On 22/03/30 03:50PM, Stuart Henderson wrote:
> On 2022/03/30 16:41, Denis Fondras wrote:
> > Le Wed, Mar 30, 2022 at 09:00:21AM -0400, aisha a ?crit :
> > > On 22/03/29 09:46AM, aisha wrote:
> > > > ping
> > > >
> > > > On 3/22/2022 12:10 PM, aisha wrote:
> > > > > Hi all,
> > > > > I've attached two ports for vaultwarden and vaultwarden-web.
> > > > >
> > > > > I've made vaultwarden with flavors for mysql (mariadb) and postgresql and both or none. Sqlite is always enabled as it has no external deps.
> > > > >
> > > > > Vaultwarden also has its own user and rc.d file, and works straight after install.
> > > > >
> > > > > Testing would be appreciated.
> > > > >
> > > > > Best,
> > > > > Aisha
> > > >
> > >
> > > updated tarball attached, i have changed the default listening IPs to localhost
> > >
> >
> > There is no newuser in PLIST, is this expected ?
> >
>
> it is in vaultwarden-web which is a run dep, so technically that would
> work, though I think it should be listed in both ports
>
> also I don't like all the files in vaultwarden-web being owned by
> _vaultwarden, files from a package should not be overwritten at runtime.
> seems like it would probably be better if only directories where new files
> are created would have that ownership, if indeed there _are_ directories
> where new files are created.
>
I put an issue in upstream and got told vaultwarden-web is not needed for write by _vaultwarden user.
The database directory is the one such folder where the user needs write permission, but thats in security/vaultwarden.
Updated tarballs attached with the user moved to security/vaultwarden and no ownership changes for the web vault.
Best,
Aisha
No comments:
Post a Comment