From a943683383682ccc45f4d422c59ec4e01b9e60ef Mon Sep 17 00:00:00 2001 From: tghfly222 Date: Sat, 16 Sep 2023 20:15:03 +0800 Subject: [PATCH 1/2] when deploy grafana,write /var/lib/grafana/plugins/ permission denied Signed-off-by: tghfly222 --- install/kubernetes/prometheus/grafana/grafana-dp.yml | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/install/kubernetes/prometheus/grafana/grafana-dp.yml b/install/kubernetes/prometheus/grafana/grafana-dp.yml index f8b40cea2..f4872a694 100755 --- a/install/kubernetes/prometheus/grafana/grafana-dp.yml +++ b/install/kubernetes/prometheus/grafana/grafana-dp.yml @@ -70,8 +70,10 @@ spec: - mountPath: /grafana-dashboard-definitions/0/ name: all-grafana-dashboards readOnly: false -# securityContext: -# fsGroup: 472 + securityContext: + fsGroup: 472 + supplementalGroups: + - 0 # runAsNonRoot: true # runAsUser: 65534 serviceAccountName: grafana From 3d7d17ae6157100deeb1a8ff0be1c2b886be7c93 Mon Sep 17 00:00:00 2001 From: tghfly222 Date: Sat, 16 Sep 2023 21:18:38 +0800 Subject: [PATCH 2/2] bugfix: mkdir: can't create directory '/var/lib/grafana/plugins': Permission denied --- install/kubernetes/prometheus/grafana/grafana-dp.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/install/kubernetes/prometheus/grafana/grafana-dp.yml b/install/kubernetes/prometheus/grafana/grafana-dp.yml index f4872a694..7304d3ee1 100755 --- a/install/kubernetes/prometheus/grafana/grafana-dp.yml +++ b/install/kubernetes/prometheus/grafana/grafana-dp.yml @@ -24,6 +24,13 @@ spec: operator: In values: - "true" + initContainers: + - name: modify-volume-permission + image: busybox:1.36.0 + command: ["sh","-c","chown 472 /var/lib/grafana/"] + volumeMounts: + - mountPath: /var/lib/grafana + name: grafana-storage containers: - name: grafana image: grafana/grafana:9.1.5