Open CLKeenan opened 5 years ago
You should not update core on any existing platform. BOA intentionally changes ownership of your codebase to the Aegir backend user to allow Aegir to manage its tasks without errors, and to make sure the codebase is not writable by the web user either, which is separate user, but also not writable by your limited shell user. Only the sites/all/modules,themes,libraries
directories remain writable by the limited shell user. That is by design. To use updated core you should create a new platform with new core and migrate sites from previous platform. Besides, the sites/development.services.yml
file is never used in BOA anyway, because this location is not multi-site aware, so instead BOA uses sites/foo.bar/files/development.services.yml
, mainly to disable Redis for debugging, which is documented in https://github.com/omega8cc/boa/blob/master/docs/DEVELOPMENT.txt
I started my Drupal site using drupal-composer/drupal-project (8.6.7), so I ran:
composer update drupal/core webflo/drupal-core-require-dev --with-dependencies
as documented here: https://www.drupal.org/docs/8/update/update-core-via-composerHowever, I ran into a permission denied error:
I tried to re-run the update command, but was told there was nothing to update. My Drupal Status report tells me that the platform is on 8.6.8, but I fear that only a subset of the required core files were updated to the latest 8.6.8 version.
My site is hosted by Omega8. When I ran the composer command to create my site ( drupal-composer/drupal-project), I ran it using the 'xyz.ftp' user. After I created the platform and site within the Aegir control panel, all of the folder/files within the /web folder (where /index.php and /core lives) are owned by 'xyz' user.
Both 'xyz' and 'xyz.ftp' users belong to the Group 'users'. The reason why this failed is because
web/sites/development.services.yml
is owned by 'xyz' and the chmod properties are0755
(which means the 'Users' Group has no write access).All that said, I now have an understanding of 'why' it failed. What I don't know is why were the permissions setup this way in the first place and what would break if I changed them.
Questions are: