Skip to content

zeebe and zeebe-gateways writes logs under the container's filesystem even readOnlyRootFilesystem is set to true #2273

New issue
New issue
Open
Open
zeebe and zeebe-gateways writes logs under the container's filesystem even readOnlyRootFilesystem is set to true#2273
Labels
component/zeebekind/bugSomething isn't working as intendedpossibly-outdatedFor github issues over a year old
@Dentrax

Description

@Dentrax
Dentrax
opened on Aug 27, 2024

Describe the bug

zeebe-gateway writes logs to its read-only filesystem even securityContext. readOnlyRootFilesystem is set to true.

To Reproduce

Spin up a new camunda platform using the Kubernetes Helm Chart.

Expected behavior

Container should be fully read-only. Even $ZEEBE_LOG_APPENDER defaults to Console, all zeebe and zeebe-gateway instances writes logs under /usr/local/zeebe/logs.

Log/Stacktrace

camunda@camunda-zeebe-zeebe-gateway-75b4fcb5d7-448wx:~$ ls /usr/local/zeebe/logs/
zeebe.log
camunda@camunda-zeebe-zeebe-gateway-75b4fcb5d7-448wx:~$ cat /usr/local/zeebe/logs/zeebe.log 
2024-08-27 16:03:23.267 [] [main] [] INFO 
      io.camunda.zeebe.gateway.StandaloneGateway - Starting StandaloneGateway v8.5.6 using Java 21.0.4 with PID 6 (/usr/local/zeebe/lib/camunda-zeebe-8.5.6.jar started by camunda in /usr/local/zeebe)
...
...
...
Full Stacktrace 

<STACKTRACE>

Environment:

  • OS: Kubernetes
  • Zeebe Version: camunda/zeebe:8.5.6
  • Configuration: Helm Chart default

Metadata

Metadata

Assignees

No one assigned

    Labels

    component/zeebekind/bugSomething isn't working as intendedpossibly-outdatedFor github issues over a year old

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions