Hi.
Running the docker container of Gitea (latest) on my Synology, I realized a wired behavior:
I have configured the container with
USER_UID = 1042 (which is for a local username named “gitea”) and
USER_GID = 100 (default users group)
The docker container binds a local volume (/volume1/testordner/test1) to the container’s mount path: “/data”
The owner of the folder “test1” is the user Gitea.
When I start up the Gitea container, the folder and file privileges are being modified: Within the Synology file browser, a permission for user group “Everybody” is being added (read access). Same for all subfolders that are being created (“gitea” and “git”)
ssh-ing on the nas shows me the group for the corresponding folders has been set to 1000 (→ no valid group on my nas):
admin@nas:/volume1/testfolder/test1$ cat /etc/group
#$_@GID__INDEX@_$65540$
administrators:x:101:admin
avahi:x:84:
backup_users:x:65536:Anton
bind:x:53:
daemon:x:2:daemon,root
dbus:x:81:
docker-users:x:65537:gitea
ftp:x:21:ftp
http:x:1023:
log:x:19:root
lp:x:7:lp
maildrop:x:126:
mysql:x:66:
nobody:x:99:
ntp:x:87:
root:x:0:root
users:x:100:
wheel:x:10:
admin@nas:/volume1/testfolder/test1$ dir
total 0
drwxrwxrwx+ 1 gitea users 22 Jul 10 00:25 .
drwxrwxrwx+ 1 root root 22 Jul 9 23:35 ..
drwxr-xr-x 1 gitea 1000 8 Jul 10 00:25 git
drwxr-xr-x 1 gitea 1000 14 Jul 10 00:25 gitea
drwx------ 1 root root 312 Jul 10 00:25 ssh
admin@nas:/volume1/testfolder/test1$ cd gitea/
admin@nas:/volume1/testfolder/test1/gitea$ dir
total 0
drwxr-xr-x 1 gitea 1000 14 Jul 10 00:25 .
drwxrwxrwx+ 1 gitea users 22 Jul 10 00:25 ..
drwxr-xr-x+ 1 gitea 1000 14 Jul 10 00:25 conf
drwxr-xr-x+ 1 gitea 1000 0 Jul 10 00:25 log
admin@nas:/volume1/testfolder/test1/gitea$ cd conf
admin@nas:/volume1/testfolder/test1/gitea/conf$ ls -la
total 4
drwxr-xr-x+ 1 gitea 1000 14 Jul 10 00:25 .
drwxr-xr-x 1 gitea 1000 14 Jul 10 00:25 ..
-rw------- 1 gitea 1000 1364 Jul 10 00:25 app.ini
admin@nas:/volume1/testfolder/test1/gitea$ cat /etc/group | grep gitea
docker-users:x:65537:gitea
admin@nas:/volume1/testfolder/test1/gitea$ cat /etc/passwd | grep gitea
gitea:x:1042:100:docker gitea user:/var/services/homes/gitea:/sbin/nologin
I don’t have a clue, why the Group-id I am setting is not being used. Regarding to this here, the alias is correct: gitea/entrypoint at main · go-gitea/gitea · GitHub
Note: I also tried additional group IDs (existing and not existing ones). The group ID that is being set is always 1000. - In result every user has access to the “gitea” and the “git” folder within the mapped folder. That’s something I definitely want to avoid.
Can anybody help me with this issue?