My apologies if this has been asked before, but using uncle Google and the search capability of this website, I wasn't able to turn up anything useful...
Does anybody have any recommendations, or is there already an SMF service planned for Solaris, that will enable packages to create technical users (like for example "oracle", "mysql", "hg", and so on)? I see that all of the packaging is moving toward doing pre- and postinstall as well as pre- and postremove scripting via SMF manifests, and nowhere does that become more obvious than with IPS (being the only way one can perform any kind of scripting). So a) is there already an SMF manifest that I could use for this b) is there one planned c) does it even make sense to provide one and d) if none of the above apply, how would you recommend that I go about implementing one? My initial thought was to create one manifest per technical user, and stick that into /var/svc/manifest/site (since I'm a 3rd party and unbundled applications developer), but then I quickly realized that this would get repetitive and could be reduced to a generic framework. The idea I had was to loop over users/* properties somehow upon doing svcadm enable create-user:default, check whether the user exists, and if not, perform a useradd(1M); the UID and GID would be stored in the users/<user>-<UID> and users/<user>-<GID> properties. Any thoughts would be much appreciated, especially on the svccfg(1M) looping code; any thoughts in general as far as this goes (good idea? Bad idea!) would be appreciated as well. If there is nothing planned, and we can come up with a theoretically working system, I will implement the code and will move to integrate into ON. -- This message posted from opensolaris.org
