I have an iaas server running nginx for a web2py application. The web2py welcome page views without problem, but my test application encounters an internal error. It runs just fine on my laptop on localhost. On the server the ticket link says "unkown" and when clicked the flash says "invalid ticket". Also the error folders in the file system is empty.
As far as I understand this could be due to web2py not having write privileges on the applications folder. Is this the case, and if so, could granting web2py these privileges be a security concern?
web2py needs to be able write to the errors, databases, and uploads directories (if you, respectively, have any errors, update the database, or upload any files to the default location), and would thus need write privileges on those directories. Whether or not it is a security concern, if you want to do those things, the cited privileges are needed. You could reduce those concerns by only allowing web2py such access.