From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <guix-devel-bounces+larch=yhetil.org@gnu.org>
Received: from mp2 ([2001:41d0:2:4a6f::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms11 with LMTPS
	id qBN8LPkIPV/+HQAA0tVLHw
	(envelope-from <guix-devel-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Wed, 19 Aug 2020 11:11:53 +0000
Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp2 with LMTPS
	id KCVdKPkIPV84WwAAB5/wlQ
	(envelope-from <guix-devel-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Wed, 19 Aug 2020 11:11:53 +0000
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id 3E50C9403A5
	for <larch@yhetil.org>; Wed, 19 Aug 2020 11:11:53 +0000 (UTC)
Received: from localhost ([::1]:34752 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <guix-devel-bounces+larch=yhetil.org@gnu.org>)
	id 1k8M0W-0004yR-3k
	for larch@yhetil.org; Wed, 19 Aug 2020 07:11:52 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:46704)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <julien@lepiller.eu>)
 id 1k8M0N-0004yI-N3
 for guix-devel@gnu.org; Wed, 19 Aug 2020 07:11:43 -0400
Received: from lepiller.eu ([89.234.186.109]:46698)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <julien@lepiller.eu>)
 id 1k8M0L-0007Bn-ER
 for guix-devel@gnu.org; Wed, 19 Aug 2020 07:11:43 -0400
Received: from lepiller.eu (localhost [127.0.0.1])
 by lepiller.eu (OpenSMTPD) with ESMTP id ad4a9b96;
 Wed, 19 Aug 2020 11:11:34 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=lepiller.eu; h=date
 :in-reply-to:references:mime-version:content-type
 :content-transfer-encoding:subject:to:from:message-id; s=dkim;
 bh=JyeCl++2AX995VN8quZWtTGg6jB17rf8GzUch8pjllA=; b=ayQeTn91QS5T
 n5I0l15fmmp7toieeQNA0hEPSmW+RhbyORLiJna4gjqJUpmNw9H5vKm+pQ3Io3lP
 tPCKapq7Wz+S0zyZiGIRYqhhQKuiu9AjYQh2DlJ7pcb5xC7NjV97zmncXf29Rxc0
 QWU9b3oZYvHNn/sLbt4zWTIJdA54CL6Ji5Pnr3Ome00SOntDLZUqG7tD3UadxQa2
 R2KS3HQ/fzh4yKyGFUXcZouZ7/BBqK+Xsvz2klcUs3BSWiZOJyaYN/e47mK9OyRr
 47PhTKOHDYEm2c6ykWXq5x8jZaKEcsubstGVpZFGJcYa5vs3bVPjt+vfKi0dbA3J
 lSf4Rj9PDw==
Received: by lepiller.eu (OpenSMTPD) with ESMTPSA id b08665cb
 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); 
 Wed, 19 Aug 2020 11:11:33 +0000 (UTC)
Date: Wed, 19 Aug 2020 07:11:25 -0400
User-Agent: K-9 Mail for Android
In-Reply-To: <20200819121659.2d1d7fb6@panther-arch.localdomain>
References: <20200819121659.2d1d7fb6@panther-arch.localdomain>
MIME-Version: 1.0
Content-Type: multipart/alternative;
 boundary="----7QMNO86K4DQ2QJJXYBAZN3FHNZ8VUE"
Content-Transfer-Encoding: 7bit
Subject: Re: Allow to add more than one group for service user
To: guix-devel@gnu.org,Reza Alizadeh Majd <r.majd@pantherx.org>
From: Julien Lepiller <julien@lepiller.eu>
Message-ID: <A959B561-6A4C-4F88-87AD-188D4A502D27@lepiller.eu>
Received-SPF: none client-ip=89.234.186.109; envelope-from=julien@lepiller.eu;
 helo=lepiller.eu
X-detected-operating-system: by eggs.gnu.org: First seen = 2020/08/19 07:11:36
X-ACL-Warn: Detected OS   = Linux 2.2.x-3.x [generic] [fuzzy]
X-Spam_score_int: -20
X-Spam_score: -2.1
X-Spam_bar: --
X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001,
 SPF_HELO_NONE=0.001, SPF_NONE=0.001,
 URIBL_BLOCKED=0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: guix-devel@gnu.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Development of GNU Guix and the GNU System distribution."
 <guix-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-devel>,
 <mailto:guix-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/guix-devel>
List-Post: <mailto:guix-devel@gnu.org>
List-Help: <mailto:guix-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-devel>,
 <mailto:guix-devel-request@gnu.org?subject=subscribe>
Errors-To: guix-devel-bounces+larch=yhetil.org@gnu.org
Sender: "Guix-devel" <guix-devel-bounces+larch=yhetil.org@gnu.org>
X-Scanner: scn0
Authentication-Results: aspmx1.migadu.com;
	dkim=pass header.d=lepiller.eu header.s=dkim header.b=ayQeTn91;
	dmarc=pass (policy=none) header.from=lepiller.eu;
	spf=pass (aspmx1.migadu.com: domain of guix-devel-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-devel-bounces@gnu.org
X-Spam-Score: -0.21
X-TUID: nHysQ4WLWK0L

