diff options
| author | Adrian Perez de Castro | 2015-07-30 20:22:04 +0300 |
|---|---|---|
| committer | Adrian Perez de Castro | 2015-07-30 20:22:04 +0300 |
| commit | c730a5d79f30a4bf8a61122d290c1d1aaafd787c (patch) | |
| tree | 6bc4ae6c230362b64359929a3ef20e6a37ff5cbb /vault.service | |
| parent | 70aa90b9dfa77a2698b38a0148893d16723d7415 (diff) | |
| download | aur-c730a5d79f30a4bf8a61122d290c1d1aaafd787c.tar.gz | |
Make Vault daemon run under its own credentials
This comprises the following changes:
- Creating "vault" user and group at post_install/post_upgrade
- Add "User=vault" in the systemd unit.
- Check and fix the ownership of items under /var/lib/vault to ensure that
they are owned by "vault:vault".
Diffstat (limited to 'vault.service')
| -rw-r--r-- | vault.service | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/vault.service b/vault.service index 1743eda59f9e..be9fd3a3e6d7 100644 --- a/vault.service +++ b/vault.service @@ -5,6 +5,7 @@ After=network.target ConditionFileNotEmpty=/etc/vault.hcl [Service] +User=vault ExecStart=/usr/bin/vault server -config=/etc/vault.hcl [Install] |