hive-config users: Do create /run/secrets

gbenson · Oct 8, 2024 · 9a80594 · 9a80594
1 parent 64aff45
commit 9a80594
Show file tree

Hide file tree

Showing 3 changed files with 8 additions and 5 deletions.
diff --git a/services/email-receiver/Dockerfile b/services/email-receiver/Dockerfile
@@ -45,7 +45,8 @@ RUN set -eux \
   \
   && addgroup --system --gid 1936 hivemail \
   && adduser --system --uid 1936 --gid 1936 \
-       --home /var/lib/hivemail --disabled-password hivemail
+       --home /var/lib/hivemail --disabled-password hivemail \
+  && install -d -oroot -ghivemail -m710 /run/secrets
 
 USER hivemail:hivemail
 WORKDIR /var/lib/hivemail

diff --git a/services/matrix-connector/Dockerfile b/services/matrix-connector/Dockerfile
@@ -48,9 +48,10 @@ RUN set -eux \
 
 RUN set -eux \
   \
-  && addgroup --system --gid 6617 matrix \
+  && addgroup --system --gid 6617 hivetrix \
   && adduser --system --uid 6617 --gid 6617 \
-       --home /var/lib/matrix --disabled-password matrix \
+       --home /var/lib/matrix --disabled-password hivetrix \
+  && install -d -oroot -ghivetrix -m710 /run/secrets
 
-USER matrix:matrix
+USER hivetrix:hivetrix
 WORKDIR /var/lib/matrix
diff --git a/services/reading-list-updater/Dockerfile b/services/reading-list-updater/Dockerfile
@@ -45,7 +45,8 @@ RUN set -eux \
   \
   && addgroup --system --gid 5491 readlist \
   && adduser --system --uid 5491 --gid 5491 \
-       --home /var/lib/readlist --disabled-password readlist
+       --home /var/lib/readlist --disabled-password readlist \
+  && install -d -oroot -greadlist -m710 /run/secrets
 
 USER readlist:readlist
 WORKDIR /var/lib/readlist