search

LSSTDESC / desc-help

DESC Computing Requests
BSD 3-Clause "New" or "Revised" License
2 stars 0 forks source link

[NERSC] Changing files assigned to the "desc" user back to my ownership #115

Closed joezuntz closed 1 month ago

joezuntz commented 1 month ago

Description I seem to have re-assigned ownership of the NERSC files here: /global/cfs/cdirs/lsst/groups/WL/users/zuntz/data/ to the desc user instead of myself (username zuntz). Would it be possible to change them back so I can update them?

This could be done with chown -vR zuntz /global/cfs/cdirs/lsst/groups/WL/users/zuntz/data/

by the desc user.

Thanks! Joe

Choose all applicable topics by placing an 'X' between the [ ]:

To Reproduce Steps to reproduce the behavior:

  1. ls -l /global/cfs/cdirs/lsst/groups/WL/users/zuntz/data/*
joezuntz commented 1 month ago

Looks like we have a spam commenter here.

EDIT: I reported the spam comment and it was removed along with the account impressively quickly.

heather999 commented 1 month ago

Interesting about the spam... that's something we should keep an eye out for. I'm happy to hear the report was handled quickly. We have things very open in our GitHub organization and I'm hoping we can keep it that way.

Coming back to this issue. We don't have the ability to run chown, even if we use the desc account. Two options, where I've just done the first so you have immediate access to the files:

  1. use access control lists (ACLs) to grant your account full access to the directory and all the files&directories in it. It's also set up to inherit those permissions for all new files added to that data directory. You can do this too if you log in as the desc user (setfacl -R -d -m "user:zuntz:rwx" /global/cfs/cdirs/lsst/groups/WL/users/zuntz/data) The downside is that to due NERSC's use of the data virtualization service (DVS) we take a performance hit for using extended ACLs such as this. So you can access and update the files now - but if you are using these files for jobs, it's probably not the best solution.

  2. I open a ticket with NERSC and ask them to do that chown for us, which I anticipate they will do. I just want to double check what I'm asking them to do.. it looks like we want to ask them to chown zuntz /global/cfs/cdirs/lsst/groups/WL/users/zuntz/ so you have ownership over everything in your users/zuntz directory. Sound good?

joezuntz commented 1 month ago

Thanks! I've done the immediate update I wanted to do. Can you remove the ACL now, since we would like to use that directory for relatively disc-intensive work?

And in the long run option 2 would be good (with the -R flag for recursive I guess).

heather999 commented 1 month ago

ACLs have been removed!
I'll open the ticket with NERSC

heather999 commented 1 month ago

This appears to be fixed!