Complete the following tasks in the order shown:
- About the shared group
- Step 1: Create the Magento file system owner and give the user a strong password
- Step 2: Find the web server group
- Step 3: Put the Magento file system owner in the web server's group
- Step 4: Get the Magento software
- Step 5: Set ownership and permissions for the shared group
To enable the web server to write files and directories in the Magento file system but to also maintain ownership by the Magento file system owner, both users must be in the same group. This is necessary so both users can share access to Magento files (including files created using the Magento Admin or other web-based utilities).
This section discusses how to create a new Magento file system owner and put that user in the web server's group. You can use an existing user account if you wish; we recommend the user have a strong password for security reasons.
Step 1: Create the Magento file system owner and give the user a strong password {#mage-owner-create-user}
This section discusses how to create the Magento file system owner. (Magento file system owner is another term for the command-line user.)
To create a user on CentOS or Ubuntu, enter the following command as a user with root privileges:
adduser <username>
To give the user a password, enter the following command as a user with root privileges:
passwd <username>
Follow the prompts on your screen to create a password for the user.
If you don't have root privileges on your Magento server, you can use another local user account. Make sure the user has a strong password and continue with Put the Magento file system owner in the web server group.
For example, to create a user named magento_user and give the user a password, enter:
sudo adduser magento_user
sudo passwd magento_user
Because the point of creating this user is to provide added security, make sure you create a strong password.
To find the web server user's group:
-
CentOS:
egrep -i '^user|^group' /etc/httpd/conf/httpd.confTypically, the user and group name are both
apache -
Ubuntu:
ps aux | grep apacheto find the apache user, thengroups <apache user>to find the groupTypically, the user name and the group name are both
www-data
Step 3: Put the Magento file system owner in the web server's group {#install-update-depend-user-add2group}
To put the Magento file system owner in the web server's primary group (assuming the typical Apache group name for CentOS and Ubuntu), enter the following command as a user with root privileges:
- CentOS:
usermod -g apache <username> - Ubuntu:
usermod -g www-data <username>
For example, to add the user magento_user to the apache primary group on CentOS:
usermod -g apache magento_user
To confirm your Magento user is a member of the web server group, enter the following command:
groups <user name>
A sample result follows:
magento_user : apache
To complete the task, restart the web server:
- Ubuntu:
service apache2 restart - CentOS:
service httpd restart
If you haven't done so already, get the Magento software in one of the following ways:
- [Compressed archive]({{ page.baseurl }}install-gde/prereq/zip_install.html)
- [Composer metapackage]({{ page.baseurl }}install-gde/prereq/integrator_install.html)
- [Clone the repository (contributing developers only)]({{ page.baseurl }}install-gde/prereq/dev_install.html)
To set ownership and permissions before you install the Magento software:
-
Log in to your Magento server as, or switch to, the Magento file system owner.
-
Enter the following commands in the order shown:
cd <your Magento install dir> find var vendor pub/static pub/media app/etc -type f -exec chmod g+w {} \; find var vendor pub/static pub/media app/etc -type d -exec chmod g+ws {} \; chown -R :<web server group> . chmod u+x bin/magento
{% include install/file-system-perms-twouser_cmds-only.md %}
After you have set file system ownership and permissions, continue with any of the following: