-
Notifications
You must be signed in to change notification settings - Fork 2.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
vault: chown config dir to service user #28200
Conversation
You're missing a revbump. |
Hmm, I'm not 100% sure this doesn't break the vault CLI. Can you verify that that's the case? |
CLI seems to work okay:
|
@the-maldridge ok to merge? |
@the-maldridge: okay to merge? |
Hmm, I did resolve said conflicts through GitHub's UI, but there could be something else I'm missing. I'll just rebase my own branch. |
@the-maldridge: okay to merge? I re-ran the previous steps on |
Does it actually need write permissions? |
Hmmm. Might not. |
No, vault only needs to read this directory. |
I think I would go with 750 and make the owner root and the group _vault if those files are supposed to be only read by the vault user. |
ok to merge? |
Dunno why I missed this before, but: