maska/traefik-certs-dumper
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: restrict private file permissions.

Browse Source
This commit is contained in:
Fernandez Ludovic 2019-05-14 11:10:14 +02:00
parent 34c8608c9f
commit 28e4c55785
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
dumper/dumper.go
View File

@ -40,7 +40,7 @@ func Dump(data *StoredData, baseConfig *BaseConfig) error {
} }
privateKeyPem := extractPEMPrivateKey(data.Account) privateKeyPem := extractPEMPrivateKey(data.Account)
err := ioutil.WriteFile(filepath.Join(baseConfig.DumpPath, keysSubDir, "letsencrypt"+baseConfig.KeyInfo.Ext), privateKeyPem, 0666) err := ioutil.WriteFile(filepath.Join(baseConfig.DumpPath, keysSubDir, "letsencrypt"+baseConfig.KeyInfo.Ext), privateKeyPem, 0600)
if err != nil { if err != nil {
return err return err
} }
@ -81,7 +81,7 @@ func writeKey(dumpPath string, cert *Certificate, info FileInfo, domainSubDir bo
} }
} }
return ioutil.WriteFile(keyPath, cert.Key, 0666) return ioutil.WriteFile(keyPath, cert.Key, 0600)
} }
func extractPEMPrivateKey(account *Account) []byte { func extractPEMPrivateKey(account *Account) []byte {