From 38a87de2d6d1f71530c8590d2ae9db5d142f8e6f Mon Sep 17 00:00:00 2001
From: Marek Paśnikowski <marek@marekpasnikowski.pl>
Date: Sun, 14 Jan 2024 09:51:16 +0100
Subject: Allow cgit to see gitolite repositories

The gitolite service is implemented in such a way, that only the git group can
access the gitolite home directory. This blocks cgit from accessing the
repositories subfolder.

The simple addition of the executable bit on the /var/lib/gitolite directory
allows the access to the desired subfolder without actually exposing any other
contents of the gitolite home directory.

Additionaly a reminder to upstream this change is emitted on each system
reconfiguration.
---
 home-configuration.scm | 6 +++++-
 izumi.org              | 6 +++++-
 2 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/home-configuration.scm b/home-configuration.scm
index f409f1a..86fb5d6 100644
--- a/home-configuration.scm
+++ b/home-configuration.scm
@@ -157,7 +157,11 @@
           (string-append
            "sudo guix system reconfigure "
            configuration-prefix
-           "system-configuration.scm "))
+           "system-configuration.scm "
+           and
+           "sudo chmod 751 /var/lib/gitolite "
+           and
+           "echo 'WARNING: Upstream the correct permission bits to gitolite.'"))
          (update-system
           (string-append
            pull-guix
diff --git a/izumi.org b/izumi.org
index daf3472..0fd8277 100644
--- a/izumi.org
+++ b/izumi.org
@@ -843,7 +843,11 @@
         (string-append
          "sudo guix system reconfigure "
          configuration-prefix
-         "system-configuration.scm "))
+         "system-configuration.scm "
+         and
+         "sudo chmod 751 /var/lib/gitolite "
+         and
+         "echo 'WARNING: Upstream the correct permission bits to gitolite.'"))
        (update-system
         (string-append
          pull-guix
-- 
cgit v1.2.3