Kubernetes Azure - Error during setup

Richard Adler
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
February 24, 2025

During the setup of confluence data center in a kubernetes cluster in azure via the helm chart, I get the following error :

Caused by: com.atlassian.secrets.api.SecretServiceException: Error applying read only permissions to file   /var/atlassian/application-data/shared-home/keys/ATL_SECRET_AES_

 

This problem is occurring in the confluence version 9.3.1. When I configure the version 9.0.2, the error is not happening. 

My persistent volume is referencing to an Azure file share. The current config of the persistent volume is:

 

apiVersion: v1
kind: PersistentVolume
metadata:
  annotations:
    pv.kubernetes.io/provisioned-by: file.csi.azure.com
  name:  confluencemax-shared-vol-pv
  namespace: confluencemax
spec:
  capacity:
    storage: 1Gi
  volumeMode: Filesystem
  accessModes:
    - ReadWriteMany
  persistentVolumeReclaimPolicy: Retain
  storageClassName: azurefile-csi
  csi:
    driver: file.csi.azure.com
    volumeHandle: "Ressourcegroupname#storagename#sharename"  # make sure this volumeid is unique for every identical share in the cluster
    volumeAttributes:
      #resourceGroup: resourceGroupName  # optional, only set this when storage account is not in the same resource group as node
      shareName: sharename
    nodeStageSecretRef:
      name: azure-secret-sharednode
      namespace: confluencemax


The 
ATL_SECRET_ secret file is created in the Azure file share and has following permissions: 

-rwxrwxrwx 1 root confluence 32 Feb 24 09:07 ATL_SECRET_AES_

 

Also after entering manuell the the command chmod a=r ATL_SECRET_AES the permissions are changed. Has anybody a clue how to allow file permissions changes for the confluence user

1 answer

0 votes
Yevhen
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 24, 2025

@Richard Adler do you mind sharing the entire stacktrace?

Dylan Rathbone
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 24, 2025

@Richard Adler can you please also confirm if the Confluence system is actually available and can be used having hit this problem?

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
SERVER
VERSION
9.3.1
PRODUCT PLAN
STANDARD
TAGS
AUG Leaders

Atlassian Community Events