Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Major
Fix Version/s: 2.4.0
Affects Version/s: None
Component/s: operator
Labels:
None

Sprint:
9 - Krakend
Story Points:
1

Description

tl;dc = mount as 0555 instead of 0550

The Operator sets the script permissions for the tls passphrase script which is run by Couchbase Server. The best practice is to use securityContext.runAsUser: 1000 which mounts the script as couchbase user. But this isn't required and when omitted the script is mounted as root and unable to run. So we need to give public users read & execute, and this is fine as nothing sensitive is in this script.

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Tommie McAfee (Inactive)

Reporter:: Tommie McAfee (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 13/Jan/23 2:19 PM

Updated:: 28/Mar/23 1:15 PM

Resolved:: 13/Jan/23 5:20 PM

Gerrit Reviews

There are no open Gerrit changes

Show There are 2 closed Gerrit changes

Hide There are 2 closed Gerrit changes

K8S-2957: let server run passphrase script by different user: Gerrit Review:

K8S-2957: let server run passphrase script by different user: Gerrit Review:

passphrase script needs public r+x permissions

Details

Description

Attachments

Gerrit Reviews

Activity

People

Dates

Gerrit Reviews

PagerDuty