I'm not extremely knowledgeable about servers, so forgive my potential ignorance..
I have a server/site where users in a domain can upload .zip packages to the server. The domain is administered by the IT group at the company, so I can't make any changes there. I do, however, have administrator access to the server itself.
The problem is that the upload feature, which has always worked up until this point, does not work for any domain users, even if I grant them full control, but my personal account (not the administrator one) with the same control works just fine.
So, my question is why can a single user who is given read/write/modify permissions able to upload files normally, where a group of Domain Users with the same permissions cannot.
Note: We are using Windows integrated authentication and the users credentials are being validated correctly. The server returns a 500 - internal server error and mySQL points to the "move_uploaded_file" function with a warning about the destination not existing, but again, it works for single users not in a group. Could group policies be overwriting my security permissions?
Thanks for any help.
EDIT:
I think that it's really a permissions and PHP issue. There are two places where the PHP seems to fail. One is calling file_exists(), which returns false for the "Domain Users" group, but true for my admin user. Another is that PHP fails during move_uploaded_file for the "Domain Users" group, but not for my admin user. The Domain Users group has full control over this directory, so what can be wrong that PHP seems to have a permissions issue? PHP safe mode is off and the directory was chmod to 777.
No comments:
Post a Comment