packaging-committee

Clone
Source Code
GIT

#981 UsersAndGroups: Use %sysusers_create_compat macro
Merged 3 years ago by ngompa. Opened 3 years ago by lorbus.
lorbus/packaging-committee sysusers-compat  into  master

file modified
+31 -26 
@@ -135,18 +135,35 @@ 
 

  

  === Dynamic allocation
 

  

- To create users and groups in packages using dynamic allocation, use the following:
 

- 

- ....
 

- Requires(pre): shadow-utils
 

- [...] 

+ To create users and groups in packages using dynamic allocation, do the following:
 

+ 

+ Create a `<package-name>.sysusers` file with the user definition and add it to the specfile as a source.
 

+ For example for the `munge` package, this file contains:
 

+ ```
 

+ #Type Name   ID  GECOS                        Home directory  Shell
 

+ u     munge  -   "Runs Uid 'N' Gid Emporium"  /run/munge      /sbin/nologin
 

+ ```
 

+ 

+ In the specfile, add a BuildRequires for systemd-rpm-macros, install the sysusers file,
 

+  and use the `%sysusers_create_compat` macro to consume it in the `%pre` section
 

+ (in this example the sysusers config file is `Source3` of the specfile):
 

+ ```
 

+ [...]
 

+ BuildRequires:  systemd-rpm-macros
 

+ 

+ [...]
 

+ %install
 

+ install -p -D -m 0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/munge.conf
 

+ 

+ [...]
 

  %pre
 

- getent group GROUPNAME >/dev/null || groupadd -r GROUPNAME
 

- getent passwd USERNAME >/dev/null || \
 

-     useradd -r -g GROUPNAME -d HOMEDIR -s /sbin/nologin \
 

-     -c "Useful comment about the purpose of this account" USERNAME
 

- exit 0
 

- ....
 

+ %sysusers_create_compat %{SOURCE3}
 

+ 

+ [...]
 

+ %files
 

+ %{_sysusersdir}/munge.conf
 

+ [...]
 

+ ```
 

  

  === Soft static allocation
 

  
@@ -168,22 +185,10 @@ 
 

  We will try to accommodate on a first-come-first serve basis
 

  if the UID/GID is available from within the Fedora system UID/GID range.
 

  

- To create users and groups in packages, use the following:
 

+ To create users and groups in packages with an allocated UID/GID, add a sysusers file
 

+ that specifies the ID for the given user and/or group and follow the same steps as in
 

+ the dynamic allocation section above.
 

  

- ....
 

- Requires(pre): shadow-utils
 

- [...] 

- %pre
 

- getent group GROUPNAME >/dev/null || groupadd -f -g ALLOCATED_GID -r GROUPNAME
 

- if ! getent passwd USERNAME >/dev/null ; then
 

-     if ! getent passwd ALLOCATED_UID >/dev/null ; then
 

-       useradd -r -u ALLOCATED_UID -g GROUPNAME -d HOMEDIR -s /sbin/nologin -c "Useful comment about the purpose of this account" USERNAME
 

-     else
 

-       useradd -r -g GROUPNAME -d HOMEDIR -s /sbin/nologin -c "Useful comment about the purpose of this account" USERNAME
 

-     fi
 

- fi
 

- exit 0
 

- ....
 

  

  === Values given to useradd and groupadd

Update the guidelines to account for the recent addition of the %sysusers_create_compat macro which should now be used everywhere

Gentle ping for review/merge.

It would be good to land this, as I've already observed some specfiles going in different directions, see https://src.fedoraproject.org/rpms/dnsmasq/pull-request/6#request_diff for an example in dnsmasq.

@lorbus we can't merge this until the conflicts are resolved.

rebased onto 5553d9d52ad06d4caad846dbd11d3de3f94f5ba2
3 years ago

Rebased

@lorbus There's a missing dependency for where the macros come from.

rebased onto 6d066ac
3 years ago

Added BuildRequires: systemd-rpm-macros

Pull-Request has been merged by ngompa
3 years ago

Thanks both @lorbus and @ngompa for the very quick reaction!
Metadata
None
No Tags
Changes Summary 1
+31 -26
file changed
guidelines/modules/ROOT/pages/UsersAndGroups.adoc
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.