From 88934b59f5b26cebdac37b9d67222ec42b388189 Mon Sep 17 00:00:00 2001
From: aftix <aftix@aftix.xyz>
Date: Fri, 20 Dec 2024 15:54:03 -0600
Subject: [PATCH] host: opt: www: Ensure the webserver root directory is owned
 by www-data

---
 host/opt/www/blog.nix    | 1 +
 host/opt/www/default.nix | 1 +
 2 files changed, 2 insertions(+)

diff --git a/host/opt/www/blog.nix b/host/opt/www/blog.nix
index 7db905d..8df93d2 100644
--- a/host/opt/www/blog.nix
+++ b/host/opt/www/blog.nix
@@ -18,6 +18,7 @@ in {
     systemd.tmpfiles.rules =
       [
         "d ${cfg.root}/${cfg.hostname} 0775 ${cfg.user} ${cfg.group} -"
+        "e ${cfg.root}/${cfg.hostname} 0775 ${cfg.user} ${cfg.group} -"
       ]
       ++ optional cfg.adventofcode "d ${cfg.root}/advent2023 0775 ${cfg.user} ${cfg.group} -"
       ++ optional cfg.aftgraphs "d ${cfg.root}/simulations 0775 ${cfg.user} ${cfg.group} -";
diff --git a/host/opt/www/default.nix b/host/opt/www/default.nix
index b9f35ee..43ff7f8 100644
--- a/host/opt/www/default.nix
+++ b/host/opt/www/default.nix
@@ -126,6 +126,7 @@ in {
       blockerPkg = pkgs.nginx_blocker.overrideAttrs {patches = cfg.nginxBlockerPatches;};
     in [
       "d ${cfg.root} 0775 ${cfg.user} ${cfg.group} -"
+      "e ${cfg.root} 0775 ${cfg.user} ${cfg.group} -"
       "L+ /etc/nginx/conf.d - - - - ${blockerPkg}/conf.d"
       "L+ /etc/nginx/bots.d - - - - ${blockerPkg}/bots.d"
     ];