Apache Webspace Directory Structure

Path	Ownership	Mode	Description
`log/`	root:pemsrv	rwxr-x---	This directory contains log-files for all websites attached to the web-space. Log-files are hidden from everyone except the pemsrv group which includes a special user created by the log-access service to allow customers to read their own log files.
`tmp/`	apache:apache	rwxr-x---	Temporary directory used for PHP session files and so on. The directory is writable for the apache user because mod_php uses it to execute PHP scripts.
`webspace/`	root:root	rwxr-xr-x	A customer cannot modify the content of this directory.
`webspace/certs/` `webspace/certs/httpsd.pem`	root:root root:root	rwxr-x--- rw-------	This directory contains certificates that the customer chose from the CloudBlue Commerce UI to be installed for their site on an exclusive IP address. Certificates are private information; the Apache main process reads them during startup.
`webspace/cgi-bin/` `webspace/cgi-bin/test.cgi`	<user>:pemsrv <user>:pemcln	rwxr-x--- rwxr-xr-x	The directory for a customer’s CGI scripts. They can put their own scripts here. The directory is readable for the Apache server user `apache`. Scripts themselves must be readable and executable at least for the owner (that is, have rx*** permissions). Ownership is important; if it is someone other than the owner specified, mod_suexec will refuse to execute that script. CGI scripts are executed with the `webspace/cgi-bin/` working directory. UID/GID are set to <user>:pemcln**.
`webspace/conf` `webspace/conf/vhost.conf`	root:root root:root	rwxr-xr-x r--------	The directory for configuration files. It is writable only for root. Configuration files are readable only for root. Apache reads them on startup.
`webspace/error-docs/` `webspace/error-docs/<HTTP error code>.html`	root:pemsrv <user>:pemsrv	rwxr-xr-x rw-r-----	Error documents are readable only by Apache and the webspace owner. The webspace owner can replace them.
`webspace/httpdocs/`	<user>:pemsrv	rwxr-x---	The document root of websites, readable by Apache (to process requests) and webspace owner. The webspace owner can modify the content of this directory. Those files must be world readable to be accessible by Apache.
`webspace/httpsdocs/`	<user>:pemsrv	rwxr-x---	The document root for secure websites. Other than that, it is the same as the `httpdocs/` directory described above.
`webspace/pd/` `webspace/pd/<dir_id>`	root:pemsrv root:root	rwxr-x--- r--------	Authorization files for protected directories. Only root can read those files.
`webspace/webstat/`	root:pemsrv	rwxr-x---	Web statistics generated by Webalizer. This directory is readable for the Apache system group to be accessible using HTTP.
`webspace/webstatssl/`	root:pemsrv	rwxr-x---	HTTPS web statistics.
`webspace/siteapps/` `webspace/siteapps/<application name>`	<user>:pemsrv root:root	--x--x--- --x--x--x	The directory containing third-party Apache web applications distributed with CloudBlue Commerce. Customers are not allowed to modify them manually; they can only view and install or uninstall these applications using the CCP. See the table below for the web application directory structure.
`webspace/webapps/` `webspace/webapps/<application name>/`	<user>:pemsrv root:root	--x--x--- --x--x--x	The directory containing the legacy applications – third-party web applications inherited from old Operations versions. As of Operations 2.6.5, these applications are still supported, but not maintained by CloudBlue Commerce. Customers are not allowed to modify the content of the directory manually; they can only view and install or uninstall these applications using the CCP. Note: If support of legacy applications is disabled by the CloudBlue Commerce provider, this directory is not used. See the table below for the web application directory structure.

log/

root:pemsrv

rwxr-x---

This directory contains log-files for all websites attached to the web-space. Log-files are hidden from everyone except the pemsrv group which includes a special user created by the log-access service to allow customers to read their own log files.

tmp/

apache:apache

rwxr-x---

Temporary directory used for PHP session files and so on. The directory is writable for the apache user because mod_php uses it to execute PHP scripts.

webspace/

root:root

rwxr-xr-x

A customer cannot modify the content of this directory.

webspace/certs/

webspace/certs/httpsd.pem

root:root

rwxr-x---

rw-------

This directory contains certificates that the customer chose from the CloudBlue Commerce UI to be installed for their site on an exclusive IP address.

Certificates are private information; the Apache main process reads them during startup.

webspace/cgi-bin/

webspace/cgi-bin/test.cgi

<user>:pemsrv

<user>:pemcln

rwxr-x---

rwxr-xr-x

The directory for a customer’s CGI scripts. They can put their own scripts here. The directory is readable for the Apache server user apache.

Scripts themselves must be readable and executable at least for the owner (that is, have r*x****** permissions). Ownership is important; if it is someone other than the owner specified, mod_suexec will refuse to execute that script.

CGI scripts are executed with the webspace/cgi-bin/ working directory. UID/GID are set to <user>:pemcln.

webspace/conf

webspace/conf/vhost.conf

root:root

rwxr-xr-x

r--------

The directory for configuration files. It is writable only for root. Configuration files are readable only for root. Apache reads them on startup.

webspace/error-docs/

webspace/error-docs/<HTTP error code>.html

root:pemsrv

<user>:pemsrv

rwxr-xr-x

rw-r-----

Error documents are readable only by Apache and the webspace owner. The webspace owner can replace them.

webspace/httpdocs/

<user>:pemsrv

rwxr-x---

The document root of websites, readable by Apache (to process requests) and webspace owner. The webspace owner can modify the content of this directory. Those files must be world readable to be accessible by Apache.

webspace/httpsdocs/

<user>:pemsrv

rwxr-x---

The document root for secure websites. Other than that, it is the same as the httpdocs/ directory described above.

webspace/pd/

webspace/pd/<dir_id>

root:pemsrv

root:root

rwxr-x---

r--------

Authorization files for protected directories. Only root can read those files.

webspace/webstat/

root:pemsrv

rwxr-x---

Web statistics generated by Webalizer. This directory is readable for the Apache system group to be accessible using HTTP.

webspace/webstatssl/

root:pemsrv

rwxr-x---

HTTPS web statistics.

webspace/siteapps/

webspace/siteapps/<application name>

<user>:pemsrv

root:root

--x--x---

--x--x--x

The directory containing third-party Apache web applications distributed with CloudBlue Commerce.

Customers are not allowed to modify them manually; they can only view and install or uninstall these applications using the CCP.

See the table below for the web application directory structure.

webspace/webapps/

webspace/webapps/<application name>/

<user>:pemsrv

root:root

--x--x---

--x--x--x

The directory containing the legacy applications – third-party web applications inherited from old Operations versions. As of Operations 2.6.5, these applications are still supported, but not maintained by CloudBlue Commerce. Customers are not allowed to modify the content of the directory manually; they can only view and install or uninstall these applications using the CCP.

Note: If support of legacy applications is disabled by the CloudBlue Commerce provider, this directory is not used.

See the table below for the web application directory structure.