Initial commit
This commit is contained in:
peio
31
internal/kcpolicy/socket_perms.go
Normal file
31
internal/kcpolicy/socket_perms.go
Normal file
@@ -0,0 +1,31 @@
|
||||
package kcpolicy
|
||||
|
||||
import (
|
||||
"fmt"
|
||||
"os"
|
||||
"os/user"
|
||||
"strconv"
|
||||
)
|
||||
|
||||
func ChownChmodSocket(path string, cfg *Config) error {
|
||||
u, err := user.Lookup(cfg.Sockets.SocketOwnerUser)
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
g, err := user.LookupGroup(cfg.Sockets.SocketOwnerGroup)
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
uid, _ := strconv.Atoi(u.Uid)
|
||||
gid, _ := strconv.Atoi(g.Gid)
|
||||
|
||||
if err := os.Chown(path, uid, gid); err != nil {
|
||||
return err
|
||||
}
|
||||
|
||||
mode, err := strconv.ParseUint(cfg.Sockets.SocketMode, 8, 32)
|
||||
if err != nil {
|
||||
return fmt.Errorf("bad socket_mode: %w", err)
|
||||
}
|
||||
return os.Chmod(path, os.FileMode(mode))
|
||||
}
|
||||
Reference in New Issue
Block a user