Nextcloud version: 17.0.1.1
Operating system and version: CentOS 8
Apache version: 2.4.37
PHP version: 7.3
The issue you are facing:
I have a server with a software stack including a number of Apache run applications (~4), NextCloud being one of them. This will be a client run machine, where they control the “Admin” user.
I want to utilize the " External Storage " feature to create a shared storage space between accounts, but due to the fact that NextCloud is run by Apache, and at least one of the other applications run by Apache is proprietary, it exposes a risk that the admin user could create a " local " storage location which would expose that applications source code.
- Is there a capability within the “External Storage” plugin which would allow me to set restrictions on allowable paths that can be used for “local” storage? Perhaps in the
config.php
?
OR
- Alternatively, is there a way to include an external storage space, accessible to one or more users without the “External Storage” plugin, or at least without exposing it to ANY user (including the admin)?
(N.B. I’ve asked the same question on Stack ServerFault here: https://serverfault.com/questions/995045/nextcloud-local-external-storage-restrictions)