<!-- 
RSS generated by JIRA (1001.0.0-SNAPSHOT#100246-sha1:7a5c50119eb0633d306e14180817ddef5e80c75d) at Thu Feb 08 23:22:40 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary add field=key&field=summary to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>FOLIO Jira</title>
    <link>https://folio-org.atlassian.net</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>1001.0.0-SNAPSHOT</version>
        <build-number>100246</build-number>
        <build-date>07-02-2024</build-date>
    </build-info>

<item>
            <title>[FOLIO-2710] [Rancher] Pipeline for oai-pmh fails: cannot be run as root</title>
                <link>https://folio-org.atlassian.net/browse/FOLIO-2710</link>
                <project id="10290" key="FOLIO">FOLIO</project>
                    <description>&lt;p&gt;Namespace: gulfstream&lt;/p&gt;

&lt;p&gt;The specifics about this module is it needs an embedded database during build stage to generate java classes. It tries to initiate a new process for an embedded database, but apparently, it does that under root.&lt;/p&gt;

&lt;p&gt;The pipeline for oai-pmh fails in mvn package -DskipTests with the message: &lt;/p&gt;

&lt;div class=&quot;code panel&quot; style=&quot;border-width: 1px;&quot;&gt;&lt;div class=&quot;codeContent panelContent&quot;&gt;
&lt;pre class=&quot;code-java&quot;&gt;
INFO] Using system properties proxy configuration: &lt;span class=&quot;code-keyword&quot;&gt;null&lt;/span&gt;:&lt;span class=&quot;code-keyword&quot;&gt;null&lt;/span&gt;. no proxy: &lt;span class=&quot;code-keyword&quot;&gt;null&lt;/span&gt;
[INFO] Starting PostgreSQL...
[INFO] Detected a Linux x86_64 system
[INFO] Extracting Postgres...
[INFO] Postgres binaries at /tmp/embedded-pg/PG-785b618641f5eefce5b5079f2c9458dd
initdb: cannot be run as root
Please log in (using, e.g., &lt;span class=&quot;code-quote&quot;&gt;&quot;su&quot;&lt;/span&gt;) as the (unprivileged) user that will
own the server process.
&lt;/pre&gt;
&lt;/div&gt;&lt;/div&gt;


&lt;h3&gt;&lt;a name=&quot;Pipelinedefinition%3A&quot;&gt;&lt;/a&gt;Pipeline definition:&lt;/h3&gt;

&lt;div class=&quot;code panel&quot; style=&quot;border-width: 1px;&quot;&gt;&lt;div class=&quot;codeContent panelContent&quot;&gt;
&lt;pre class=&quot;code-java&quot;&gt;

stages:
- name: Build
  steps:
  - runScriptConfig:
      image: maven:3-openjdk-8
      shellScript: mvn &lt;span class=&quot;code-keyword&quot;&gt;package&lt;/span&gt; -DskipTests
- name: Build Docker with DIND
  steps:
  - publishImageConfig:
      dockerfilePath: ./Dockerfile
      buildContext: .
      tag: docker.dev.folio.org/mod-oai-pmh:gulfstream-latest
      pushRemote: &lt;span class=&quot;code-keyword&quot;&gt;true&lt;/span&gt;
      registry: docker.dev.folio.org
- name: Deploy
  steps:
  - applyAppConfig:
      catalogTemplate: p-d9vmc:gulfstream-helmcharts-mod-oai-pmh
      version: 0.1.9
      answers:
        image.repository: docker.dev.folio.org/mod-oai-pmh
        image.tag: gulfstream-latest
      name: mod-oai-pmh
      targetNamespace: gulfstream
timeout: 60
branch:
  include:
  - develop
notification: {}
&lt;/pre&gt;
&lt;/div&gt;&lt;/div&gt;

&lt;p&gt;&lt;a href=&quot;https://github.com/folio-org/mod-oai-pmh/blob/f8eaeb2c598dadf1cc2e5c52ea5cf62237c49d1d/.rancher-pipeline.yml&quot; class=&quot;external-link&quot; rel=&quot;nofollow noreferrer&quot;&gt;https://github.com/folio-org/mod-oai-pmh/blob/f8eaeb2c598dadf1cc2e5c52ea5cf62237c49d1d/.rancher-pipeline.yml&lt;/a&gt;&lt;/p&gt;



