freenas 插件权限设置

1. access to your data dataset/folders
2. permissions to write to your data folders.

1) MAKING DATA ACCESSIBLE TO YOUR PLUGIN'S JAIL

• It is preferred that your data reside on a dataset(s) outside of your jail that you regularly snapshot and backup.

• FreeNAS plugins, by default, have no access to files residing outside of its jail.

• Data datasets/folders should be mounted into the plugin's jail as described in the FreeNAS User Guide.
  • http://doc.freenas.org/9.3/freenas_jails.html#add-storage

2) PERMISSIONS
Choose one of the 4 solutions to give your plugin write permission to your data folders.

FACTS

• Every folder/file has a UNIX permission level, UID ownership, and GID ownership, which determines which user/group members can read/write to that folder/file. Basic UNIX permissions are described in the opening part of Chapter 4, Part 4, of the FreeBSD handbook.
  • https://www.freebsd.org/doc/handbook/permissions.html

• Jails and the FreeNAS host do not share user/group databases. They only associate UIDs/GIDs to users/groups if that mapping exists in it's particular user/group database.

• Processes running inside a jail's userland (plugins) are permitted to read/write files/folders according to the jail's user/group database.

• By default, most plugins run as a specific user, with a specific UID, and keep their configuration/databases/logs in what I will refer to as a data-directory.
  Show : Relevant Information for Most Plugins I Support

NOTE

• Never change the ownership or permission levels of Jail datasets. These contain operating system and application files that will not work properly if changed. Only ever change ownership or permission levels of datasets that contain only your data and that are mounted into your Jail(s).

SOLUTION 1 - USER WRITEABLE

SOLUTION 2 - USER WRITEABLE

SOLUTION 3 - GROUP WRITEABLE

SOLUTION 4 - OTHER WRITEABLE