nchebrov/AzerothCore-RealmMaster
1
0
Fork 0
mirror of https://github.com/uprightbass360/AzerothCore-RealmMaster.git synced 2026-01-13 09:07:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: backup permissions

Browse Source
This commit is contained in:
uprightbass360
2025-11-09 15:03:17 -05:00
parent 78215687b4
commit 7000f35972
3 changed files with 40 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
docker-compose.yml
View File

@@ -170,25 +170,39 @@ services:
- /bin/bash - /bin/bash
- -c - -c
- | - |
microdnf install -y curl || yum install -y curl || (apt-get update -qq && apt-get install -y curl) install_curl(){
echo "📥 Preparing backup scheduler (dropping privileges to ${CONTAINER_USER})..." microdnf install -y curl >/dev/null 2>&1 && return
run_as_user(){ yum install -y curl >/dev/null 2>&1 && return
if command -v gosu >/dev/null 2>&1; then apt-get update -qq && apt-get install -y curl >/dev/null 2>&1 && return
gosu ${CONTAINER_USER} "$@" echo "❌ Failed to install curl"; exit 1
else
echo "⚠️ gosu not found; running backup scheduler as root."
"$@"
fi
} }
if [ -f /tmp/scripts/bash/backup-scheduler.sh ]; then ensure_gosu(){
chmod +x /tmp/scripts/bash/backup-scheduler.sh 2>/dev/null || true if command -v gosu >/dev/null 2>&1; then
run_as_user /tmp/scripts/bash/backup-scheduler.sh return
else
echo "No local scheduler provided"
fi fi
# Fix permissions for any backup directories created install_curl
arch="$$(uname -m)"
case "$${arch}" in
x86_64|amd64) gosu_arch=amd64 ;;
aarch64|arm64) gosu_arch=arm64 ;;
*) echo "❌ Unsupported architecture for gosu: $${arch}"; exit 1 ;;
esac
echo "⬇️ Installing gosu for privilege drop..."
curl -fsSL "https://github.com/tianon/gosu/releases/download/1.14/gosu-$${gosu_arch}" -o /usr/local/bin/gosu
chmod +x /usr/local/bin/gosu
}
install_curl
ensure_gosu
echo "📥 Preparing backup scheduler (running as ${CONTAINER_USER})..."
chown -R ${CONTAINER_USER} /backups 2>/dev/null || true chown -R ${CONTAINER_USER} /backups 2>/dev/null || true
chmod -R 755 /backups 2>/dev/null || true chmod -R 755 /backups 2>/dev/null || true
if [ -f /tmp/scripts/bash/backup-scheduler.sh ]; then
chmod +x /tmp/scripts/bash/backup-scheduler.sh 2>/dev/null || true
exec gosu ${CONTAINER_USER} /tmp/scripts/bash/backup-scheduler.sh
else
echo "No local scheduler provided"
sleep infinity
fi
restart: unless-stopped restart: unless-stopped
healthcheck: healthcheck:
test: test:

9
scripts/bash/backup-scheduler.sh
View File

@@ -78,6 +78,15 @@ EOF
fi fi
log "Backup complete: $target_dir (size ${size})" log "Backup complete: $target_dir (size ${size})"
if find "$target_dir" ! -user "$(id -un)" -o ! -group "$(id -gn)" -prune -print -quit >/dev/null 2>&1; then
log " Ownership drift detected; correcting permissions in $target_dir"
if chown -R "$(id -u):$(id -g)" "$target_dir" >/dev/null 2>&1; then
chmod -R u+rwX,g+rX "$target_dir" >/dev/null 2>&1 || true
log "✅ Ownership reset for $target_dir"
else
log "⚠️ Failed to adjust ownership for $target_dir"
fi
fi
} }
cleanup_old() { cleanup_old() {

2
scripts/bash/migrate-stack.sh
View File

@@ -396,9 +396,7 @@ reset_remote_post_install_marker(){
run_ssh "mkdir -p '$marker_dir' && rm -f '$marker_path'" run_ssh "mkdir -p '$marker_dir' && rm -f '$marker_path'"
} }
if [[ $SKIP_STORAGE -eq 0 ]]; then
reset_remote_post_install_marker reset_remote_post_install_marker
fi
# Clean up stale Docker resources before loading new images # Clean up stale Docker resources before loading new images
cleanup_stale_docker_resources cleanup_stale_docker_resources