Menu
▾
▴
Re: [Plone-Users] non-root install of plone
|
From: Jens W. K. <je...@bl...> - 2015-10-01 10:58:07
|
Hi Ralf, I dont know unified installer very well. But the base idea is to split service and buildout user. Buildout user needs r/w access for all files, while service user has no write access to files were read is enough - for security reasons. I know several setups where only one user "zope" (or "plone") exists for both roles - with r/w for the whole buildout. The service user is defined in the buildout section(s) for the instance(s). Using the same user is - afaik - officially not recommended. My personal opinion is, in fact it does not matter that much. Anyway, with separate service user, it needs (in a standard buildout) only write access for the ./var directory. Here are the zodb and blob data, logging and pid files. This assumes precompiled python files (pyc/pyo) and precompiled gettext translations files (po/mo). Precompiling happens in buildout at buildout-time. hth Jens On 2015-10-01 12:14, Ralf Hemmecke wrote: > Hello, > > due to some restrictions I don't have root access to a linux box, but > would like to install plone 5 in a similar way as it is done when > running install.sh zeo (as root user) from the unified installer. > In other words the plone maintainer is not the system administrator of > the machine. > > The users plone_daemon and plone_buildout as well as the group > plone_group exist in the system and the user 'plone' who is ower of the > unified installer files and who is supposed to install Plone5 has sudo > rights for plone_daemon and plone_buildout. > > What is the way to install Plone in such a case? > Note that I would like the distinction between the daemon and buildout user. > > It's probably easiest to simply do the install as user plone and > afterwards change the user of the respective files. My problem, however > is: which files should belong to plone_daemon and which to > plone_buildout? Is there already a script that I can simply run? > > Thank you > Ralf > > ------------------------------------------------------------------------------ > -- Klein & Partner KG, member of BlueDynamics Alliance |