'Re: [users@httpd] Apache Perms for Django'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       apache-httpd-users
Subject:    Re: [users@httpd] Apache Perms for Django
From:       Frank Gingras <thumbs () apache ! org>
Date:       2023-09-15 18:21:50
Message-ID: CAOY50mu9bqu-Y-QDows-fkp75LmsCVDa=5Ns8YZs4m_m7Qgcdw () mail ! gmail ! com
[Download RAW message or body]

I would take a look at:

https://cwiki.apache.org/confluence/display/httpd/13PermissionDenied

On Mon, Sep 4, 2023 at 2:01 AM Ahmad Bilal <ssabs@protonmail.com.invalid>
wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
> I am in the final stage of Django deployment on Apache+mod_wsgi
> however I keep getting `403 Forbidden` error when I go to `127.0.0.1`
> my apache log says this:
>
> [core:error] [pid 7092:tid 7264] (13)Permission denied: [client
> 127.0.0.1:57598] AH00035: access to / denied (filesystem path
> '/home/djangouser/djangoprojects') because search permissions are missing
> on a component of the path
>
> I have already given 755 permission on each folder and 644 permissions to
> files
> 11:27
> I made the wsgi.py file as 755 as well
> Someone mentioned that maybe Apache is not being able to access the file
> mod_wsgi is running in daemon mode .. as djangouser (second
> non-priviledged linux user)
> just following the documentation.. on both Django and Apache+mod_wsgi
> This is my custom apache config file
> https://paste.pythondiscord.com/55JQ (edited)
> 11:28
> somebody told me.. that Apache should be made group owner of the top-most
> folder.. But I am not sure if that is a good idea
>
>
> Sent with Proton Mail secure email.
> -----BEGIN PGP SIGNATURE-----
> Version: ProtonMail
>
> wsBzBAEBCAAnBYJk9XJ5CZD3irc5ItUgGhYhBDkFTpuTInATMeXMGveKtzki
> 1SAaAACk/gf/QaUTDvWw30t5kLrNZ7PcwDQqQT0s7rLLuUqsC3VGhmLAyqy6
> N7poU0xfhyuMC57KtTDA7R9zUIzCtnV5ZLfgLXT6Y37NS8DuRlyWQVkkQka5
> 90OBvOxRLcM97Ztinvv4pUoGqqS8h5lUb/GifezJv/3S2sDH6gOXnNPd7BIA
> kjnZJzmF7tEewWPu37jVM1Qh6YHOJ1UfnAtzyE9nt+h9IufsP80OQyam2R4a
> fLfvqAep6k5mpG2rs2wijl3F8R7rS3B8JDaQ8jHlO9vBELJzE5eIDr9oP13Z
> oLn9BNhNbBpM+4HmpAUnyxhhH32VRCvLbeAELRsDVlXCENJBhPwF+g==
> =J/3D
> -----END PGP SIGNATURE-----
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org

[Attachment #3 (text/html)]

<div dir="ltr">I would take a look at:<div><br></div><div><a \
href="https://cwiki.apache.org/confluence/display/httpd/13PermissionDenied">https://cw \
iki.apache.org/confluence/display/httpd/13PermissionDenied</a><br></div></div><br><div \
class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Sep 4, 2023 at \
2:01 AM Ahmad Bilal &lt;ssabs@protonmail.com.invalid&gt; \
wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">-----BEGIN PGP SIGNED \
                MESSAGE-----<br>
Hash: SHA256<br>
<br>
I am in the final stage of Django deployment on Apache+mod_wsgi<br>
however I keep getting  `403 Forbidden`  error when I go to  `127.0.0.1`<br>
my apache log says this:<br>
<br>
[core:error] [pid 7092:tid 7264] (13)Permission denied: [client <a \
href="http://127.0.0.1:57598" rel="noreferrer" target="_blank">127.0.0.1:57598</a>] \
AH00035: access to / denied (filesystem path \
&#39;/home/djangouser/djangoprojects&#39;) because search permissions are missing on \
a component of the path<br> <br>
I have already given 755 permission on each folder and 644 permissions to files<br>
11:27<br>
I made the wsgi.py file as 755 as well<br>
Someone mentioned that maybe Apache is not being able to access the file<br>
mod_wsgi is running in daemon mode .. as djangouser (second non-priviledged linux \
user)<br> just following the documentation.. on both Django and Apache+mod_wsgi<br>
This is my custom apache config file<br>
<a href="https://paste.pythondiscord.com/55JQ" rel="noreferrer" \
target="_blank">https://paste.pythondiscord.com/55JQ</a>  (edited)  <br> 11:28<br>
somebody told me.. that Apache should be made group owner of the top-most folder.. \
But I am not sure if that is a good idea<br> <br>
<br>
Sent with Proton Mail secure email.<br>
-----BEGIN PGP SIGNATURE-----<br>
Version: ProtonMail<br>
<br>
wsBzBAEBCAAnBYJk9XJ5CZD3irc5ItUgGhYhBDkFTpuTInATMeXMGveKtzki<br>
1SAaAACk/gf/QaUTDvWw30t5kLrNZ7PcwDQqQT0s7rLLuUqsC3VGhmLAyqy6<br>
N7poU0xfhyuMC57KtTDA7R9zUIzCtnV5ZLfgLXT6Y37NS8DuRlyWQVkkQka5<br>
90OBvOxRLcM97Ztinvv4pUoGqqS8h5lUb/GifezJv/3S2sDH6gOXnNPd7BIA<br>
kjnZJzmF7tEewWPu37jVM1Qh6YHOJ1UfnAtzyE9nt+h9IufsP80OQyam2R4a<br>
fLfvqAep6k5mpG2rs2wijl3F8R7rS3B8JDaQ8jHlO9vBELJzE5eIDr9oP13Z<br>
oLn9BNhNbBpM+4HmpAUnyxhhH32VRCvLbeAELRsDVlXCENJBhPwF+g==<br>
=J/3D<br>
-----END PGP SIGNATURE-----<br>
<br>
---------------------------------------------------------------------<br>
To unsubscribe, e-mail: <a href="mailto:users-unsubscribe@httpd.apache.org" \
target="_blank">users-unsubscribe@httpd.apache.org</a><br> For additional commands, \
e-mail: <a href="mailto:users-help@httpd.apache.org" \
target="_blank">users-help@httpd.apache.org</a></blockquote></div>



[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic