Merge pull request #1352 from ericgaspar/set-right-for-log-path

helpers/logrotate: Enforce decent permissions on log file if app user exists

data/helpers.d/logrotate

@@ -96,6 +96,12 @@ $logfile {
 EOF
     mkdir --parents $(dirname "$logfile")	# Create the log directory, if not exist
     cat ${app}-logrotate | $customtee /etc/logrotate.d/$app > /dev/null	# Append this config to the existing config file, or replace the whole config file (depending on $customtee)
+
+    if ynh_user_exists --username="$app"; then
+        chown $app:$app "$logfile"
+        chmod o-rwx "$logfile"
+    fi
+
 }
 
 # Remove the app's logrotate config.