stackstorm-k8s icon indicating copy to clipboard operation
stackstorm-k8s copied to clipboard

Published 20 hours ago verified publisher icon StackStorm

Unable to run st2client , st2web, st2actionrunner as stanley user after adding securityContext

Open speaktoabu opened this issue 1 year ago • 5 comments

  • Added the following security context for st2client & st2actionrunner.. Getting the following error
securityContext:
          allowPrivilegeEscalation: false
          runAsNonRoot: true
          runAsUser: 1000

st2actionrunner

 unable to open log file: open /root/.sdm/sdm.log: permission denied                                                                                                 
│ unable to open log file: open /root/.sdm/sdm.log: permission denied       
                                                                                     │

st2web:

 /bin/bash: /etc/nginx/conf.d/st2.conf: Permission denied

st2client:

stream logs failed container "generate-st2client-config" in pod "stackstorm-st2client-xxx" is waiting to start: CreateContainerConfigError for stackstorm/stackstorm-st2client-xxx (generate-st2client-config)

speaktoabu avatar Mar 08 '24 21:03 speaktoabu

Related: #185 (for st2web)

cognifloyd avatar Apr 11 '24 23:04 cognifloyd

I suspect #400 will resolve this.

cognifloyd avatar Apr 11 '24 23:04 cognifloyd

Thanks @cognifloyd .. Is there any ETA for #185 #400 ?

speaktoabu avatar May 07 '24 06:05 speaktoabu

I'm waiting on the author of #400 to respond to my feedback.

cognifloyd avatar May 07 '24 15:05 cognifloyd

Yes sorry - i'll try to get to #400 soon, I'm aware of a few issues I found while I doing further testing so I'll need to fix those and address your comments

jk464 avatar May 07 '24 17:05 jk464