fix: avoid readable but not writeable files

iris-connect / eps

Our endpoint system (eps) that manages and secures the communication between different actors in the IRIS connect ecosystem. Think of it as a distributed service mesh router as well as a decentralized message broker. Still evolving, use with caution.

https://iris-connect.github.io/eps/docs/

GNU Affero General Public License v3.0

12 stars 2 forks source link

fix: avoid readable but not writeable files #21

Closed jekutzsche closed 2 years ago

jekutzsche commented 2 years ago

It has happened that old announcements.db files, created as root, are now readable and not writable. This previously caused that their owner is not changed, but they also can not be opened and written.

As a solution, the option to bypass the user change with suitable rights is dropped. The owner is always changed. In addition, read and write permissions are given to the owner for safety.

adewes commented 2 years ago

Looks good! As said in the chat I think it would be best to migrate to the Redis-based store in the future as the file-based one is not really scalable (though it should work just fine in a single-server setting).