* Changed config and install options for Restconf

* clixon_restconf daemon is installed in /usr/local/sbin (as clixon_backend), instead of /www-data
    * `configure --with-wwwdir=<dir>` remains but only applies to fcgi socket and log
    * New option `CLICON_RESTCONF_INSTALL_DIR` is set to where clixon_restconf is installed, with default `/usr/local/sbin/`
  * Restconf drop privileges user is defined by `CLICON_RESTCONF_USER`
    * `configure --with-wwwuser=<user>` is removed
  * clixon_restconf drop of privileges is defined by `CLICON_RESTCONF_PRIVILEGES` option
* New clixon-restconf@2020-05-20.yang revision
  * Added: restconf `log-destination`

docker/main/Dockerfile.fcgi

@@ -63,7 +63,7 @@ RUN adduser -D -H www-data
 RUN apk add --update nginx
 
 # Configure, build and install clixon
-RUN ./configure --prefix=/clixon/build --with-cligen=/clixon/build --with-wwwuser=www-data --enable-optyangs --with-restconf=fcgi
+RUN ./configure --prefix=/clixon/build --with-cligen=/clixon/build --enable-optyangs --with-restconf=fcgi
 RUN make
 RUN make install
 
@@ -114,9 +114,9 @@ RUN adduser nginx clicon
 RUN adduser www-data clicon
 
 COPY --from=0 /clixon/build/ /usr/local/
-COPY --from=0 /www-data /www-data
 
 # Manually created
+RUN mkdir /www-data
 RUN chown www-data /www-data
 RUN chgrp www-data /www-data
 

docker/main/Dockerfile.native

@@ -77,7 +77,7 @@ COPY clixon .
 RUN adduser -D -H www-data
 
 # Configure, build and install clixon
-RUN ./configure --prefix=/clixon/build --with-cligen=/clixon/build --with-wwwuser=www-data --enable-optyangs --with-restconf=native
+RUN ./configure --prefix=/clixon/build --with-cligen=/clixon/build --enable-optyangs --with-restconf=native
 
 RUN make
 RUN make install
@@ -129,10 +129,10 @@ RUN adduser -D -H clicon
 RUN adduser www-data clicon
 
 COPY --from=0 /clixon/build/ /usr/local/
-COPY --from=0 /www-data /www-data
 COPY --from=0 /usr/local/lib/libevhtp.so* /usr/local/lib/
 
 # Manually created
+RUN mkdir /www-data
 RUN chown www-data /www-data
 RUN chgrp www-data /www-data
 

docker/main/startsystem_fcgi.sh

@@ -46,8 +46,6 @@ set -ux # e but clixon_backend may fail if test is run in parallell
 
 DBG=${DBG:-0}
 
-WWWUSER=${WWWUSER:-www-data}
-
 # Initiate clixon configuration (env variable)
 echo "$CONFIG" > /usr/local/etc/clixon.xml
 
@@ -96,7 +94,6 @@ EOF
 # sudo: setrlimit(RLIMIT_CORE): Operation not permitted
 echo "Set disable_coredump false" > /etc/sudo.conf
 
-
 chmod 775 /usr/local/bin/test/site.sh 
 
 if [ ! -d /run/nginx ]; then
@@ -109,7 +106,7 @@ fi
 >&2 echo "nginx started"
 
 # Start clixon_restconf (tests will kill this)
-su -c "/www-data/clixon_restconf -l f/www-data/restconf.log -D $DBG" -s /bin/sh $WWWUSER &
+/usr/local/sbin/clixon_restconf -l f/var/log/restconf.log -D $DBG &
 >&2 echo "clixon_restconf started"
 
 # Set grp write XXX do this when creating

docker/main/startsystem_native.sh

@@ -46,12 +46,6 @@ set -ux # e but clixon_backend may fail if test is run in parallell
 # If set, enable debugging (of backend and restconf daemons)
 : ${DBG:=0}
 
-# Web user default (ie what RESTCONF daemon runs as)
-: ${WWWUSER:=www-data}
-
-# Home dir for web user
-: ${WWWDIR:=/www-data}
-
 # Initiate clixon configuration (env variable)
 echo "$CONFIG" > /usr/local/etc/clixon.xml
 
@@ -115,7 +109,7 @@ openssl req -x509 -config ./ca.cnf -nodes -newkey rsa:4096 -keyout /etc/ssl/priv
 # Start clixon_restconf
 # -s https
 # But dont use -s exposing local ports since there is problem with self-signed certs?
-${WWWDIR}/clixon_restconf -l f${WWWDIR}/restconf.log -D $DBG &
+/usr/local/bin/clixon_restconf -l f/var/log/restconf.log -D $DBG &
 >&2 echo "clixon_restconf started"
 
 # Start clixon backend (tests will kill this)