[taler-exchange] branch master updated: have dbconfig also set permissio

gnunet-svn

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[taler-exchange] branch master updated: have dbconfig also set permissio

From:	gnunet
Subject:	[taler-exchange] branch master updated: have dbconfig also set permissions
Date:	Fri, 15 Sep 2023 10:04:08 +0200

This is an automated email from the git hooks/post-receive script.

grothoff pushed a commit to branch master
in repository exchange.

The following commit(s) were added to refs/heads/master by this push:
     new 82f353ce have dbconfig also set permissions
82f353ce is described below

commit 82f353ce4e3c19f01fcf078b76ae613550673c75
Author: Christian Grothoff <christian@grothoff.org>
AuthorDate: Fri Sep 15 09:51:09 2023 +0200

    have dbconfig also set permissions
---
 contrib/taler-exchange-dbconfig | 25 ++++++++++++++++++++++++-
 1 file changed, 24 insertions(+), 1 deletion(-)

diff --git a/contrib/taler-exchange-dbconfig b/contrib/taler-exchange-dbconfig
index dc92abbd..8fb05d73 100755
--- a/contrib/taler-exchange-dbconfig
+++ b/contrib/taler-exchange-dbconfig
@@ -21,13 +21,14 @@ set -eu
 
 RESET_DB=0
 SKIP_DBINIT=0
+FORCE_PERMS=0
 DBUSER="taler-exchange-httpd"
 DBGROUP="taler-exchange-db"
 DBNAME="exchange"
 CFGFILE="/etc/taler/secrets/exchange-db.secret.conf"
 
 # Parse command-line options
-while getopts ':g:hn:rsu:' OPTION; do
+while getopts ':g:hn:prsu:' OPTION; do
     case "$OPTION" in
         h)
             echo 'Supported options:'
@@ -36,6 +37,7 @@ while getopts ':g:hn:rsu:' OPTION; do
             echo "  -h           -- print this help text"
             echo "  -n NAME      -- user NAME for database name (default: 
$DBNAME)"
             echo "  -r           -- reset database (dangerous)"
+            echo "  -p           -- force permission setup even without 
database initialization"
             echo "  -s           -- skip database initialization"
             echo "  -u USER      -- taler-exchange to be run by USER (default: 
$DBUSER)"
             exit 0
@@ -43,6 +45,9 @@ while getopts ':g:hn:rsu:' OPTION; do
         n)
             DBNAME="$OPTARG"
             ;;
+        p)
+            FORCE_PERMS="1"
+            ;;
         r)
             RESET_DB="1"
             ;;
@@ -132,6 +137,24 @@ then
     sudo -u "$DBUSER" taler-exchange-dbinit
 fi
 
+if [ 0 = "$SKIP_DBINIT" ] || [ 1 = "$FORCE_PERMS" ]
+then
+    DB_GRP="$(getent group "$DBGROUP" | sed -e "s/.*://g" -e "s/,/ /g")"
+    echo "Initializing permissions for '$DB_GRP'." 1>&2
+    for GROUPIE in $DB_GRP
+    do
+        if [ "$GROUPIE" != "$DBUSER" ]
+        then
+            sudo -u "$DBUSER" \
+                 echo -e 'GRANT SELECT,INSERT,UPDATE ON ALL TABLES IN SCHEMA 
exchange TO "'"$GROUPIE"'";\n' \
+                         'GRANT USAGE ON ALL SEQUENCES IN SCHEMA exchange TO 
"'"$GROUPIE"'";\n' \
+                | psql taler-exchange
+        fi
+    done
+fi
+
+
+
 echo "Database configuration finished." 1>&2
 
 exit 0

-- 
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.

[Prev in Thread]

Current Thread

[Next in Thread]

[taler-exchange] branch master updated: have dbconfig also set permissions, gnunet <=

Prev by Date: [taler-docs] branch master updated: -title fix
Next by Date: [taler-docs] branch master updated: dd49: move session tokens / signatures to alternatives section
Previous by thread: [taler-docs] branch master updated: -title fix
Next by thread: [taler-docs] branch master updated: dd49: move session tokens / signatures to alternatives section
Index(es):
- Date
- Thread