diff options
| author | drebs <drebs@leap.se> | 2016-12-23 16:24:54 -0200 |
|---|---|---|
| committer | drebs <drebs@leap.se> | 2016-12-23 16:34:27 -0200 |
| commit | 345c10145726080ec79e0eabec0af9a0e6fe7490 (patch) | |
| tree | 1c465d464890e42a23a6f465c09179c6d5dfa1d2 | |
| parent | f863ac6135e8c0f1190ad2648db2ef2448bf1372 (diff) | |
[pkg] add soledad to the ssl-cert group
Now that uid an gid of the application are changed earlier by systemd
(instead of twistd), soledad will fail to start if it doesn't have
permission to read the ssl certificate with the new uid/gid.
This commit adds soledad to the ssl-cert group, which is the group of
the certificate as set by the platform.
| -rw-r--r-- | debian/soledad-server.postinst | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/debian/soledad-server.postinst b/debian/soledad-server.postinst index f7dadaed..44112fc7 100644 --- a/debian/soledad-server.postinst +++ b/debian/soledad-server.postinst @@ -18,6 +18,9 @@ if [ ! $RET -eq 0 ]; then adduser --system soledad --no-create-home --home /srv/leap/ --ingroup soledad fi +# allow soledad user to read ssl certificates +usermod -aG ssl-cert soledad + # create soledad-admin user id soledad-admin > /dev/null 2>&1 RET=$? |