How files permissions should looks like?

Hello all,
I’ve just installed phabricator on my own server and I want to know how should I setup files permissions? Something like here: ?

I run my phabricator inside docker so all files are owned by root user but for directory /var/log/phabricator I setup read/write permission for www-data group so web-user can save logs.
I’ve run ./phabricator/bin/phd start as root but I think better is to create deamon-user and give him some permission?
I think the same problem with permissions will be with git user?

Is there any docs describing how files permission should looks like?

It’s mostly hidden in

Short answer:

  • local File store (if used) owned by www-data
  • daemon log dirs and repository hosting (/var/repo/) owned by daemon-user
  • git and www-data have selective sudo rights as daemon-user.

Thanks :slight_smile:
I wrote this script to setup permissions after I run my docker:

# cat src/permissions

chown -R www-data:www-data /var/storage
chown -R www-data:www-data /var/log/phabricator
chown -R phd-user:phd-user /var/repo
chown -R phd-user:phd-user /var/phd