ilyakooo0/nixpkgs
1
0
Fork 0
mirror of https://github.com/ilyakooo0/nixpkgs.git synced 2024-09-23 13:48:21 +03:00
Code Issues Projects Releases Wiki Activity

nixos/miniflux: allow members of miniflux group to read runtime directory

Browse Source 
Otherwise a proxy server that has the miniflux group cannot read files in the runtime directory like a socket miniflux can listen on.
This commit is contained in:
Sandro 2024-01-05 15:01:04 +01:00 committed by GitHub
parent 0db936b018
commit 9272b8ef79
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
nixos/modules/services/web-apps/miniflux.nix
View File

@ -90,7 +90,7 @@ in
User = "miniflux";
DynamicUser = true;
RuntimeDirectory = "miniflux";
RuntimeDirectoryMode = "0700";
RuntimeDirectoryMode = "0750";
EnvironmentFile = cfg.adminCredentialsFile;
# Hardening
CapabilityBoundingSet = [ "" ];