Hi,
…thanks a lot for your input – web-container looks like this:
root@net04-mgmt-vm:~# kubectl exec awx-7dd9bf96c7-ml7zf -c awx-web – /bin/ls -l /var/lib/awx/projects
total 20
drwxr-xr-x 5 awx root 4096 Jul 29 12:01 _10__awx_hello_world
-rwxr-xr-x 1 awx root 0 Jul 29 12:01 _10__awx_hello_world.lock
drwxr-xr-x 6 awx root 4096 Jul 19 08:24 _12__awx_vlan_deployment
-rwxr-xr-x 1 awx root 0 Jul 14 14:00 _12__awx_vlan_deployment.lock
drwxr-xr-x 5 awx root 4096 Jul 27 14:33 _21__device_backup_check
-rwxr-xr-x 1 awx root 0 Jul 27 14:33 _21__device_backup_check.lock
drwxr-xr-x 5 awx root 4096 Jul 27 16:15 _24__awx_vlan_deployment_061407147_pm
-rwxr-xr-x 1 awx root 0 Jul 27 16:14 _24__awx_vlan_deployment_061407147_pm.lock
drwxr-xr-x 4 awx root 4096 Jul 29 12:03 _8__awx_inventory
-rwxr-xr-x 1 awx root 0 Jul 14 14:00 _8__awx_inventory.lock
…and the project’s .git is root-owned – which is probably the problem:
root@net04-mgmt-vm:~# kubectl exec awx-7dd9bf96c7-ml7zf -c awx-web – /bin/ls -la /var/lib/awx/projects/_10__awx_hello_world/.git/refs/heads
total 12
drwxr-xr-x 2 root root 4096 Jul 29 12:20 .
drwxr-xr-x 5 root root 4096 Jul 29 12:01 …
-rw-r–r-- 1 root root 41 Jul 29 12:01 main
However, I’m not allowed to change the ownership within the container:
root@net04-mgmt-vm:~# kubectl exec awx-7dd9bf96c7-ml7zf -c awx-web – /bin/chown -R awx.root /var/lib/awx/projects/_10__awx_hello_world
chown: changing ownership of ‘/var/lib/awx/projects/_10__awx_hello_world/.git/config’: Operation not permitted
chown: changing ownership of ‘/var/lib/awx/projects/_10__awx_hello_world/.git/logs/refs/remotes/origin/HEAD’: Operation not permitted
chown: changing ownership of ‘/var/lib/awx/projects/_10__awx_hello_world/.git/logs/refs/remotes/origin’: Operation not permitted
chown: changing ownership of ‘/var/lib/awx/projects/_10__awx_hello_world/.git/logs/refs/remotes’: Operation not permitted
chown: changing ownership of ‘/var/lib/awx/projects/_10__awx_hello_world/.git/logs/refs/heads/main’: Operation not permitted
I would suspect, that the git checkout is performed using the wrong (root) user – is there a place, where this can be configured?
Thanks,
Andreas