diff options
| -rw-r--r-- | genenetwork-local-container.scm | 26 |
1 files changed, 16 insertions, 10 deletions
diff --git a/genenetwork-local-container.scm b/genenetwork-local-container.scm index b19c7a1..d07ee25 100644 --- a/genenetwork-local-container.scm +++ b/genenetwork-local-container.scm @@ -194,16 +194,22 @@ server described by CONFIG, a <genenetwork-configuration> object." (passwd:uid (getpw "genenetwork")) (passwd:gid (getpw "genenetwork")))) (cons* #$gn3-secrets - (append (find-files "/etc/genenetwork/conf/gn-auth" - #:directories? #t) - (find-files "/etc/genenetwork/conf/gn2" - #:directories? #t) - (find-files "/etc/genenetwork/conf/gn3" - #:directories? #t) - (find-files "/var/lib/gn-docs" - #:directories? #t) - (find-files #$(dirname auth-db-path) - #:directories? #t)))) + (append (list "/etc/genenetwork/conf/gn-auth" + "/etc/genenetwork/conf/gn-auth/secrets.py" + "/etc/genenetwork/conf/gn2" + "/etc/genenetwork/conf/gn3" + "/var/lib/gn-docs" + #$(dirname auth-db-path)) + (find-files "/etc/genenetwork/conf/gn-auth" + #:directories? #t) + (find-files "/etc/genenetwork/conf/gn2" + #:directories? #t) + (find-files "/etc/genenetwork/conf/gn3" + #:directories? #t) + (find-files "/var/lib/gn-docs" + #:directories? #t) + (find-files #$(dirname auth-db-path) + #:directories? #t)))) ;; Prevent other users from reading secret files. (for-each (lambda (file) (chmod file #o600)) |