services: genenetwork: Set ssl-path to 777.

author: Munyoki Kilyungi 2024-05-14 20:06:34 +0300
committer: Munyoki Kilyungi 2024-05-14 21:22:04 +0300
commit: 423f6c9e94b53c85d8c96d5ff9f0bc44665f6528 (patch)
tree: e51aaddd10c5237dbb751045e765f214b0aae7fb /genenetwork
parent: d0ab755a0d6bf9bfb772cb6c1e4c1a38de50a0b7 (diff)
download: gn-machines-423f6c9e94b53c85d8c96d5ff9f0bc44665f6528.tar.gz
1 files changed, 5 insertions, 1 deletions
diff --git a/genenetwork/services/genenetwork.scm b/genenetwork/services/genenetwork.scm
index e28a87f..663b7ca 100644
--- a/genenetwork/services/genenetwork.scm
+++ b/genenetwork/services/genenetwork.scm
@@ -137,7 +137,7 @@
 
 (define (genenetwork-activation config)
   (match-record config <genenetwork-configuration>
-    (gn2-secrets gn3-secrets gn-auth-secrets auth-db llm-db)
+    (gn2-secrets gn3-secrets gn-auth-secrets auth-db llm-db ssl-path)
     (with-imported-modules '((guix build utils))
       #~(begin
           (use-modules (guix build utils))
@@ -149,6 +149,10 @@
                     (cons #$gn-auth-secrets
                           (find-files #$(dirname auth-db)
                                       #:directories? #t)))
+	  ;; Everyone can read, write and execute
+	  (for-each (lambda (file)
+		      (chmod file #o777))
+		    (find-files #$ssl-path #:directories? #t))
           ;; Let each service user own their own secrets files.
           (chown #$gn2-secrets
                  (passwd:uid (getpw "gunicorn-genenetwork2"))
author	Munyoki Kilyungi	2024-05-14 20:06:34 +0300
committer	Munyoki Kilyungi	2024-05-14 21:22:04 +0300
commit	423f6c9e94b53c85d8c96d5ff9f0bc44665f6528 (patch)
tree	e51aaddd10c5237dbb751045e765f214b0aae7fb /genenetwork
parent	d0ab755a0d6bf9bfb772cb6c1e4c1a38de50a0b7 (diff)
download	gn-machines-423f6c9e94b53c85d8c96d5ff9f0bc44665f6528.tar.gz