Hi all,
I was determined to solve it myself and learn along the way, but after two full days I have to admit defeat...
This is what I have studied so far...
Assistance/advice with setup - permissions! - I haven't tried this yet as I am determined that I should be able to make it work anyway (but I could be wrong)
Permissions denied. Cannot understand why. - different problem, but I found out about the 'tree' command
Permission issues - This one could have something to do with it as I am using ACL permissions, as far as I can tell, but they are set exactly the same for both users, so still don't explain why one works and the other one doesn't. Also I still feel the normal permissions are set right...
How to make a good Media share for Emby and PlexMediaServer - read this one and removed my root share (I haven't used that one since setting up directory structure) and installed omv-extras.
I have also read another sixor so on permissions topics, but this is getting a bit distracting
I am having permission issues in various places, but I will focus on one here and hopefully the cause is the same for all
So, I have two users, 'mattias' and 'matback'. The plan is to have matback deal with backups (backing up other systems onto the OMV drive) only and mattias to have general and admin access to all other shares.
One place where the issues present them selves is in the /home directory on my attached drive (software raid). The user 'mattias' can access /home/mattias' and /home/matback' whereas the user 'matback' can't access either... I can't see what is wrong here...
here is the tree structure and the relevant folder permissions:
matback@omv:/$ sudo tree -L 2 -gupd /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home
/media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home
├── [drwxrwsr-- matback users ] matback
└── [drwxrwsr-- mattias users ] mattias
Both users are members of the same groups:
matback@omv:/$ groups matback
matback : users sudo ssh
matback@omv:/$ groups mattias
mattias : users sudo ssh
...and to complete the picture, if I run getfacl for matback and mattias and compare the outputs, then the only differences are the folder names and who owns them...
diff mattias2.list matback2.list
1,2c1,2
< # file: /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/mattias/
< # owner: mattias
---
> # file: /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/matback/
> # owner: matback
As a reference, here is the full output of the 'mattias2.list' one:
# file: /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/mattias
# owner: mattias
# group: users
# flags: -s-
user::rwx
user:openmediavault:rwx
user:mattias:rwx
user:matback:rwx
group::rw-
group:sambashare:rwx
group:openmediavault:rwx
mask::rwx
other::r--
default:user::rwx
default:user:openmediavault:rwx
default:user:mattias:rwx
default:user:matback:rwx
default:group::rw-
default:group:sambashare:rwx
default:group:openmediavault:rwx
default:mask::rwx
default:other::r--
Alles anzeigen
so, why I get this ssh-ing as mattias (all good):
mattias@omv:/media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352$ cd home/mattias/
mattias@omv:~$ <Note this is the configured home dir for mattias>
mattias@omv:/media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home$ cd matback/
mattias@omv:/media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/matback$
...and with matback (Permission denied as far as the eye can see):
matback@omv:/$ cd /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/mattias
-bash: cd: /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/mattias: Permission denied
matback@omv:/$ cd /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/matback
-bash: cd: /media/9475cd71-9789-44f8-a1e6-5b6c4d9a3352/home/matback: Permission denied
matback@omv:/$
Both users were created through the omv web interface.
I am really at a loss here... I am a reasonably fresh Linux user, but I have used OMV and FreeNAS before for many years as well as running an ownCloud server, so I know my way around a little bit.
Can someone help point out the (hopefully) obvious mistake I am making here
If I can provide more information that might be useful, please ask, and I will be happy to oblige.
//mattias