2 # Copyright (C) The Arvados Authors. All rights reserved.
4 # SPDX-License-Identifier: AGPL-3.0
8 if ! grep "^arvbox:" /etc/passwd >/dev/null 2>/dev/null ; then
9 HOSTUID=$(ls -nd /usr/src/arvados | sed 's/ */ /' | cut -d' ' -f4)
10 HOSTGID=$(ls -nd /usr/src/arvados | sed 's/ */ /' | cut -d' ' -f5)
12 mkdir -p /var/lib/arvados/git /var/lib/gems \
13 /var/lib/passenger /var/lib/gopath \
14 /var/lib/pip /var/lib/npm
16 groupadd --gid $HOSTGID --non-unique arvbox
17 groupadd --gid $HOSTGID --non-unique git
18 useradd --home-dir /var/lib/arvados \
19 --uid $HOSTUID --gid $HOSTGID \
24 useradd --home-dir /var/lib/arvados/git --uid $HOSTUID --gid $HOSTGID --non-unique git
25 useradd --groups docker crunch
27 chown arvbox:arvbox -R /usr/local /var/lib/arvados /var/lib/gems \
28 /var/lib/passenger /var/lib/postgresql \
29 /var/lib/nginx /var/log/nginx /etc/ssl/private \
30 /var/lib/gopath /var/lib/pip /var/lib/npm
32 mkdir -p /var/lib/gems/ruby
33 chown arvbox:arvbox -R /var/lib/gems/ruby
35 mkdir -p /tmp/crunch0 /tmp/crunch1
36 chown crunch:crunch -R /tmp/crunch0 /tmp/crunch1
38 echo "arvbox ALL=(crunch) NOPASSWD: ALL" >> /etc/sudoers
41 if ! grep "^fuse:" /etc/group >/dev/null 2>/dev/null ; then
42 if test -c /dev/fuse ; then
43 FUSEGID=$(ls -nd /dev/fuse | sed 's/ */ /' | cut -d' ' -f5)
44 groupadd --gid $FUSEGID --non-unique fuse