From e300cde93e4dae72db99178aac04a4d4a6158403 Mon Sep 17 00:00:00 2001
From: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
Date: Fri, 23 May 2025 10:09:08 +1200
Subject: [PATCH] fix: Ensure DMS config volume can be accessed by non-root
 users

---
 target/scripts/startup/setup-stack.sh | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/target/scripts/startup/setup-stack.sh b/target/scripts/startup/setup-stack.sh
index eb340a7b..ad4ba883 100644
--- a/target/scripts/startup/setup-stack.sh
+++ b/target/scripts/startup/setup-stack.sh
@@ -104,6 +104,12 @@ function _setup_directory_and_file_permissions() {
     chown -R _rspamd:_rspamd "${RSPAMD_DMS_DKIM_D}"
   fi
 
+  # Parent directories must have the executable bit set to descend the file tree for access,
+  # as each service in the container running as a non-root user requires this to access any subpath,
+  # `/tmp/docker-mailserver` must allow all users `+x` (notably required for `_rspamd` user read access):
+  local DMS_CONFIG_DIR=/tmp/docker-mailserver
+  chmod +x "${DMS_CONFIG_DIR}"
+
   __log_fixes
 }