Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I’m building a system where different users can upload their custom php modules. The system is based on a custom MVC framework written in PHP and deployed on Linux.
When a user logges in, his modules will be loaded by the system core. The system core is shared between all modules.
My problem is, how to restrict USER modules from messing with the core. Eg. unlinking files, and similar. Can I prevent them from doing that with file permissions?
Hopefully, each user of your system will have a different user account on your server. If they don’t, it will be terribly hard to keep them from deleting each others data.
I’ll assume you’re working on some flavour of unix server.
mvc-admin.g-mvc-accessin this answer.chown -R mvc-admin:g-mvc-access /path/to/mvc-system-root. Now the files are all owned by the admin user, and in the access groupchmod -R g+r-w /path/to/mvc-system-root. Now the group can read, but not write, all the files under the MVC system root.g-mvc-access.