Make sure correct user runs the scripts

src/bin/base_setup.sh

@@ -33,6 +33,11 @@ elif [ "${USE_SUDO}" = "0" ] && ! id "${SUDO_USER}" &>/dev/null; then
 	echo "SUDO is off, user must exist in system";
 	error=1;
 fi;
+# this script has to be run as root
+if [ "$(whoami)" != "root" ]; then
+	echo "Script must be run as root user";
+	error=1;
+fi;
 
 if [ $error -eq 1 ]; then
 	exit;
@@ -94,7 +99,8 @@ Host UdonGitJump
 	Port 37337
 EOF
 		if [ -f "${PEM_BASE}${JUMP_PEM_FILE}" ]; then
-			cp "${PEM_BASE}${JUMP_PEM_FILE}" "${GIT_REPOSITORY_FOLDER}"/.ssh/;
+			sudo -u "${SUDO_USER}" cp "${PEM_BASE}${JUMP_PEM_FILE}" "${GIT_REPOSITORY_FOLDER}"/.ssh/;
+			sudo -u "${SUDO_USER}" chmod 600 "${GIT_REPOSITORY_FOLDER}/.ssh/${JUMP_PEM_FILE}"
 		else
 			echo "PEM FILE ${JUMP_PEM_FILE} must be added manually"
 		fi;
@@ -110,7 +116,7 @@ EOF
 		"${GIT_REPOSITORY_FOLDER}${WWW_WEBHOOK_INCOMING}" \
 		"${GIT_REPOSITORY_FOLDER}${WWW_ADMIN}";
 	# set basic folder rights, clone folder is excluded
-	chmod 700 \
+	sudo -u "${SUDO_USER}" chmod 700 \
 		"${GIT_REPOSITORY_FOLDER}${LOG_FOLDER}" \
 		"${GIT_REPOSITORY_FOLDER}${SCRIPT_FOLDER}" \
 		"${GIT_REPOSITORY_FOLDER}${CONFIG_FOLDER}" \
@@ -124,8 +130,8 @@ EOF
 	# Copy files
 	echo "+ Copy basic script and config files";
 	# git_pull.sh, init.sh, new_clone.sh, webhook.default.cfg
-	cp "${BASE_FOLDER}new_clone.sh" "${BASE_FOLDER}init.sh" "${BASE_FOLDER}git_clone.sh" "${GIT_REPOSITORY_FOLDER}${SCRIPT_FOLDER}";
-	cp "${CONFIG_BASE}/webhook.default.cfg" "${GIT_REPOSITORY_FOLDER}${CONFIG_FOLDER}";
+	sudo -u "${SUDO_USER}"cp "${BASE_FOLDER}new_clone.sh" "${BASE_FOLDER}init.sh" "${BASE_FOLDER}git_clone.sh" "${GIT_REPOSITORY_FOLDER}${SCRIPT_FOLDER}";
+	sudo -u "${SUDO_USER}"cp "${CONFIG_BASE}/webhook.default.cfg" "${GIT_REPOSITORY_FOLDER}${CONFIG_FOLDER}";
 fi;
 
 # __END__