OwnCloud Read-Only Users

1. offizieller Beitrag

    Hello guys,


    I just can't understand what I have done wrong with the permissions...
    Here is the deal :


    I have 2 users in my OMV, in 1 group called LectureSeule (Read-Only) :


    http://imageshack.com/a/img912/6192/dvl9lH.png


    All of my shared folders have the same Read-Only configuration :


    http://imageshack.com/a/img901/2875/1FvkFG.png


    All of my ACL for the shared folders are the same and I'm not sure if recursive mode really works... :


    http://imageshack.com/a/img540/1047/QVQdJ9.png


    My OwnCloud Plugin is configured like that for the shared folders (there is no permissions here) :


    http://imageshack.com/a/img673/6505/6vCDga.png


    Now in OwnCloud, my user list is imported from OMV :


    http://imageshack.com/a/img661/5783/1hsXAA.png


    I have to enable External Storage Support for viewing my shared folders in OwnCloud and here are the groups capable of seeing them :


    http://imageshack.com/a/img911/3983/Amww00.png


    For example, my users are not read only users as they can delete things (the red cross on the right) :


    http://imageshack.com/a/img661/9510/7oej8B.png


    I really don't know what is going as they are in read only mode EVERYWHERE !!!!!!


    DO I really have to perform a "chmod -R 750" on all my shared folders ???


    Thanks for the help guys.


    EDIT : sorry for the images, i edited the links because they won't load...

    - ASROCK FM2A88X-ITX+ (SATAIII (6Gb/s) x6 (for the DATA), mSATA x1 (for the OS))
    - AMD A6 7400K 3.5GHz
    - Corsair 2Go DDR3 1333MHz C9 (x2)
    - Intel Corporation 82574L Gigabit Network Connection
    - COOLER MASTER G450M (80+ bronze)
    - WD Red 2To 64Mo 3.5" SATAIII (6Gb/s)
    - 32 Go SSD mSATA KingSpec Half-Size Solid State
    - Fractal Design Node 304 black (HDD 3.5" x6)
    - RAID 5 XFS
    - OMV 4.1.35-1 Arrakis

    Einmal editiert, zuletzt von tiste ()

    • Offizieller Beitrag

    I am not a big fan of owncloud and I don't use it. I might be wrong with the following but I'll explain it as i understand it:


    - The owncloud controls read/Write files in his own web application with share.




    - The webUI of OMV provides more like a read or hide folder setup.
    - The same files used by owncloud and exposed through samba or ftp might be writable, by a user that was readonly in OC
    - ACL won't help you control read/write in owncloud webUI


    If you want to deny write/delete, i would hide the folder, and with the admin account put it to share without the checkbox of "can edit"

    That's a little bit tricky isn't it?
    I'll try it when I'm home, thanks for the reply @subzero79

    - ASROCK FM2A88X-ITX+ (SATAIII (6Gb/s) x6 (for the DATA), mSATA x1 (for the OS))
    - AMD A6 7400K 3.5GHz
    - Corsair 2Go DDR3 1333MHz C9 (x2)
    - Intel Corporation 82574L Gigabit Network Connection
    - COOLER MASTER G450M (80+ bronze)
    - WD Red 2To 64Mo 3.5" SATAIII (6Gb/s)
    - 32 Go SSD mSATA KingSpec Half-Size Solid State
    - Fractal Design Node 304 black (HDD 3.5" x6)
    - RAID 5 XFS
    - OMV 4.1.35-1 Arrakis

    That's the answer I got from "tflidd" from the OwnCloud forum (could be helpful for everybody) :

    Zitat

    I see, the linux-users have nothing to do with the owncloud-users in terms of permissions. Files from external storage are always accessed from your webserver user. You have to ways to solve this:
    - Access your external storage through some authenticated service (FTP/Samba/SFTP/...) and the permissions of the FTP/Samba/SFTP-User will apply
    - Control access within owncloud. Mount the shares only for your admin (folders: Films, Series, ...) and then share these folder within owncloud with your read-only-group (with open read-only-access).


    The second solution is like what you said @subzero79.


    I'll come back to edit my post with the results...

    - ASROCK FM2A88X-ITX+ (SATAIII (6Gb/s) x6 (for the DATA), mSATA x1 (for the OS))
    - AMD A6 7400K 3.5GHz
    - Corsair 2Go DDR3 1333MHz C9 (x2)
    - Intel Corporation 82574L Gigabit Network Connection
    - COOLER MASTER G450M (80+ bronze)
    - WD Red 2To 64Mo 3.5" SATAIII (6Gb/s)
    - 32 Go SSD mSATA KingSpec Half-Size Solid State
    - Fractal Design Node 304 black (HDD 3.5" x6)
    - RAID 5 XFS
    - OMV 4.1.35-1 Arrakis

    I had it too. My foulder /XYZ/share/media
    I test man things and final i linkt all files on XYZ/ too. Then i go over the XYZ foulder in media, i can read / write ... all okay. I cancel the XYZ link and the XYZ/share/media works right. I dont understand these but all okay

    omv 6.x | 64 bit | omvextrasorg 6.x |
    used plugins: omv-extras | portainer | rsnapshot | antivirus
    used container: portainer/portainer | nextcloud/all-in-one | linuxserver/swag | paperless-ngx | jellyfin/jellyfin | lmscommunity/logitechmediaserver | adguard/adguardhome |

    That's it @subzero79 you were right...


    I have to share a folder and then uncheck the boxes "can edit" and "share".


    Thank you very much

    - ASROCK FM2A88X-ITX+ (SATAIII (6Gb/s) x6 (for the DATA), mSATA x1 (for the OS))
    - AMD A6 7400K 3.5GHz
    - Corsair 2Go DDR3 1333MHz C9 (x2)
    - Intel Corporation 82574L Gigabit Network Connection
    - COOLER MASTER G450M (80+ bronze)
    - WD Red 2To 64Mo 3.5" SATAIII (6Gb/s)
    - 32 Go SSD mSATA KingSpec Half-Size Solid State
    - Fractal Design Node 304 black (HDD 3.5" x6)
    - RAID 5 XFS
    - OMV 4.1.35-1 Arrakis

    If you use one of your normal shared folders from OMV via External Storage Support in ownCloud it will be read only.
    It is chown root(or maybe owner is a user):users and usually chmod 775, unless you choose something besides the default drop down on folder creation. The working directory of OC is chown www-data:www-data.


    OC has it's own system for controlling shares. If you want to share stuff normally in owncloud or have the share writable you should create a folder for that purpose in OC. The External Storage Support is good for just bringing in any existing data (pictures, music, documents, etc..) you might have to make available for sharing with users in OC.

Jetzt mitmachen!

Sie haben noch kein Benutzerkonto auf unserer Seite? Registrieren Sie sich kostenlos und nehmen Sie an unserer Community teil!

Benutzerkonto erstellen Anmelden