Updated DOIDataBase.create_connection() to ensure group read/write bi…

…ts are always set on the db file on disk This ensures that users other than the installer/maintainer of the service can interact with the service on a fresh install of the database
NASA-PDS · Nov 18, 2021 · 015b103 · 015b103
1 parent 9e7bdf1
commit 015b103
Showing 1 changed file with 10 additions and 0 deletions.
diff --git a/src/pds_doi_service/core/db/doi_database.py b/src/pds_doi_service/core/db/doi_database.py
@@ -12,7 +12,9 @@
 Contains classes and functions for interfacing with the local transaction
 database (SQLite3).
 """
+import os
 import sqlite3
+import stat
 from collections import OrderedDict
 from datetime import datetime
 from datetime import timedelta
@@ -94,6 +96,14 @@ def create_connection(self):
         except Error as my_error:
             logger.error("Failed to connect to database, reason: %s", my_error)
 
+        # Make sure Database has proper group permissions set
+        st = os.stat(self.m_database_name)
+        has_group_rw = bool(st.st_mode & stat.S_IRGRP & stat.S_IWGRP)
+
+        if not has_group_rw:
+            logger.debug("Setting group read/write bits on database %s", self.m_database_name)
+            os.chmod(self.m_database_name, st.st_mode | stat.S_IRGRP | stat.S_IWGRP)
+
     def get_connection(self, table_name=None):
         """
         Returns a connection to the SQLite database. If a connection does