This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
rootdir_security [2022/02/11 15:22] yves [Access control lists] |
rootdir_security [2022/03/14 13:48] (current) yves [Public vs private] |
||
---|---|---|---|
Line 7: | Line 7: | ||
* Configure public/secret key combinations for S3 resources | * Configure public/secret key combinations for S3 resources | ||
* Configure account credentials to be used when accessing a UNC network resource path | * Configure account credentials to be used when accessing a UNC network resource path | ||
- | * Prevent users from access mounted content through root directories that they are or are not allowed to do | + | * Prevent [[user_management|users]] from access mounted content through root directories that they are or are not allowed to do |
* Define Access control lists | * Define Access control lists | ||
Line 96: | Line 96: | ||
==== Public vs private ==== | ==== Public vs private ==== | ||
- | As you have more users and more root-directories, it becomes undesirable that everybody is allowed to see everything. | + | As you have more [[user_management|users]] and more root-directories, it becomes undesirable that everybody is allowed to see everything. |
Therefore, root-directories can be marked "public" or "private": | Therefore, root-directories can be marked "public" or "private": | ||
Line 102: | Line 102: | ||
{{ :rootdir_public_private_switch.png?direct&200 |}} | {{ :rootdir_public_private_switch.png?direct&200 |}} | ||
- | Public root directories are marked "public", it means every user has access to them. They can be accessed by anybody who is a registered user in the PMA.core user repository. | + | Public root directories are marked "public", it means every user has access to them. They can be accessed by anybody who is a registered user in [[user_management|the PMA.core user repository]]. |
- | Private root directories are marked "private", it means only select users can see the content. They are only accessible by those who have been explicitly given access to be allowed to access the folder through the directory's [[acl|access control list]]. | + | Private root directories are marked "private", it means only select users can see the content. They are only accessible by those who have been explicitly given access to be allowed to access the folder through the directory's [[rootdir_security#access_control_list|access control list]]. |
==== Access control lists ==== | ==== Access control lists ==== | ||
Line 115: | Line 115: | ||
{{ :rootdir_acl_20.png?direct&400 |}} | {{ :rootdir_acl_20.png?direct&400 |}} | ||
+ | |||
+ | As you get even more root-directories and more users, it is useful to get an overview of who has access to what. For that, you can request the ACL report from the root-directories view. | ||
+ | |||
+ | {{ :overview.png?nolink&400 |}} | ||
+ | |||
+ | The resulting report looks like this: | ||
+ | |||
+ | {{ :overview2.png?nolink&400 |}} | ||