</description>
                <environment></environment>
        <key id="81820">FOLIO-2710</key>
            <summary>[Rancher] Pipeline for oai-pmh fails: cannot be run as root</summary>
                <type id="10003" iconUrl="https://folio-org.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium">Task</type>
                                            <priority id="10005" iconUrl="https://dev.folio.org/assets/jira-priority/tbd.svg">TBD</priority>
                        <status id="6" iconUrl="https://folio-org.atlassian.net/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="green"/>
                                    <resolution id="10003">Done</resolution>
                                                        <assignee accountid="5f2840580d8b1a001bd02aae">Stanislav Miroshnichenko</assignee>
                                                                <reporter accountid="59fcc2d9c14d1e37ad1dd36e">Dmytro Popov</reporter>
                                    <labels>
                            <label>dev-environment</label>
                    </labels>
                <created>Thu, 30 Jul 2020 06:43:20 +0000</created>
                <updated>Wed, 12 Aug 2020 09:28:35 +0000</updated>
                            <resolved>Tue, 11 Aug 2020 15:17:24 +0000</resolved>
                                                                        <due></due>
                            <votes>0</votes>
                                    <watches>1</watches>
                                                                <comments>
                                                            <comment id="196421" author="63e2a2771b13d42998e4e706" created="Tue, 11 Aug 2020 13:18:44 +0000"  >&lt;blockquote&gt;&lt;p&gt;The specifics about this module is it needs an embedded database during build stage to generate java classes.&lt;/p&gt;&lt;/blockquote&gt;

&lt;p&gt;Why is there a need for a database in order to perform code generation?&lt;/p&gt;</comment>
                                                            <comment id="196422" author="59fcc2d9c14d1e37ad1dd36e" created="Tue, 11 Aug 2020 13:20:42 +0000"  >&lt;p&gt;Yes, we&apos;re using jooq and liquibase. As it happens, these two need to spin up an in-memory H2 database during mvn build to generate java pojos.&lt;/p&gt;</comment>
                                                            <comment id="196423" author="63e2a2771b13d42998e4e706" created="Tue, 11 Aug 2020 13:31:23 +0000"  >&lt;blockquote&gt;&lt;p&gt;Yes, we&apos;re using jooq and liquibase. As it happens, these two need to spin up an in-memory H2 database during mvn build to generate java pojos.&lt;/p&gt;&lt;/blockquote&gt;

&lt;p&gt;Ok, that&apos;s unfortunate :-/&lt;/p&gt;</comment>
                                                            <comment id="196424" author="5f2840580d8b1a001bd02aae" created="Tue, 11 Aug 2020 14:38:50 +0000"  >&lt;p&gt;Using non-root maven image in &apos;runScriptConfig&apos; step, such as &apos;grizzlysoftware/maven-non-root:3.6.2-11.0.4-jdk-stretch&apos; starts up Postgres successfully.&lt;/p&gt;

&lt;p&gt;Closing ticket.&lt;/p&gt;

</comment>
                                                            <comment id="196425" author="59fcc2d9c14d1e37ad1dd36e" created="Tue, 11 Aug 2020 15:05:46 +0000"  >&lt;p&gt;This image fixed it: grizzlysoftware/maven-non-root:3.6.2-8u222-jdk-stretch&lt;/p&gt;</comment>
                                                            <comment id="196426" author="63e2a2771b13d42998e4e706" created="Tue, 11 Aug 2020 15:31:10 +0000"  >&lt;p&gt;&lt;a href=&quot;https://folio-org.atlassian.net/secure/ViewProfile.jspa?accountId=5f2840580d8b1a001bd02aae&quot; class=&quot;user-hover&quot; rel=&quot;5f2840580d8b1a001bd02aae&quot; data-account-id=&quot;5f2840580d8b1a001bd02aae&quot; accountid=&quot;5f2840580d8b1a001bd02aae&quot; rel=&quot;noreferrer&quot;&gt;Stanislav Miroshnichenko&lt;/a&gt; &lt;a href=&quot;https://folio-org.atlassian.net/secure/ViewProfile.jspa?accountId=59fcc2d9c14d1e37ad1dd36e&quot; class=&quot;user-hover&quot; rel=&quot;59fcc2d9c14d1e37ad1dd36e&quot; data-account-id=&quot;59fcc2d9c14d1e37ad1dd36e&quot; accountid=&quot;59fcc2d9c14d1e37ad1dd36e&quot; rel=&quot;noreferrer&quot;&gt;Dmytro Popov&lt;/a&gt;&lt;/p&gt;

