Posted by ErmanArslansOracleBlog on Jan 25, 2023; 11:40am
URL: http://erman-arslan-s-oracle-forum.124.s1.nabble.com/permission-for-user-tp11496p11499.html

You can do those things with "setfacl"

Following is an example/demo: (you may need to modify the command according to your exact needs of course)

[root@ebsclone /]# mkdir testerman
[root@ebsclone /]# ls -al testerman
drwxr-xr-x   2 root root    6 Jan 25 14:37 .
dr-xr-xr-x. 37 root root 4096 Jan 25 14:37 ..

[root@ebsclone /]# touch testerman/erm1
[root@ebsclone /]# ls -al testerman/erm1
-rw-r--r-- 1 root root 0 Jan 25 14:38 testerman/erm1

[root@ebsclone /]# getfacl testerman
# file: testerman
# owner: root
# group: root
user::rwx
group::r-x
other::r-x

[root@ebsclone /]# getfacl testerman/erm1
# file: testerman/erm1
# owner: root
# group: root
user::rw-
group::r--
other::r--

[root@ebsclone /]# su - applmgr
[applmgr@ebsclone ~]$ cd /testerman
[applmgr@ebsclone testerman]$ rm -f erm1
rm: cannot remove âerm1â: Permission denied

[applmgr@ebsclone testerman]$ exit

[root@ebsclone /]# setfacl -m default:g::rwx -m o::rwx testerman
[root@ebsclone /]# getfacl testerman
# file: testerman
# owner: root
# group: root
user::rwx
group::r-x
other::rwx
default:user::rwx
default:group::rwx
default:other::rwx

[root@ebsclone /]# touch testerman/erm2
[root@ebsclone /]# getfacl testerman/erm2
# file: testerman/erm2
# owner: root
# group: root
user::rw-
group::rw-
other::rw-

[root@ebsclone /]# getfacl testerman/erm1
# file: testerman/erm1
# owner: root
# group: root
user::rw-
group::r--
other::r--

[root@ebsclone /]# su - applmgr
[applmgr@ebsclone ~]$ cd /testerman
[applmgr@ebsclone testerman]$ ls -al

drwxr-xrwx+  2 root root   30 Jan 25 14:38 .
dr-xr-xr-x. 37 root root 4096 Jan 25 14:37 ..
-rw-r--r--   1 root root    0 Jan 25 14:38 erm1
-rw-rw-rw-   1 root root    0 Jan 25 14:38 erm2

[applmgr@ebsclone testerman]$ rm erm2