From 78b3822c749e7d53adc5f6c6eea0daa5c0991346 Mon Sep 17 00:00:00 2001 From: ian351c Date: Wed, 5 Jun 2024 12:31:49 -0400 Subject: [PATCH] Tuning what needs to be chowned --- .../s6-rc.d/prepare/30-ownership.sh | 24 ++++++++++++++++++- 1 file changed, 23 insertions(+), 1 deletion(-) diff --git a/docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/30-ownership.sh b/docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/30-ownership.sh index 3f1647af..a50a9a2e 100755 --- a/docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/30-ownership.sh +++ b/docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/30-ownership.sh @@ -7,7 +7,29 @@ set -e SKIP_FILE_OWNERSHIP=$(echo "${SKIP_FILE_OWNERSHIP:-}" | tr '[:upper:]' '[:lower:]') if [ "$SKIP_FILE_OWNERSHIP" == "true" ] || [ "$SKIP_FILE_OWNERSHIP" == "on" ] || [ "$SKIP_FILE_OWNERSHIP" == "1" ] || [ "$SKIP_FILE_OWNERSHIP" == "yes" ]; then - log_info 'Skipping ownership, use only with caution ...' + log_info 'Skipping data and letsencrypt ownership, use only with caution ...' + # root + chown -R "$PUID:$PGID" /run/nginx + chown -R "$PUID:$PGID" /tmp/nginx + chown -R "$PUID:$PGID" /var/cache/nginx + chown -R "$PUID:$PGID" /var/lib/logrotate + chown -R "$PUID:$PGID" /var/lib/nginx + chown -R "$PUID:$PGID" /var/log/nginx + + # Don't chown entire /etc/nginx folder as this causes crashes on some systems + chown -R "$PUID:$PGID" /etc/nginx/nginx + chown -R "$PUID:$PGID" /etc/nginx/nginx.conf + chown -R "$PUID:$PGID" /etc/nginx/conf.d + + # Don't chown entire /etc/nginx folder as this causes crashes on some systems + chown -R "$PUID:$PGID" /etc/nginx/nginx + chown -R "$PUID:$PGID" /etc/nginx/nginx.conf + chown -R "$PUID:$PGID" /etc/nginx/conf.d + + # Prevents errors when installing python certbot plugins when non-root + chown "$PUID:$PGID" /opt/certbot /opt/certbot/bin + find /opt/certbot/lib/python*/site-packages -not -user "$PUID" -execdir chown "$PUID:$PGID" {} \+ + else log_info 'Setting ownership ...' # root