X-Git-Url: https://iankelling.org/git/?a=blobdiff_plain;f=conflink;h=f62de8b454c20da5f6867abb02e347c7dd80688c;hb=648257b1698602fdeeb7eb5ba496106547f93665;hp=0010c9d6f347e04691120d02e2cdbfcf0f3a3ed9;hpb=93db0c16393fe75efef3167c1d2b332f50387c23;p=distro-setup

diff --git a/conflink b/conflink
index 0010c9d..f62de8b 100755
--- a/conflink
+++ b/conflink
@@ -11,7 +11,8 @@ lnf() { /a/exe/lnf "$@"; }
 
 
 shopt -s nullglob
-shopt -s extglob # note, already set with bash -l
+shopt -s extglob
+shopt -s dotglob
 
 # If we make a link back to the root, we stop going deeper into subdir_files.
 # This makes it so we can do subdir directories.
@@ -70,7 +71,11 @@ done
 c_dirs=(/a/c{,/machine_specific/$HOSTNAME})
 case $USER in
   iank)
-    files=(/p/c/machine_specific/*/filesystem/etc/ssh/*_key)
+    files=(/p/c/machine_specific/*/filesystem/etc/ssh/*_key
+           /p/c/filesystem/etc/openvpn/client/*.key
+           /p/c/filesystem/etc/openvpn/easy-rsa/keys/*.key
+           /p/c/machine_specific/kw/filesystem/etc/openvpn/client/*.key
+          )
     if [[ -e $files ]]; then
       chmod 600 ${files[@]}
     fi
@@ -94,14 +99,22 @@ case $USER in
       s chown -R znc:znc /var/lib/znc
     fi
     /a/exe/lnf -T /p/arbtt-capture.log ~/.arbtt/capture.log
+    f=/etc/prometheus-htpasswd
+    if [[ -e $f ]]; then
+      s chmod 640 $f /etc/prometheus-pass
+      s chown root:www-data $f
+      if getent passwd prometheus; then
+        s chown root:prometheus /etc/prometheus-pass
+      fi
+    fi
+
     ##### end special extra stuff #####
 
     sudo bash -c 'shopt -s nullglob; cd /etc/openvpn; for f in client/* server/*; do ln -sf $f .; done'
-    sudo bash -c 'shopt -s nullglob; cd /etc/openvpn; for f in server/*.key client/*.key; do chmod 600 $f; done'
 
-    m sudo -H -u traci "$BASH_SOURCE"
+    m sudo -H -u user2 "$BASH_SOURCE"
     ;;
-  traci)
+  user2)
     m common-file-setup ${c_dirs[@]}
     ;;
   *)