chn/nixos
1
0
Fork 0
mirror of https://github.com/CHN-beta/nixos.git synced 2024-10-23 06:18:52 +08:00
Code Issues Packages Projects Releases Wiki Activity

nginx.webdav: restrict write path

Browse Source
This commit is contained in:
陈浩南 2023-11-16 11:57:02 +08:00
parent 87684a981d
commit d2479b229e
2 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
modules/services/nginx/applications/webdav.nix
View File

@ -18,6 +18,10 @@ inputs:
webdav = true;
detectAuth.users = [ "chn" ];
};
systemd.tmpfiles.rules = [ "d /srv/webdav 0700 nginx nginx" ];
systemd =
{
tmpfiles.rules = [ "d /srv/webdav 0700 nginx nginx" ];
services.nginx.serviceConfig.ReadWritePaths = [ "/srv/webdav" ];
};
};
}

1
modules/services/nginx/default.nix
View File

@ -311,7 +311,6 @@ inputs:
AmbientCapabilities = [ "CAP_NET_ADMIN" ];
LimitNPROC = 65536;
LimitNOFILE = 524288;
ReadWritePaths = [ "/srv" ];
};
}
# transparentProxy