Force owner, owner group, permissions at file and directory creation in a given directory

Hello and thank you for reading my post,

I have an application which automatically copies files and directories
from a directory "Ds" to another one "Dt".

Below is what I would like to do:
when a file "F" is copied from "Ds" to "Dt",
I would like to:
- force its owner to "user1",
- force its owner group to "group1",
- force the file access rights to 660 (rw- rw- ---).

when a directory "D" is copied from "Ds" to "Dt",
I would like to:
- force its owner to "user1",
- force its owner group to "group1",
- force the directory access rights to 770 (rwx rwx ---).

Is this even possible (only for the files and directories that will end up in "Dt")?

(Similarly, I know that, with "Samba3" and for a given share, one can set the "force group", "create mask", "directory mask", etc. options to respectively force the owner group of the new files and directories and their access rights.)

Does the "setfacl" command permit this? How?

If not how should I proceed?

Thank you for your help.

--
OS: Debian GNU/Linux 7.2 (wheezy)
"/home" partition mounted with ACL support.

The `install` command allows you to copy files and directories PLUS set their attributes, so that is how I would do it.

Another option, I guess, would be to set a umask (kind of like you would in your Samba config) but I think that would be less flexible, since it's not a command but a configuration option.

I would look into `install`. The man page is pretty clear on how to set each attribute; use -m for setting mode and -o for setting owner.

rsync is your friend.

try it with rsync -aviS that should do the trick.

In reply to notKlaatu:

Hello and thank you for your answer.

The "install" command you mentioned is interesting.

I tried:

where <file_src> was an already existing file with owner and owner group "root" and permissions "644".

As a result to this command execution, the file <file_dest> was indeed created with owner "user1", owner group "group1" and permissions "660".

Yet, I see two drawbacks in this method which do not suit my needs:
1) there has to be a source file and a destination file when I would want only one file...
2) a command has to be run which I would like to avoid (if possible). That's why, with the "Samba3" setting parallel I alluded to in my first post, I was thinking about the possibility of a specific setting on the directory which contains <file_src> ; a setting which would force the owner, owner group and permissions of all the newly created files...

Best regards.

In reply to lleb:

Thank you for your answer.

Can you elaborate a bit on this "rsync" command because I don't see what to do?
Running "rsync -aviS" as is only returns an error.

Best regards.

Then you are looking to set attributes on the filesystem.

So, in Samba you are configuring the shared directory and setting a umask for the directories. On many Linux filesystems, you can do this with `setfacl`. I have never had the occasion to be this granular so you'll need to read the man page or an online tutorial to learn more about it, but that is probably what you are looking for. You want to set a mask on directory 'Dt' such that anything written into it has specific attributes; that's done with ACL's via `setfacl`.

Good luck!

you stated in your OP:

use rsync instead of copy. cp typically does not preserve any permissions, etc... this is what you are after. that will continue to fail without setting restrictive permissions that always create RWX for user, group, other every time that user touches any file.

to get around that use rsync instead.

man pages are your friend as is good.

http://linux.die.net/man/1/rsync

https://www.google.com/search?q=what...m=119&ie=UTF-8

In reply to notKlaatu:
Ok. Thank you.

If someone knows how to write an ACL which:

- for every new file in a directory "D"
sets its owner to "user1",
its owner group to "group1"
and its permissions to 660

- for every new directory in a directory "D"
sets its owner to "user1",
its owner group to "group1"
and its permissions to 770

please post the appropriate commands to run for it to work on my OS.

Maybe this is not the right way to put things.
Maybe I should better state things like this:
How to write an ACL which:
for every new file in a directory "D":
- grants the read and write permissions to a user "user1",
- grants the read and write permissions to a group of users "group1",
- grants no permissions to others.
for every new directory in a directory "D":
- grants the read, write and execute permissions to a user "user1",
- grants the read, write and execute permissions to a group of users "group1",
- grants no permissions to others.

Best regards,
--
OS: Debian GNU/Linux 7.2 (wheezy)
"/home" partition mounted with ACL support.

In answer to lleb:
Ok, very good.

A command like this one:

preserves the owner, the owner group and the permissions of "test.txt" when creating "test_2.txt".
So, if the owner of "test.txt" is "user1", its owner group "group1" and its permissions "660", "test_2.txt" will also have its owner set to "user1", its owner group set to "group1" and its permissions set to "660".

"user1" also needs to have the write permission on the directory <D>.

For people interested:
I use WinSCP.
I run the "Custom Command":
rsync -o -g -p ! <D>/!

Best regards.