fix: run access_log as nginx user
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful

This commit is contained in:
f 2023-04-20 13:04:54 -03:00
parent 61eb7bc9b8
commit a5cfca8a0f
2 changed files with 2 additions and 5 deletions

View file

@ -30,10 +30,7 @@ RUN mv /etc/nginx/access_logd_`access_log -v`.conf /etc/nginx/access_logd.conf
RUN chown -R nginx:nginx /etc/nginx
RUN nginx -t
# access_logd runs as nobody but the socket can be written to by nginx
RUN delgroup nobody nobody
RUN addgroup nobody www-data
RUN chown nobody:www-data /var/lib/access_log.sqlite3
RUN chown nginx:nginx /var/lib/access_log.sqlite3
# Shared configuration
VOLUME /etc/nginx/sites

View file

@ -14,7 +14,7 @@ case $1 in
install -m 640 -o nobody /var/lib/access_log.sqlite3 /var/log/access_log.sqlite3
# Read from fifo and load into database
daemonize -p /run/access_logd.pid -u nobody /usr/local/bin/syslogize /usr/bin/access_log $ACCESS_LOGS_FLAGS
daemonize -p /run/access_logd.pid -u nginx /usr/local/bin/syslogize /usr/bin/access_log $ACCESS_LOGS_FLAGS
;;
stop)
test -f $pid || exit 0