diff options
| author | Kevin Morris | 2023-02-12 07:23:48 -0800 |
|---|---|---|
| committer | Kevin Morris | 2023-02-12 07:23:48 -0800 |
| commit | 90515f80de8ff42ae93e20fd5c3304ca4483d0cb (patch) | |
| tree | 4996f758287e66cd3de4be991751d7e6fa3a93ea | |
| parent | 553c00a084bc92528ce435d5040ac628c57ffa72 (diff) | |
| download | aur-90515f80de8ff42ae93e20fd5c3304ca4483d0cb.tar.gz | |
post_install: setup /etc/shadow to be group-owned and readable by shadow
Signed-off-by: Kevin Morris <kevr@0cost.org>
| -rw-r--r-- | PKGBUILD | 9 | ||||
| -rw-r--r-- | webvirt-api-git.install | 5 |
2 files changed, 13 insertions, 1 deletions
@@ -28,6 +28,15 @@ pkgver() { package() { + mkdir -p "$pkgdir"/usr/lib/sysusers.d + + # Add the shadow group, used for /etc/shadow read access to utilize + # PAM authentication. + echo 'g shadow - -' > "$pkgdir/usr/lib/sysusers.d/webvirt-api.conf" + + # Add webvirt to the shadow group + echo 'm webvirt shadow' >> "$pkgdir/usr/lib/sysusers.d/webvirt-api.conf" + cd "$pkgname" # Install application to /var/lib/webvirt_api diff --git a/webvirt-api-git.install b/webvirt-api-git.install index ecb7110a3bc7..31cf1a419227 100644 --- a/webvirt-api-git.install +++ b/webvirt-api-git.install @@ -11,6 +11,10 @@ post_install() { python manage.py collectstatic --noinput chown -R webvirt:webvirt "$dir" + # Set /etc/shadow permissions. + chown root:shadow /etc/shadow + chmod 640 /etc/shadow + cat << EOF A UWSGI configuration is provided at /etc/uwsgi/webvirt_api.ini. @@ -22,7 +26,6 @@ To start the API server: By default, the API is accessible at http://localhost:9080. EOF - } post_upgrade() { |