Logo
Skip to main content
Development
6 min read

NodeJS Error: EACCES: permission denied

D

Divya Mahi

November 21, 2023 · Updated November 22, 2023

NodeJS Error_ EACCES_ permission denied

Navigating the Node.js EACCES Error: A Comprehensive Guide to Permissions Management

Introduction

Node.js developers often encounter various system-level errors, with the "EACCES: permission denied" error being notably prevalent. This error typically indicates a lack of necessary file or directory permissions and can disrupt the smooth operation of a Node.js application. Understanding and resolving this error is essential for maintaining a secure and functional environment. In this guide, we'll explore the intricacies of the EACCES error, providing practical examples and solutions to effectively manage permissions in Node.js.

Understanding the Error

The "EACCES: permission denied" error in Node.js arises when an operation is attempted on a file or directory without the required permissions. This error can occur during file reading/writing, network access, or while executing scripts. It serves as a system-level safeguard against unauthorized access or modifications.

const fs = require('fs');

// Writing to a protected directory
fs.writeFileSync('/etc/config.json', '{}');
// Error: EACCES: permission denied

// Listening on a privileged port
const http = require('http');
http.createServer().listen(80);
// Error: EACCES: permission denied, bind 0.0.0.0:80

Diving Deeper

This error is rooted in the operating system's security mechanisms, designed to protect file and system integrity. Understanding user and group permissions, as well as the context in which your Node.js application runs, is crucial for troubleshooting and resolving this error.

Common Scenarios and Fixes with Example Code Snippets

Scenario 1: Reading a Protected File

Problem:

const fs = require('fs');

// Trying to read a file without read permissions
fs.readFile('/etc/shadow', 'utf8', (err, data) => {
  if (err) throw err; // EACCES: permission denied
  console.log(data);
});

Fix: Ensure the file is readable by the Node.js process user, or adjust permissions accordingly.

const fs = require('fs');

fs.readFile('/etc/shadow', 'utf8', (err, data) => {
  if (err) {
    if (err.code === 'EACCES') {
      console.error('Permission denied. Run with appropriate permissions.');
    }
    return;
  }
  console.log(data);
});

Scenario 2: Writing to a Restricted Directory

Problem:

const fs = require('fs');

// Writing to a system directory without permissions
fs.writeFileSync('/usr/local/bin/myapp', 'script content');

Fix: Choose a directory with write permissions for the Node.js process, or modify directory permissions.

const fs = require('fs');
const path = require('path');

// Write to a user-writable directory instead
const appDir = path.join(process.env.HOME || '.', '.myapp');
if (!fs.existsSync(appDir)) {
  fs.mkdirSync(appDir, { recursive: true });
}
fs.writeFileSync(path.join(appDir, 'config.json'), '{}');

Scenario 3: Access Denied to Network Port

Problem:

const http = require('http');

// Ports below 1024 require root on Linux
http.createServer((req, res) => {
  res.end('Hello');
}).listen(80); // EACCES: permission denied

Fix: Use a non-privileged port (above 1024) or run Node.js with elevated privileges for privileged ports.

const http = require('http');

const port = process.env.PORT || 3000; // Use port above 1024

http.createServer((req, res) => {
  res.end('Hello');
}).listen(port, () => {
  console.log(`Server running on port ${port}`);
});

// To use port 80, set up a reverse proxy (Nginx) or use:
// sudo setcap 'cap_net_bind_service=+ep' $(which node)

Scenario 4: Executing a Script Without Execute Permissions

Problem:

const { execSync } = require('child_process');

// Script doesn't have execute permission
execSync('./scripts/deploy.sh'); // EACCES

Fix: Add execute permissions to the script using chmod +x script.sh.

const { execSync } = require('child_process');
const fs = require('fs');

const scriptPath = './scripts/deploy.sh';

// Check permissions before executing
try {
  fs.accessSync(scriptPath, fs.constants.X_OK);
  execSync(scriptPath, { stdio: 'inherit' });
} catch (err) {
  if (err.code === 'EACCES') {
    // Make executable and retry
    execSync(`chmod +x ${scriptPath}`);
    execSync(scriptPath, { stdio: 'inherit' });
  }
}

Scenario 5: Attempting to Modify System Files

Problem:

const fs = require('fs');

// Trying to modify a read-only system file
fs.appendFileSync('/etc/hosts', '127.0.0.1 myapp.local');

Fix: Avoid modifying system files, or ensure proper administrative permissions.

const fs = require('fs');
const { execSync } = require('child_process');

