CPI
/
elab-users
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
Command line script to manage the cpi lab journal users.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
26 Commits
1 Branch
0 Tags
106 KiB
 
 
 
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
elab-users/README.md

2.8 KiB
Raw Permalink Blame History

SVN USER MANAGEMENT README

Command line script to manage the cpi lab journal users.

quick file overview

First of all, we talk about the following files and folders:

.htpasswd
README
authz
JaneDoe

** WARNING: ** In this list, there is one hidden files: .htpasswd. This file is hidden on purpose, so ** don't mess with it **.

.htpasswd: stores the passwords for the users (classical apache htpaswd-file)

README: this file

authz: defines the access controll list, so who has access to what

JaneDoe: folder that holds one svn repository for a user

Usermanagement with elab-users

** HINT: ** To run this scipt if the service was deployed to dokku, use this command structure dokku run svn elab-users [command] [name]

The script elab-users provides some options to add and delete users, show access information from users and their elab journals. If the scprit is called with the --help option, the folowing help message is displayed:

usage: elab-users [-h] [command] [name]

positional arguments:
command     one of the commands: [user, group, add, restricted, retire, password]
name        user or group to perform the command on

optional arguments:
-h, --help  show this help message and exit

To grant a restricted user access to another folder, you have to carefully edit the authz file

The following combinations are possible:

  • elab-users: will show a list of all groups and their users
  • elab-users UserName: shows the access rights of the user and their lab journal
  • elab-users group GroupName: shows a list of all group members
  • elab-users add UserName: adds a regular user, creates svn folders and sets a random password
  • elab-users restricted UserName: adds a restricted user, creates svn folders and sets a random password
  • elab-users retire UserName: moves an existing user to the alumni group, removes his password
  • elab-users password UserName: resets the password for an existing user to a new random one

Grant read writes to restricted users

As noted before, if a restriced user should have read access to another lab journal, the authz file has to be edited manually. Here are two examples that grant the user 'JaneDoe' read access to two different lab journals:

... snip ...

[JohnSmith:/]
@restricted =
JaneDoe = r

... snip ...

[MaxMustermann:/]
@restricted =
JaneDoe = r
MaxMustermann = rw

... snip ...

This does not apply to regular users, since these have read access to all folders.

Hint

This readme is written in Markdown. So if you want a nice printout, use a markdown converter first. Something like http://www.markdownviewer.com