Merge pull request #7739 from obsidiansystems/user-settings

Move `trustedUsers` and `allowedUsers` to separate config struct
2025-06-28 13:41:15 +02:00 · 2023-02-03 11:55:37 +01:00 · 2023-02-03 11:55:37 +01:00 · dbe0748f97
commit dbe0748f97
parent 1647354d6b a47e055e09
3 changed files with 52 additions and 36 deletions
--- a/src/libstore/daemon.cc
+++ b/src/libstore/daemon.cc
@ -529,7 +529,14 @@ static void performOp(TunnelLogger * logger, ref<Store> store,
            mode = (BuildMode) readInt(from);

            /* Repairing is not atomic, so disallowed for "untrusted"
-               clients.  */
+               clients.
+
+               FIXME: layer violation in this message: the daemon code (i.e.
+               this file) knows whether a client/connection is trusted, but it
+               does not how how the client was authenticated. The mechanism
+               need not be getting the UID of the other end of a Unix Domain
+               Socket.
+              */
            if (mode == bmRepair && !trusted)
                throw Error("repairing is not allowed because you are not in 'trusted-users'");
        }
@ -546,7 +553,9 @@ static void performOp(TunnelLogger * logger, ref<Store> store,
        mode = (BuildMode) readInt(from);

        /* Repairing is not atomic, so disallowed for "untrusted"
-           clients.  */
+           clients.
+
+           FIXME: layer violation; see above. */
        if (mode == bmRepair && !trusted)
            throw Error("repairing is not allowed because you are not in 'trusted-users'");