From 2ba821e5fb8087af29a56459af031d353388afbc Mon Sep 17 00:00:00 2001
From: Matt Oswalt <matt@oswalt.dev>
Date: Mon, 13 Apr 2020 15:43:40 -0700
Subject: [PATCH] Fix gitea image to run on git user

Signed-off-by: Matt Oswalt <matt@oswalt.dev>
---
 images/gitea/Dockerfile                   |  14 ++++++++++++--
 images/gitea/data-init/gitea/conf/app.ini |  10 +++++-----
 images/gitea/data-init/gitea/gitea.db     | Bin 1155072 -> 1155072 bytes
 images/gitea/launch.sh                    |   5 ++++-
 4 files changed, 21 insertions(+), 8 deletions(-)

diff --git a/images/gitea/Dockerfile b/images/gitea/Dockerfile
index c0dda9e9..49d82c49 100644
--- a/images/gitea/Dockerfile
+++ b/images/gitea/Dockerfile
@@ -1,11 +1,21 @@
 FROM gitea/gitea:latest
+# FROM gitea/gitea:1.4.1
+
+# https://discourse.gitea.io/t/i-cannot-programmatically-setup-users-in-a-docker-container/289/5
 
 # This directory contains a very basically bootstrapped system. It has no users, no repositories.
 # All I did was go through the initial wizard and provide the hostname and tagline.
 # Once I captured this, I manually deleted the data-init/ssh directory so Docker wouldn't choke on
 # the permissions. Gitea appears to regenerate this on startup if it's missing.
-COPY data-init/ /data
+
+
+# COPY data-init/ /data
+COPY data-init/gitea/conf/app.ini /data/gitea/conf/app.ini
+COPY data-init/gitea/gitea.db /data/gitea/gitea.db
+
+RUN chown -R git:git /data/gitea
 
 COPY launch.sh /
-ENV USER=root
+ENV USER=git
+
 CMD ["/launch.sh"]
\ No newline at end of file
diff --git a/images/gitea/data-init/gitea/conf/app.ini b/images/gitea/data-init/gitea/conf/app.ini
index e8be3519..f9953e54 100644
--- a/images/gitea/data-init/gitea/conf/app.ini
+++ b/images/gitea/data-init/gitea/conf/app.ini
@@ -1,6 +1,6 @@
 APP_NAME = NRE Labs Git Server
 RUN_MODE = prod
-RUN_USER = root
+RUN_USER = git
 
 [repository]
 ROOT = /data/git/repositories
@@ -22,7 +22,7 @@ SSH_LISTEN_PORT  = 22
 LFS_START_SERVER = true
 LFS_CONTENT_PATH = /data/git/lfs
 DOMAIN           = gitea
-LFS_JWT_SECRET   = -hxSxsziloMRTYpb_6wQapWtUF9cOmC7L6CSi5hHH8g
+LFS_JWT_SECRET   = 1LIiZ-s_SUeFDO_au1grt5lJSmKBqC6zhyGcV_hkxRY
 OFFLINE_MODE     = false
 
 [database]
@@ -59,8 +59,8 @@ LEVEL     = info
 
 [security]
 INSTALL_LOCK   = true
-SECRET_KEY     = LXgsQ84FkIi10vWN9qgk2ksCdufy8uB5KXzY6YicTW4sQVmVClmLvnRF2Y5VbbvW
-INTERNAL_TOKEN = eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYmYiOjE1ODY3NTEzMDV9.XZ45vO3S9EcrQQNMxaarCB1KF-eXCeMHRIg3PXr1Izo
+SECRET_KEY     = UUrZy5XXHb6ECoMBiYv9zcMQJNNvVvR8ZfPEwQESx1uBd7iiKTmyuN4ptgNgG8sV
+INTERNAL_TOKEN = eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYmYiOjE1ODY4MTYxMDR9.SlDMPpDQ8rt_kzz3-Bj1-UDRKhRwiAh4ueY-ULYmvT8
 
 [service]
 DISABLE_REGISTRATION              = false
@@ -75,7 +75,7 @@ DEFAULT_ENABLE_TIMETRACKING       = true
 NO_REPLY_ADDRESS                  = noreply.localhost
 
 [oauth2]
-JWT_SECRET = gqE8_QPtEUfYurRh4UAspbyZSBGTgvCemyjNa-M1l5s
+JWT_SECRET = pd7QPHqDcsysEgb0qjcGtLYnaccV8SbWaPuYYuIgv4Y
 
