AWS Delete user, remove all secondary groups first.

To make sure tha on delete the user is removed from all secondary groups unset them first before running the userdel command. -r might not be enought to do that in some situations
Add base folder for lock user aws script
2025-01-06 13:45:51 +09:00 · 2024-12-16 15:44:09 +09:00
2 changed files with 8 additions and 2 deletions
--- a/bin/delete_user.sh
+++ b/bin/delete_user.sh
@@ -164,9 +164,13 @@ for username in "$@"; do

 	echo "[1] Remove user + home dir";
 	if [ ${TEST} -eq 0 ]; then
-		userdel -r "${username}"
+		# remove all secondary group entries first before we delete the user
+		# there might be cases where they are left
+		usermod -G "" "${username}";
+		userdel -r "${username}";
 	else
-		echo "$> userdel -r ${username}";
+		echo "$> usermod -G \"\" \"${username}\"";
+		echo "$> userdel -r \"${username}\"";
 	fi;

 	# remove ssh files in pub
--- a/bin/lock_user.sh
+++ b/bin/lock_user.sh
@@ -46,6 +46,8 @@ ssh_allow_group="sshallow";
 ssh_forward_group="sshforward";
 user_group_tpl="gpasswd -d %s %s\ngpasswd -a %s %s\n";

+# base folder for all data
+BASE_FOLDER=$(dirname "$(readlink -f "$0")")"/";
 LOG="${BASE_FOLDER}/../log/user_management.log";
 function write_log()
 {
Author	SHA1	Message	Date
Clemens Schwaighofer	e45b89c582	AWS Delete user, remove all secondary groups first. To make sure tha on delete the user is removed from all secondary groups unset them first before running the userdel command. -r might not be enought to do that in some situations	2025-01-06 13:45:51 +09:00
Clemens Schwaighofer	4a8dab7b01	Add base folder for lock user aws script	2024-12-16 15:44:09 +09:00