Proxmox: Trouble with permissions of data in a mountpoint for a lxc (audiobookshelf) - eviltoast

I am moving from an debian-server (odroid) to a proxmox-server. I have a 2tb-ssd for some media in my proxmox, so that is what i did:

  1. i mounted the smaba-share from my old server in proxmox (not in the lxc “ausiobookshelf”)
  2. i moved the data from the old server to the lxc-mountpoint “audiobooks” on my proxmox

This worked but now i have trouble to give permissions. In proxmox i can edit the permissions but there is no user “audiobookshelf” in the proxmox-root. In the lxc i have the user “audiobookshelf” but i have no rights to edit the permissions.

Question: What is the best solution to move data to lxc-mountpoints regarding the permissions? Should i use a systemwide user or group? Or should i mount the samba-share from the old server in the lxc?

audiobookshelf is only the beginning. SABnzbd and jellyfin will follow so i ask in common… ;)

  • tvcvt@lemmy.ml
    link
    fedilink
    English
    arrow-up
    3
    ·
    3 months ago

    I’m making some assumptions, namely that you’re using an unprivileged LXC container and the mount point is a bind mount.

    Unprivileged LXC shift user ID numbers so that an escape won’t result in root access to the host. The root user (uid 0) in the container is actually uid 100000 from the perspective of the Proxmox host.

    What I usually do is set ownership of my bind mounts to that high-numbered ID (so something like chown -R 100000:100000 /path/to/bind/mount) from Proxmox. Then the root user in the container will be able to set whatever permissions you need directly.

    • moddy@feddit.orgOP
      link
      fedilink
      arrow-up
      1
      ·
      3 months ago

      This is the way i will go! Especially when i have a mounted directory in several different lxc’s i just have to chown it this way for one time.

      Thank you!

      PS: I hope you can read my answer, because i do see your post only in my inbox. The thread seems almost empty. Guess it has to do with my feddit.org-account.

      • tvcvt@lemmy.ml
        link
        fedilink
        English
        arrow-up
        1
        ·
        3 months ago

        Awesome. I’m glad it helps. I’d be a little weary of using the same directory in multiple containers. File systems may or may not behave well with multiple machines writing to them. Not saying anything bad will happen, but do keep an eye out for issues.

  • monty33@lemmy.ml
    link
    fedilink
    English
    arrow-up
    1
    ·
    3 months ago

    I have had these permission issues in the past. Once I switched to mounting directly in the LXC they all went away.

  • lemmyng@lemmy.ca
    link
    fedilink
    English
    arrow-up
    1
    ·
    3 months ago

    Figure out the uid/gid (numeric) for the user in lxc, then change the data permissions to those.