summaryrefslogtreecommitdiff
path: root/Annex/Perms.hs
blob: 2b54077ca6e18898354ec6412e11fa5a4e30e142 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
{- git-annex file permissions
 -
 - Copyright 2012 Joey Hess <joey@kitenet.net>
 -
 - Licensed under the GNU GPL version 3 or higher.
 -}

module Annex.Perms (
	setAnnexPerm,
	annexFileMode,
	createAnnexDirectory,
	noUmask,
) where

import Common.Annex
import Utility.FileMode
import Git.SharedRepository

import System.Posix.Types

{- Sets appropriate file mode for a file or directory in the annex,
 - other than the content files and content directory. Normally,
 - use the default mode, but with core.sharedRepository set,
 - allow the group to write, etc. -}
setAnnexPerm :: FilePath -> Annex ()
setAnnexPerm file = liftIO . go =<< fromRepo getSharedRepository
	where
		go GroupShared = groupWriteRead file
		go AllShared = modifyFileMode file $ addModes $
			[ ownerWriteMode, groupWriteMode ] ++ readModes
		go _ = return ()

{- Gets the appropriate mode to use for creating a file in the annex
 - (other than content files, which are locked down more). -}
annexFileMode :: Annex FileMode
annexFileMode = go <$> fromRepo getSharedRepository
	where
		go GroupShared = sharedmode
		go AllShared = combineModes (sharedmode:readModes)
		go _ = stdFileMode
		sharedmode = combineModes
			[ ownerWriteMode, groupWriteMode
			, ownerReadMode, groupReadMode
			]

{- Creates a directory inside the gitAnnexDir, including any parent
 - directories. Makes directories with appropriate permissions. -}
createAnnexDirectory :: FilePath -> Annex ()
createAnnexDirectory dir = traverse dir [] =<< top
	where
		top = parentDir <$> fromRepo gitAnnexDir
		traverse d below stop
			| d `equalFilePath` stop = done
			| otherwise = ifM (liftIO $ doesDirectoryExist d)
				( done
				, traverse (parentDir d) (d:below) stop
				)
			where
				done = forM_ below $ \p -> do
					liftIO $ createDirectory p
					setAnnexPerm p