sql_app: enforce strict file permissions for .env

Signed-off-by: HeshamTB <hishaminv@gmail.com>
2022-06-12 12:52:04 +03:00 · 2022-06-12 12:52:04 +03:00 · 2c60e14260
commit 2c60e14260
parent 21aef6ec6c
2 changed files with 28 additions and 0 deletions
--- a/10
+++ b/10
@ -1,4 +1,14 @@
 #!/bin/bash

 source venv/bin/activate
+
+cd sql_app/
+
+./file_permissios.py
+if [ $? == 1 ]
+then
+    echo "enviorment file_permissions are incorrect"
+    exit 1
+fi
+cd ../
 exec uvicorn sql_app.main:app --ssl-certfile server.crt --ssl-keyfile server.key --port 4040 --host 0.0.0.0 --no-server-header
--- a/sql_app/file_permissios.py
+++ b/sql_app/file_permissios.py
@ -0,0 +1,18 @@
+#!/bin/python
+
+# Hesham T. Banafa
+# Jun 12th, 2022
+# Check enviorment file permissions and return -1 if fails or 0
+
+import os
+import stat
+
+ENV_FILE='.env'
+
+st = os.stat(ENV_FILE)
+if st.st_mode & stat.S_IROTH or \
+    st.st_mode & stat.S_IWOTH or \
+    st.st_mode & stat.S_IXOTH:
+    exit(1)
+
+exit(0)