Skip to content

Vendor-neutral, engineer-written explanations. Clear definitions first, then practical steps with real examples — no fluff.

.How do I set file/folder permissions for Shopware 6 safely (no 777)?

SB
Written by StageBit Engineering Team
Updated May 2026 0 min readVerified by engineers

Quick Answer

Never use 777 permissions on a Shopware 6 store. Use 755 for folders and 644 for files, then make only writable directories owned by the web server user. This keeps uploads, cache, and logs writable without exposing the entire store to security risks.

1

Set folder permissions

Run find . -type d -exec chmod 755 {} \; from your Shopware root directory. This allows the server to access folders while blocking unsafe public write access.

2

Set file permissions

Run find . -type f -exec chmod 644 {} \;. This keeps files readable by the server without allowing public modification.

3

Assign correct ownership

Set the web server user as owner for writable directories like var, public/media, and public/thumbnail. On Ubuntu, this is usually www-data.

TIP If permissions keep resetting after deployments, fix them in your deployment script instead of changing them manually each time.

Related Answers

Shopware .How do I connect a Headless Sales Channel to Store API only? Shopware .How do I set SEO URLs per Sales Channel and avoid duplicates? Shopware .How do I map languages/currencies per Sales Channel correctly? Shopware .How do I add a second domain with its own language and currency?

Was this answer helpful?

Your feedback helps us improve our answers.

Still need help?

Talk to our Shopware experts

We've handled GDPR/CCPA compliance for dozens of EU & US Shopware stores.

Talk to Shopware Experts

Tell us more about your brand!

Rohit Kundale, Our VP of Sales and Marketing is ready to meet with your team.