From dd736ac22722e43e85209568c620308f6a7de362 Mon Sep 17 00:00:00 2001
From: Tom Hughes <tom@compton.nu>
Date: Tue, 15 Nov 2022 19:01:35 +0000
Subject: [PATCH 1/1] Allow AF_UNIX sockets for cgimap

---
 cookbooks/dev/recipes/default.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/cookbooks/dev/recipes/default.rb b/cookbooks/dev/recipes/default.rb
index 385c3a002..3da970fbe 100644
--- a/cookbooks/dev/recipes/default.rb
+++ b/cookbooks/dev/recipes/default.rb
@@ -302,6 +302,7 @@ if node[:postgresql][:clusters][:"14/main"]
     exec_start "/srv/%i.apis.dev.openstreetmap.org/cgimap/openstreetmap-cgimap --daemon --port $CGIMAP_PORT --instances 5"
     exec_reload "/bin/kill -HUP $MAINPID"
     sandbox :enable_network => true
+    restrict_address_families "AF_UNIX"
     read_write_paths ["/srv/%i.apis.dev.openstreetmap.org/logs", "/srv/%i.apis.dev.openstreetmap.org/rails/tmp"]
     restart "on-failure"
   end
-- 
2.39.5