#!/bin/bash # postinstall.sh # Marc Thielemann, 2020/01/21 exitCode=0 helperPath="$3/Applications/Privileges.app/Contents/XPCServices/PrivilegesXPC.xpc/Contents/Library/LaunchServices/corp.sap.privileges.helper" if [[ -f "$helperPath" ]]; then # create the target directory if needed if [[ ! -d "$3/Library/PrivilegedHelperTools" ]]; then /bin/mkdir -p "$3/Library/PrivilegedHelperTools" /bin/chmod 755 "$3/Library/PrivilegedHelperTools" /usr/sbin/chown -R root:wheel "$3/Library/PrivilegedHelperTools" fi # move the privileged helper into place /bin/cp -f "$helperPath" "$3/Library/PrivilegedHelperTools" if [[ $? -eq 0 ]]; then /bin/chmod 755 "$3/Library/PrivilegedHelperTools/corp.sap.privileges.helper" # create the launchd plist helperPlistPath="$3/Library/LaunchDaemons/corp.sap.privileges.helper.plist" /bin/cat > "$helperPlistPath" << EOF Label corp.sap.privileges.helper MachServices corp.sap.privileges.helper ProgramArguments /Library/PrivilegedHelperTools/corp.sap.privileges.helper EOF /bin/chmod 644 "$helperPlistPath" # load the launchd plist only if installing on the boot volume if [[ "$3" = "/" ]]; then /bin/launchctl bootstrap system "$helperPlistPath" fi # restart the Dock if Privileges is in there. This ensures proper loading # of the (updated) Dock tile plug-in # get the currently logged-in user and go ahead if it's not root currentUser=$(/bin/ls -l /dev/console | /usr/bin/awk '{ print $3 }') if [[ -n "$currentUser" && "$currentUser" != "root" ]]; then if [[ -n $(/usr/bin/sudo -u "$currentUser" /usr/bin/defaults read com.apple.dock "persistent-apps" | /usr/bin/grep "/Applications/Privileges.app") ]]; then /usr/bin/killall Dock fi fi # make sure PrivilegesCLI can be accessed without specifying the full path echo "/Applications/Privileges.app/Contents/Resources" > "$3/private/etc/paths.d/PrivilegesCLI" else exitCode=1 fi else exitCode=1 fi exit $exitCode