Setting runAsGroup on RedisSentinel sentinel pod CrashLoopBackOff

[ifalex]

What version of redis operator are you using?

kubectl logs <_redis-operator_pod_name> -n <namespace>

k logs redis-operator-f8969858f-rw76q
{"level":"info","ts":"2024-06-05T19:58:27Z","logger":"setup","msg":"starting manager"}
{"level":"info","ts":"2024-06-05T19:58:27Z","logger":"controller-runtime.metrics","msg":"Starting metrics server"}
{"level":"info","ts":"2024-06-05T19:58:27Z","logger":"controller-runtime.metrics","msg":"Serving metrics server","bindAddress":":8080","secure":false}
{"level":"info","ts":"2024-06-05T19:58:27Z","msg":"starting server","kind":"health probe","addr":"[::]:8081"}
I0605 19:58:27.416182       1 leaderelection.go:250] attempting to acquire leader lease integration/6cab913b.redis.opstreelabs.in...
I0605 19:58:27.453271       1 leaderelection.go:260] successfully acquired lease integration/6cab913b.redis.opstreelabs.in
{"level":"info","ts":"2024-06-05T19:58:27Z","msg":"Starting EventSource","controller":"redis","controllerGroup":"redis.redis.opstreelabs.in","controllerKind":"Redis","source":"kind source: *v1beta2.Redis"}
{"level":"info","ts":"2024-06-05T19:58:27Z","msg":"Starting Controller","controller":"redis","controllerGroup":"redis.redis.opstreelabs.in","controllerKind":"Redis"}
{"level":"info","ts":"2024-06-05T19:58:27Z","msg":"Starting EventSource","controller":"redisreplication","controllerGroup":"redis.redis.opstreelabs.in","controllerKind":"RedisReplication","source":"kind source: *v1beta2.RedisReplication"}

redis-operator version: resdis-operator:0.16.0 (

Does this issue reproduce with the latest release? Yes

What operating system and processor architecture are you using (kubectl version)?

kubectl version Output

$ kubectl version

Client Version: v1.29.3 Kustomize Version: v5.0.4-0.20230601165947-6ce0bf390ce3 Server Version: v1.28.8+k3s1

What did you do?

What did you expect to see? Expected redis-sentinel to run correctly.

What did you see instead? Sentinel is running without password which is not recommended /usr/bin/entrypoint-sentinel.sh: line 38: /etc/redis/sentinel.conf: Permission denied /usr/bin/entrypoint-sentinel.sh: line 18: /etc/redis/sentinel.conf: Permission denied Running sentinel without TLS mode ACL_MODE is not true, skipping ACL file modification /usr/bin/entrypoint-sentinel.sh: line 76: /etc/redis/sentinel.conf: Permission denied Starting sentinel service ..... 1:X 06 Jun 2024 06:27:20.005 # Sentinel config file /etc/redis/sentinel.conf is not writable: Permission denied. Exiting...

[ifalex]

Proposal from https://github.com/OT-CONTAINER-KIT/redis-operator/issues/970 would solve also this most likely.

[ifalex]

Closing this as we have https://github.com/OT-CONTAINER-KIT/redis-operator/issues/970 which will solve this if completed.