EPrints Technical Mailing List Archive

See the EPrints wiki for instructions on how to join this mailing list and related information.

Message: #09108


< Previous (by date) | Next (by date) > | < Previous (in thread) | Next (in thread) > | Messages - Most Recent First | Threads - Most Recent First

Re: [EP-tech] Permission Problem


Hi Ayu,

Can you show me the configuration in your /etc/httpd/conf/httpd.conf so I can see exactly what user and group is being used.  Generally we have advised that you set the User and Group to be eprints like:

User eprints
Group eprints


I assume you have not changed httpd's configuration for this just prior to you encountering the permissions issue, so you probably should not need to change this.  However, what it is currently set to may effect the advice I would give to fix your issue.

The next thing to check is the permissions of the repository's and archive's var directories and the archive's html directory (EPRINTS_PATH here may be /usr/share/eprints or /opt/eprints3:

ls -la EPRINTS_PATH/var/
ls -la EPRINTS_PATH/archives/ARCHIVEID/var/
ls -la EPRINTS_PATH/archives/ARCHIVEID/html/


My suspicion is that your previous setup created files in a group shared by the eprints user and the user you were running httpd as.  Now that you have added eprints to the wheel group it is trying to set files it creates/modifies to the wheel group and this is not compatible.  Therefore, it would useful to know the groups that your user and the eprints user are in.  This can be done be running the following commands as the root user:

groups eprints
groups <YOUR_USERNAME>


It would also be useful to know whether these two users are both members of the wheel group.  Also, if the group that files found in the ls commands above are not the wheel group, it would be useful to know who are members of that group.  I think you may end up needing to either add the eprints user to your own user's group or your own username to eprints' group.  However, when I get the information from the above commands I will have a better idea which if either.

Thanks and regards

David Newman


On 15/11/2022 4:49 am, Ayu Widi via Eprints-tech wrote:
CAUTION: This e-mail originated outside the University of Southampton.
Hi There, we are currently running 3.4.3

Some days ago, we accidentally changed eprints user to wheel group (redhat), so it can be a sudoers. But now, we have permission denied error on many things (submission, reload config, start indexer, etc).

In the log file, i found : Could not write to lastchanged.timestamp file and every errors goes that way. How can i correct the user groups? I use my own account to run httpd, it belongs to mygroup, eprints, and wheel group. While eprints user belongs to eprints group.

--
Regards,

Ayu
Indonesia

*** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
*** Archive: http://www.eprints.org/tech.php/
*** EPrints community wiki: http://wiki.eprints.org/