Skip to content

Parameterize config file paths #12911

New issue
New issue
Closed
#12912
Closed
Parameterize config file paths#12911
#12912
Labels
kind/featureCategorizes issue or PR as related to a new feature.lifecycle/frozenIndicates that an issue or PR should not be auto-closed due to staleness.needs-priorityneeds-triageIndicates an issue or PR lacks a `triage/foo` label and requires one.
@emmanuel

Description

@emmanuel
emmanuel
opened on Feb 28, 2025

In order to run the controller in our environment, I need to run with readOnlyRootFilesystem: true. I know that's not officially supported (#9504). I'm not asking for support for that, I'm asking for the currently-hardcoded config file paths to take an env var if present, and use the current paths as the defaults if no env var is present.

The controller currently writes to hard-coded paths in the /etc directory: /etc/nginx/nginx.conf and /etc/nginx/lua/cfg.json. Because those directories also contain other files from the container filesystem, the combination makes it impossible to place the config file on an empty dir without significant effort.

I didn't see one, aside from the issue linked above, which is different.

Not related to a particular Kubernetes version.

Activity

emmanuel
added
kind/featureCategorizes issue or PR as related to a new feature.
on Feb 28, 2025
k8s-ci-robot
added
needs-triageIndicates an issue or PR lacks a `triage/foo` label and requires one.
on Feb 28, 2025
k8s-ci-robot

k8s-ci-robot commented on Feb 28, 2025

@k8s-ci-robot
k8s-ci-robot
on Feb 28, 2025
Contributor

This issue is currently awaiting triage.

If Ingress contributors determines this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

k8s-ci-robot
added
needs-priority
on Feb 28, 2025
strongjz
added this to [SIG Network] Ingress NGINXon Feb 28, 2025
emmanuel
added a commit that references this issue on Feb 28, 2025

feat: Parameterize config paths. Fixes kubernetes#12911.

b164870
emmanuel
mentioned this on Feb 28, 2025
Gacko

Gacko commented on Mar 1, 2025

@Gacko
Gacko
on Mar 1, 2025
Member

I think this is not the only thing blocking you from running Ingress NGINX with readOnlyRootFilesystem: true. IIRC NGINX itself also requires writeable directories and I do not know if you can just mount volumes in all of these locations.

github-actions

github-actions commented on Apr 1, 2025

@github-actions
github-actions
on Apr 1, 2025

This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach #ingress-nginx-dev on Kubernetes Slack.

github-actions
added
lifecycle/frozenIndicates that an issue or PR should not be auto-closed due to staleness.
on Apr 1, 2025
Gacko
closed this as completedon Apr 1, 2025
github-project-automation
moved this to Done in [SIG Network] Ingress NGINXon Apr 1, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/featureCategorizes issue or PR as related to a new feature.lifecycle/frozenIndicates that an issue or PR should not be auto-closed due to staleness.needs-priorityneeds-triageIndicates an issue or PR lacks a `triage/foo` label and requires one.

    Type

    No type

    Projects

    [SIG Network] Ingress NGINX

    Status

    Done

    Milestone

    No milestone

    Relationships

    None yet

      Development

      Participants

      @emmanuel@Gacko@k8s-ci-robot

      Issue actions
        Parameterize config file paths · Issue #12911 · kubernetes/ingress-nginx