HTTP_upload causing a permission error?

courtewing

I'm attempting to create an upload script using HTTP_upload (PEAR). Currently, the script definitely appears to work: There are no run-time or syntax errors. Everything appears to the user to be fine. The file even appears on the server as it should.

My problem is, any file that is uploaded via this script is almost completely unchangable via FTP. Basically, the only thing I can do through FTP is delete it. I can't move it. I can't change the CHMOD permissions. I can't even download it via FTP (I can, however, download it directly through the URL). So I'm at a loss...this script will be used a few times a day, so there will be a lot of files building up. I definitely want to be able to manage those files via FTP.

I've been screwing around with it for awhile; you guys are my last hope:

require_once("../PEAR/HTTP/Upload.php");
require_once("../PEAR/MIME/Type.php");


$upload = new HTTP_Upload("en");
$files = $upload->getFiles();

$file_num = 0;

foreach($files as $file){
	$file_num++;
	if (PEAR::isError($file)) {
		echo "<p>".$file->getMessage()."</p>\r\n";
	}

if ($file->isValid()) {
	$x=1;
	$file->setName("safe", time()."-");
	while (file_exists($dir.$file->getProp("name"))) {
		$x++;
		$file->setName("safe", time()."-");
	}

	$dest_name = $file->moveTo($_SERVER['DOCUMENT_ROOT'].$dir);

	if (PEAR::isError($dest_name)) {
		echo "<p>".$dest_name->getMessage()."</p>\r\n";
	}

	// CHECK FILETYPE, IF INVALID
	if ($file->getProp("ext") != "rar" && $file->getProp("type") != "application/zip") {

		// DELETE FILE
		@unlink($_SERVER['DOCUMENT_ROOT'].$dir.$file->getProp("name"));
		echo "<p>Invalid file type.  You may only upload rar or zip.</p>\r\n";

	// IF VALID
	} else {

		$filename = $_info->site_url.substr($dir, 1).$file->getProp("name");

	}
} else if ($file->isError()) {
	echo "<p>".$file->errorMsg()."</p>";
}
}

Any ideas why this code would have such a result?

EDIT: To clarify, I get Permission Denied errors when I attempt any of those things I listed in FTP.

kakki

could be:
your webserver is running as user "www",
ftp is running as user "ftp".

if you upload a file,
- with http its saved with permissions of www-user
- with ftp, its saved with permissions of ftp-user

if you can do php-"exec" on the system, you can chown that file to "ftp" like:

exec( "chown ftp:ftp ".$filename );

to find out, how files are created on your system ( with ftp/http ), you may upload/create a file and then do exec "ls -l", youll see owners name and group

courtewing

Hmm....when I check the permissions of one of the particular files I'm having errors with, it returns nobody:nobody for the owner:group....however, the exec command you gave me didn't work. Any ideas?

courtewing

Update: I have found the source of my problem. I have no idea how, but when I installed the PEAR package via FTP, it set the owner of all of the associated files to nobody. So when I uploaded the files with HTTP_upload, it inherited the same ownership properties. I'm assuming this was not ultimate intention, so I probably did something wrong when I installed it.

Which brings me to my next question. Does anyone know of a tutorial for installing PEAR and packages via ftp?

Edit: Just attempted to reinstall PEAR via the instructions for FTP installation at http://pear.php.net/manual/en/installation.shared.php . Once again, it installed all of the PEAR files with the owners listed as "nobody", so I think I'm stuck at the same place as before...

kakki

i think you can chown that via ftp to the owner of the web-service
( same command )