diff options
| author | Christian Grothoff <christian@grothoff.org> | 2021-01-02 14:05:45 +0100 |
|---|---|---|
| committer | Christian Grothoff <christian@grothoff.org> | 2021-01-02 14:05:45 +0100 |
| commit | 0e4c82f89738dd4fd0d862d06ae71452722fbb5e (patch) | |
| tree | 921a2caa2b58f4b8d9f9a1e2219fe94d89fa5606 | |
| parent | 148287954d6d0c73178c4ab1192c3b5a90025b5c (diff) | |
debian package fixes
| -rw-r--r-- | debian/etc/taler-exchange-db.conf | 11 | ||||
| -rw-r--r-- | debian/etc/taler-exchange.conf | 18 | ||||
| -rw-r--r-- | debian/etc/taler-wire.conf | 10 | ||||
| -rw-r--r-- | debian/taler-exchange.postinst | 7 |
4 files changed, 46 insertions, 0 deletions
diff --git a/debian/etc/taler-exchange-db.conf b/debian/etc/taler-exchange-db.conf new file mode 100644 index 000000000..a6217f486 --- /dev/null +++ b/debian/etc/taler-exchange-db.conf @@ -0,0 +1,11 @@ +# This file should contain the access control information to talk to +# the exchange database. + +[exchangedb-postgres] + +# Typically, there should only be a single line here, of the form: + +# CONFIG=postgres:///DATABASE + +# The details of the URI depend on where the database lives and how +# access control was configured. diff --git a/debian/etc/taler-exchange.conf b/debian/etc/taler-exchange.conf index 2b304aed3..b9eba1651 100644 --- a/debian/etc/taler-exchange.conf +++ b/debian/etc/taler-exchange.conf @@ -1,3 +1,9 @@ +# First line should be: "INLINE@ /etc/taler-exchange-db.conf" +@INLINE@ /etc/taler-exchange-db.conf +# Do not edit this file using 'taler-config', otherwise the line +# above will be lost! + + [PATHS] # Move runtime data "tmp" directory to /var/lib/taler-exchange/ @@ -5,6 +11,18 @@ TALER_RUNTIME_DIR = /var/lib/taler-exchange/tmp/ [exchange] +# Debian package is configured to use a reverse proxy with a UNIX +# domain socket. See nginx/apache configuration files. SERVE = UNIX UNIXPATH = /var/lib/taler-exchange/exchange.sock + +# Only supported database is Postgres right now. DATABASE = postgres + +[taler] +# Here you need to set the currency of your exchange: +# CURRENCY = KUDOS + +[coin_FOO] +# You must specify the various denominations to be offered by your exchange +# in sections called "coin_". diff --git a/debian/etc/taler-wire.conf b/debian/etc/taler-wire.conf index e69de29bb..02c5993f9 100644 --- a/debian/etc/taler-wire.conf +++ b/debian/etc/taler-wire.conf @@ -0,0 +1,10 @@ +# First line should be: "INLINE@ /etc/taler-exchange-db.conf" +@INLINE@ /etc/taler-exchange-db.conf +# Do not edit this file using 'taler-config', otherwise the line +# above will be lost! + + +# This file should contain the wire account access information which is needed +# by the Taler exchange to talk to LibEuFin to interact with the bank. +# The file SHOULD only be readable for the "taler-exchange-wire" user, +# as other users/services have no business talking to the bank. diff --git a/debian/taler-exchange.postinst b/debian/taler-exchange.postinst index e2b2ab310..3ef46bf2b 100644 --- a/debian/taler-exchange.postinst +++ b/debian/taler-exchange.postinst @@ -211,6 +211,13 @@ EOF chmod 770 /var/lib/taler-exchange/tmp chmod +s /var/lib/taler-exchange/tmp + chown ${_WIREUSERNAME}:root /etc/taler-wire.conf + chmod 460 /etc/taler-wire.conf + chown root:${_DBGROUPNAME} /etc/taler-exchange-db.conf + chmod 640 /etc/taler-exchange-db.conf + chown ${_EUSERNAME}:${_GROUPNAME} /etc/taler-exchange.conf + chmod 460 /etc/taler-wire.conf + systemctl daemon-reload echo "done." |