www-data user, not the default 'nobody' user. Make sure that process
uses the wwwtmp directory as its temp directory. Make sure that
arvados-boot in production mode uses /etc/arvados/config.yml.
Arvados-DCO-1.1-Signed-off-by: Ward Vandewege <ward@curii.com>
"SSLKEY": filepath.Join(super.tempdir, "server.key"),
"ACCESSLOG": filepath.Join(super.tempdir, "nginx_access.log"),
"ERRORLOG": filepath.Join(super.tempdir, "nginx_error.log"),
"SSLKEY": filepath.Join(super.tempdir, "server.key"),
"ACCESSLOG": filepath.Join(super.tempdir, "nginx_access.log"),
"ERRORLOG": filepath.Join(super.tempdir, "nginx_error.log"),
- "TMPDIR": super.tempdir,
+ "TMPDIR": super.wwwtempdir,
}
for _, cmpt := range []struct {
varname string
}
for _, cmpt := range []struct {
varname string
defer super.waitShutdown.Done()
fail(super.RunProgram(ctx, ".", nil, nil, nginx,
"-g", "error_log stderr info;",
defer super.waitShutdown.Done()
fail(super.RunProgram(ctx, ".", nil, nil, nginx,
"-g", "error_log stderr info;",
- "-g", "pid "+filepath.Join(super.tempdir, "nginx.pid")+";",
+ "-g", "user www-data; pid "+filepath.Join(super.wwwtempdir, "nginx.pid")+";",
"-c", conffile))
}()
// Choose one of the ports where Nginx should listen, and wait
"-c", conffile))
}()
// Choose one of the ports where Nginx should listen, and wait
super.tempdir = "/var/lib/arvados/tmp"
super.wwwtempdir = "/var/lib/arvados/wwwtmp"
super.bindir = "/var/lib/arvados/bin"
super.tempdir = "/var/lib/arvados/tmp"
super.wwwtempdir = "/var/lib/arvados/wwwtmp"
super.bindir = "/var/lib/arvados/bin"
+ super.configfile = "/etc/arvados/config.yml"
} else {
super.tempdir, err = ioutil.TempDir("", "arvados-server-boot-")
if err != nil {
} else {
super.tempdir, err = ioutil.TempDir("", "arvados-server-boot-")
if err != nil {
if err := os.Mkdir(super.bindir, 0755); err != nil {
return err
}
if err := os.Mkdir(super.bindir, 0755); err != nil {
return err
}
- // Fill in any missing config keys, and write the resulting
- // config in the temp dir for child services to use.
- err = super.autofillConfig(cfg)
- if err != nil {
- return err
- }
- conffile, err := os.OpenFile(filepath.Join(super.tempdir, "config.yml"), os.O_CREATE|os.O_WRONLY, 0644)
- if err != nil {
- return err
- }
- defer conffile.Close()
- err = json.NewEncoder(conffile).Encode(cfg)
- if err != nil {
- return err
- }
- err = conffile.Close()
- if err != nil {
- return err
+ // Fill in any missing config keys, and write the resulting
+ // config in the temp dir for child services to use.
+ err = super.autofillConfig(cfg)
+ if err != nil {
+ return err
+ }
+ conffile, err := os.OpenFile(filepath.Join(super.tempdir, "config.yml"), os.O_CREATE|os.O_WRONLY, 0644)
+ if err != nil {
+ return err
+ }
+ defer conffile.Close()
+ err = json.NewEncoder(conffile).Encode(cfg)
+ if err != nil {
+ return err
+ }
+ err = conffile.Close()
+ if err != nil {
+ return err
+ }
+ super.configfile = conffile.Name()
- super.configfile = conffile.Name()
super.environ = os.Environ()
super.cleanEnv([]string{"ARVADOS_"})
super.environ = os.Environ()
super.cleanEnv([]string{"ARVADOS_"})
projects / arvados.git / commitdiff