diff options
author | Daniele Sluijters <github@daenney.net> | 2012-10-25 10:06:40 +0200 |
---|---|---|
committer | Daniele Sluijters <github@daenney.net> | 2012-10-29 10:04:59 +0100 |
commit | 851f8c10235a0874f5e34b2c7b5544c33f89c022 (patch) | |
tree | 5656c3eeb53462bbe65394e3bbe5ec5b380c8a08 /guides | |
parent | 81679ab2ae8c9f6a233374efe9fcf096cf9f8fd9 (diff) | |
download | rails-851f8c10235a0874f5e34b2c7b5544c33f89c022.tar.gz rails-851f8c10235a0874f5e34b2c7b5544c33f89c022.tar.bz2 rails-851f8c10235a0874f5e34b2c7b5544c33f89c022.zip |
atomicc.rb: Don't assume we may chown/chmod a file.
Previously this code just assumed it is capable of changing the file
ownership, both user and group. This will fail in a lot of scenario's
unless:
* The process is run as a superuser (root);
* The owning user and group are already set to the user and group we're
trying to chown to;
* The user chown'ing only changes the group to another group it is a
member of.
If either of those conditions are not met the filesystem will simply
deny the operation throwing an error.
It is also not always possible to do a chmod, there might be a SELinux
policy or another limitation preventing the user to change the file
mode. To this end the chmod call has also been added to the rescue
block.
I've also added a little comment above the chmod command that doing a
chmod on a file which has an ACL set will cause the ACL to be
recalculated / modified.
Diffstat (limited to 'guides')
-rw-r--r-- | guides/source/active_support_core_extensions.md | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/guides/source/active_support_core_extensions.md b/guides/source/active_support_core_extensions.md index c08ad1ee90..122257807b 100644 --- a/guides/source/active_support_core_extensions.md +++ b/guides/source/active_support_core_extensions.md @@ -3716,7 +3716,9 @@ File.atomic_write(joined_asset_path) do |cache| end ``` -To accomplish this `atomic_write` creates a temporary file. That's the file the code in the block actually writes to. On completion, the temporary file is renamed, which is an atomic operation on POSIX systems. If the target file exists `atomic_write` overwrites it and keeps owners and permissions. +To accomplish this `atomic_write` creates a temporary file. That's the file the code in the block actually writes to. On completion, the temporary file is renamed, which is an atomic operation on POSIX systems. If the target file exists `atomic_write` overwrites it and keeps owners and permissions. However there are a few cases where `atomic_write` cannot change the file ownership or permissions, this error is caught and skipped over trusting in the user/filesystem to ensure the file is accessible to the processes that need it. + +NOTE. Due to the chmod operation `atomic_write` performs, if the target file has an ACL set on it this ACL will be recalculated/modified. WARNING. Note you can't append with `atomic_write`. |