nixos/nzbget: cfg.configFile should be owned by cfg.user/cfg.group #58916
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Motivation for this change
These changes ensure, via the
preStart
script, that theconfigFile
anddataDir
are owned by the user & group that
nzbget
has been configured to run with.Without this, when the config template is copied over to facilitate
initial startup, it's done so with
root
permissions. This causes theservice to fail during the startup script (
grep
is used to inspect thefile for some values). The
dataDir
is similar circumstances; without thesechanges, it's created with
root
permissions, which means the service cannotread or write data there, if it's running as a different user.
Example of failure scenario
Things done
Ensure the
configFile
anddataDir
are owned by the user & group the service has been configured to run with.sandbox
innix.conf
on non-NixOS)nix-shell -p nix-review --run "nix-review wip"
./result/bin/
)nix path-info -S
before and after)