Unfortunately, `keys' as created by the `postinst' script doesn't have a
shell. Allow callers without shells to run `claim-dir' if they have a
particular magical shell configured, and set this magic on the `keys'
user.
## Make sure the user exists.
if ! grep -q ^$user: /etc/passwd; then
adduser --quiet --system --group \
- --disabled-password --shell /bin/false \
+ --disabled-password --shell /dev/token-shells/userv \
--no-create-home --home $home \
$user
fi
if ( glob service claim-dir
& glob service-user root
- & grep calling-user-shell /etc/shells
+ & ( grep calling-user-shell /etc/shells
+ | glob calling-user-shell /dev/token-shells/userv
+ )
)
no-suppress-args
null-fd 0