Home Forums OS X Server and Client Discussion File Serving ACLs, Drop Boxes and AFP

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • April 30, 2007 at 10:45 am #368873
    skaffen
    Participant

    OK, bit of an odd one this. I’m trying to setup a drop box for a user on a 10.4.9 server. The user has a folder setup as a sharepoint (called Test). Inside Test there are 3 folders, 2 are just set to read-only, which is fine. The 3rd folder (called Files In) is intended to be a drop box. I’ve tried every set of ACLs that I can imagine, starting with the Apple recommended ones, but currently they’re set so that the user test has:

    Allow: Read & Write
    Deny: List

    That should set it up as a drop box, and it does come up with the right icon in the Finder, and the right message when you drag a file onto it. However it starts to copy a file across but then comes up with the error “The operation cannot be completed because you do not have sufficient privileges for some of the items”. It doesn’t copy the file across after that.

    What’s weird is that if I set the parent folder to read/write, and drag the file to that, I can then copy it into the drop box without a problem. It’s just taking the file directly from a client Mac to the drop box that’s the problem. Clients aren’t bound to the OD so they’re just logging in to drop files off. It looks like it may be something to do with the owner name of the file, as when a file is copied to the parent folder it gets it’s owner set to the username of the account that has logged in.

    Anyone any ideas?

    Thanks,

    Skaff

    May 22, 2007 at 10:53 am #369102
    factor
    Participant

    [code]
    chmod +a “usernameofowner allow list,add_file,search,delete,add_subdirectory,delete_child,readattr,writeattr,readextattr,writeextattr,readsecurity,writesecurity,file_inherit,directory_inherit” directoryname

    chmod +a “everyone allow add_file,search,add_subdirectory” directoryname
    [/code]

    Make sure that the unix permissions are set to either drwx-wx-wx or drwx—— to use the above. Otherwise you will need to throw in appropriate denys as well.

    I was surprised that a Google for anything along the lines of: example acl Mac OS X server Drop Box / DropBox, didn’t return anything useful.

    So after some thinking + fiddling (unfortunately the docs were insufficiently specific/accurate to allow solution by thinking alone …) I decided on the above.

    Note “search” maps to the old ‘x’ on a directory (can change into / work with the directory but cannot list the contents), “list” maps to the old ‘r’ for a directory.

    May 23, 2007 at 10:58 pm #369128
    skaffen
    Participant

    Hi,

    Thanks for the reply. That pretty much sets the permissions as I’ve had them, and I still get the same error. If I copy a file to the enclosing folder first, it works absolutely fine as a Drop Box. It’s just if I copy it directly from a remote Mac to the drop box. So for instance the File structure is:

    /Customers/CustomerFolder/DropBox

    The CustomerFolder folders are shared out individually. If I copy the file to /CustomerFolder first, and then copy it from there directly to /CustomerFolder/DropBox it works fine. If I try to copy it straight to /CustomerFolder/DropBox from the Desktop of a remote Mac, I get the error with “you do not have permission for some of the items”.

    All seems a bit odd.

  • Author
    Posts
Viewing 3 posts - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.