Red Hat Bugzilla – Bug 1249794
s2i security changes for 3.0.0 make certain file serving operations not permitted due to permissions (eg: php)
Last modified: 2016-01-05 04:16:07 EST
Recent changes to S2I images make the application tree area not manipulatable by the application itself. For example, the following app cannot work because it expects to write to $"HOME"/uploads:
In this case, it's possible for PHP to write the file to /tmp but it cannot actually be served from there because of the Apache configuration.
More generically, it appears that there is a problem where it doesn't seem possible to write files dynamically to an area that is directly accessible to the end-user. In the case of the uploader above, we would need to write a php snippet that actually serves the file from /tmp, which seems excessive.
Erik have you had a chance to try this with a new image?
Looks like it works.
Verified with below image versions, file can be uploaded successfully.