From 683d8b97af11ef4f456e2490bdb220f7d421dfea Mon Sep 17 00:00:00 2001 From: Munyoki Kilyungi Date: Thu, 1 May 2025 15:05:15 +0300 Subject: Make the flask_session directory readable and writable by gn. --- genenetwork-local-container.scm | 24 ++++++++++++------------ 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/genenetwork-local-container.scm b/genenetwork-local-container.scm index 08789f5..fee89d6 100644 --- a/genenetwork-local-container.scm +++ b/genenetwork-local-container.scm @@ -202,18 +202,18 @@ server described by CONFIG, a object." (chown file (passwd:uid (getpw "genenetwork")) (passwd:gid (getpw "genenetwork")))) - (cons* "/etc/genenetwork/conf" - (append - (find-files #$(dirname gn-auth-secrets) - #:directories? #t) - (find-files #$(dirname gn2-secrets) - #:directories? #t) - (find-files #$(dirname gn3-secrets) - #:directories? #t) - (find-files #$(dirname auth-db-path) - #:directories? #t) - (find-files #$(dirname gn-doc-git-checkout) - #:directories? #t)))) + (append + ("/etc/genenetwork/conf" "/genenetwork2/flask_session") + (find-files #$(dirname gn-auth-secrets) + #:directories? #t) + (find-files #$(dirname gn2-secrets) + #:directories? #t) + (find-files #$(dirname gn3-secrets) + #:directories? #t) + (find-files #$(dirname auth-db-path) + #:directories? #t) + (find-files #$(dirname gn-doc-git-checkout) + #:directories? #t))) ;; Prevent other users from reading secret files. (for-each (lambda (file) (chmod file #o600)) -- cgit 1.4.1