Checklist
I have read intro post: About the Installation Issues category
I have read the tutorials, help and searched for similar issues
I provide relevant information about my server (component names and versions, etc.)
I provide a copy of my logs and healthcheck
I describe the steps I have taken to trouble shoot the problem
I describe the steps on how to reproduce the issue
Hi!
I’m wondering if there is an example deployment for the non-root image on kubernetes/helm.
I have tried to use the docker compose as a base for creating a deployment with the non root image, but can’t get it to work.
No comment at all? I can’t be the only one who wants to run the non root image on kubernetes.
Did a comparison with the root image, that also does throw the same error massage at container startup after importing the GPG keys but does continue to the installation section.
Could this be a bug on this version?
I have encountered the same issue. In my case, I aim to execute this image as a non-root user and utilize my ingress for TLS. Have you discovered a solution for this?
For the ports, non-root images are using 8080 for http and 4433 for https so you have to bind the ports in your service.
In my case I just use http port :
By default, passbolt image will create an SSL cert and force you to use it.
So I tried something : I pass variables to the container SSL=false and PASSBOLT_SSL_FORCE=false and it worked.
If you want to use https between the pod and the ingress, don’t set SSL=false and PASSBOLT_SSL_FORCE=false, bind the port 4433 to 433 and on your kubernetes ingress allow untrusted certificates parameter (something like that) and it should works with self-signed certificate.
Don’t forgot to check if the livenessProbe and the readinessProbe have the good port and scheme
PS: You can use the official passbolt helm chart if you want to run it as root with ssl in other case, I think it’s faster to create another chart