使用Thin运行的Rails应用程序(Redmine)中的权限被拒绝

时间:2015-12-28 14:14:03

标签: ruby-on-rails linux redmine thin

我尝试使用Thin和nginx作为反向代理运行Redmine。

我的/etc/thin2.1/redmine.yml

---
pid: /var/run/thin/redmine.pid
group: redmine
wait: 30
timeout: 30
log: /var/log/thin/redmine.log
max_conns: 1024
require: []

environment: production
max_persistent_conns: 512
servers: 4
daemonize: true
user: redmine
socket: /var/run/thin/redmine.sock
chdir: /var/www/projects.mydomain.tld

当我使用网络浏览器访问该网站时,我得到502 Bad Gateway。这是/var/log/thin/redmine.0.log

的内容 
>> Writing PID to /var/run/thin/redmine.0.pid
>> Changing process privilege to redmine:redmine
>> Using rack adapter
>> Exiting!
/usr/lib/ruby/vendor_ruby/thin/daemonizing.rb:158:in `delete': Permission denied @ unlink_internal - /var/run/thin/redmine.0.pid (Errno::EACCES)
        from /usr/lib/ruby/vendor_ruby/thin/daemonizing.rb:158:in `remove_pid_file'
        from /usr/lib/ruby/vendor_ruby/thin/daemonizing.rb:59:in `block in daemonize'
/usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require': cannot load such file -- bundler/setup (LoadError)
        from /usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require'
        from /var/www/projects.mydomain.tld/config/boot.rb:4:in `<top (required)>'
        from /usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require'
        from /usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require'
        from /var/www/projects.mydomain.tld/config/application.rb:1:in `<top (required)>'
        from /usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require'
        from /usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require'
        from /var/www/projects.mydomain.tld/config/environment.rb:2:in `<top (required)>'
        from /usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require'
        from /usr/lib/ruby/2.1.0/rubygems/core_ext/kernel_require.rb:55:in `require'
        from /var/www/projects.mydomain.tld/config.ru:3:in `block in <main>'
        from /usr/lib/ruby/vendor_ruby/rack/builder.rb:55:in `instance_eval'
        from /usr/lib/ruby/vendor_ruby/rack/builder.rb:55:in `initialize'
        from /var/www/projects.mydomain.tld/config.ru:1:in `new'
        from /var/www/projects.mydomain.tld/config.ru:1:in `<main>'
        from /usr/lib/ruby/vendor_ruby/rack/adapter/loader.rb:36:in `eval'
        from /usr/lib/ruby/vendor_ruby/rack/adapter/loader.rb:36:in `load'
        from /usr/lib/ruby/vendor_ruby/rack/adapter/loader.rb:45:in `for'
        from /usr/lib/ruby/vendor_ruby/thin/controllers/controller.rb:169:in `load_adapter'
        from /usr/lib/ruby/vendor_ruby/thin/controllers/controller.rb:73:in `start'
        from /usr/lib/ruby/vendor_ruby/thin/runner.rb:185:in `run_command'
        from /usr/lib/ruby/vendor_ruby/thin/runner.rb:151:in `run!'
        from /usr/bin/thin:6:in `<main>'

我不明白导致此错误的原因。 .pid中的/var/run/thin/个文件归root所有。我尝试将所有权赋予redminethin,但得到了相同的错误(无论如何重新启动时都会重新创建这些文件)。

我用rbenv安装了Ruby。我以root身份运行了bundle install,这促使我这样做will break this application for all non-root users on this machine。根据{{​​3}},这应该不是问题,是吗?

编辑:如果我在root中将用户和群组设置为/etc/thin2.1/redmine.yml,则权限被拒绝错误消失。我虽然引起了另一个错误,但仍然存在。

1 个答案:

答案 0 :(得分:4)

对于unlink文件权限,进程实际上需要一个写入该文件目录的权限。

因此,要么redmine允许写/var/run/thin/或将pid和套接字放在其他位置 - 通常在app的共享tmp内,rails甚至会为这些创建目录。

相关问题
最新问题