&lt;blockquote&gt;&lt;p&gt;Using non-root maven image in &apos;runScriptConfig&apos; step, such as &apos;grizzlysoftware/maven-non-root:3.6.2-11.0.4-jdk-stretch&apos; starts up Postgres successfully.&lt;/p&gt;&lt;/blockquote&gt;

&lt;p&gt;What does that step do?&lt;/p&gt;</comment>
                                                            <comment id="196427" author="5f2840580d8b1a001bd02aae" created="Tue, 11 Aug 2020 16:16:13 +0000"  >&lt;p&gt;That step is running shell script &apos;mvn package -DskipTests&apos; in defined docker container.&lt;/p&gt;</comment>
                                                            <comment id="196428" author="63e2a2771b13d42998e4e706" created="Tue, 11 Aug 2020 16:34:10 +0000"  >&lt;p&gt;&lt;a href=&quot;https://folio-org.atlassian.net/secure/ViewProfile.jspa?accountId=5f2840580d8b1a001bd02aae&quot; class=&quot;user-hover&quot; rel=&quot;5f2840580d8b1a001bd02aae&quot; data-account-id=&quot;5f2840580d8b1a001bd02aae&quot; accountid=&quot;5f2840580d8b1a001bd02aae&quot; rel=&quot;noreferrer&quot;&gt;Stanislav Miroshnichenko&lt;/a&gt;&lt;/p&gt;

&lt;blockquote&gt;&lt;p&gt;That step is running shell script &apos;mvn package -DskipTests&apos; in defined docker container.&lt;/p&gt;&lt;/blockquote&gt;

&lt;p&gt;Ah, is this part of a pipeline to build artefacts from a branch of a module?&lt;/p&gt;

&lt;p&gt;If so, could it run in the same executing context (I&apos;m not sure if this is docker) as a mainline or regular build would (as these also do steps like this)?&lt;/p&gt;</comment>
                                                            <comment id="196429" author="5f2840580d8b1a001bd02aae" created="Tue, 11 Aug 2020 16:59:14 +0000"  >&lt;p&gt;&lt;a href=&quot;https://folio-org.atlassian.net/secure/ViewProfile.jspa?accountId=63e2a2771b13d42998e4e706&quot; class=&quot;user-hover&quot; rel=&quot;63e2a2771b13d42998e4e706&quot; data-account-id=&quot;63e2a2771b13d42998e4e706&quot; accountid=&quot;63e2a2771b13d42998e4e706&quot; rel=&quot;noreferrer&quot;&gt;Marc Johnson&lt;/a&gt;, every build step in Rancher pipeline is running in docker image.&lt;br/&gt;
Step &apos;runScriptConfig&apos; is a part of branch artefact building.&lt;br/&gt;
I&apos;m not sure if I understand your question, my answer is that regular build steps (do you mean other steps in pipeline?) are using another docker containers.&lt;br/&gt;
Let&apos;s move to Slack to discuss, please.&lt;br/&gt;
Thank you.&lt;/p&gt;
</comment>
                    </comments>
                    <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_10000" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummarycf">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10057" key="com.atlassian.jira.plugin.system.customfieldtypes:select">
                        <customfieldname>Development Team</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10155"><![CDATA[FOLIO DevOps]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10019" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0|i01heh:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10020" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue id="1986">DevOps: sprint 92</customfieldvalue>
    <customfieldvalue id="11">DevOps: Sprint 95</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10024" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>[CHART] Date of First Response</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Tue, 11 Aug 2020 13:18:44 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10025" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>[CHART] Time in Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                    </customfields>
    </item>
</channel>
</rss>