 [mailer]
 ENABLED = false
diff --git a/images/gitea/data-init/gitea/gitea.db b/images/gitea/data-init/gitea/gitea.db
index 6273eb4651357b00a4a95ad4704b3b4dfa70a672..e2cdc14c08f4f8eabbbaf99d258ea42f45ed91a0 100644
GIT binary patch
delta 4242
zcmbtX2~<{Bl79ET`~Lg>xAKedBm2*eiUI;=VRemW0R`H)qBf+(6$~9?jE1MSpn^o{
zrZmBgM(voy-8?7BcrXD?pJW=1-II=ELThKRlj9P55>3a2smI^W$(%VoXL|ZS@7%v`
zRo$vvU)8PqUTw#?+KzEAFCoF3s|HCi<SlaGs3$*`7_xxB`2pOU8BZ+U+(Ep}z0`nF
zxy08TBt|yp(WqvFYR&WMQ2b9PMsoqpZ2pEuH_xIP6kai1&CxWV`2;nNri)G5@VnOY
zXz-8LJRG~N$vD1iW#hQdO2M(g^5Xd1N*u}@jmOq}ZQ5U(Bsd^0MsVMAzwRC_Uzh9T
zXnu$nOaCHGW1oxfi0O1ceX!*w;#&9*Z`DqZCBM}srV56_r@1b<Dx@!^)smaFuuyTI
zzFOC`RxQG;FupaOqZZZ4E|MzD)Ggew|EGQ_&KvC`R&3?s@`~ptjCtCgkxHhBw0aOU
zWRNg;Gn)(`;gFU|BH*)Zl1M_p$|0%nSO$rN?i?}{He`@z>9Sy$pM~n}d1N4@W}@t0
z^T=R#MG*InK<gq@XQANi2x7o~M~W0{$snQhg@KN}Fo@0}LB#9#gR}~>a!3pbbcB(R
zmqlb~$|6aSokddY%UMK`Tp9ljJJ~aO^4Nlsl@ZXFLDC>S8<#zmNrvOzS7oC8kr~88
zqWt!s$slp=nlSFo!L51yTPw>WZWxk-E|5wlp-wo%;jrV~&LV?D5G@lOE{);d6kPQ;
z%Pa!6<dT=@;wZ=MP$<YFKKL+`_!KK7l6y;W>3F}xqHGcb2lCJ%Qu%FF(QWxf{ZDFJ
zM}AvJYQC;t6uiPk!A#Mo%dJ>P&+|Z6gKL<yLK?u<vsCd_aWFYR#tIj;KWl5WIQ4`&
z)g5BIYs}I6gleIt*^@s+afb-inO?NC0Fs(mJQ)qA8d(Tb?#7DWxtm7NpJYP7Uh0LD
zduRZ87|1?42>!H(CXx(?pV+dGhQg%1G{GLVkIv_IN*kR@p=mGGp}8GJZ|$W%T=x6D
zG>POms|)DNhoGvR#zMs&l)u@I@{!QpPLs)_e(QU-7y}?~5Bf3p(hw*`$1rj)>b|sx
zCcqm9sKo?<OoFt7G+e68=d*KR>LwNkmp8FN(6Wie(y2MHpn>^Ffj^i%4J-<pnpkyR
z%0X(U92C!YJgJM91uqE|SRy?}CzC7UGSM{Gm?6en#&rFfrm1zRrmS_}b+3@`A)qqb
zN@`I3s4!uS*XJWYi>jG3cVWexni{lo4)S}X1o%ZQi-0vfQY@_~hW)EqB4`#1gR84?
zM^8_NU-e)wngU;2EEN8|M+$@Y9ICdKF}PRDOt|4FANuQ5h7})6QM57-5}H`z|IEt&
zCFW?cfO}!WE*b|NjR=j@h{0Co!#kVM;ut?PcQ&zPL{k|1gX{;&%SySoAdFc3pt%<p
zaqpuz3xw2<r68!Xm;rNFKiDizIka0WiWI`7S}dKy)hrOsIr5dO*$~@Y!&Zy*#V4V;
zj-^BAIu;Fw>X;j@*RdG#1bFJ%2pC<5++p=hfyMPKjyw)w>k-OB^=Pfj5h10)H}x!m
zOmsw<Fs7dQ;NkU5g%{VeIJ$fSG_PZ6@Ik$!ypG9mbsbuN49q%~0Y&TmJ|&n}$CB+`
z>)9nj7mkBrjVuX$_1F87MmB^_9Sipxv1}$fyfAol6N^BcS{rdo6CBo~v~o18*@)<k
z_pjQv5%<--kwubGaD5|7fgd?IXEd<P{^J_Z)`2HBx__+N63udh$!@{iW)8<9dqV$I
zTd3YwH>v}a7I%X?P5xBQ<ZruXNME!6U_WQ^;(oH5j1&$Fx#Z7ICni6J>a$WXygQ8t
z!jH;$m_zlSQ5W2u#s`U(I3IpDlc#}v4vXvBOg;cc%;NDd=A1O&e&u7SULmvK(ra{(
zo&A~ALTL3Af4(kSERf7_>T)b(_eh~|^>Zlzo^dJ^DK|v-Na1u@DI7W{rI2a<`o%IG
zPUn?CZjY4ozt#N%7_em_4ESK<@<S4Ucw_~Uc7blEUea#1n#sm{`dZ!48r8dMjdE4K
