Open vpavlin opened 5 years ago
@vpavlin I think the main problem is that "1001" is not the uid of arangodb. If you use names then it works:
docker run --name tmp0 -it --rm -u arangodb:arangodb docker.io/arangodb/arangodb:3.3.17 bash
Can you confirm this?
Could be, the problem is that in OpenShift the uid is random for better security, but the user is in group root, thus the guidelines suggest to chgrp -R 0
see: https://docs.okd.io/latest/creating_images/guidelines.html#openshift-specific-guidelines
I can still reproduce the same issue using Kubernetes if I drop the DAC_OVERRIDE Linux capability in the deployment file even if I am using the root user:
root@test-76c67d987c-pncbc:/# touch /var/lib/arangodb3-apps/_db/s
touch: cannot touch '/var/lib/arangodb3-apps/_db/s': Permission denied
Hi,
I am working on deploying ArangoDB on our OpenShift cluster and everything looks great up to the point where I try to create a database at which point I get:
I tracked the issue down to missing
-R
in https://github.com/vpavlin/arangodb-docker/blob/official/Dockerfile34.templ#L46-L47Steps to reproduce:
I have built an image from fixed Dockerfile https://quay.io/repository/vpavlin/arangodb?tab=tags which works fine: