FS#50377 - [gitlab] Permissions are wrong
Attached to Project:
Community Packages
Opened by Tobias Hunger (hunger) - Saturday, 13 August 2016, 03:11 GMT
Last edited by Sven-Hendrik Haase (Svenstaro) - Saturday, 05 November 2016, 17:14 GMT
Opened by Tobias Hunger (hunger) - Saturday, 13 August 2016, 03:11 GMT
Last edited by Sven-Hendrik Haase (Svenstaro) - Saturday, 05 November 2016, 17:14 GMT
|
Details
Description:
After installation of gitlab and gitlab-shell the permissions are all wrong. Additional info: * gitlab 8.10.4-1 Steps to reproduce: * Install gitlab and gitlab-shell Expected result: * /etc/webapps/gitlab* are owned by the root:gitlab * /usr/share/webapps/gitlab* is owned by root:root * /var/log/gitlab is owned by root:gitlab * /var/lib/gitlab* is owned by gitlab:gitlab Actual result: * All files are owend by uid 105, which is undefined in my system A way to make this work could be to ship a gitlab sysuser file in gitlab-shell and then use systemd-tmpfiles.d snippets to initialize /var/log/gitlab, /var/lib/gitlab* and /etc/webapps/gitlab* (== everything that is not to be owned by root:root). /etc/webapps/gitlab* would need to have template files that systemd-tmpfiles can copy to /etc as needed. The tricky part are the secret files in /etc/webapps/gitlab*. I create those in /etc/webapps/secrets, owned by root:root and then use tmpfiles.d snippets to move them into the expected place with the expected ownership. |
This task depends upon
Closed by Sven-Hendrik Haase (Svenstaro)
Saturday, 05 November 2016, 17:14 GMT
Reason for closing: Fixed
Saturday, 05 November 2016, 17:14 GMT
Reason for closing: Fixed
As it stands the gitlab user can potentially change way to many files!