security/acme-client: Use dedicated '_acme' user

Submitted by:   Gyorgy Teubel <tgyurci gmail com>

3 files changed, 10 insertions, 3 deletions

diff --git a/GIDs b/GIDs
index ecf04b1398ed..ad893d1cf4a2 100644
--- a/GIDs
+++ b/GIDs
@@ -543,7 +543,7 @@ avahi-autoipd:*:588:
 _xsi:*:600:
 _tss:*:601:
 _pkcs11:*:602:
-# free: 603
+_acme:*:603:
 # free: 604
 # free: 605
 # free: 606
diff --git a/UIDs b/UIDs
index 1be04a7c5620..383d139819e4 100644
--- a/UIDs
+++ b/UIDs
@@ -549,7 +549,7 @@ avahi-autoipd:*:588:588::0:0:Avahi Autoipd Daemon user:/nonexistent:/usr/sbin/no
 _xsi:*:600:600::0:0:XMLSysInfo User:/nonexistent:/usr/sbin/nologin
 _tss:*:601:601:daemon:0:0:TrouSerS user:/var/empty:/usr/sbin/nologin
 _pkcs11:*:602:602:daemon:0:0:opencryptoki user:/var/empty:/usr/sbin/nologin
-# free: 603
+_acme:*:603:603::0:0:ACME client user:/var/empty:/usr/sbin/nologin
 # free: 604
 # free: 605
 # free: 606
diff --git a/security/acme-client/Makefile b/security/acme-client/Makefile
index ed288c5a5d3f..3f85a44bac30 100644
--- a/security/acme-client/Makefile
+++ b/security/acme-client/Makefile
@@ -3,7 +3,7 @@
 
 PORTNAME=	acme-client
 PORTVERSION=	0.1.16
-PORTREVISION=	2
+PORTREVISION=	3
 DISTVERSIONPREFIX=	portable-
 CATEGORIES=	security
 MASTER_SITES=	https://kristaps.bsd.lv/${PORTNAME}/snapshots/ \
@@ -21,6 +21,8 @@ USES=		gmake tar:tgz ssl
 MAKEFILE=	GNUmakefile
 MAKE_ENV=	PREFIX=${STAGEDIR}/${PREFIX}
 
+CFLAGS+=	-DNOBODY_USER=\\\"${ACME_USER}\\\"
+
 WWWDIR=		${PREFIX}/www/acme
 
 SAMPLE_FILES=	acme-client.sh.sample deploy.sh.sample
@@ -30,6 +32,11 @@ SUB_LIST=	PORTNAME=${PORTNAME}
 PERIODIC_DIRS=	etc/periodic/weekly
 PERIODIC_FILES=	000.acme-client.sh
 
+ACME_USER?=	_acme
+
+USERS=		${ACME_USER}
+GROUPS=		${ACME_USER}
+
 post-patch:
 	${REINPLACE_CMD} -e "s|/etc/|${PREFIX}/etc/|g" \
 		-e "s|/var/www/acme|${WWWDIR}|" \