Sample 'new' config file
$Id: config.html,v 1.1.1.1 1997/11/19 20:41:53 lars Exp $
| NEW FEATURES | added mm/dd/yy | by implementor |
| "guests" | 08/01/94 | franco@bu.edu |
| "mailcmd" | 08/19/94 | franco@bu.edu |
| "chkpwmsg" | 08/29/94 | franco@bu.edu |
| "no-gecos-extras | 11/29/94 | franco@bu.edu |
| "helpfile" | 02/28/95 | franco@bu.edu |
| "use-kerberos" | 03/27/95 | franco@bu.edu |
| "autohelp" | 05/09/95 | franco@bu.edu |
| "special-status" | 06/07/95 | franco@bu.edu |
Site specific "help" message file
helpfile /usr/local/uid/help
Site specific "autohelp" message file
Use of this file is to display some error or help text to the user
at the point in "new" where it asks
for there registered password.
NOTE Use of this is optional.
autohelp /usr/local/uid/auto-help
Define use-kerberos if your system will accept Kerberos
passwords for login.
Defining this will cause "new" to be used for allocating kerberos
passwords as well as for requesting an account on your machine.
use-kerberos
Prompt defaults
deffname Jane
deflname Smith
defssnum 987654321
defcourse guest
deflog jsmith
defshell /bin/nosh
Path to prefix home dir name with, ie; ~cs210/students/jane
Default is no prefix.
prefix students
Department for GUID record (if not specified on "degree" or "course" line)
NOTE This is a "no-op".
dept NONE
Default college for "registration" checks.
coll CLA
Magic "courses" based on degree status.
NOTE "dept" is not used.
Each field except for "course" can be a "wildmat.3"
pattern. The patterns are interpreted according to rules similar to shell
filename wildcards. For example, the "student" degree line below
will match any person with a status of "d", "g", "u"
or "n", no matter what college or hegis s/he has. Refer to the
"wildmat.3" man page for more details.
NOTE Each entry here must have a passwd file entry with
uid==gid.
Also, the character set for "course" only includes [a-zA-Z0-9] and '-'.
"course" hegis [status [col [dept]]] degree doctorate * d * NONE degree graduate * g * NONE degree ugrad * u * NONE degree nondegree * n * NONE degree faculty * f * NONE degree bustaff * s * NONE degree guest * o * NONE degree student * [dgun] * NONE
Special status program
Define special-status to have "new" invoke a program which will check on the user for special status when the user doesn't match a degree or course you have configured.
The command line parameters to this program are BUID and a temp-file. The program may create this temp-file and place in it the name of a course which you have configured and want the user to match with. If the temp-file is empty or isn't created then the degree "guest" is used. Be sure you define a degree or course named "guest" with a "status" letter of "x" for this default to work properly.
The program should exit with zero if the user has special status or non-zero otherwise.
special-status /usr/local/uid/special
Guest acceptance list
Define "guests" if you want to allow only certain guests to get an account on your machine.
The argument to "guests" is the full path name to a file which contains the BUID's or usernames(one per line) of the users/guests you will allow on your machine.
"new" and "validate" will read the guests file to determine if the user is to get/keep an account as a guest.
NOTE If you define "guests", then you must have a "degree guest" line similar to above, but you must change the "status" letter to "x".
guests /usr/local/uid/guestlist
Legitimate courses. Registration is verified against registrar's database.
"col" is used for "registration" checks(default is "coll" above).
NOTE "dept" is not used.
NOTE Each entry here must have a passwd file entry with uid==gid.
Also, the character set for "course" only includes [a-zA-Z0-9] and '-'.
| "course" | [col | [dept]] | |
| course | ps848 | grs | NONE |
| course | am713 | eng | NONE |
| course | am715 | eng | NONE |
| course | sc546 | eng | NONE |
| course | sc746 | eng | NONE |
Person/persons to see if they are not recognized in the GUID database.
please see your systems administrator
"new" will choose a password for the user.
NOTE This feature is not tested and puts the password string on the screen for all to see. Not recommended!!!
randpass
Define "no-gecos-extras" if you don't want the course information appended to the GECOS field for the user in the password file.
no-gecos-extras
The mail program on your system which is similar to /usr/ucb/Mail. If not defined, defaults to /usr/ucb/Mail.
mailcmd /usr/ucb/Mail
Address(es) to send mail to when appending to user_info!
mail to root
A message to display to tell the user that the password checking routine might take a while to check on whether the password they are choosing is a good one.
chkpwmsg Please wait while I check this password for robustness.
Who to go see when something is wrong.
inform Please inform your systems administrator.
Goodbye reminder. Displayed by "new" as a final remark.
goodbye Now show your valid BU ID card to your systems administrator.
Auto Approval/Create stuff
Define "autoapprove" to enable auto approving. "new"
will approve the account automatically if the user can properly reproduce
his/her own Kerberos password.
NOTE "autoapprove" is assumed when a user running "new" has been "pre-approved" or appears in the "guests" file.
autoapprove
Define "autocreate" to enable auto creation of the actual Unix account.
The argument to "autocreate" should be a full pathname to a program that will take a password file formatted line as its command line argument and create the account. Refer to "adduser.8" man page.
The program can be a shell script and should be non-interactive by default.
It should create a HOME directory, chown and chgrp the HOME stuff and then add the password line to the /etc/passwd file. It should also be able to update a users password for accounts that already exist.
NOTE If the "autocreate" program exits with non-zero, the approval process will fail/stop.
"approve" will exec the program to create the account or update the password automatically.
autocreate /usr/local/uid/adduser
Define "askemail" to prompt the user running "new" if they want their e-mail in PH changed. If the user says yes, their e-mail will get changed to the host specified in "knownon" or to the localhost. Otherwise, their PH e-mail field is left unchanged.
If defined with "override", the users e-mail will get changed without asking. If "askemail" is not defined at all, then the user will not get prompted for an e-mail change and no change will be made to their PH e-mail field.
askemail no-override
Define "knownon" to be the hostname that should appear in the users PH knownon field. This hostname will also be used as the users emailhost.
If not defined or defined as "localhost", "new" and/or "pre-approve" will do a "gethostname()" function call to get the hostname.
knownon localhost