use strict;
BEGIN {
+ require Cwd;
+
+ my $dir = $0;
+ $dir = Cwd::getcwd() . '/' . $dir unless $dir =~ m|^/|;
+ $dir =~ s|[^/]+$|..|;
+
+ chdir($dir) || die "Cannot change directory to ${dir}\n";
+
unshift @INC, "modules/override"; # Use our own versions of various modules (e.g. YAML).
push @INC, "modules/fallback"; # Only use our own versions of modules if there's no system version.
}
use Data::Dumper;
use DateTime;
use English qw(-no_match_vars);
+use POSIX qw(setuid setgid);
use SL::Auth;
use SL::DB::BackgroundJob;
use SL::BackgroundJob::ALL;
die "cannot find locale for user $login" unless $::locale = Locale->new('de');
}
+sub drop_privileges {
+ my $user = $::emmvee_conf{task_server}->{run_as};
+ return unless $user;
+
+ my ($uid, $gid);
+ while (my @details = getpwent()) {
+ next unless $details[0] eq $user;
+ ($uid, $gid) = @details[2, 3];
+ last;
+ }
+ endpwent();
+
+ if (!$uid) {
+ print "Error: Cannot drop privileges to ${user}: user does not exist\n";
+ exit 1;
+ }
+
+ if (!setgid($gid)) {
+ print "Error: Cannot drop group privileges to ${user} (group ID $gid): $!\n";
+ exit 1;
+ }
+
+ if (!setuid($uid)) {
+ print "Error: Cannot drop user privileges to ${user} (user ID $uid): $!\n";
+ exit 1;
+ }
+}
+
sub gd_preconfig {
my $self = shift;
die "Missing section [task_server] in config file" unless $config{task_server};
die "Missing key 'login' in section [task_server] in config file" unless $config{task_server}->{login};
+ drop_privileges();
lxinit();
return ();
$::lxdebug->message(0, " Found: " . join(' ', map { $_->package_name } @{ $jobs })) if $config{task_server}->{debug} && @{ $jobs };
- $_->run for @{ $jobs };
+ foreach my $job (@{ $jobs }) {
+ # Provide fresh global variables in case legacy code modifies
+ # them somehow.
+ $::locale = Locale->new($::language);
+ $::form = Form->new;
+
+ $job->run;
+ }
1;
};
mkdir($pidbase) if !-d $pidbase;
-newdaemon(configfile => "${cwd}/config/task_server.conf",
+newdaemon(configfile => "${cwd}/config/lx_office.conf",
progname => 'lx-office-task-server',
pidbase => "${pidbase}/",
);