##############################################################################
# Copyright (c) Members of the EGEE Collaboration. 2004.
# See http://www.eu-egee.org/partners/ for details on the copyright
# holders.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#    http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS
# OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
##############################################################################
#
# NAME :        config_gsissh
#
# DESCRIPTION : This function configures the gsissh server (sic).
#
# AUTHORS :     yaim-contact@cern.ch
#
# NOTES :
#
# YAIM MODULE:  glite-yaim-clients
#
##############################################################################


config_gsissh_check()
{
    if echo "${NODE_TYPE_LIST}" | grep VOBOX > /dev/null
    then
	requires $1 VOBOX_PORT
    fi

    return $?
}

config_gsissh_setenv()
{
    yaimlog DEBUG "This function doesn't currently set any variables."
}

config_gsissh()
{
    if echo "${NODE_TYPE_LIST}" | grep VOBOX > /dev/null
    then
	yaimlog DEBUG "Configure the gssissh server in the VOBOX"

	conf=/etc/gsissh/sshd_config

	if [ "x`grep LCG $conf`" = "x" ]
	then
	    cat << EOF >> $conf

########################################
# LCG VOBOX port and access restrictions

Port $VOBOX_PORT

PermitRootLogin no
RSAAuthentication no
PubkeyAuthentication no
PasswordAuthentication no
ChallengeResponseAuthentication no
########################################

EOF
	fi

	/sbin/chkconfig --add gsisshd
	/sbin/chkconfig gsisshd on
	/sbin/service gsisshd restart

    fi

    return 0
}
