Open rhessing opened 1 year ago
@rhessing please contact PM at automation_toolchain_pm@f5.com so we can prioritize this issue
@rhessing please contact PM at automation_toolchain_pm@f5.com so we can prioritize this issue
It should be a very easy fix to update the helm chart to support new security requirements. I will try to fix this tomorrow as we have a requirement on this as well.
@shkarface could you please mention if there has been any progress on this.
~Also, could you mention if there is a workaround until the fix arrives.~
Nevermind, I built another container with the directory pre-created for my testing purposes
Setup Details
FIC Version : HelmChart 0.0.3, 0.1.8 CIS Version : 2.10.1 FIC Build: f5networks/f5-ipam-controller:0.1.8 CIS Build: f5networks/k8s-bigip-ctlr:2.10.1 AS3 Version: 3.4 Orchestration: K8S Orchestration Version: 1.24.4 Additional Setup details: nfs.csi.k8s.io (https://github.com/kubernetes-csi/csi-driver-nfs)
Description
When using a NFS storage class:
The helm install will work however the IPAM Controller Pod will not run due to a permission issue:
Even if I create a Job that sets the correct permissions, it won't do the trick:
Steps To Reproduce
1) Install a K8s clusterr 2) Install the NFS CSI plugin 3) Create a NFS export on the NFS server 4) Create a storage class with the NFS server IP and path 5) Use helm to install the F5 IPAM controller
Expected Result
Actual Result