-
-
Notifications
You must be signed in to change notification settings - Fork 296
Description
Hello, I am trying to run zulip on k3s using the helm chart. It works fine with my setup as long as I don't apply a securityContext to make it run as user 1000.
securityContext:
runAsUser: 1000
runAsGroup: 1000
fsGroup: 1000
When I do that, I get the following error:
/home/zulip/deployments/current/scripts/zulip-puppet-apply must be run as root.
I did a bit of searching, but all I found was this issue, which wasn't really relevant.
Wondering if there could be a way to run the zulip container in day-to-day operations as a non-root user? Looking at the entrypoint.sh Perhaps a new entrypoint command could be introduced that skips some of the initialization steps on a server that has already been created, or if that's not possible, perhaps one could create a Containerfile that performs these initialization steps and stores them as layers? I admit I know nothing about how Zulip actually works, so what I am describing might be impossible.
Another acceptable solution might be to use a rootless k3s setup.
Appreciate any advice or solutions here. My friend group is evaluating self-hosting Zulip as an alternative to discord, and so far first impressions have been very good.