Merge pull request #259888 from julianschacher/matrix-synapse-fix-media-store-access

nixos/matrix-synapse: add `media_store_path` to services `ReadWritePaths`
2023-10-10 11:40:45 +02:00 · 2023-10-10 11:40:45 +02:00 · 791fe98a0d
commit 791fe98a0d
parent dc150667dd 722e9df2fb
1 changed files with 1 additions and 1 deletions
--- a/nixos/modules/services/matrix/synapse.nix
+++ b/nixos/modules/services/matrix/synapse.nix
@ -1070,7 +1070,7 @@ in {
            ProtectKernelTunables = true;
            ProtectProc = "invisible";
            ProtectSystem = "strict";
-            ReadWritePaths = [ cfg.dataDir ];
+            ReadWritePaths = [ cfg.dataDir cfg.settings.media_store_path ];
            RemoveIPC = true;
            RestrictAddressFamilies = [ "AF_INET" "AF_INET6" "AF_UNIX" ];
            RestrictNamespaces = true;