Open Aldigor opened 2 years ago
Howdy my friend. At first blush, this looks like a problem with the SFTP-GCS server application (this package) not being able to read the gcloud-key.json
file. I'm not a K8S hero ... so I'm going to need your help in debugging in that area. Do I understand that this file is "local" in your file system and "burnt" / "copied" into the Docker container? My first set of questions for us to examine are:
For example, if the file on the file system is defined to have permissions
-rw------- root root
That would say that only root
has permissions to read the file. However, if the demon runs as a userid other than root
, it would not be able to open the file and we would get the error described. This does feel like a mystery though as I have always felt that Container hosted apps run as root and that should have no permission checks. We should try an experiment by setting your gcloud-key.json
to 777
chmod 777 gcloud-key.json
and re-building the container and trying again. I'm not suggesting this as the ultimate solution, but it will verify that it is as Linux file permissions issue.
If it would help, I'll make myself available for a screen share at a convenient time for both of us ... kolban@google.com
Neil
Hi,
Please……. I have problem with sftp-gcs, when I run it in k8s. I've got the key for the service account in the json file which was downloaded when creating the key. The service account has StorageAdmin role on the bucket and roles/logging-admin
Docker file is:
Yaml for k8s is:
Thank you for help
Robert