Start a new topic

TempAccount access denied

markus @ Tue Mar 25 11:45:03 EET 2014
Hi, i'm currently evaluating the crushftp 7.0.2 on a CentOS 6.5.
During my test i have tried the TempAccount. I left the Default Settings for the Folder ( /var/opt/CrushFTP7_PC/TempAccounts ) or as it is listed in the configuration as ./TempAccounts
Creating a temp account was successful also the upload Checkbox was enabled.
Signin in with the temp account was also successful. If i upload a file in the Shares menu it will be visible after some delay (or forced by a logoff logon) but i cannot upload a file.
I receive 550 Access not allowed.

I'm not sure if i had to configure VFS for the TempAccount (which is currently not empty)

Here are the needed copy of the logfile:

03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *POST /WebInterface/function/ HTTP/1.1*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *X-Requested-With: XMLHttpRequest*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Referer: http://192.168.0.7:8080/*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Host: 192.168.0.7:8080*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Content-Length: 57*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Cookie: __WEBINTERFACE_PAGE_SIZE=100; __WEBINTERFACE_HIDE_FILTER=false; __WEBINTERFACE_HIDE_CHECKBOX_COLUMN=undefined; mainServerInstance=; __WEBINTERFACE_FILE_LIST_VIEW=Thumbnail; CrushAuth=1395764960118_j8LUunYU87hI06mndfDSHw7ukkavtE*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *command:unblockUploads*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *random:0.2895625288149596*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *c2f:avtE*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *HTTP/1.1 200 OK*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Origin: false*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Headers: authorization,content-type*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT,PROPFIND,DELETE,MKCOL,MOVE,COPY,HEAD,PROPPATCH,LOCK,UNLOCK,ACL,TR*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Content-Length: 56*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: **
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *OK*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *POST /WebInterface/function/ HTTP/1.1*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *X-Requested-With: XMLHttpRequest*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Referer: http://192.168.0.7:8080/*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Host: 192.168.0.7:8080*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Content-Length: 68*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Cookie: __WEBINTERFACE_PAGE_SIZE=100; __WEBINTERFACE_HIDE_FILTER=false; __WEBINTERFACE_HIDE_CHECKBOX_COLUMN=undefined; mainServerInstance=; __WEBINTERFACE_FILE_LIST_VIEW=Thumbnail; CrushAuth=1395764960118_j8LUunYU87hI06mndfDSHw7ukkavtE*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *command:getUploadStatus*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *itemName:file_nUTE_SINGLE_FILE_POST*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *c2f:avtE*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *HTTP/1.1 200 OK*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Origin: false*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Headers: authorization,content-type*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT,PROPFIND,DELETE,MKCOL,MOVE,COPY,HEAD,PROPPATCH,LOCK,UNLOCK,ACL,TR*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Content-Length: 95*
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: **
03/25/2014 05:31:00 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *POST /WebInterface/function/ HTTP/1.1*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *Referer: http://192.168.0.7:8080/*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *Host: 192.168.0.7:8080*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *Content-Length: 7328*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *Cookie: __WEBINTERFACE_PAGE_SIZE=100; __WEBINTERFACE_HIDE_FILTER=false; __WEBINTERFACE_HIDE_CHECKBOX_COLUMN=undefined; mainServerInstance=; __WEBINTERFACE_FILE_LIST_VIEW=Thumbnail; CrushAuth=1395764960118_j8LUunYU87hI06mndfDSHw7ukkavtE*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *uploadPath:/*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *the_action:STOR*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *uploadPath:/*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] READ: *the_action:STOR*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: *550 Access not allowed.*
03/25/2014 05:31:00 PM|OXIIOZ:(2634)-192.168.0.9 (control):STOR
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: *HTTP/1.1 200 OK*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Origin: false*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Headers: authorization,content-type*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT,PROPFIND,DELETE,MKCOL,MOVE,COPY,HEAD,PROPPATCH,LOCK,UNLOCK,ACL,TR*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: *Content-Length: 61*
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: **
03/25/2014 05:31:00 PM|[HTTP:2634:OXIIOZ:192.168.0.9] WROTE: *Success*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *POST /WebInterface/function/ HTTP/1.1*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *X-Requested-With: XMLHttpRequest*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Referer: http://192.168.0.7:8080/*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Host: 192.168.0.7:8080*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Content-Length: 68*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Cookie: __WEBINTERFACE_PAGE_SIZE=100; __WEBINTERFACE_HIDE_FILTER=false; __WEBINTERFACE_HIDE_CHECKBOX_COLUMN=undefined; mainServerInstance=; __WEBINTERFACE_FILE_LIST_VIEW=Thumbnail; CrushAuth=1395764960118_j8LUunYU87hI06mndfDSHw7ukkavtE*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *command:getUploadStatus*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *itemName:file_nUTE_SINGLE_FILE_POST*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *c2f:avtE*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *HTTP/1.1 200 OK*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Origin: false*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Headers: authorization,content-type*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT,PROPFIND,DELETE,MKCOL,MOVE,COPY,HEAD,PROPPATCH,LOCK,UNLOCK,ACL,TR*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Content-Length: 113*
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: **
03/25/2014 05:31:01 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *POST /WebInterface/function/ HTTP/1.1*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *X-Requested-With: XMLHttpRequest*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Referer: http://192.168.0.7:8080/*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Host: 192.168.0.7:8080*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Content-Length: 82*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *Cookie: __WEBINTERFACE_PAGE_SIZE=100; __WEBINTERFACE_HIDE_FILTER=false; __WEBINTERFACE_HIDE_CHECKBOX_COLUMN=undefined; mainServerInstance=; __WEBINTERFACE_FILE_LIST_VIEW=Thumbnail; CrushAuth=1395764960118_j8LUunYU87hI06mndfDSHw7ukkavtE*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *command:getXMLListing*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *format:JSONOBJ*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *path:/*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *random:0.0640450867604484*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] READ: *c2f:avtE*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *HTTP/1.1 200 OK*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Origin: false*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Headers: authorization,content-type*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT,PROPFIND,DELETE,MKCOL,MOVE,COPY,HEAD,PROPPATCH,LOCK,UNLOCK,ACL,TR*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: *Content-Length: 738*
03/25/2014 05:31:02 PM|[HTTP:2633:OXIIOZ:192.168.0.9] WROTE: **



