Give local PHP Full Disk Access in Mojave

apachemojavePHPprivacysqlite

I have a PHP webpage running on the local apache installation. The page uses shell_exec to access the messages/chat.db via sqlite3.

shell_exec("sudo -u ben sqlite3 ~/Library/messages/chat.db \"SELECT ...

Before Mojave I got the response correctly, but since updating to Mojave I get:

unable to open database

When running in the Terminal directly, this same issue occurs and is solved by adding Terminal to the "Full Disk Access" pane in System Preferences.

I can't figure out what I need to add for the PHP page; I've tried everything I can find… sqlite3, apachectl, php-fpm, but nothing has worked.

What do I need to add?

FYI: ben is in the sudoers file

Best Answer

You are possibly doing it incorrectly.

First of all, sudo typically requires a password to be typed, and that won't happen via a Web app.

Second, the _www user doesn't get to use sudo. That's a big security hole. Don't even think of modifying sudoers to allow it.

What you should be doing instead is allow the _www user (the one the webserver runs as) access to the chat.db file, like this:

sudo chgrp _www ~/Library
sudo chgrp _www ~/Library/messages
sudo chgrp _www ~/Library/messages/chat.db
chmod g+rx ~/Library
chmod g+rx ~/Library/messages
chmod g+r  ~/Library/messages/chat.db

Related Solutions

Joomla not working on Localhost:8000

After further research, I saw that Joomla 3.x does not work with php version 5.6 (which is what I was using)

If you are having this issue, I recommend using Homebrew to get php 5.4 or 5.3.

I did the following:

brew install php54

In one terminal tab, I have php5.6 running with the following command:

/usr/local/Cellar/php56/5.6.7/bin/php -S localhost:8000

In another terminal tab, I have stable php 5.4 running with the following command:

/usr/local/Cellar/php54/5.4.39/bin/php -S localhost:8001

(Both have the same document root (website folder) so both can access MySQL just fine.)

So going to http://localhost:8000/ will go to my php 5.6 server while http://localhost:8001/ will go to my php 5.4 server.

Joomla is working like a charm on my php 5.4 test server.

I suppose it should have been common sense to use a more stable version of php rather than the newest one but hopeful this helps someone!

MacOS – PHP MAMP user not finding /usr/local/bin

This is most likely an issue with the default search path on MacOS X not including that directory. Homebrew is affected by that as well, so they list a workaround on their FAQ page:

launchctl setenv PATH "/usr/local/bin:$PATH"

That FAQ entry also helpfully references https://stackoverflow.com/questions/135688/setting-environment-variables-in-os-x/5444960 for more details about setting environment in OS X.

Best Answer

Related Solutions

Joomla not working on Localhost:8000

MacOS – PHP MAMP user not finding /usr/local/bin

Related Question