zEw9C%*1=0%msl@bE^<;R>=G)38Q8bt6*oe%2yZFc202AM5vFy^0Zv<B&|bt}hoI@a
z6q3t$=>HS1!byB7vFA_c^C(~X0$v1R6m}Q$1S(jtqXf-fF6Kjc<#O&FiIRaOJQj+J
zc{ofi;R)n<SYE>8;7l<l=|l;S;&YebEf+@MgUQ?nBTJAi6>}f0ehylTc?jeeV@kI>
z>?LT`{-lI|DA9_=Fl`o3BsI>JG!PD+m0Zv|i^sC+MR=;Q6q3O;3zr-}D-9(JVMiHH
z01Fv)J!RbPDU*Fgh;Vi&IWL&68+VN@MvUI2&(hx1a@F%{r1H9w?|#`GB~RrS_&n*n
zG?iUsGsNGEPti^~k(?(pg!PE?c$YFCL7fPjPs!b4jTHiKpOzz`xKkbgmG8^Z@Uu=i
z4*6b(p9)_&Eai-xK!PFdj2r>?I%N)LJ7pazI#GnvWW3Z4ccExym#jfi7m7aXlzp(O
zOHPM`E;Rm|E_o2l>_T;<{I6Zm)FlVNf-9z}2v#8Xj*h2REEJrUgB>$6OnYB8;fk}Q
zf4cd7IgYKg25`99A%{W3X<32Ur{yWi3zmm_^KfyPfAR0$mxJJ|)6S+l<s^I98CmC~
zvHy@j>2KuES-B<h|EjNWs4e2r;xvmwR<|4nC%ffvcn$|bpt)Nf0_8<m0dI86Zunz2
zMtJ5uc>(M$;s^Sxv8}2KFKvG>z;l4fDGjER1u>pZHeWRk7}0v2uB*N3a^*W^nS4qv
z<G1)CKFl>&`it};dxOP^twOCZ)@cPl{5j`95L6}r_dY&?S|echVkN@(>9Z9}%PR4O
ztws>Ua8Qn_JurT@aswJq$>;x8BJDd16c2&4B}%tlJ6AbE;GJ?M57Nt(_2M&DJd{-^
zNf1+^gh5+{5-XNjad59(iHACel~bWa*<BUNHHlf32ynnDIRp|HDd!;Rlw3jdqok@Y
zs=pihn*omaU_S_$sH=s7NyZ8K8GV)Zg>u66hATuWWq)8x#UInp)#)^wbfWmT!Z=}+
z+Nr+t!}$HQT1Z>fLLxx*aWx9g_Gv2Y>eCE}I;Q%dyH86KmsmM1N7Ui)s>3NdqDF};
ztZcY?R2>0f$B~tPOm$vB<{wkj;5CQw?lCnE?jBcn+X*Ms3mp0uDWIV@jeDO&oJUsL
z+uu?*5a37E%Qiy$Fl{@8(O{3m2ImjX>2c$OsZXE>sn1+$d|@Q%wmv}{tA3z9r99z2
z>CTq-$w8RppJR&8h~J5uM4xa;82`fnX%BuzkPGm{O|8YA_`Q}-n59^`e@CRS;g0r+
zefg#q$wb3?971nvk3jA%Z7{65tqoB;)<g^`8AAf!Z7muG-_i!cN4K;Xn0-sjk|*G+
z01BfVVF+BmrE&P@Tbc<aw^0M9$@XivwOmTh!r`ANfl&JwO#}YDmSoSlt6>WrdtWOg
zkbPX$KtHY;aG+1~InxZ1=Y;SO3_pTkH#zdiJ=6tH9alYY4K>@U{1*iRicjj14pQ{6
z`y(Nkd?V=5+B)@n)p9SC`{V{WhA(nma1}}U>^KV(E!s`X$T!ApHBdRA<Y*hnBH=@9
zWotd|k4P5xrlrxfdd(c1B*VY;nxkMvubBY%d(Hk<Gei-sg&1*~6LEg883Au^Hi97H
z3hH=z%{aS$tFclfU)io!Bb1OY!MELLfavW;ES%kL%!W6&8!|k!!`M%H!MDW-gZn#-
zNpN|G5f0fq4F!I>(|DYG0jG8vdGOt4W480|Rc(*_g>jhJPj4|?1SZ_nw)yjH|Ea~;
zMfP^60S}H1))!XR?6!O)0<v|@B?O3f1hdJQs{fOouDz_5D+%u9@=5%nR9%~0gdJj2
z#5?9o#!X|C@wVPAJgwL0Tzf?uytyEpX)f`X(9r7XQZyI6;LS^P`r@h`9xwcIr)Q?U
z{EGRAi}b-ue=vjWUtcq02)PeuHyfew>2=cs-Wz5;xd*$O4WFM;d&89AlN)BTUG;^T
zN5n{Lu>)`{%;+_vpnJ2C2s3+46&B|b7nEKxgW=b`rr`jv!O@F`8JEpxm=$R)`up<|
zZ_jEr#?k(o33z}ILWMX*r|P^;7${v5%zfr0BUx|P6SO^=SKX=3Q@&M(y3e`G@m-@%
zHu=l0XZd5&rK6tw!xD_!>dD2gJPddc?AYpg1iafkDfn@VaO@MaSF3QcTnUHUTRl<A
eAdJD^hvDirPbBf$>MNdaB?rM7bZ?O-|33k}FG;`v

