Setting up ownCloud on Mac OS Mountain Lion to use via SSH

January 5, 2014

I’ve been looking for a way to remotely access my media securely using ownCloud but I could never get myself to sit down and do it. Turns out that it’s a bit of a hurdle on Mac OS because it isn’t officially supported.

Setting up the web server

In Mountain Lion, Apple remove the option to easily start a web server from System Preferences -> Sharing. So instead we have to do it via, which if fine since we can setup a few more things from there as well.

First check where the server’s root directory starts in:

jonathan$ grep "DocumentRoot \"" /etc/apache2/httpd.conf
DocumentRoot "/Library/WebServer/Documents"

I preferred to change this to /Library/WebServer/Sites to make it more consistent, but I’ll only refer to the default one in this post.

Uncomment the line php5_module in the /etc/apache2/httpd.conf to enable php5 since ownCloud requires it. It should look something like this:

Create a configuration that allows your user to access the web server.

sudo vim /etc/apache2/users/`whoami`.conf

Add this configuration into the file:

<Directory "/Library/WebServer/Documents/">
     Options Indexes MultiViews
     AllowOverride All
     Order allow,deny
     Allow from all

Then start the server with:

sudo apachectl start

If you didn’t modify your DocumentRoot, going to localhost in your web browser will show “It Works!”, otherwise, create a simple index.html file in your DocumentRoot directory just to verify it works.

Installing ownCloud server

Go to the ownCloud download page and download the latest server as a tar file and extract the contents. You want to move the ‘/owncloud’ directory to your DocumentRoot location /Library/WebServer/Documents.

Give the apache webserver the right ownership to the owncloud directory:

sudo chown -R _www:_www /Library/WebServer/Documents/owncloud

You also need to create a .htaccess file at the DocumentRoot location with:

Options FollowSymLinks

If all went well, you should now be able to setup an administrator account in ownCloud from your browser with http://localhost/owncloud.
Note: During the setup, you should change the data folder to another location under Advanced for security. I chose mine to be /Library/WebServer/owncloud/data.

If you do change the data directory, remember to give that directory the same ownership so that it can be accessed as well:

sudo chown -R _www:_www /Library/WebServer/owncloud/data

Adding local server directories

I wanted to be able to add local directories that were part of my user files on my Mac. I found out that you can do that by installing the ownCloud app External storage support. Then in the admin settings, setup a folder from there with the ‘Configuration’ field as the absolute path to the directory you want. When done, a green circle will show up, to confirm if the folder is accessible.

Accessing via SSH

If you’re behind a firewall or a local network, this web server won’t be accessible past your LAN (which is how I wanted it). For those instances where I did want to access it remotely, I wanted to do so over SSH which makes me feel a bit safer.

You can enable SSH from System Preferences -> Sharing -> Check “Remote Login” and port forward that from your router if needed. If you need help port forwarding, this is a generic solution that should work for most.

Also, consider changing the default SSH port to something other that port 22 to avoid random attacks at your IP address. Check out this serverfault question on how to do that.

Open an SSH tunnel to your remote ownCloud server like so:

ssh -L 5900:localhost:80 [email protected]_host_ip

This tunnels all traffic from your remote port 80 to your local port 5900. Once you’ve authenticated that connection, you can go to your web browser on this computer and access your ownCloud with http://localhost:5900/owncloud