alexander.schaeferdiek/system-helpers
1
0
Fork 0
Code Pull requests Activity Actions

Add script for simple umask alignment
All checks were successful
continuous-integration/drone/push Build is passing
Details

Browse source
This commit is contained in:
Alexander Schäferdiek 2022-09-06 13:44:32 +02:00
parent 3a53a4a8a1
commit 6012c3aa57
2 changed files with 69 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

47
usr/local/bin/perms_default_umask Executable file
View file

@ -0,0 +1,47 @@
#!/usr/bin/env bash
#
# Usage: perms_default_umask <a folder> [<keep executables: no|yes, default: yes>]
#
# Fix permissions for a directory:
# - align with umask 022 (755 on folders, 644 on files)
# - keep +x flag for already executable files if enabled (default)
DIR="$1"
KEEP_EXECUTABLE_FILES="$2"
if [[ -z "$DIR" ]]; then
echo "No directory given"
exit 1;
fi
if [[ ! -d "$DIR" ]]; then
echo "Directory $DIR does not exist"
exit 1;
fi
if [[ -z "$KEEP_EXECUTABLE_FILES" ]]; then
KEEP_EXECUTABLE_FILES="yes"
fi
echo "Fixing directory permissions of '$DIR'"
find "$DIR" -type d -exec chmod 755 {} \;
if [[ $KEEP_EXECUTABLE_FILES == 'yes' ]]; then
echo "Maintaining +x flag for files in '$DIR'"
EXECUTABLE_FILES=$(find "$DIR" -executable -type f)
else
echo "Executable files in '$DIR' will also be reset"
fi
echo "Fixing file permissions of '$DIR'"
find "$DIR" -type f -exec chmod 644 {} \;
if [[ $KEEP_EXECUTABLE_FILES == 'yes' ]]; then
for i in ${EXECUTABLE_FILES};
do
echo "Restoring +x flag for ${i}"
chmod +x "${i}"
done
fi
echo "Finished"

25
usr/local/bin/perms_user_home_default_umask
View file

@ -1,14 +1,14 @@
#!/usr/bin/env bash #!/usr/bin/env bash
# #
# Usage: perms_user_home_default_umask $A_USERS_HOME_DIRECTORY # Usage: perms_user_home_default_umask <a user home directory> [<keep executables: no|yes, default: yes>]
# #
# Fix permissions for user: # Fix permissions for user:
# - align with umask 022 (755 on folders, 644 on files) # - align with umask 022 (755 on folders, 644 on files)
# - keep +x flag for already executable files if enabled (default, otherwise set to no)
# - set 700 (only allow owner to go into directory) # - set 700 (only allow owner to go into directory)
#
# You need to execute chown -R ...:... on your own
DIR="$1" DIR="$1"
KEEP_EXECUTABLE_FILES="$2"
if [[ -z "$DIR" ]]; then if [[ -z "$DIR" ]]; then
echo "No directory given" echo "No directory given"
@ -20,12 +20,31 @@ if [[ ! -d "$DIR" ]]; then
exit 1; exit 1;
fi fi
if [[ -z "$KEEP_EXECUTABLE_FILES" ]]; then
KEEP_EXECUTABLE_FILES="yes"
fi
echo "Fixing directory permissions of '$DIR'" echo "Fixing directory permissions of '$DIR'"
find "$DIR" -type d -exec chmod 755 {} \; find "$DIR" -type d -exec chmod 755 {} \;
if [[ $KEEP_EXECUTABLE_FILES == 'yes' ]]; then
echo "Maintaining +x flag for files in '$DIR'"
EXECUTABLE_FILES=$(find "$DIR" -executable -type f)
else
echo "Executable files in '$DIR' will also be reset"
fi
echo "Fixing file permissions of '$DIR'" echo "Fixing file permissions of '$DIR'"
find "$DIR" -type f -exec chmod 644 {} \; find "$DIR" -type f -exec chmod 644 {} \;
if [[ $KEEP_EXECUTABLE_FILES == 'yes' ]]; then
for i in ${EXECUTABLE_FILES};
do
echo "Restoring +x flag for ${i}"
chmod +x "${i}"
done
fi
echo "Making '$DIR' owner only" echo "Making '$DIR' owner only"
chmod 700 "$DIR" chmod 700 "$DIR"