now, I have to permit different credentials of services to different shared folders. share(a-z)
For example, I created a group "dsharea" and a folder "/path/sharea" with following perms:
Code: Select all
$ chown foo:dsharea /path/sharea
$ chmod g+rwxs /path/sharea
$ setfacl -d -m o::x /path/sharea/
$ setfacl -d -m g::rwx /path/sharea/
excerpts:
Code: Select all
ls -al /path
drwxrws--x+ 6 foo dsharea 4096 27. Dez 17:43 sharea
Code: Select all
getfacl /path/sharea
getfacl: Entferne führende '/' von absoluten Pfadnamen
# file: path/sharea/
# owner: foo
# group: dsharea
# flags: -s-
user::rwx
group::rwx
other::--x
default:user::rwx
default:group::rwx
default:other::--x
Code: Select all
cat /etc/exports
/path/sharea 192.168.0.*(rw,sync,no_subtree_check,root_squash,all_squash)
But different services will write files with their own username.
The explained group-construction is working for the rest of services.
My OS: Linux [mydomain] 3.10.0-957.1.3.el7.x86_64 #1 SMP Thu Nov 29 14:49:43 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
Any Idea?
Regards ... Peedy