------7QMNO86K4DQ2QJJXYBAZN3FHNZ8VUE
Content-Type: text/plain;
 charset=utf-8
Content-Transfer-Encoding: quoted-printable

Hi Reza,

This kind of message should probably go to guix-help instead=2E Can you se=
nd your user and groups definition you're using? Then we should see if ther=
e's anything wrong with it, or if we can reproduce the issue=2E

On 2020=E5=B9=B48=E6=9C=8819=E6=97=A5 3:46:59 GMT-04:00, Reza Alizadeh Maj=
d <r=2Emajd@pantherx=2Eorg> wrote:
>Hi Guix,=20
>
>coming from this thread:=20
>https://lists=2Egnu=2Eorg/archive/html/help-guix/2020-07/msg00088=2Ehtml
>
>I had defined a service that needs to run by a specific user=2E regarding
>application creates a unix domain socket during start and change the
>ownership of socket file to specific group=2E
>
>the problem is that daemon user (the user that runs the service) only
>detects it's primary group and don't have permission to `chown` the
>socket file=2E=20
>
>I also performed another test and run a bash instance inside a `screen`
>using the service=2E when I check for the user groups, I had seen that
>only primary group is detected as group for service user=2E=20
>
>I assume that that this might be a bug on group assignment for service
>user=2E or I might missed something in service definition=2E=20
>
>kind regards,
>Reza
>
>
>--=20
>Reza Alizadeh Majd
>PantherX Team
>https://www=2Epantherx=2Eorg/

------7QMNO86K4DQ2QJJXYBAZN3FHNZ8VUE
Content-Type: text/html;
 charset=utf-8
Content-Transfer-Encoding: quoted-printable

<html><head></head><body>Hi Reza,<br><br>This kind of message should probab=
ly go to guix-help instead=2E Can you send your user and groups definition =
you're using? Then we should see if there's anything wrong with it, or if w=
e can reproduce the issue=2E<br><br><div class=3D"gmail_quote">On 2020=E5=
=B9=B48=E6=9C=8819=E6=97=A5 3:46:59 GMT-04:00, Reza Alizadeh Majd &lt;r=2Em=
ajd@pantherx=2Eorg&gt; wrote:<blockquote class=3D"gmail_quote" style=3D"mar=
gin: 0pt 0pt 0pt 0=2E8ex; border-left: 1px solid rgb(204, 204, 204); paddin=
g-left: 1ex;">
<pre class=3D"k9mail">Hi Guix, <br><br>coming from this thread: <br><a hre=
f=3D"https://lists=2Egnu=2Eorg/archive/html/help-guix/2020-07/msg00088=2Eht=
ml">https://lists=2Egnu=2Eorg/archive/html/help-guix/2020-07/msg00088=2Ehtm=
l</a><br><br>I had defined a service that needs to run by a specific user=
=2E regarding<br>application creates a unix domain socket during start and =
change the<br>ownership of socket file to specific group=2E<br><br>the prob=
lem is that daemon user (the user that runs the service) only<br>detects it=
's primary group and don't have permission to `chown` the<br>socket file=2E=
 <br><br>I also performed another test and run a bash instance inside a `sc=
reen`<br>using the service=2E when I check for the user groups, I had seen =
that<br>only primary group is detected as group for service user=2E <br><br=
>I assume that that this might be a bug on group assignment for service<br>=
user=2E or I might missed something in service definition=2E <br><br>kind r=
egards,<br>Reza<br><br></pre></blockquote></div></body></html>
------7QMNO86K4DQ2QJJXYBAZN3FHNZ8VUE--