YunoHost/doc
1
0
Fork 0
mirror of https://github.com/YunoHost/doc.git synced 2024-09-03 20:06:26 +02:00
Code Issues Projects Releases Packages Wiki Activity

SFTP on apps permissions

Browse source
This commit is contained in:
ljf 2021-11-25 12:28:21 +01:00
parent f651659051
commit 8b3bf0b4de
1 changed files with 33 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

33
pages/01.administrate/07.specific_use_cases/13.sftp_on_apps/sftp_on_apps.md Normal file
View file

@ -0,0 +1,33 @@
---
title: Give SFTP permission to edit an app
template: docs
taxonomy:
category: docs
routes:
default: '/sftp_on_apps'
---
In YunoHost permission management web admin interface, you can specify which user can access your system through SFTP.
However, those user are chrooted in their home directory for security reasons.
If you want to give access to a specific apps through SFTP, here are additional steps to do after giving the SFTP permission in the web interface.
In instructions below, USER is the user to whom you wish to give permission to edit wordpress files.
```bash
mkdir -p /home/USER/apps/wordpress
touch /home/USER/.nobackup
mount --bind /var/www/wordpress /home/USER/apps/wordpress
echo "/var/www/wordpress /home/USER/apps/wordpress none defaults,bind 0 0" >> /etc/fstab
find /var/www/wordpress -type d -exec chmod g+s {} \;
setfacl -R -m u:wordpress:rwX /var/www/wordpress
setfacl -R -d -m u:wordpress:rwX /var/www/wordpress
setfacl -m u:wordpress:r-- /var/www/wordpress/wp-config.php
setfacl -R -m u:USER:rwX /var/www/wordpress
setfacl -R -d -m u:USER:rwX /var/www/wordpress
```