From c7ad73e5b9516c74a1e049322b89076f4878ddba Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Date: Sun, 1 Mar 2009 19:56:41 -0500
Subject: proposed fix for issue 630; since m-a u operates on a saved copy of
 the users authorized_user_ids file, we should only check filesystem
 permissions against the monkeysphere user, not the target user.

---
 src/share/ma/update_users | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'src/share')

diff --git a/src/share/ma/update_users b/src/share/ma/update_users
index a48bbd1..67fabb2 100644
--- a/src/share/ma/update_users
+++ b/src/share/ma/update_users
@@ -88,12 +88,11 @@ for uname in $unames ; do
 	    cat "$authorizedUserIDs" > "$TMP_AUTHORIZED_USER_IDS"
 
 	    # export needed variables
-	    export FILE_OWNER="$uname"
 	    export AUTHORIZED_KEYS
 	    export TMP_AUTHORIZED_USER_IDS
 
 	    # process authorized_user_ids file, as monkeysphere user
-	    su_monkeysphere_user \
+	    FILE_OWNER="$MONKEYSPHERE_USER" su_monkeysphere_user \
 		". ${SYSSHAREDIR}/common; process_authorized_user_ids $TMP_AUTHORIZED_USER_IDS" \
 		|| returnCode="$?"
 	else
-- 
cgit v1.2.3