hi, something is not clear to me about PERMISSIONS
on my VPS, I use a panel in which several users manage several websites
these users can’t log with shell/ssh (no password apparently)
then, how can the http user launch occ command ?
if I launch ‘php occ maintenance:repair’ with a sudo user which is not http user for nextcloud … what’s going to happen … ?
would it be a good idea to give ssh access to the user managing NC folders ?
next, about PERMISSIONS
doing a permission check, is there a permission rule to follow? the same rule for every folder? (750 or 770, 775) and the same for every file ? (640 or 660, 664)
though, giving permission rule is not giving permission to a user
I’ve read that web server may need access … to what exactly ?
Can you bring a light on this subject please ?
I have sftp access with the panel user (cyberduck, to change folder/file permissions)
Sorry but what exactly are you trying to achieve? What do you mean by managing multiple websites and what has Nextcloud and occ do with any of this? Nextcloud is not a CMS, alltough there is an app for hosting simple markdown pages on it.
User shouldn’t have to occ things all the time. There is a WebUI to interact with Nextcloud and a WebDAV interface for file transfers.
Again, please explain what your goal is. What exactly do you want Nextcloud to do for you and your users?
Is this about installing Nextcloud or about using Nextcloud?
For installing Nextcloud you can use the install script / Install Wizzard, which automatically sets the permissions right. Users, including admin users would then use the WebUI and WebDAV for interacting with Nextcloud and uploading files. It’s usually not a good idea to interact with files hosted by Nextcloud directly on the file system level or via ftp, even on servers with full root access.
There is an app called OCC web, which you could use. But I highly recommend to go with a provider that offers you at least some kind of shell / ssh access with the permissions of the webserver / http user. Otherwise you could come into a situation, where you wouldn’t be able to execute OCC commands anymore.
i’ve got one answer occ command should only be made by the USER owning the website directory.
in my case this USER has FTS access, but no SSH password.
here is the SSH command that will do as if it was launched by this user “-u USER”
i’m here trying to get the right information, but not an automated script, thanks
I’ve installed Nextcloud several times, now on a VPS I would like to be able to check permissions and understand which users should be at work
Everything is ownd by the http user. File permissions for Nextcloud user accounts are handeld in Nextcloud. The http user or any user that can login to your web space always has access to everything. But why would users need access directly to the webspace in the first place? They can login to their Nextcloud accounts via browser or Sync Clinet and manage their files from there…
I still don’t understand what your actual goal is. I get the feeling you want to use Nextcloud as a front end for your webspace and manage the files for serveral other websites with it… Well, that’s not gonna work…
so ALL folders should be at 750
and ALL files should be at 640
one question remains “www-data” is it a random UserName ?
or every folder should belong to www-data on a ubuntu server ?
in my case, a different user owns the public_html folder (as shown in my second post : ls -lah)
should i change USERNAME ownership to www-data ?
or make sure that USERNAME owns every folder ? including public_html and nextcloud folders
I’m not using cpanel myself, so I’m not sure about that… But you should probably not change anything at all if you want to manage everything through cpanel. On a Shared Host from a provider you would create a new virtual host through cpanel and upload the files of a webapp via SSH / FTP or WebUI to the appropriate folder set the permissions according to the documentation of the provider and let cpanel handle everything. Isn’t that’s the reason why you would use a software like cpanel in the first place? … If you are hosting cpanel yourself I guess it’s probably best to ask in their forums or check their documentation…
hestia creates managers for each website, whith ftp access starting at web/ folder :
other websites function well on this VPS (contabo) which is my first one
drupal, wordpress, espo crm, humhub
my .ocdata is owned by the manager ‘userprod’, permissions set to 644
does the server need to be rebboted at every permission changing ?
as you can see, the data folder is aside of the nextcloud folder
So… what could be wrong ?