Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Thanks for using the TrueNAS Community Edition issue tracker! TrueNAS Enterprise users receive direct support for their reports from our support portal.

[SCALE] Group permissions are not set

Description

I upgraded from CORE to SCALE and I am experiencing following behaviour. I have two admin users (test1, and test2). Both are members of the Admin testAdmin group. If test1 user created a file then test1 user was the owner, and the testAdmin group was the group owner. Since test2 is also member of the same group, it could also read the/edit/write the file.

Now on SCALE if test1 created a file on the share, then the owner is test1 and the group owner is also test1. So test2 can not access the file. I tried creating a new share with POSIX and also with NFSv4 ACL type, but none of them is working. I also tried changing the users primary group but that didn't work either.

Is this a BUG or is there some setting somewhere where I can change this behaviour?

Thanks!

Problem/Justification

None

Impact

None

Activity

Show:

mugiwara May 13, 2022 at 7:41 AM
Edited

Ok, I figured it out. I just had to add the Admin group explicitly. Thank your for your help!

Andrew Walker May 13, 2022 at 1:59 AM

I don't see a bug here. This is normal linux behavior. The DEFAULT ACL in a POSIX acl describes the permissions that will be set on new object (file or directory) creation. The ACCESS ACL entries describe the permissions for the current object. In this case default ACL is basically 770.

You have two users
test1 with primary group test1
test2 with primary group test2

Linux creates new objects with the uid / gid (primary group) of user who created them. With the permissions you've specified items created by test1 cannot be read by test2 and vice-versa. This is all working exactly as you have specified in the above ACL.

mugiwara May 12, 2022 at 10:45 PM
Edited

Hello,

 

see the output below. test1.txt was created with test1 user and test2.txt was created with test2 user. Where do I found or how do I generate a debug output?

See below how the permissions were set up:

 

Andrew Walker May 12, 2022 at 9:03 PM

Please attach a debug and getfacl (POSIX) or nfs4xdr_getfacl (NFSV4) for file and its parent directory.
Also attach output of `id test1` and `id test2`

User Configuration Error
Pinned fields
Click on the next to a field label to start pinning.

Details

Assignee

Reporter

Labels

Impact

High

Time remaining

0m

Components

Fix versions

Affects versions

Priority

Katalon Platform

Created May 12, 2022 at 8:50 PM
Updated July 6, 2022 at 9:02 PM
Resolved May 13, 2022 at 11:51 AM
Configure