valknar/stacks
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(passbolt): persist GPG keyring as volume to survive restarts

Browse Source 
Passbolt's entrypoint creates /var/lib/passbolt/.gnupg/pubring.kbx
as root while PHP-FPM runs as www-data. Without a volume this file
is recreated with wrong ownership on every container recreate, breaking
all GPG operations. Mounting the dir as a volume keeps the chown
33:33 fix permanent.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Sebastian Krüger
2026-06-09 21:44:20 +02:00
parent 6f12bf9af7
commit 2e31c1dcc9
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
passbolt/compose.yml
+1
View File
@@ -24,6 +24,7 @@ services:
volumes: volumes:
- ../.data/passbolt/gpg:/etc/passbolt/gpg - ../.data/passbolt/gpg:/etc/passbolt/gpg
- ../.data/passbolt/jwt:/etc/passbolt/jwt - ../.data/passbolt/jwt:/etc/passbolt/jwt
- ../.data/passbolt/gnupg:/var/lib/passbolt/.gnupg
depends_on: depends_on:
db: db:
condition: service_healthy condition: service_healthy