From 30df776259060b4b5707acedd6449629b9670303 Mon Sep 17 00:00:00 2001 From: Steven Foerster Date: Mon, 9 Mar 2020 20:54:35 -0400 Subject: [PATCH] www-data for nextcloud --- scripts/services/Mistborn-base.service | 2 +- scripts/services/Mistborn-bitwarden.service | 2 +- scripts/services/Mistborn-homeassistant.service | 2 +- scripts/services/Mistborn-jellyfin.service | 2 +- scripts/services/Mistborn-nextcloud.service | 4 ++-- scripts/services/Mistborn-onlyoffice.service | 2 +- scripts/services/Mistborn-raspap.service | 2 +- scripts/services/Mistborn-rocketchat.service | 2 +- scripts/services/Mistborn-syncthing.service | 2 +- scripts/services/Mistborn-tor.service | 2 +- 10 files changed, 11 insertions(+), 11 deletions(-) diff --git a/scripts/services/Mistborn-base.service b/scripts/services/Mistborn-base.service index 7ba4bd6..c1a1929 100644 --- a/scripts/services/Mistborn-base.service +++ b/scripts/services/Mistborn-base.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/base.yml down -#ExecStartPre=/bin/chown -R root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R root:root /opt/mistborn_volumes/ ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/base.yml build ExecStartPre=/bin/systemctl stop systemd-resolved ExecStartPre=/sbin/iptables -I DOCKER-USER -i DIFACE -p udp --dport 53 -j MISTBORN_LOG_DROP diff --git a/scripts/services/Mistborn-bitwarden.service b/scripts/services/Mistborn-bitwarden.service index 3653b5c..32d505b 100644 --- a/scripts/services/Mistborn-bitwarden.service +++ b/scripts/services/Mistborn-bitwarden.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/bitwarden.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ ExecStartPre=/sbin/iptables -I DOCKER-USER -i DIFACE -p tcp --dport 3012 -j MISTBORN_LOG_DROP # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/bitwarden.yml up --build diff --git a/scripts/services/Mistborn-homeassistant.service b/scripts/services/Mistborn-homeassistant.service index 3281da7..65170b4 100644 --- a/scripts/services/Mistborn-homeassistant.service +++ b/scripts/services/Mistborn-homeassistant.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/homeassistant.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/homeassistant.yml up --build # Stop container when unit is stopped diff --git a/scripts/services/Mistborn-jellyfin.service b/scripts/services/Mistborn-jellyfin.service index 6f2b67a..d7c4a58 100644 --- a/scripts/services/Mistborn-jellyfin.service +++ b/scripts/services/Mistborn-jellyfin.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/jellyfin.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/jellyfin.yml up --build # Stop container when unit is stopped diff --git a/scripts/services/Mistborn-nextcloud.service b/scripts/services/Mistborn-nextcloud.service index 3324467..0b70d42 100644 --- a/scripts/services/Mistborn-nextcloud.service +++ b/scripts/services/Mistborn-nextcloud.service @@ -5,12 +5,12 @@ After=Mistborn-base.service [Service] Restart=always -User=root +User=www-data Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/nextcloud.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/nextcloud.yml up --build # Stop container when unit is stopped diff --git a/scripts/services/Mistborn-onlyoffice.service b/scripts/services/Mistborn-onlyoffice.service index 521394c..0c68952 100644 --- a/scripts/services/Mistborn-onlyoffice.service +++ b/scripts/services/Mistborn-onlyoffice.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/onlyoffice.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/onlyoffice.yml up --build # Stop container when unit is stopped diff --git a/scripts/services/Mistborn-raspap.service b/scripts/services/Mistborn-raspap.service index 83d4b92..80169c0 100644 --- a/scripts/services/Mistborn-raspap.service +++ b/scripts/services/Mistborn-raspap.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/raspap.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/raspap.yml up --build # Stop container when unit is stopped diff --git a/scripts/services/Mistborn-rocketchat.service b/scripts/services/Mistborn-rocketchat.service index 779c952..eaa8c53 100644 --- a/scripts/services/Mistborn-rocketchat.service +++ b/scripts/services/Mistborn-rocketchat.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/rocketchat.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ ExecStartPre=/sbin/iptables -I DOCKER-USER -i DIFACE -p tcp --dport 3001 -j MISTBORN_LOG_DROP # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/rocketchat.yml up --build diff --git a/scripts/services/Mistborn-syncthing.service b/scripts/services/Mistborn-syncthing.service index fb9c3e7..3127e9d 100644 --- a/scripts/services/Mistborn-syncthing.service +++ b/scripts/services/Mistborn-syncthing.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/syncthing.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ ExecStartPre=/sbin/iptables -I DOCKER-USER -i DIFACE -p udp --dport 21027 -j MISTBORN_LOG_DROP ExecStartPre=/sbin/iptables -I DOCKER-USER -i DIFACE -p tcp --dport 22000 -j MISTBORN_LOG_DROP # Start container when unit is started diff --git a/scripts/services/Mistborn-tor.service b/scripts/services/Mistborn-tor.service index d940e1b..a111822 100644 --- a/scripts/services/Mistborn-tor.service +++ b/scripts/services/Mistborn-tor.service @@ -10,7 +10,7 @@ Group=docker PermissionsStartOnly=true # Shutdown container (if running) when unit is stopped ExecStartPre=/usr/local/bin/docker-compose -f /opt/mistborn/extra/tor.yml down -#ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ +ExecStartPre=/bin/chown -R --from=root:root root:root /opt/mistborn_volumes/ ExecStartPre=/sbin/iptables -I DOCKER-USER -i DIFACE -p tcp --dport 9150 -j MISTBORN_LOG_DROP # Start container when unit is started ExecStart=/usr/local/bin/docker-compose -f /opt/mistborn/extra/tor.yml up --build