Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
docker: Only do setfacl if we issued the certificates
Today, we do setfacl unconditionally; this can be a problem for user-provided certificates because they may be located somewhere else. This patch fixes the problem by only doing setfacl after renewing the certificates. Externally provided certificates will be untouched, and the user is responsible for ensuring that chasquid can read them. Thanks to Alex Ellwein (aellwein@github) for reporting this in #29!
- Loading branch information