[jetty-dev] jetty+setuid and tmp/work directory

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[jetty-dev] jetty+setuid and tmp/work directory

From: Sami Silén <Sami.Silen@xxxxxx>
Date: Mon, 11 Jul 2011 13:39:15 +0300
Accept-language: fi-FI
Acceptlanguage: fi-FI
Delivered-to: jetty-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/jetty-dev>
List-help: <mailto:jetty-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/jetty-dev>, <mailto:jetty-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/jetty-dev>, <mailto:jetty-dev-request@eclipse.org?subject=unsubscribe>
Thread-index: Acw/tsfGO5wyHTRZS9+lcOHnvOjexA==
Thread-topic: jetty+setuid and tmp/work directory

My mission has been trying to run Shibboleth IDP without apache on the front and to switch from Tomcat to Jetty. Finally I've actually managed to do that. Jetty is started nicely with included init script from package and everything works fine. Init script starts Jetty and user is switched from root to jetty and jetty seems to be listening in port 443 like I've configured, even Shibboleth IDP is deployed nicely and it's there answering to Status queries.

Then the problem, which of course is that IDP doesn't work. The reason for it is that all temp files which are created during IDP startup are owned by root and jetty/idp process is owned by user jetty and it doesn't anymore have rights for those temp files. If I modify owner of those temp files to jetty after startup, everything works fine.

Hopefully someone could give me a hint is there something to avoid this situation.

Environment I am using contains Jetty hightide 7.4.4, RHEL 6.1 and Shibboleth IDP 2.3.0.

Br,

Sami Silén

Prev by Date: Re: [jetty-dev] Git Branching
Next by Date: [jetty-dev] git emails on push
Previous by thread: [jetty-dev] Git Branching
Next by thread: [jetty-dev] git emails on push
Index(es):
- Date
- Thread

Breadcrumbs