delta 4129
zcmbtXdvp|4ny-87R#$aZbyb>>bl&MEolZi?izGZWPaq&NEQCiAP)HC0Nr1c+lkh4Z
z2gGFsGs8EFGA7v>lqKW|)<^<I54+=0XJs6fos|IrWs^C9_8j%dD#(777S^+8_Mh24
zeZIc;cfb4H?|%1t_3n}RyGQ09s3Q>v>%)aS@;d1mbQZ)BN#gKh2tn;9XmookRonlL
zsxT{$c-q@&M!T2Bw7*Nk+E-II{;KU7@1->wsCi^s`&H_OvOE$qIGuk%O}lGsM?rrv
zHX}W6tUx+!<Rg96NJYBeh(P+pE+lKKkt}@rOWpiZC!s;!JkEZ{e%wA+x+(3E++v@&
zT=>1PnqA_D`04at={;3nAY^ZQ4~_cUbTp^Ok&o2e98QzP)wV0PDq&pM&hD^%EP@|&
z>~iqx0p%NgkM7i7r2A<&=_WZ`wZlM710Q9KZw5~e2{)IflTzMZ87{gqJ;dOlFOy7$
zSF(u)pJb94crTm8(AqHgRSua(BB3~kM8jwf@zMqt9Lq#xFpHGX9ib4LLo(n2<c8WD
zl14(T9g&l&o60xVHEwRKtgmaTZmw%=2@8lQ%tsNelOZY#H#|FoOoGT6I65_hq>x}x
zvQh9Wxu^(OD2`<KG?%!|D>H~91gowE@x(~3t~J7<Mb}DHdx52P2t1RI+)HzijO3F7
z+7M-_m;&!w$k&-90j1)BkuV#@DF35VOh6|@Q%Hoxkq(2oxTPkGOq+!E((j$Oq4LT9
z!?V)p4!323NNCR^kJ08>&~iyC#N`tYtjQ%ll!li|gDy+MvTQQ7tKQvJuyo>^-ZfIt
zHIn|Kn-#fe3a6)N-CDZiq(fC-Ro%+liY_0OqwVMHY0_D7j_niMHk&5=M#y2mXSFni
z43lE+I`@oyIah?L;?JKTxQTh8a2Inijw8pQq>)X5phgxBc|A0aR_8%W6H9>j9vTjB
zG_fRFoeN_Ph&*E<-!(B6-t3^!Fx*2M%&=p06@{E`>L7Vg*NF`4yQzoFhG)BJ5?nn_
zBjDxki9nLzVmEb>S#YTXLG1+Y$O-IFPEZ;0PtYj3X{NQBKpqS%#CFmI_^O+R!P-t5
zL>{ove7YtZ9yw0qK<Gp{zdVkoWx?s=G!beo;5LrTo=#dL!XqcBu_vXMnkl{fA4j?h
zg3yFBTx1!izo2`yH?&g6ZO389H1(WXt&A&%y~7?R9guYKps3mo@;ZHuW|Oy({W7<)
z-C2-k8!wC`Ml5tTvk>^`rr?BCejysDUr4bxEEiq5xatb5jx;a{KCWj|4*3NJI7^_l
z%iwS`n@UQ-<5xqW-Y?kTN;69&#qjA3AsIRwSR{CE3dyu#DaenrWH{H1$Wk29$|dlU
zUr2!L#}WCnUx+i?9%oPSv}G}9Z7c&aT9_Nk+fe$?U|$={f<6nl)W%Zj_C;{_Nj4p_
zS`mqAVRl&E!lsaiVMhzggyB}^ftM`wKU$cVEQGr)EF1FMEZ$ap=ZaS5BM(_<G+eZR
zJ|tu@^jq@(+{)5SbvwI4X!U%E*u@gaB5*dcFj&0{RVjjJcd-;aX##q07t5xr=E3WY
z%!3jqurC{#o6H4g6Z2W_7!FI(@935};NQU#VZcJtcjEOc3W4;{Q24i<Ohd5~d%xMq
