File permission is most important while you making your project live. because if you give file permission 777 means anyone can read-write-execute your file. this is the thing hacker might want and add the hacky script on your file and steal your users’ data whoever runs that file.

so, i directly get to the point. there’s two to give your file permission in such a way that your project runs on public domain and no public user can write those files.

  1. Give ownership of your all files and folders to the webserver
  2. Make root/your-user as an owner of all files and folder and then give necessary permission to the webserver to access those files

Let’s see some of the basic things about permission and ownership:

In Linux, we can set ownership of the folder by chown command

sudo chown -R user:group yourfiles/yourfolder

here -R is it’s mean you are recursively giving ownership to the folder. so all files and folder get you to specify user ownership if you do not put -R option then only mention folder or file get that ownership.

another command is chmod
sudo chmod options mod filename
mod can be either 777(all permission), or other permission. you can check out more info about that from here https://help.ubuntu.com/community/FilePermissions

Let’s see both methods to set file permission. start with first one, Give ownership of your all files and folders to the webserver
assuming apache2 is your webserver user
sudo chown -R apache2:apache2 /path-to-your-laravel/root

now all of your files belong to web server user and also add in the group. sometime may you have an issue while uploading files via FTP. if your FTP logged in user is not admin/root user. because your file owns by the webserver user. so you have to add your user to the webserver group by below command.
sudo usermod -a -G apache2 jignesh

Now, other methods make your user as owner
sudo chown -R jignesh:apache2 /path-to-your-laravel/root

Give file and folders appropriate permission
sudo find /path-to-your-laravel/root -type f -exec chmod 664 {} \;
sudo find /path-to-your-laravel/root -type d -exec chmod 775 {} \;

as we need cache directory and it’s file readable and writable too, we give special permission for it to the webserver
sudo chgrp -R www-data storage bootstrap/cache
sudo chmod -R ug+rwx storage bootstrap/cache

Subscribe
Notify of
1 Comment
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
AffiliateLabz
5 months ago

Great content! Super high-quality! Keep it up! ­čÖé

Sign Up for Our Newsletters

Get notified of the best deals on our WordPress themes.