wide-flag-41451
07/05/2023, 7:55 PMyaml
sync:
defaults:
exclude:
- '**/node_modules'
# owner: 1000 # <- set an integer user ID or a string name
# group: 1000 # <- set an integer group ID or a string name
fileMode: 644 # <- set the permission bits (as octals) for synced files
directoryMode: 755 # <- set the permission bits (as octals) for synced directories
I've still not beable to get this to work with this configquaint-dress-831
07/06/2023, 12:59 PMfileMode
and directoryMode
as you demonstrated fix the issue?wide-flag-41451
07/06/2023, 1:11 PMquaint-dress-831
07/06/2023, 1:20 PMyaml
defaultOwner: 1000 # <- set an integer user ID or a string name
defaultGroup: 1000 # <- set an integer group ID or a string name
defaultFileMode: 0666 # <- set the permission bits (as octals) for synced files
defaultDirectoryMode: 0777 # <- set the permission b
wide-flag-41451
07/06/2023, 1:27 PMquaint-dress-831
07/06/2023, 1:31 PMwide-flag-41451
07/06/2023, 1:33 PMquaint-dress-831
07/06/2023, 1:33 PMwide-flag-41451
07/06/2023, 1:34 PMquaint-dress-831
07/06/2023, 1:34 PMwide-flag-41451
07/06/2023, 1:36 PMquaint-dress-831
07/06/2023, 1:37 PMwide-flag-41451
07/06/2023, 1:37 PMquaint-dress-831
07/06/2023, 1:39 PMwide-flag-41451
07/06/2023, 1:39 PMquaint-dress-831
07/06/2023, 1:39 PMwide-flag-41451
07/06/2023, 1:39 PMquaint-dress-831
07/06/2023, 1:40 PMwide-flag-41451
07/06/2023, 1:40 PMquaint-dress-831
07/06/2023, 1:41 PMwide-flag-41451
07/06/2023, 1:44 PMquaint-dress-831
07/06/2023, 1:45 PMwide-flag-41451
07/06/2023, 1:46 PMquaint-dress-831
07/06/2023, 1:48 PMDockerfile
COPY --chown=65332:0 --chmod=775 tests tests
# Copy the source code into the container.
COPY --chown=65332:0 --chmod=775 src/telegram_bot_service_worldofgeese telegram_bot_service_worldofgeese/
wide-flag-41451
07/06/2023, 1:49 PMquaint-dress-831
07/06/2023, 1:50 PMkubernetes-exec
type of Testwide-flag-41451
07/06/2023, 1:50 PMquaint-dress-831
07/06/2023, 1:51 PMwide-flag-41451
07/06/2023, 1:53 PMquaint-dress-831
07/06/2023, 1:54 PMwide-flag-41451
07/06/2023, 1:54 PMquaint-dress-831
07/06/2023, 1:56 PMwide-flag-41451
07/06/2023, 1:57 PMsilly-accountant-45583
07/17/2023, 7:13 AMv0.12
to v0.13
. I think some miscommunication/confusion happened in the above discussion, so I want to just clarify what is really happening in hope to resolve the issue.
As I see when running container build action, garden copies project files to .garden/build/
directory and from there to util
container inside garden-buildkit
pod (I am using this build mode). In v0.12
files were copied as is, with the same unchanged permissions. But in v0.13
on the stage of copying files from local machine to container in the remote cluster (.garden/build/
-> util
container inside garden-buildkit
pod) permissions were modified to 0600
for files and 0700
for directories. These are default permissions used by Mutagen when synchronizing files - https://mutagen.io/documentation/synchronization/permissions#permissions.
This is not configurable from garden at all, so this is actually breaking change (or bug) when upgrading from v0.12
to v0.13
. Services built (through in-cluster building) and deployed by Garden v0.12
were working and functioning properly, but not with v0.13
anymore.
I managed to solve issue with wrong permissions by using following Mutagen config at `~/.mutagen.yml`:
yaml
sync:
defaults:
permissions:
defaultFileMode: 0644
defaultDirectoryMode: 0755
However, I think, it can't be considered as a proper solution, because permissions are hardcoded for all docker images and are not defined within Garden project folder (not portable). Ideally, permissions must be copied over with files to util
container in garden-buildkit
pod as is. Alternatively, we can define permission for each docker image in corresponding Dockerfile
, but in this case I would like you to confirm that current behavior won't change in future.
Thank you in advance and please let me know if you need any additional info.quaint-dress-831
07/17/2023, 9:22 AMbig-spring-14945
08/03/2023, 10:36 AMgarden self-update
)
> 2. Rebuild all docker images (garden build -f
) to make sure that permissions are okay in all cached images.COPY
directives can merely be a workaround, and even if it may be a good practice to reduce permissions as much as possible, the in-cluster building feature in Garden should stick to the well-known defaults of Docker and Git and use 644 and 755 default permissions for files and directories, unless specified otherwise.wide-flag-41451
08/03/2023, 12:58 PMbig-spring-14945
08/03/2023, 1:02 PM