuthorizedKeysCommand' authorizedkeysuser ||
sudo useradd -c 'User for AuthorizedKeysCommand' -d /home/authorizedkeysuser -m -s/usr/sbin/nologin authorizedkeysuser
fi
grep -q AuthorizedKeysCommand /etc/ssh/sshd_config || \
sudo sh -c "echo 'Match User $1 sudo sh -c "echo 'Match User $1
AuthorizedKeysCommand /etc/ssh/get_authorized_keys AuthorizedKeysCommand /etc/ssh/get_authorized_keys
AuthorizedKeysCommandUser authorizedkeysuser' >> /etc/ssh/sshd_config" AuthorizedKeysCommandUser authorizedkeysuser' >> /etc/ssh/sshd_config"
@ -16,9 +19,4 @@ sudo cp get_authorized_keys /etc/ssh
sudo chmod 755 /etc/ssh/get_authorized_keys sudo chmod 755 /etc/ssh/get_authorized_keys
sudo -u authorizedkeysuser mkdir ~authorizedkeysuser/.aws
sudo -u authorizedkeysuser cp config ~authorizedkeysuser/.aws
sudo -u authorizedkeysuser cp .credentials ~authorizedkeysuser/.aws/credentials
sudo -u authorizedkeysuser chmod 600 ~authorizedkeysuser/.aws/*
sudo -H -u authorizedkeysuser sh -c 'command -v aws > /dev/null 2>&1 || pip install --user awscli'
sudo systemctl restart sshd sudo systemctl restart sshd