You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Because setting htdocsConfigMap requires both writing to /opt/bitnami/apache/htdocs/ and interacting with files that have an ownership of root, both of the above must be set to false for it to work.
Is there another intended usage pattern meant for this setting, or should it be documented that its usage requires relaxation of the containerSecurityContext options?
Are you using any custom parameters or values?
Configuring htdocsConfigMap to the name of a configmap where it is unset by default.
What is the expected behavior?
The configmap should be mounted to the htdocs directory successfully while containerSecurityContext should not need altered.
What do you see instead?
I get an error:
apache 09:12:49.11 INFO ==> ** Starting Apache setup **
apache 09:12:49.22 INFO ==> Mounting application files from '/app'
rm: cannot remove '/opt/bitnami/apache/htdocs/index.html': Read-only file system
I need to configure the following for the configmap mounting to work:
hybby
changed the title
htdocsConfigMap is incompatible with containerSecurityContext
[bitnami/apache 11.0.2] htdocsConfigMap is incompatible with containerSecurityContext
May 10, 2024
hybby
changed the title
[bitnami/apache 11.0.2] htdocsConfigMap is incompatible with containerSecurityContext
[bitnami/apache] htdocsConfigMap is incompatible with containerSecurityContext
May 10, 2024
A workaround to mount a configmap containing static HTTP file data while maintaining a read-only root filesystem is to use the extraVolume... functionality of the chart. But I'd suggest that this makes htdocsConfigMap redundant.
Name and Version
bitnami/apache 11.0.2
What architecture are you using?
arm64
What steps will reproduce the bug?
There is an option to overwrite the contents of the Apache htdocs directory with the contents of a configmap (
htdocsConfigMap
).When set, Apache containers fail to come up with:
This is due to this script in the container entrypoint:
https://github.com/bitnami/containers/blob/553a1efd8556e38d226a19dd2d2535cf9b08e756/bitnami/apache/2.4/debian-12/rootfs/opt/bitnami/scripts/apache/setup.sh#L76-L80
This conflicts with the default containerSecurityContext options:
Because setting
htdocsConfigMap
requires both writing to/opt/bitnami/apache/htdocs/
and interacting with files that have an ownership of root, both of the above must be set tofalse
for it to work.Is there another intended usage pattern meant for this setting, or should it be documented that its usage requires relaxation of the containerSecurityContext options?
Are you using any custom parameters or values?
Configuring
htdocsConfigMap
to the name of a configmap where it is unset by default.What is the expected behavior?
The configmap should be mounted to the htdocs directory successfully while containerSecurityContext should not need altered.
What do you see instead?
I get an error:
I need to configure the following for the configmap mounting to work:
The text was updated successfully, but these errors were encountered: