Warn if auto-update script is running as root [#3432476]

Problem/Motivation

Right now you could set up the auto-update script to run as server cron job run as root. You should not run this as root

Steps to reproduce

Proposed resolution

We should stop auto-update script from running as script but right now we should just warn otherwise we could stop a site from receiving an update if they were relying on current server cron job

Create a RootUserValidator(or something) that warns if being run as root.

Remaining tasks

In a follow-up in 3.1.x we should stop auto-update script

User interface changes

API changes

Data model changes

Issue fork automatic_updates-3432476

Show commands

Start within a Git clone of the project using the version control instructions.

Add & fetch this issue fork’s repository

Or, if you do not have SSH keys set up on git.drupalcode.org:

Add & fetch this issue fork’s repository

3432476-validator-service changes, plain diff MR !1052
Check out this branch for the first time

Check out existing branch, if you already have it locally
3432476-warn-root changes, plain diff MR !1040
Check out this branch for the first time

Check out existing branch, if you already have it locally

About issue forks

Comments

Comment #1

20 March 2024 at 16:53

tedbow created an issue. See original summary.

Comment #2

20 March 2024 at 18:13

tedbow opened merge request !1040

Comment #3

tedbow

he/him

English

Ithaca, NY, USA

commented 20 March 2024 at 18:14

Assigned:	Unassigned	» phenaproxima
Status:	Active	» Needs review

Comment #4

phenaproxima

he/him

English

Massachusetts

commented 27 March 2024 at 15:21

Status:

Needs review

» Reviewed & tested by the community

Comment #5

27 March 2024 at 15:48

tedbow committed 73009dfd on 3.0.x

Issue #3432476: Warn if auto-update script is running as root

Comment #6

tedbow

he/him

English

Ithaca, NY, USA

commented 27 March 2024 at 15:48

Status:

Reviewed & tested by the community

» Fixed

Comment #7

tedbow

he/him

English

Ithaca, NY, USA

commented 4 April 2024 at 18:09

Assigned:	phenaproxima	» tedbow
Status:	Fixed	» Active

@phenaproxima pointed out we didn't make this a service 🤦🏼

Comment #8

4 April 2024 at 18:21

tedbow opened merge request !1052

Comment #9

5 April 2024 at 15:03

tedbow committed e08e7ddf on 3.0.x

Issue #3432476 by tedbow: Warn if auto-update script is running as root

Comment #10

tedbow

he/him

English

Ithaca, NY, USA

commented 5 April 2024 at 15:05

Status:

Active

» Fixed

This doesn't need to go into 3.1.x because we not allow running as root then

Comment #11

19 April 2024 at 15:09

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

Warn if auto-update script is running as root

Problem/Motivation

Steps to reproduce

Proposed resolution

Remaining tasks

User interface changes

API changes

Data model changes

Issue fork automatic_updates-3432476

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Comment #7

Comment #8

Comment #9

Comment #10

Comment #11

Referenced by

News items

Our community

Documentation

Drupal code base

Governance of community