From d0bdfbc5458a30c36cbf749a2976881cd4478418 Mon Sep 17 00:00:00 2001
From: wxiaoguang <wxiaoguang@gmail.com>
Date: Tue, 25 Jul 2023 12:03:41 +0800
Subject: [PATCH] Avoid writing config file if not installed (#26107)

Just like others (oauth2 secret, internal token, etc), do not generate
if no install lock
---
 modules/setting/lfs.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/setting/lfs.go b/modules/setting/lfs.go
index 784a99582d..4d9424f997 100644
--- a/modules/setting/lfs.go
+++ b/modules/setting/lfs.go
@@ -58,7 +58,7 @@ func loadLFSFrom(rootCfg ConfigProvider) error {
 	LFS.JWTSecretBytes = make([]byte, 32)
 	n, err := base64.RawURLEncoding.Decode(LFS.JWTSecretBytes, []byte(LFS.JWTSecretBase64))
 
-	if err != nil || n != 32 {
+	if (err != nil || n != 32) && InstallLock {
 		LFS.JWTSecretBase64, err = generate.NewJwtSecretBase64()
 		if err != nil {
 			return fmt.Errorf("error generating JWT Secret for custom config: %v", err)