Hi, I am setting up a TrueNAS Scale 24.04.2.3 instance with File Browser app v.2.31.2
SMB shares work great, but I have access to ALL files and folders from the File Browser WebGUI. And that’s a problem if you’re having several users of course.
Here’s an exemple to keep it simple:
User01 shall have full access on Folder01 ; RO access on Folder02, and no access to Folder03
User02 shall have full access on Folder02 ; RO access on Folder01, and RW to Folder03
On the SMB side, that’s not a problem and it works as intended. From the File Browser webgui however, I can only grant them full/no access by ticking/unticking the “allow” checkbox on the user management page, but I can’t get more granular rights like RO. Is that what the regex field is for? I don’t get how to use regex here…
I don’t expect any permissions configuration in a random application to be ACL-aware or work correctly. More more likely than not going to create a huge mess with your permissions.
thanks for your input. Do you see a way to achieve this kind of granularity regarding access right from the WebGui/app, or is this simply not feasible?
I’m kinda wondering because this is a very basic feature even on consumer-grade NAS appliances. (I’m not criticising, just wondering)
I would suggest you ask the filebrowser creator, they have a github section where you can ask. I am guessing you have not set it up the ideal way for using SMB. If SMB permissions work fine, and Filebrowser supports ACLs which it does… I suspect configuration. But this is a truenas forum so unlikely to find too many using that app. Better to ask them.
Perhaps it supports POSIX1E ACLs, but I doubt it supports NFSv4 acl type. That said most applications I’ve seen don’t even properly support POSIX1E ACLs.
@sfatula: My guess is more that it’s the Filebrowser side that is not configured correctly. But you’re right, I will try to get info from the Filebrowser devs.
@awalkerix: From what I see, Filebrowser doesn’t. But I might just not be looking at the right place (maybe some stuff has to be done in CLI?)
I’ll try to get more info and post the answers here as I don’t think I’m the only one having problems…
So question - assuming you are doing this on a local network, all behind your own firewall/gateway control why not just use the samba shares or NFS shares and Win 11 or other OS file explorer/network drive system.
Works fairly well for me. The issue I see with Filebrowser app is while it works great for remote viewing the app runs as a single user to the system, as best as I can tell. so you might have to have multiple instances running.
Whereas I setup my user’s win 11 network drive to be their folder they have, with full access for them - and other folders for view only or whatever. on their folder they drag drop, etc like they are used to and they still have to be securely logged into their machine as them for it to work.
