Failed to work with NFS4ACL's group rules #25

ArcticLampyrid · 2024-01-06T23:39:49Z

read_dir Forbidden if the user isn't its owner. (with setuid=true). It's strange.
I'm using TrueNAS-SCALE-22.12.3.3, the acl of my folder is:

root: full control
group Foo: read-only

And the user Test is in the group Foo.

But it showed that "read_dir Forbidden" unless I changed the owner of my folder to user Test.

The text was updated successfully, but these errors were encountered:

ArcticLampyrid · 2024-01-07T06:31:27Z

I'm using nfs4acl

ArcticLampyrid · 2024-01-07T06:44:47Z

It seems that when we set User Test in ACL directly, it works properly. But when using Group, it fails.

Note: I've logged in with SSH via the user and checks that I can access the folder with ACL rules properly.

ArcticLampyrid · 2024-01-07T07:20:21Z

webdav-server-rs/src/unixuser.rs

Line 97 in 50318a6

groups_vec.extend(groups.iter().map(|&g| g as u32).filter(|&g| g != user.gid));

After removing the filter, it works fine.

ArcticLampyrid changed the title ~~read_dir Forbidden if the user isn't its owner~~ Failed to work with NFS4ACL's group rules Jan 7, 2024

ArcticLampyrid added a commit to ArcticLampyrid/webdav-server-rs that referenced this issue Jan 8, 2024

fix: maintain consistency for user groups with system (miquels#25)

47cf2bb

ArcticLampyrid mentioned this issue Jan 8, 2024

fix acl failure (#25) and pam auth (#26) #27

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Failed to work with NFS4ACL's group rules #25

Failed to work with NFS4ACL's group rules #25

ArcticLampyrid commented Jan 6, 2024

ArcticLampyrid commented Jan 7, 2024

ArcticLampyrid commented Jan 7, 2024

ArcticLampyrid commented Jan 7, 2024

Failed to work with NFS4ACL's group rules #25

Failed to work with NFS4ACL's group rules #25

Comments

ArcticLampyrid commented Jan 6, 2024

ArcticLampyrid commented Jan 7, 2024

ArcticLampyrid commented Jan 7, 2024

ArcticLampyrid commented Jan 7, 2024