Thank you for your support.
Best regards
Markus

spinkb @ Tue Mar 25 12:08:18 EET 2014
Undo all changes to the TempAccount. 99% of the time you should never be editing it.

Make your own user. Give them access to a folder. Give them eh share permission on the folder.

Login as the user, right click on an item and share it out.

That is the way to handle shares and temporary access.

Thanks,
Ben
markus @ Tue Mar 25 12:29:16 EET 2014

I have undo all changes at the TempAccount.
But i'm not sure about the part with the and i stuck at the Make your own user.
Delete the TempAccount and recreate it?

and also the

Login as the user ...right click .... confuse me, as the Crushftp runs on an CentOS.


Thanks
Markus
spinkb @ Tue Mar 25 12:33:09 EET 2014
You use a web browser to login and manage the server. The OS its running on is irrelevant.

So, login with your web browser, got to he User Manager, delete the TempAccount user, and make a new user with that exact same name. Save it, don't make any changes.

Now go make your own user like the quick start video shows you. Add a folder to their VFS for them to access, and give them the share permission on it.

Now logout in the web browser, and log back in using your new user. Right click in the browser to share an item.

Thanks,
Ben
markus @ Tue Mar 25 13:13:22 EET 2014
I was following your detailed steps and it worked. I have started at the wrong Point; at the Shares tab in the crushadmin frontend. I have created the user there.
So the Shares tab is just for Monitoring?

and my other question if the email with the share was send out by right click is it possible later to add the upload right to the temp useraccount? Because after i enable the upload Checkbox in the share tab for the user and save it, I can no longer sign in with this temp account.

Thanks,
Markus
spinkb @ Tue Mar 25 13:18:23 EET 2014
Its mainly for monitoring, or deleting things.

The share can be resent as a new share to add upload to a folder being shared by reference.

Thanks,
Ben
Login to post a comment