Hi,
I’d like to keep the config and application code read-only for the webserver as an extra security measure.
We have the config_is_read_only
config boolean for that, but still occ and cron complain about not being the config file owner.
Even if they do have write access, which I think atleast cron should be able to do without.
It looks like the code has been copied from occ to cron.php since both print Console has to be ...
.
$ php cron.php
Console has to be executed with the user that owns the file config/config.php
Current user id: 33
Owner id of config.php: 1003
Is there a cron task that needs to update the config file?
One solution might be to add a condition around the ownership check, e.g.:
if (!$config->getSystemValue('config_is_read_only', false)) {