Hi, I am setting up a TrueNAS Scale 24.04.2.3 instance with File Browser app v.2.31.2
SMB shares work great, but I have access to ALL files and folders from the File Browser WebGUI. And that’s a problem if you’re having several users of course.
Here’s an exemple to keep it simple:
User01 shall have full access on Folder01 ; RO access on Folder02, and no access to Folder03
User02 shall have full access on Folder02 ; RO access on Folder01, and RW to Folder03
On the SMB side, that’s not a problem and it works as intended. From the File Browser webgui however, I can only grant them full/no access by ticking/unticking the “allow” checkbox on the user management page, but I can’t get more granular rights like RO. Is that what the regex field is for? I don’t get how to use regex here…
I don’t expect any permissions configuration in a random application to be ACL-aware or work correctly. More more likely than not going to create a huge mess with your permissions.
thanks for your input. Do you see a way to achieve this kind of granularity regarding access right from the WebGui/app, or is this simply not feasible?
I’m kinda wondering because this is a very basic feature even on consumer-grade NAS appliances. (I’m not criticising, just wondering)
I would suggest you ask the filebrowser creator, they have a github section where you can ask. I am guessing you have not set it up the ideal way for using SMB. If SMB permissions work fine, and Filebrowser supports ACLs which it does… I suspect configuration. But this is a truenas forum so unlikely to find too many using that app. Better to ask them.
Perhaps it supports POSIX1E ACLs, but I doubt it supports NFSv4 acl type. That said most applications I’ve seen don’t even properly support POSIX1E ACLs.
@sfatula: My guess is more that it’s the Filebrowser side that is not configured correctly. But you’re right, I will try to get info from the Filebrowser devs.
@awalkerix: From what I see, Filebrowser doesn’t. But I might just not be looking at the right place (maybe some stuff has to be done in CLI?)
I’ll try to get more info and post the answers here as I don’t think I’m the only one having problems…
