File diff afe2382e49fe → 8f51e10819d7
deploy/systemd/conservancy-www-db.service
Show inline comments
 
new file 100644
 
# Update the fundraiser total/sustainer list from an SQL file on Apache restart.
 

			




	
	
	
		
 
[Unit]


			




	
	
	
		
 
Description=Update Conservancy website database


			




	
	
	
		
 
Before=apache2.service


			




	
	
	
		
 

			




	
	
	
		
 
[Service]


			




	
	
	
		
 
Type=oneshot


			




	
	
	
		
 
User=www-data


			




	
	
	
		
 
ExecStart=/usr/bin/sqlite3 -bail /var/lib/www/database/conservancy-website.sqlite3 ".timeout 30000" "BEGIN TRANSACTION;" ".read /home/debian/django-supporters-list.sql" "COMMIT;"


			




	
	
	
		
 

			




	
	
	
		
 
SystemCallFilter=~@clock @cpu-emulation @debug @module @mount @obsolete


			




	
	
	
		
 
CapabilityBoundingSet=


			




	
	
	
		
 
NoNewPrivileges=true


			




	
	
	
		
 

			




	
	
	
		
 
PrivateDevices=true


			




	
	
	
		
 
PrivateNetwork=true


			




	
	
	
		
 
PrivateTmp=true


			




	
	
	
		
 
PrivateUsers=false


			




	
	
	
		
 
ProtectControlGroups=true


			




	
	
	
		
 
ProtectHome=read-only


			




	
	
	
		
 
ProtectKernelModules=true


			




	
	
	
		
 
ProtectKernelTunables=true


			




	
	
	
		
 
ProtectSystem=strict


			




	
	
	
		
 
ReadWritePaths=/var/lib/www/database


			




	
	
	
		
 

			




	
	
	
		
 
[Install]


			




	
	
	
		
 
WantedBy=apache2.service


			




        

    



    




    








    
        Server instance: kapok.sfconservancy.org-12891
    
    
        This site is powered by
            Kallithea 0.6.3,
        which is
        © 2010–2020 by various authors & licensed under GPLv3.
            – SupportPrivacy Policy