z;^?XZShEx5%?n_#6XoSwyxzanpS$WY<}lijRs_6d9*6$eqaW3Cv=1GX>bL4Ms-nCg
zKPykQe`rsY2E~=OF-)%eg&6iv^e~ynea3A?Z<#?ZKuWoo1b-+NBcY*OoJMNkSLLD)
z7A-^Ia=GY%Bg@1Z`?eLL>;K_bX6F@QuT09pc}fX4=Z*`92(2oG48ITt8*d6hV7n<q
z!oizDJgq9R;6!-BLjIwi#nZBt5Y>Re|AmFDLI<44I&MrhT_Z^G8!!b9f^r?&n_MW@
z!RasSNm`lXL%GYo0c+S+@uIlG_CCA7wlN2PnD^1QlnY7?S)zn+9k^vShh!5}FBKDD
z=~*cXese~0!|k(DuPH7U8;Q8S6-!Gbg@iKELpcMCQZWM7<3wz1v4V=i^JQqZU8Q0a
zyk90Jiw#ds#2Sp2Abh<Pt@(Y4Xq9RkTq+Y4SWqfzV%0X$H8YaHqoraTJXD5EFO`Zu
z@&vqHDte*c0!Wz{YkpfMz9-OzS~yxPCX;3>(@%!op9vYTq*z>OwyY4VC~xpvA!3=B
z0VU;P<e@9VOj@}G&aK58okIXFt`#NFaD@4ktARsjrH%0GV!XxNaxwU?JHQ@v0P}LW
z<UvQX($WKwB$1=PqZRrAJyUy13wFGwex>eKLzGJSYdO{4YtI#56H{%bZKiNSh-1gt
zbp8~dLH3ixgN30?o=*<I^IPR#;E4McDo#p~Q5;9(MOSh%eOhc@_t=)oEgPH4w^lZ<
zE3bR3241R@E19vx2#5WB(g*wogTT5oQsPfu=*6?rW}Y*`;NqZ^1!e1HH>97Grtz(q
z<1U|+rh{$3ddHKJ1hY>`Zob(Fh4OwW9d=rHZ@=W_w;3U@ctFa49|j~3yfT3DiwC6`
zOO6CL1|%o!9Yo%VsXtDWA$?HtV0nLMK#GRCK`9)9PU1R_0<Vk9LGbRNq`{*nrQLX<
z(>f7LcfT|V{U2F<1CoyfS%*f$iBpnj?mi`5w~@b}hz{62EM4MPV-NGr8OaOJok3@m
z&?5<j__I<nc@B!tN`+m0==13C7y|e<^%w#R9LfMUnOnd)6vZn)FFU2bNIS&aVw><U
z!lUdvHk}Re8|fXoTTfS?R=(#JC<EFd$K609^%H9T?u;^<n%gVo0Rme$$<IORCOMxk
zH{#*3DmflJRdOVBRmrjZM#BsLwMkBdJr<NxCC8a>RmnF5=D5WzgqU@5k@@m^*-4<c
zRvs6zh|h9mc;L6E6@br&mBY}zK|W6$gQWg$Y*#_xE&&>7B`k-V<0N-DzJs^XI^}Dn
zLOvoV+D}WzC7<nx@V&5=U1pp3F>;60af95P`<GC1NvCUeEX78V44FeW)I|h#UR70C
za#hv9?N>e4G*imQ;7g!}0>yob3(j9vozP<~CiE+@_w~Fcw;6e&D<2uLakLnZ^eZCN
z_A45!xr*F4O_Fj&*MrCr9N_q(UkL_Vzv6-L0maM9Mh-mOr^JBGuSURj3orDmS=c`y
z8Vl$BssbH;RPC0v^nqW^fSduP%Y0-=*+<OF1InMoqv=}Ey@ZDkjuyhNdznK{<3h+o
zoZhItt`%Y8UuPe%&yr?f6o%S<F5DHu*iL-)esWd$R@o;%jI6`lT*nuj!9Dq-x#Tn=
