Docker compose container permission errors

[LukasRdm]

Docker container made with compose with bind mounts has many permission issues.

I am using docker compose to start the container. Here is the docker-compose.yml:

version: "3"

x-logging: &default-logging options: max-size: '50m' max-file: '10' driver: json-file

services: nominatim: container_name: nominatim image: mediagis/nominatim:4.4 ports:

• "18080:8080" environment: PBF_URL: https://download.geofabrik.de/europe-latest.osm.pbf REPLICATION_URL: https://download.geofabrik.de/europe-updates/ NOMINATIM_PASSWORD: secret IMPORT_WIKIPEDIA: "true" THREADS: 8 UPDATE_MODE: once volumes:
• type: bind source: /data/nominatim/db target: /var/lib/postgresql/14/main
• type: bind source: /data/nominatim/flatnode target: /nominatim/flatnode shm_size: 8gb logging: *default-logging

First error is met at Postgres DB start up. Error says: Starting PostgreSQL 14 database server * Error: The cluster is owned by user id 1026 which does not exist This can be overcome by adding this line to compose file: command: bash -c "sudo chown -R postgres:postgres /var/lib/postgresql/14/main && /app/start.sh"

Second and third error is met when trying to update the Nominatim data. The daily updates didn't come through, so I tried updating the data manually with command: docker exec -it nominatim sudo -u nominatim nominatim replication --catch-up

The second error looks like: PermissionError: [Errno 13] Permission denied: '/app/tokenizer

After manually giving permission with command: docker exec -it container_id sudo chown nominatim:nominatim /app

I try to manually update again. I get through the second error, but similar error pops up: RuntimeError: Open failed for '/nominatim/osmosischange.osc': Permission denied

I am trying the same command: docker exec -it container_id sudo chown nominatim:nominatim /app Which should finally finish the update.

Desktop / Server (please complete the following information):

• OS & Version: Ubuntu 24.04
• Docker Version: 27.0.3
• Nominatim Version: 4.4.0

[LukasRdm]

Yes, after using command chown on folder /app for the second time, the update has successfully finished.

[LukasRdm]

I switched to normal volumes which solved the permission issues. Still had trouble with docker exec -it nominatim sudo -u nominatim nominatim replication --catch-up, but after using the --project-dir docker exec -it nominatim sudo -u nominatim nominatim replication --catch-up --project-dir /nominatim all went well. Automatic updates with parameter UPDATE_MODE=once in docker-compose still doesn't work tho.