blob: 73ae54f3570f1ae5181c36755102503be22f9499 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
|
#!/bin/sh
# Apply access permissions
if [ ! -f './constants.php' ] || [ ! -d './cli/' ]; then
echo >&2 '⛔ It does not look like a FreshRSS directory; exiting!'
exit 2
fi
if [ "$(id -u)" -ne 0 ]; then
echo >&2 '⛔ Applying access permissions require running as root or sudo!'
exit 3
fi
# Always fix permissions on the data and extensions directories
# If specified, only fix the data and extensions directories
data_path="${DATA_PATH:-./data}"
if [ "${1:-}" = "--only-userdirs" ]; then
to_update="./extensions"
else
to_update="."
fi
mkdir -p "${data_path}/users/_/"
if getent group www-data >/dev/null; then
www_group="www-data" # Debian, Alpine
elif getent group apache >/dev/null; then
www_group="apache" # Alpine
elif getent group http >/dev/null; then
www_group="http" # Arch Linux
else
echo >&2 '⛔ No Apache group {www-data, apache, http} found!'
exit 4
fi
# Based on group access
chown -R :$www_group "$data_path" "$to_update"
# Read files, and directory traversal
chmod -R g+rX "$data_path" "$to_update"
# Write access to data
chmod -R g+w "$data_path"
|
