#!/bin/sh
# Usage
if [ $# -lt 4 ]; then
	echo "Usage: $0 customer ipaddress interface_name logical_interface" 
	exit 1
fi
ROOT=
C=$1
IP=$2
IC=$3
LOGICAL=$4
#
echo Adding ${C} to hosts
echo "${IP}\t${C}accounts" >> ${ROOT}/etc/hosts
#
echo Creating new logical interface ${IC}:${LOGICAL}
echo ${C}accounts > ${ROOT}/etc/hostname.${IC}:${LOGICAL}
#
echo Adding customer profile entries for ${C}
echo "${C} Rights:::Rights for ${C}:auths=solaris.login.remote;help=index.html" >> ${ROOT}/etc/security/prof_attr
echo "${C} Rights:tsol:cmd:::/usr/local/bin/gotoCGI:clearance=${C} CGI;label=${C} CGI" >> ${ROOT}/etc/security/exec_attr
echo "${C} Rights:tsol:cmd:::/usr/apache/bin/apachectl:uid=nobody;gid=webserver;clearance=${C} HTTP FTP CGI;label=${C} HTTP FTP;privs=proc_owner,net_privaddr,sys_devices" >> ${ROOT}/etc/security/exec_attr
#
echo Adding trusted network attributes for ${IC}:${LOGICAL}
echo "${IC}\\:${LOGICAL}:forced_privs=none;min_sl=admin_low;def_cl=${C};def_label=[${C}];max_sl=${C}"  >> ${ROOT}/etc/security/tsol/tnidb
#
echo Plumbing Interface ${IC}:${LOGICAL}
/usr/sbin/ifconfig ${IC}:${LOGICAL} plumb
/usr/sbin/ifconfig ${IC}:${LOGICAL} ${IP} up
tnctl -i ${IC}:${LOGICAL}
#
echo Adding passwd and shadow entries for ${C}admin
useradd -c "Admin account for ${C}" -d /export/home/${C}admin -g 101 -s /bin/pfsh -m ${C}admin
#
echo Adding user attributes for ${C}admin
echo "${C}admin::::lock_after_retries=no;min_label=${C};clearance=${C} HTTP FTP CGI;profiles=${C} Rights" >> ${ROOT}/etc/user_attr
#
echo setting label of ${C}admin home directory
echo PATH=/usr/bin:/usr/sbin:/usr/local/bin:/usr/apache/bin:/usr/srm/bin export PATH > /export/home/${C}admin/.profile
chown ${C}admin:webserver /export/home/${C}admin/.profile
setlabel ${C} /export/home/${C}admin
setlabel ${C} /export/home/${C}admin/*
#
# echo Setting Resource Limits
#
/usr/srm/sbin/limadm set sgroup=nobody ${C}admin
/usr/srm/sbin/limadm set cpu.shares=20 ${C}admin

passwd ${C}admin
