security/acme-client: Use dedicated '_acme' user

Submitted by: Gyorgy Teubel <tgyurci gmail com>
svn path=/head/; revision=464063
2018-03-10 10:43:21 +00:00 · 2018-03-10 10:43:21 +00:00 · 944abfb229 · 2021-03-31 03:12:20 +00:00
commit 944abfb229
parent bf72f339a3
3 changed files with 10 additions and 3 deletions
--- a/2
+++ b/2
@ -543,7 +543,7 @@ avahi-autoipd:*:588:
 _xsi:*:600:
 _tss:*:601:
 _pkcs11:*:602:
-# free: 603
+_acme:*:603:
 # free: 604
 # free: 605
 # free: 606
--- a/2
+++ b/2
@ -549,7 +549,7 @@ avahi-autoipd:*:588:588::0:0:Avahi Autoipd Daemon user:/nonexistent:/usr/sbin/no
 _xsi:*:600:600::0:0:XMLSysInfo User:/nonexistent:/usr/sbin/nologin
 _tss:*:601:601:daemon:0:0:TrouSerS user:/var/empty:/usr/sbin/nologin
 _pkcs11:*:602:602:daemon:0:0:opencryptoki user:/var/empty:/usr/sbin/nologin
-# free: 603
+_acme:*:603:603::0:0:ACME client user:/var/empty:/usr/sbin/nologin
 # free: 604
 # free: 605
 # free: 606
--- a/security/acme-client/Makefile
+++ b/security/acme-client/Makefile
@ -3,7 +3,7 @@

 PORTNAME=	acme-client
 PORTVERSION=	0.1.16
-PORTREVISION=	2
+PORTREVISION=	3
 DISTVERSIONPREFIX=	portable-
 CATEGORIES=	security
 MASTER_SITES=	https://kristaps.bsd.lv/${PORTNAME}/snapshots/ \
@ -21,6 +21,8 @@ USES=		gmake tar:tgz ssl
 MAKEFILE=	GNUmakefile
 MAKE_ENV=	PREFIX=${STAGEDIR}/${PREFIX}

+CFLAGS+=	-DNOBODY_USER=\\\"${ACME_USER}\\\"
+
 WWWDIR=		${PREFIX}/www/acme

 SAMPLE_FILES=	acme-client.sh.sample deploy.sh.sample
@ -30,6 +32,11 @@ SUB_LIST=	PORTNAME=${PORTNAME}
 PERIODIC_DIRS=	etc/periodic/weekly
 PERIODIC_FILES=	000.acme-client.sh

+ACME_USER?=	_acme
+
+USERS=		${ACME_USER}
+GROUPS=		${ACME_USER}
+
 post-patch:
 	${REINPLACE_CMD} -e "s|/etc/|${PREFIX}/etc/|g" \
 		-e "s|/var/www/acme|${WWWDIR}|" \