// Use sudo for system files (if absolutely necessary)
try {
  execSync('echo "127.0.0.1 myapp.local" | sudo tee -a /etc/hosts');
} catch (err) {
  console.error('Failed to modify hosts file:', err.message);
  console.log('Run: sudo node setup.js');
}

Scenario 6: Node Modules Permission Issues

Problem: Error occurs during 'npm install' in a restricted directory.

const { execSync } = require('child_process');

// Global npm install without proper permissions
execSync('npm install -g some-package'); // EACCES

Fix: Run npm install in a directory where the Node.js process has write permissions.

const { execSync } = require('child_process');

// Use npx instead of global install
execSync('npx some-package', { stdio: 'inherit' });

// Or configure npm to use a user directory
// npm config set prefix ~/.npm-global
// Add ~/.npm-global/bin to PATH

Scenario 7: Accessing Restricted Environment Variables

Problem:

const fs = require('fs');

// Trying to read another user's files
const otherUserFile = '/home/otheruser/.ssh/id_rsa';
const key = fs.readFileSync(otherUserFile, 'utf8'); // EACCES

Fix: Ensure the Node.js process has the necessary permissions to access the environment variable.

const fs = require('fs');
const path = require('path');

// Only access your own files
const ownKey = path.join(process.env.HOME, '.ssh', 'id_rsa');

try {
  fs.accessSync(ownKey, fs.constants.R_OK);
  const key = fs.readFileSync(ownKey, 'utf8');
  console.log('Key loaded successfully');
} catch (err) {
  if (err.code === 'EACCES') {
    console.error('Fix permissions: chmod 600', ownKey);
  }
}

Scenario 8: Permission Issues with Docker Containers

Problem:

const fs = require('fs');

// In Docker, the Node process runs as root by default
// Files created are owned by root, causing issues on mounted volumes
fs.writeFileSync('/app/data/output.json', '{}');

Fix: Adjust Docker volume permissions to match the user inside the container.

// Dockerfile: Run as non-root user
// FROM node:18
// RUN addgroup -S appgroup && adduser -S appuser -G appgroup
// USER appuser

const fs = require('fs');
const path = require('path');

const dataDir = process.env.DATA_DIR || '/app/data';

// Ensure directory exists and is writable
try {
  fs.accessSync(dataDir, fs.constants.W_OK);
  fs.writeFileSync(path.join(dataDir, 'output.json'), '{}');
} catch (err) {
  if (err.code === 'EACCES') {
    console.error(`Cannot write to ${dataDir}. Check Docker volume permissions.`);
  }
}

Dockerfile:

Strategies to Prevent Errors

Understand User Context: Know which user the Node.js process is running as.

Proper File Permissions: Regularly check and adjust file and directory permissions.

Avoid Root Access: Run Node.js applications without root privileges whenever possible.

Best Practices

Principle of Least Privilege: Grant only the necessary permissions for a task.

Regular Audits: Periodically audit permissions for files and directories used by your Node.js application.

Use Environment Variables: Store sensitive data in environment variables with restricted access.

Docker Best Practices: In containerized environments, ensure user IDs inside and outside containers match.

Conclusion

The "EACCES: permission denied" error in Node.js, while potentially challenging, can be effectively managed with a sound understanding of system permissions and secure practices. By adhering to best practices and employing proactive strategies, developers can navigate these permissions issues, ensuring their Node.js applications run securely and efficiently. Remember, balancing security with functionality is key in building robust Node.js applications.

Development
D

Written by

Divya Mahi

Building innovative digital solutions at Poulima InfoTech. We specialize in web & mobile app development using React, Next.js, Flutter, and AI technologies.

Ready to Build Your Next Project?

Transform your ideas into reality with our expert development team. Let's discuss your vision.

Get a Free QuoteView Our Work

Continue Reading

Related Articles

AI and machine learning technology transforming business operations

February 18, 2026

How AI Is Transforming Business Operations in 2026: A Complete Guide

Artificial Intelligence is no longer a futuristic concept — it is the driving engine behind the most successful businesses in 2026. From automating repetitive tasks to making data-driven decisions in

JavaScript code on screen representing Next.js and React development

February 15, 2026

Next.js vs React in 2026: Which One Should You Choose for Your Project?

Choosing the right frontend framework is one of the most critical decisions for any web project. In 2026, the debate between Next.js and React continues to evolve as both technologies mature. This com

Mobile app development on smartphone screens

February 12, 2026

How Much Does It Cost to Build a Mobile App in 2026? Complete Pricing Guide

One of the most common questions we receive at Poulima InfoTech is: "How much does it cost to build a mobile app?" The answer depends on numerous factors, but this comprehensive guide will give you a

View All Articles