fix(perms): user-only settings file perms

jgmize · jgmize · commit ebda2a8c8901 · 2016-09-25T19:44:59.000-05:00
Settings files contain auth tokens and should not be world-readable.
diff --git a/settings/settings.go b/settings/settings.go
@@ -90,13 +90,13 @@ func (s *Settings) Save(cf string) (string, error) {
 		return "", err
 	}
 
-	if err = os.MkdirAll(filepath.Join(FindHome(), "/.deis/"), 0775); err != nil {
+	if err = os.MkdirAll(filepath.Join(FindHome(), "/.deis/"), 0700); err != nil {
 		return "", err
 	}
 
 	filename := locateSettingsFile(cf)
 
-	return filename, ioutil.WriteFile(filename, settingsContents, 0775)
+	return filename, ioutil.WriteFile(filename, settingsContents, 0600)
 }
 
 // Delete user's settings file.

Original file line number	Diff line number	Diff line change
`@@ -90,13 +90,13 @@ func (s *Settings) Save(cf string) (string, error) {`
`90`	`90`	`return "", err`
`91`	`91`	`}`
`92`	`92`
`93`		`- if err = os.MkdirAll(filepath.Join(FindHome(), "/.deis/"), 0775); err != nil {`
	`93`	`+ if err = os.MkdirAll(filepath.Join(FindHome(), "/.deis/"), 0700); err != nil {`
`94`	`94`	`return "", err`
`95`	`95`	`}`
`96`	`96`
`97`	`97`	`filename := locateSettingsFile(cf)`
`98`	`98`
`99`		`- return filename, ioutil.WriteFile(filename, settingsContents, 0775)`
	`99`	`+ return filename, ioutil.WriteFile(filename, settingsContents, 0600)`
`100`	`100`	`}`
`101`	`101`
`102`	`102`	`// Delete user's settings file.`