From 02bcf38e371eea9970a136b49c8b1b3df0e0294b Mon Sep 17 00:00:00 2001
From: Christian Boltz <opensuse@cboltz.de>
Date: Jul 25 2017 20:08:41 +0000
Subject: More wiki write access


- creating directories under images/
- creating index.html files to block directory listings
- creating a .htaccess to block reading tempfiles

---

diff --git a/salt/profile/wiki/files/httpd2-prefork.apparmor b/salt/profile/wiki/files/httpd2-prefork.apparmor
index 70476fc..a2094ba 100644
--- a/salt/profile/wiki/files/httpd2-prefork.apparmor
+++ b/salt/profile/wiki/files/httpd2-prefork.apparmor
@@ -129,9 +129,13 @@ profile httpd2-prefork /usr/sbin/httpd{,2}-prefork flags=(complain,attach_discon
     /srv/www/{{wiki}}.opensuse.org/cache/* rw,
     /srv/www/{{wiki}}.opensuse.org/public/ r,
     /srv/www/{{wiki}}.opensuse.org/public/** r,
+    /srv/www/{{wiki}}.opensuse.org/public/images/**/ rw,
     /srv/www/{{wiki}}.opensuse.org/public/images/**.@{wiki_upload_extensions} rw,
+    /srv/www/{{wiki}}.opensuse.org/public/images/deleted/**/index.html rw,
     /srv/www/{{wiki}}.opensuse.org/public/images/lockdir/*.lock rwk,
     /srv/www/{{wiki}}.opensuse.org/public/images/temp/*/*/*\!php??????. rw,
+    /srv/www/{{wiki}}.opensuse.org/public/images/temp/**/index.html rw,
+    /srv/www/{{wiki}}.opensuse.org/public/images/temp/.htaccess rw,
     /srv/www/{{wiki}}.opensuse.org/public/images/temp/localcopy_* rw,
     /srv/www/{{wiki}}.opensuse.org/public/images/temp/ResourceLoaderImage?????? rw,
     /srv/www/{{wiki}}.opensuse.org/public/images/temp/svg_*/ rw,