Open Dentrax opened 2 weeks ago
Normally /usr/camunda/zeebe/logs
should be mounted as a volume, even if it's only EmptyDir (for non-persistent logs). To be honest, in the cloud, I would fully disable the file logging. It looks like this is not currently possible without overwriting the default configuration file. I'll open an FR for it, in the mean time I will redirect this PR to the Helm chart repository.
Describe the bug
zeebe-gateway
writes logs to its read-only filesystem evensecurityContext. readOnlyRootFilesystem
is set totrue
.To Reproduce
Spin up a new camunda platform using the Kubernetes Helm Chart.
Expected behavior
Container should be fully read-only. Even
$ZEEBE_LOG_APPENDER
defaults toConsole
, all zeebe and zeebe-gateway instances writes logs under/usr/local/zeebe/logs
.Log/Stacktrace
Full Stacktrace
```
```
Environment:
camunda/zeebe:8.5.6