Convert the remaining ad-hoc 'sudo' calls across the data plane to the run_privileged helpers so every file op lands as the correct owner with no blanket root: - DB/configs (manager-owned): db_list_all_apps, delete_db_file, install_sqlite, cli_webui_commands -> runInstallOp - containers (dockerinstall-owned): scan_container_socket, delete_data, webui_task_files, webui_app_log, webui_config_patch, application_missing_variables, uninstall_app -> runFileOp/runFileWrite - genuine root: passwd, tailscale, ufw-docker, sysctl grep, systemd unit read, authorized_keys read, nobody chown -> runSystem - interactive editors and 'id -u': drop sudo entirely (run as caller) - owncloud/adguard container-UID config edits -> runSystem (funnel; docker-exec rework deferred) Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> Signed-off-by: librelad <librelad@digitalangels.vip>
37 lines
1.3 KiB
Bash
Executable File
37 lines
1.3 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
# WebUI Task System Files Generator
|
|
# Ensures essential task system files exist for LibrePortal task management
|
|
|
|
webuiEnsureTaskFiles() {
|
|
local task_dir="${containers_dir}libreportal/frontend/data/tasks"
|
|
|
|
# Create tasks directory if it doesn't exist
|
|
if [ ! -d "$task_dir" ]; then
|
|
local result=$(createFolders "quiet" $docker_install_user "$task_dir")
|
|
checkSuccess "Created tasks directory..."
|
|
fi
|
|
|
|
# Create queue.json if it doesn't exist
|
|
if [ ! -f "$task_dir/queue.json" ]; then
|
|
echo " Creating queue.json"
|
|
createTouch "$task_dir/queue.json" $docker_install_user "silent"
|
|
local result=$(echo "[]" | runFileWrite "$task_dir/queue.json" > /dev/null)
|
|
checkSuccess "Created queue.json..."
|
|
else
|
|
echo " queue.json exists"
|
|
fi
|
|
|
|
# Create current.json if it doesn't exist
|
|
if [ ! -f "$task_dir/current.json" ]; then
|
|
echo " Creating current.json"
|
|
createTouch "$task_dir/current.json" $docker_install_user "silent"
|
|
local result=$(echo '{}' | runFileWrite "$task_dir/current.json" > /dev/null)
|
|
checkSuccess "Created current.json..."
|
|
else
|
|
echo " current.json exists"
|
|
fi
|
|
|
|
isSuccessful "Task system files are setup"
|
|
}
|