So looking at it, yeah it probably is doable to limit access via groups.
The section of code in PiNet in relation to this is here - https://github.com/PiNet/PiNet/blob/jes ... inet#L1146
The bindfs mount file needs edited -
And replace the
. That will still allow read access to everyone, but only write access to that group.
To make it only accessible to a specific group, key is to change the perms=0775 to perms=0770.
It is something I am looking into in relation to moving away from Linux users in the future, moving over to LDAP. At that point, the groups system becomes a bit easier. But that will be a while away.
Lead developer of PiNet, a free and opensource centralised user accounts and file storage system for Raspberry Pi classrooms used in over 200 schools across the world.