davide/vpn
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: set wg-data ownership to repo user in wg-init

Browse Source 
Mount the repo root read-only (/repo) in wg-init and use
`stat -c '%u:%g' /repo` to detect the host user automatically.
chown is applied before chmod 700, so the directory is accessible
without sudo on any machine regardless of UID.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Davide Grilli
2026-05-07 08:16:35 +02:00
parent 19d03ea624
commit 4d8eb01e4c
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docker-compose.yml
+2
View File
@@ -5,6 +5,7 @@ services:
- SYS_MODULE - SYS_MODULE
volumes: volumes:
- ./wg-data:/data - ./wg-data:/data
- ./:/repo:ro
- /lib/modules:/lib/modules:ro - /lib/modules:/lib/modules:ro
command: command:
- /bin/sh - /bin/sh
@@ -12,6 +13,7 @@ services:
- | - |
modprobe ip6_tables 2>/dev/null || true modprobe ip6_tables 2>/dev/null || true
modprobe ip6table_nat 2>/dev/null || true modprobe ip6table_nat 2>/dev/null || true
chown "$(stat -c '%u:%g' /repo)" /data
chmod 700 /data chmod 700 /data
restart: "no" restart: "no"