Feature #61885
closed
Make TYPO3 work with filesystem ACLs
0%
Description
Currently, there are some problems when using ACLs. One of these comes from the use of the PHP function move_uploaded_file(), see https://bugs.php.net/bug.php?id=65057 .
Since ACLs are a nice tool that makes a lot of headaches go away, it would be really nice to support them.
Regards,
Jost
Updated by Frank Nägler over 9 years ago
- Status changed from New to Needs Feedback
please can you provide some more information about the ACL stuff?
What kind of ACL do you mean? If I understand it correctly, this a unix special implementation?
Updated by Jost Baron over 9 years ago
Hi Frank,
I mean the ACLs described here as "Filesystem ACLs": http://en.wikipedia.org/wiki/Access_control_list - the german article is a bit more detailed.
The problem which lead to this issue, is that I have set owner and group of typo3temp to some arbitrary user (e.g. root, or a user used for deployment), and then added access rights for other users (www-data, php) using ACL default values (which define permissions added for newly created files in that directory).
In that scenario some things stop to work, among them the move_uploaded_file() function, used in GeneralUtility. It removes all permissions on the moved file, except the ones for owner and group.
Updated by Jost Baron over 9 years ago
Just to clarify what I want:
Usually, the usage of ACLs should be transparent to PHP or the webserver. But in the specific case of move_uploaded_file(), it isn't - the solution would be to replace usages of that function, using rename() or something. That should do it in this case. But maybe there are more places where ACLs are not supported, thus the general title of the ticket.
Updated by Alexander Opitz over 9 years ago
- Status changed from Needs Feedback to New
Updated by Mathias Schreiber about 6 years ago
maybe I got this all wrong, but isn't this just about not using move_uploaded_file and using rename instead?
Updated by Susanne Moog about 4 years ago
- Status changed from New to Closed
Unanswered question since two years, in addition: TYPO3 uses both, rename or move_uploaded_file depending on the context (as they are not the same), so I don't see a need for this issue. If you disagree, please feel free to comment.