During the setup of confluence data center in a kubernetes cluster in azure via the helm chart, I get the following error :
Caused by: com.atlassian.secrets.api.SecretServiceException: Error applying read only permissions to file /var/atlassian/application-data/shared-home/keys/ATL_SECRET_AES_
This problem is occurring in the confluence version 9.3.1. When I configure the version 9.0.2, the error is not happening.
My persistent volume is referencing to an Azure file share. The current config of the persistent volume is:
apiVersion: v1
kind: PersistentVolume
metadata:
annotations:
pv.kubernetes.io/provisioned-by: file.csi.azure.com
name: confluencemax-shared-vol-pv
namespace: confluencemax
spec:
capacity:
storage: 1Gi
volumeMode: Filesystem
accessModes:
- ReadWriteMany
persistentVolumeReclaimPolicy: Retain
storageClassName: azurefile-csi
csi:
driver: file.csi.azure.com
volumeHandle: "Ressourcegroupname#storagename#sharename" # make sure this volumeid is unique for every identical share in the cluster
volumeAttributes:
#resourceGroup: resourceGroupName # optional, only set this when storage account is not in the same resource group as node
shareName: sharename
nodeStageSecretRef:
name: azure-secret-sharednode
namespace: confluencemax
The ATL_SECRET_ secret file is created in the Azure file share and has following permissions:
-rwxrwxrwx 1 root confluence 32 Feb 24 09:07 ATL_SECRET_AES_
Also after entering manuell the the command chmod a=r ATL_SECRET_AES the permissions are changed. Has anybody a clue how to allow file permissions changes for the confluence user
