[
https://issues.apache.org/jira/browse/NIFI-1461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15141795#comment-15141795
]
Andre commented on NIFI-1461:
-----------------------------
I was under the impression Fedora's approach around user deletion is to leave
them behind:
bq. We never remove users or groups created by packages. There's no sane way to
check if files owned by those users/groups are left behind (and even if there |
would, what would we do with them?) and leaving those behind with ownerships
pointing to now nonexistent users/groups may result in security issues when a |
semantically unrelated user/group is created later and reuses the UID/GID.
Also, in some setups deleting the user/group might not be possible or/nor
desirable (eg. when using a shared, remote user/group database). Cleanup of
unused users/groups is left to the system administrators to take care of if
they so desire.
https://fedoraproject.org/wiki/Packaging:UsersAndGroups#Allocation_Strategies
> RPM should create nifi user and give it access to the /opt/nifi and
> subdirectories
> ----------------------------------------------------------------------------------
>
> Key: NIFI-1461
> URL: https://issues.apache.org/jira/browse/NIFI-1461
> Project: Apache NiFi
> Issue Type: Bug
> Affects Versions: 0.4.1
> Reporter: Andre
> Assignee: Tony Kurc
> Labels: rpm
> Fix For: 0.5.0
>
> Attachments:
> 0001-NIFI-1461-This-closes-204.-Implemented-RPM-before-af.patch,
> 0002-NIFI-1461-added-run.as-filtered-property-for-RPM-and.patch, nifi.spec,
> nifi.spec
>
>
> currently when installing from RPM the resulting permissions result on admins
> having to complete the installation by adding a user and correcting
> filesystem permissions.
> Ideally the RPM packages should result in installed files ready to be
> utilised as a non-root user
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
