aboutsummaryrefslogtreecommitdiff
path: root/gnu/services
diff options
context:
space:
mode:
authorDavid Thompson <dthompson2@worcester.edu>2022-08-19 09:20:06 -0400
committerDavid Thompson <dthompson2@worcester.edu>2022-08-30 12:37:19 -0400
commit9b5b1dde32b9526cd39b51978209ba3e61b6c785 (patch)
treea6a10d4547c68f971388197c1342ef6eb47a13b5 /gnu/services
parentc19a432652f2fb544eaf918fe287aa898748d76c (diff)
downloadguix-9b5b1dde32b9526cd39b51978209ba3e61b6c785.tar
guix-9b5b1dde32b9526cd39b51978209ba3e61b6c785.tar.gz
services: gitolite: Relax permissions on service user home directory.
Fixes https://issues.guix.gnu.org/56444 * gnu/services/version-control.scm (gitolite-activation): Modify permissions on home directory so that git group has read access. Reported-by: Evgeny Pisemsky <evgeny@pisemsky.com> Experienced by David Thompson for years, wondering what was wrong. Thanks for finding the root cause, Evgeny! :)
Diffstat (limited to 'gnu/services')
-rw-r--r--gnu/services/version-control.scm8
1 files changed, 8 insertions, 0 deletions
diff --git a/gnu/services/version-control.scm b/gnu/services/version-control.scm
index defbd65c36..17a5f9c867 100644
--- a/gnu/services/version-control.scm
+++ b/gnu/services/version-control.scm
@@ -331,6 +331,14 @@ access to exported repositories under @file{/srv/git}."
(strip-store-file-name admin-pubkey))))
(rc-file #$(string-append home "/.gitolite.rc")))
+ ;; activate-users+groups in (gnu build activation) sets the
+ ;; permission flags of home directories to #o700 and mentions that
+ ;; services needing looser permissions should chmod it during
+ ;; service activation. We also want the git group to be able to
+ ;; read from the gitolite home directory, so a chmod'ing we will
+ ;; go!
+ (chmod #$home #o750)
+
(simple-format #t "guix: gitolite: installing ~A\n" #$rc-file)
(copy-file #$rc-file rc-file)
;; ensure gitolite's user can read the configuration