Pretty url ( file permissions ) about vm HOT 11 CLOSED

In my understanding the current way is more secure and it always was the recommended setting, I suppose they added the htaccess occ command later.... Although supporting the occ command for it to work like you pointed could be up for discussion @enoch85

from vm.

Maybe add the option to enable it during configuration to enable the pretty url and if the user answer yes the script will append to the .htaccess file the configuration to remove index.php
The script should also add 'htaccess.RewriteBase' => '/' to the configuration file.

from vm.

Hi, i tried to edit the config.php, changed the permission to 664 for .htaccess,
-rw-rw-r-- 1 root www-data 2630 Sep 1 13:57 .htaccess
run the maintenance:update:htaccess,
changed the permissions back
-rw-r--r-- 1 root www-data 2630 Sep 1 13:59 .htaccess
and now I have pretty URL also.

from vm.

Yes is what i have done to make it work

from vm.

We use a script to set secure permissions. The permissions are meant to be as secure as possible, and also recommended in the docs by both Nextcloud and ownCloud.

I'm on vacation for a few more weeks, but I'll let this be open for further discussion. Thanks for your efforts @Pe46dro :)

from vm.

@Pe46dro

But nothing nothing changes probably because htaccess owner is root.

Do you try to change the setting as root or with sudo?

This could be implemented in the startup-script, just need to find the time. Btw, the startup-script are run as root.

Another PR maybe @Pe46dro ? ;)

from vm.

I tried with sudo,
if tomorrow i have time i will try to make a PR 👍

from vm.

Thanks @Pe46dro you're awesome!

from vm.

If we change .htaccess to chown ${htuser}:${htgroup} ${ncpath}/.htaccess Then anyone will be able to see it, which is a big security risk.

There must be another solution to this issue.

from vm.

This prevent access to .htaccess file

<Files .htaccess>
order allow,deny
deny from all
</Files>

But if i temporary change of owner and then i run the htaccess update command should make all work fine, i have to test it and commit.

from vm.

@Pe46dro

But if i temporary change of owner and then i run the htaccess update command should make all work fine, i have to test it and commit.

Yes please. Make the change in nextcloud-startup-script.sh

Thanks!

from vm.