From 736fb9db1f2762df9ddd2d47568c56801bd349a2 Mon Sep 17 00:00:00 2001
From: Ralf Haferkamp <r.haferkamp@opencloud.eu>
Date: Tue, 30 Sep 2025 08:41:48 +0200
Subject: [PATCH] fix: make storage system user a service account

The reva auth-middleware blocks users without a tenant id, expect
system users.
---
 services/storage-system/pkg/revaconfig/config.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/services/storage-system/pkg/revaconfig/config.go b/services/storage-system/pkg/revaconfig/config.go
index 0f6bd992b7..e5183a7a5a 100644
--- a/services/storage-system/pkg/revaconfig/config.go
+++ b/services/storage-system/pkg/revaconfig/config.go
@@ -50,7 +50,7 @@ func StorageSystemFromStruct(cfg *config.Config) map[string]interface{} {
 									"id": map[string]interface{}{
 										"opaqueId": cfg.SystemUserID,
 										"idp":      "internal",
-										"type":     userpb.UserType_USER_TYPE_PRIMARY,
+										"type":     userpb.UserType_USER_TYPE_SERVICE,
 									},
 									"username":     "serviceuser",
 									"display_name": "System User",