Closed Harrys-git closed 2 months ago
Hi @Harrys-git
Could you please try to install the chart using the suggestion below (undoing the security improvement changes)?
Please let us know if that's the case so we can give you further suggestions to make the chart compatible with your environment.
I attempted the following: Added the "config" block back to helm chart
The only way around this was to run an initScript that uses sed to replace the lines necessary. The initScript doesn't work properly without creating an emptyDir like explained in this ticket #24473. Code is as follows:
extraVolumeMounts:
- name: empty-dir
mountPath: /bitnami/elasticsearch
subPath: app-volume-dir
Hi @Harrys-git
The default configuration file for Elasticsearch (when no custom configuration is provided) looks like this:
http:
port: "9200"
path:
data: /bitnami/elasticsearch/data
transport:
port: "9300"
network:
host: 10.244.0.6
publish_host: 10.244.0.6
bind_host: 0.0.0.0
cluster:
name: elastic
node:
name: elasticsearch-master-0
discovery:
type: single-node
xpack.security.http:
ssl:
enabled: false
xpack:
security:
enabled: "false"
ml:
enabled: "false"
As you can see, the "data" directory is /bitnami/elasticsearch/data
where you shouldn't find permissions issues. The problem is that you're overriding this configuration file.
This is sth you can avoid using the extraConfig
parameter (which extends the default configuration) instead of the config
parameter (which overrides it). Alternatively, you can keep using config
as you're doing now, but pleas ensure you add the block below:
path:
data: /bitnami/elasticsearch/data
This Issue has been automatically marked as "stale" because it has not had recent activity (for 15 days). It will be closed if no further activity occurs. Thanks for the feedback.
Due to the lack of activity in the last 5 days since it was marked as "stale", we proceed to close this Issue. Do not hesitate to reopen it later if necessary.
Name and Version
bitnami/elasticsearch 21.1.0
What architecture are you using?
None
What steps will reproduce the bug?
I am trying to helm install elasticsearch onto an openshift cluster with no rights to run containers as root.
Are you using any custom parameters or values?
Whilst setting the below config in the helm chart I run into permission issues.
What is the expected behavior?
I expect the chart to modify the yaml found at /opt/bitnami/elasticsearch/config/elasticsearch.yml with my provided http config.
What do you see instead?
Error:
After reading the README.md of the bitnami/elasticsearch repo I see this
So I tried to set the initContainer up but I am unable to "runAsUser: 0" in my environment.
How do I change the elasticsearch.yaml if its read only? I have tried, init containers, mounting the config myself and other ways of doing it myself but its not working properly.
Additional information
No response