diff options
| author | David Thompson <dthompson2@worcester.edu> | 2022-08-19 09:20:06 -0400 |
|---|---|---|
| committer | David Thompson <dthompson2@worcester.edu> | 2022-08-30 12:37:19 -0400 |
| commit | 9b5b1dde32b9526cd39b51978209ba3e61b6c785 (patch) | |
| tree | a6a10d4547c68f971388197c1342ef6eb47a13b5 /gnu/services | |
| parent | c19a432652f2fb544eaf918fe287aa898748d76c (diff) | |
| download | guix-9b5b1dde32b9526cd39b51978209ba3e61b6c785.tar guix-9b5b1dde32b9526cd39b51978209ba3e61b6c785.tar.gz | |
services: gitolite: Relax permissions on service user home directory.
Fixes https://issues.guix.gnu.org/56444
* gnu/services/version-control.scm (gitolite-activation): Modify permissions
on home directory so that git group has read access.
Reported-by: Evgeny Pisemsky <evgeny@pisemsky.com>
Experienced by David Thompson for years, wondering what was wrong. Thanks for
finding the root cause, Evgeny! :)
Diffstat (limited to 'gnu/services')
| -rw-r--r-- | gnu/services/version-control.scm | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/gnu/services/version-control.scm b/gnu/services/version-control.scm index defbd65c36..17a5f9c867 100644 --- a/gnu/services/version-control.scm +++ b/gnu/services/version-control.scm @@ -331,6 +331,14 @@ access to exported repositories under @file{/srv/git}." (strip-store-file-name admin-pubkey)))) (rc-file #$(string-append home "/.gitolite.rc"))) + ;; activate-users+groups in (gnu build activation) sets the + ;; permission flags of home directories to #o700 and mentions that + ;; services needing looser permissions should chmod it during + ;; service activation. We also want the git group to be able to + ;; read from the gitolite home directory, so a chmod'ing we will + ;; go! + (chmod #$home #o750) + (simple-format #t "guix: gitolite: installing ~A\n" #$rc-file) (copy-file #$rc-file rc-file) ;; ensure gitolite's user can read the configuration |