|
|
@@ -5005,9 +5005,11 @@ $_authorizations_map"
|
|
|
|
|
|
_debug "Writing token: $token to $wellknown_path/$token"
|
|
|
|
|
|
- mkdir -p "$wellknown_path"
|
|
|
-
|
|
|
- if ! printf "%s" "$keyauthorization" >"$wellknown_path/$token"; then
|
|
|
+ # Ensure .well-known is visible to web server user/group
|
|
|
+ # https://github.com/Neilpang/acme.sh/pull/32
|
|
|
+ if ! (umask ugo+rx &&
|
|
|
+ mkdir -p "$wellknown_path" &&
|
|
|
+ printf "%s" "$keyauthorization" >"$wellknown_path/$token"); then
|
|
|
_err "$d: Cannot write token to file: $wellknown_path/$token"
|
|
|
_clearupwebbroot "$_currentRoot" "$removelevel" "$token"
|
|
|
_clearup
|
neil