diff options
author | lassulus <lass@lassul.us> | 2017-05-08 18:14:37 +0200 |
---|---|---|
committer | Rok Garbas <rok@garbas.si> | 2017-05-11 18:49:26 +0200 |
commit | fd7a8f1b91a002cd0de93b59064f83e29e3e8034 (patch) | |
tree | 31fa6cff3275a547cd218f135217801011494ec4 | |
parent | 8b17444047eef7c01821dbb5a822d81708c2638a (diff) | |
download | nixpkgs-fd7a8f1b91a002cd0de93b59064f83e29e3e8034.tar nixpkgs-fd7a8f1b91a002cd0de93b59064f83e29e3e8034.tar.gz nixpkgs-fd7a8f1b91a002cd0de93b59064f83e29e3e8034.tar.bz2 nixpkgs-fd7a8f1b91a002cd0de93b59064f83e29e3e8034.tar.lz nixpkgs-fd7a8f1b91a002cd0de93b59064f83e29e3e8034.tar.xz nixpkgs-fd7a8f1b91a002cd0de93b59064f83e29e3e8034.tar.zst nixpkgs-fd7a8f1b91a002cd0de93b59064f83e29e3e8034.zip |
nixos/security/acme: fix acme folder permissions
-rw-r--r-- | nixos/modules/security/acme.nix | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/nixos/modules/security/acme.nix b/nixos/modules/security/acme.nix index 5301ac14805..321b9f7f375 100644 --- a/nixos/modules/security/acme.nix +++ b/nixos/modules/security/acme.nix @@ -185,12 +185,15 @@ in path = [ pkgs.simp_le ]; preStart = '' mkdir -p '${cfg.directory}' - chown -R '${data.user}:${data.group}' '${cfg.directory}' + chown 'root:root' '${cfg.directory}' + chmod 755 '${cfg.directory}' if [ ! -d '${cpath}' ]; then mkdir '${cpath}' fi chmod ${rights} '${cpath}' chown -R '${data.user}:${data.group}' '${cpath}' + mkdir -p '${data.webroot}/.well-known/acme-challenge' + chown -R '${data.user}:${data.group}' '${data.webroot}/.well-known/acme-challenge' ''; script = '' cd '${cpath}' |