Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Assigning folder permissions in PHP

Status
Not open for further replies.
frosty7700

frosty7700

Programmer
Aug 10, 2001
95
US
I'm creating a website in PHP that allows users to download files in a specific server directory to their machines. What are the recommened permissions for this and what's the best way to handle it? It's on an OSX server (i.e., permissions handled similar to Linux). The non-web users need to be able to copy files into the folder, and the web users should only have read-access. I've never done this type of thing on a non-NT server.
 
Sort by date Sort by votes
Actually, all file writing will be performed by a local user.

Only read access is necessary for the web user.

Whenever a web-user is created by the admin, a corresponding folder is created by the PHP. I guess what I need to know is how to set the permissions on the folder's creation in PHP to allow read access by the web user and normal access for anyone else. Again, no files will be uploaded through the web, only downloaded.
 
Upvote 0 Downvote
The web user needs to be able to download any file placed in the directory by a local user on the server. The local user is the only person (for now) who will be placing files in the directory. The logged in user will only have access to the directory created specifically for him/her when the account is created by the PHP.

Timeline is as follows:
-Admin logs into system
-Admin creates new user, signaling PHP to create new folder for the user on the server
-Local server user goes into file system and copies files into user's directory whenever the need arises
-User logs into intranet and download files from his directory

So, literally all I need to know is what permissions to set the folder to in its creation in the 2nd step so that the web user only has Read access without handicapping the full access of the local server user. Keeping one web-users folder 100% secure from other web users is not a huge priority. And the PHP/Database routes them to their designated folder.

Hope this clears up my goals.
 
Upvote 0 Downvote
I should clarify that I have already implemented just about everything. I only need to know the permissions stuff.
 
Upvote 0 Downvote
Nah...no logged in user will be writing any files. Even though the PHP creates a folder when a new user is created, only a local server user will be writing any files to that folder at any time.

The only access any logged-in user needs to the creatd folder is Read access. Only the LOCAL user needs write access to the folder.
 
Upvote 0 Downvote
So there's your answer, the locally logged in in user needs write access (and I'm assuming read as well) to their own folder.

Logged in users (namely the web server) needs read access to all these directories.

If you're wondering what the chmod command is, you'll need to actually make it so the local user OWNS the directory in question... then the settings will be

owner= read/write
group= read
world= read

otherwise known as

chmod 644

-Rob
 
Upvote 0 Downvote
So, will that work properly if it is run during the directory-creation portion of the PHP?
 
Upvote 0 Downvote
In other words, will the PHP know that the owner should be local by default, or do I need to run a CHOWN too?
 
Upvote 0 Downvote
I'm getting a little confused on what you're explaining.

What is PHP doing creating the directories for local users? Do you have a separate app going on there for that?

The short answer is no, you shouldn't have to run a chown, but the long answer is... from how you described it, I didn't figure PHP was going to be creating any directories... basically, as sleipnir said above, anytime the webserver is running, you're going to be coming in as world...

So I guess I'm wondering... when you say local user do you just mean the user is at the server but running the web page?

-Rob
 
Upvote 0 Downvote
By "Local user" I mean a person physically at the server who is accessing through the filesystem, not through the web.

However, the site/web-app has an admin section PHP in which new web users can be added to the backend DB, and this same PHP also creates a directory set aside for that new web user so they can download (ONLY download) files pertinent to them. BUT...and this is where I think you guys are lost...files can for now ONLY be added to that directory locally, NOT through the web app (even though the web-app created the directory). I know it's weird, but thems the specs. Hey, I only work here.

So, only the person sitting at the server (or, ideally, possibly accessing through the network) should have write access to the directory once it is created. Users coming through the web-app should only have read access to this same directory.
 
Upvote 0 Downvote
Well then, 644 would be the same as 666, because the web app is going to "own" the folder, not the creator.

I doubt the webapp will have the permissions to run a chown, and I doubt you'd want to in case someone's logins didn't match exactly...

As I see it, and there's a good chance I'm just not seeing it right here or I'm just plain wrong, you need to set these permissions on the server locally, NOT through the web app.

-Rob
 
Upvote 0 Downvote
Well the problem with that is that the App's Admin section needs to dynamically create a user directory on user creation for the site.

Argh.
 
Upvote 0 Downvote
Since the webapp is creating the directories and files, it would have the permissions both to chown and to chmod. //Daniel
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

cdlvj
  • Locked
  • Question
PHP Debugging
Replies
1
Views
700
cdlvj
cdlvj
W
  • Locked
  • Question
how to send checked row data in php
Replies
0
Views
588
wiltang2004
W
SashaBuilder3
  • Locked
  • Question
import CSV file into MySql table in PhpMyAdmin
Replies
0
Views
971
SashaBuilder3
SashaBuilder3
PeDa
  • Locked
  • Question
Unwanted spaces in php HTML mail 1
Replies
4
Views
647
PeDa
PeDa
Mandy_crw
  • Locked
  • Question
How to send sms in PHP using usb gsm modem?
Replies
1
Views
814
vishvajit
vishvajit

Part and Inventory Search

Sponsor

Back
Top