zxbma%cGb1m8Nyr1TDW;ES=&a;Ti4VW#ygEgaC}sK5SEXsQz2+fO~q=NKc;5G^-*;S
ztQ}KDI5MVA;Wc9+gpaBZKr_x@)+id>7*!L@H^<aGN<M&wV$3tnaW#uM{>VkbC7<Rp
zuY9H!5b#`6FPKH+Y9p~4)y9dp(<jtfIIj%0Bxx0<c|%?D*IqHBtFIoD(@%mSU>nPO
zR=CJ5j{bp`kz0DZ?nV<4N3Hs~@{zJo?v+FA>!q)xy|z(Xt1U$MwUEi*;n#30=yRg0
zJf9km+&jO#Zr$U}RnyCnavX0rr=HdyBs_1_LW4(}4gWl(C(!B*0WFPW%|^`AXY~2h
z%$=&uBW6Xa)<Mj#J=zZ5F*bKuQQ?Xr_lm+fKP!TRUM&>fDRpMRfz{4Qkn~$U4E*uh
z5eQGv;-J^3)xgUMngn5u%n3C<OgumMG^`s5+DdXAjwERPFqEi8L0+OJLPMhVFicCr
z>0azX;Xf0#B62NICeB;y4<%{diL!~7LIYJyv=2D2%v9`T^_=a3EnDbe_4;z{myUhv
z7wTr^Q+c19VgJ~^-R={A5L<*?_AVp*QGPakpFT=HCzV_=@!b!)djo_&hHWLzB!XRL
ziStzqeA{x@k|gk~lfz(BsWa9chR|eJWF$2fPvrb3DjS=s>uP`eA)#h(sdJo~zSDaC
z|1vZjI-`5x;IQt4^Fz7{Fr){=CqGVSFeAp;0w1`wIZ$^7S#A&OGtG{EeYTDKVCfQK
z`b~WbA$P148VqMWXqahl=>JG=2Qu&FH}nPfjC9{ZR-S#)jU}zZ`CUF*%Nr!k=k%v^
zqBS|bcbsz+t9#WHWkgvnUz0c6$L%iZ-=+EZCq71kD=VFOB>etiHn_dgIT;q0IDLH1
fQwn5klA|UJLc*Y_#F_G=!QeotGbUh!Z-oB_VVn_k

diff --git a/images/gitea/launch.sh b/images/gitea/launch.sh
index faa12c58..5218d3a7 100755
--- a/images/gitea/launch.sh
+++ b/images/gitea/launch.sh
@@ -1,7 +1,10 @@
 #!/bin/bash
 
+chown git:git /data/git
+chown -R git:git /data/gitea
+
 # Create first/admin user. Use this to connect via API and perform configuration tasks
-gitea admin create-user --username nreadmin --password Password1! --email nreadmin@nrelabs.io --admin
+su -c '/app/gitea/gitea -c /data/gitea/conf/app.ini admin create-user --name nreadmin --password Password1! --email nreadmin@nrelabs.io --admin' git
 
 # Start Gitea (original CMD from Gitea's Dockerfile)
 /bin/s6-svscan /etc/s6