python - Issue running uWsgi using pid/gid -


i'm trying run uwsgi using uid/gid parameters in wsgi ini file, drops privileged access after starting.

note: works fine expected when remove these 2 parameters ini file. also, there no issues socket. however, when run specified uid , gid (nginx user , group), error indicative of having problem virtual env loading,

traceback (most recent call last): file "wsgi.py", line 14, in <module> app import app application file "/var/www/wsgi/flask-appbuilder/peds_registry/app/__init__.py", line 1, in <module> import logging importerror: no module named logging

again, work fine when running without gid/pid. also, note user , group nginx both exist , both have ownership on python project's directory structure.

my nginx config's server/location directives follows:

server {     listen 80;     server_name  hostname.domain;     return 301 https://$host$request_uri; } server {     listen        443 ssl;     server_name  hostname.domain;     ssl_certificate /etc/ssl/certs/host.chained.crt;     ssl_certificate_key /etc/ssl/certs/host.key;     ssl_protocols tlsv1 tlsv1.1 tlsv1.2;     ssl_prefer_server_ciphers on;     ssl_ciphers 'eecdh+aesgcm:edh+aesgcm:aes256+eecdh:aes256+edh';  location /test {             include uwsgi_params;             uwsgi_pass unix:/tmp/uwsgi.sock;     } }

my uwsgi startup is:

#!/bin/sh # chkconfig: - 99 10 flask_home=/var/www/wsgi/flask-appbuilder export peds_home activate_cmd=/var/www/wsgi/flask-appbuilder/venv/bin/activate case "$1" in start)     cd $flask_home     source $activate_cmd     uwsgi  -s /tmp/uwsgi.sock -h ./venv/ --ini /var/www/wsgi/flask-appbuilder/test.ini --virtualenv /var/www/wsgi/flask-appbuilder/venv --chmod-socket=666  --manage-script-name --mount /test=run:app --wsgi-file wsgi.py --logto test.log &     ;; stop)     pkill uwsgi     ;; restart)     $0 stop     $0 start     ;; *)     echo "usage: $0 (start|stop|restart|help)" esac

and uwsgi startup ini is:

[uwsgi] socket = /tmp/uwsgi.sock chdir = /var/www/wsgi/flask-appbuilder/peds_registry wsgi-file = wsgi.py pyhome = /var/www/wsgi/flask-appbuilder/venv callable = app manage-script-name = true mount: /test=run.py

as stated, loads fine without gid/uid parameters, when add

uid = nginx gid = nginx

to ini file, error noted above.

all searches yield permissions socket, problem seems loading modules within virtual environment.

on side note: using uwsgi installed pip virtual environment.

this not obvious. test, tried using own uid/gid run app, , lo' , behold, worked!

so, "i must have ownership on app uid/gid not have permission run" in mind, grepped venv on username, , voila answer appeared: 1 of requirements app needed run python 2.7.6, had installed per gist: python deployment. so, changing ownership of deploy directory structure (which outside of venv's directory structure) app's user/group ticket.


Comments

Post a Comment

Popular posts from this blog

jOOQ update returning clause with Oracle -

according http://www.jooq.org/doc/3.8/manual/sql-building/sql-statements/update-statement/ jooq doesn't support returning clause in update statements databases except firebird , postgres. does know, still correct oracle jooq? according oracle's documentation, oracle db supports returning clase delete, insert, or update statements. incorrect manual you're right - manual wrong , should fixed: https://github.com/jooq/jooq/issues/5470 single row update returning jooq 3.8 added support single row update .. returning statements. internally, uses callablestatement , pl/sql block of form: begin update "my_table" set "my_table"."column" = 'xyz' "my_table"."id" = 1 returning "my_table"."id", "my_table"."column" ?, ?; ? := sql%rowcount; end; the relevant issue is: https://github.com/jooq/jooq/issues/5190 multi row update returning a...
Read more

java - Warning equals/hashCode on @Data annotation lombok with inheritance -

i have entity inherits other. on other hand, i'm using lombok project reduce boilerplate code, put @data annotation. annotation @data inheritance produces next warning: generating equals/hashcode implementation without call superclass, though class not extend java.lang.object. if intentional, add '@equalsandhashcode(callsuper=false)' type. is advisable add annotation @equalsandhashcode (callsuper = true) or @equalsandhashcode (callsuper = false) ? if not added, 1 callsuper=false or callsuper=true ? the default value false . 1 if don't specify , ignore warning. yes, recommended add @equalsandhashcode annotation on @data annotated classes extend else object. cannot tell if need true or false , depends on class hierarchy, , need examined on case-by-case basis. however, project or package, can configure in lombok.config call super methods if not direct subclass of object. lombok.equalsandhashcode.callsuper = call for configuration system ...
Read more

java - BasicPathUsageException: Cannot join to attribute of basic type -

i using java 8 jpa (hibernate 5.2.1). have clause works perfectly, until introduce clause make use foreign key table values too. i getting following error: basicpathusageexception: cannot join attribute of basic type i think problem related fact have join table, , not sure how create join using join table. employee - employee_category - category model (employee.java): @manytomany(cascade = cascadetype.all, fetch=fetchtype.eager) @jointable ( name="employee_category", joincolumns={ @joincolumn(name="emp_id", referencedcolumnname="id") }, inversejoincolumns={ @joincolumn(name="cat_id", referencedcolumnname="id") } ) private set<category> categories; model (category.java): @id private string id; jpa when introduce following code, fails error above (i think problem new piece of code): join<t, category> category = from.join("id"); predicates.add(criteriabuilder.like(category....
Read more