fix: rm redundant copy to avoid permission errors for non-"app" user

2025-04-10 07:38:13 -05:00 · 2025-03-06 06:50:30 -08:00 · 2025-03-06 06:50:30 -08:00 · db2f3e95e1
commit db2f3e95e1
parent b0c60ea7ef
3 changed files with 9 additions and 30 deletions
--- a/bitwarden_license/src/Scim/entrypoint.sh
+++ b/bitwarden_license/src/Scim/entrypoint.sh
@ -59,16 +59,9 @@ if [[ -f "/etc/bitwarden/kerberos/bitwarden.keytab" && -f "/etc/bitwarden/kerber
 fi

 if [[ $globalSettings__selfHosted == "true" ]]; then
-    cp /etc/bitwarden/identity/identity.pfx /app/identity.pfx || \
-        {
-            # infer a non-root location for the certificate
-            if [[ -z $globalSettings__identityServer__certificateLocation ]]; then
-                export globalSettings__identityServer__certificateLocation=/home/app/config/identity.pfx
-            fi
-            # copy the certificate to the non-root location to avoid permission issues
-            mkdir -p "$(dirname "$globalSettings__identityServer__certificateLocation")"
-            cp /etc/bitwarden/identity/identity.pfx "$globalSettings__identityServer__certificateLocation"
-        }
+    if [[ -z $globalSettings__identityServer__certificateLocation ]]; then
+        export globalSettings__identityServer__certificateLocation=/etc/bitwarden/identity/identity.pfx
+    fi
 fi

 exec $gosu_cmd /app/"${PROJECT_NAME}"
--- a/bitwarden_license/src/Sso/entrypoint.sh
+++ b/bitwarden_license/src/Sso/entrypoint.sh
@ -59,16 +59,9 @@ if [[ -f "/etc/bitwarden/kerberos/bitwarden.keytab" && -f "/etc/bitwarden/kerber
 fi

 if [[ $globalSettings__selfHosted == "true" ]]; then
-    cp /etc/bitwarden/identity/identity.pfx /app/identity.pfx || \
-        {
-            # infer a non-root location for the certificate
-            if [[ -z $globalSettings__identityServer__certificateLocation ]]; then
-                export globalSettings__identityServer__certificateLocation=/home/app/config/identity.pfx
-            fi
-            # copy the certificate to the non-root location to avoid permission issues
-            mkdir -p "$(dirname "$globalSettings__identityServer__certificateLocation")"
-            cp /etc/bitwarden/identity/identity.pfx "$globalSettings__identityServer__certificateLocation"
-        }
+    if [[ -z $globalSettings__identityServer__certificateLocation ]]; then
+        export globalSettings__identityServer__certificateLocation=/etc/bitwarden/identity/identity.pfx
+    fi
 fi

 exec $gosu_cmd /app/"${PROJECT_NAME}"
--- a/src/Identity/entrypoint.sh
+++ b/src/Identity/entrypoint.sh
@ -59,16 +59,9 @@ if [[ -f "/etc/bitwarden/kerberos/bitwarden.keytab" && -f "/etc/bitwarden/kerber
 fi

 if [[ $globalSettings__selfHosted == "true" ]]; then
-    cp /etc/bitwarden/identity/identity.pfx /app/identity.pfx || \
-        {
-            # infer a non-root location for the certificate
-            if [[ -z $globalSettings__identityServer__certificateLocation ]]; then
-                export globalSettings__identityServer__certificateLocation=/home/app/config/identity.pfx
-            fi
-            # copy the certificate to the non-root location to avoid permission issues
-            mkdir -p "$(dirname "$globalSettings__identityServer__certificateLocation")"
-            cp /etc/bitwarden/identity/identity.pfx "$globalSettings__identityServer__certificateLocation"
-        }
+    if [[ -z $globalSettings__identityServer__certificateLocation ]]; then
+        export globalSettings__identityServer__certificateLocation=/etc/bitwarden/identity/identity.pfx
+    fi
 fi

 exec $gosu_cmd /app/"${PROJECT_NAME}"