Permissions trouble upgrading data container

pfaffman · September 23, 2024, 5:30pm

I recently rebuilt a data container that was 2 years old. The new container expected different permissions than the old one did, presumably because the postgres user and group had new IDs in the current base OS.

I fixed it by running this inside the container:

 chown -R postgres:postgres /shared/postgres_*

Maybe in a single-container setup this isn’t necessary because a chown gets done in some other template?

The next rebuild failed because the discourse user was not allowed to enable the pgvector extension. I resolved this by running this query in postgres as the postgres user:

 ALTER USER discourse WITH SUPERUSER;

pfaffman · September 30, 2024, 9:42pm

I think I saw a commit that likely fixed this, but I can’t find it now.

tgxworld · October 1, 2024, 12:31am

I’m not 100% sure what were the user and group IDs 2 years ago but going forward this will not change and will be fixed.

pfaffman · October 1, 2024, 3:29pm

I just had to do this again. I think what needs to happen is that

github.com

discourse/discourse_docker/blob/20e33fbfd98d3b8d9c57f7a111beff8aa51a5b98/templates/postgres.template.yml#L55


      
               #!/bin/bash
               sv stop postgres
          
          - file:
              path: /root/install_postgres
              chmod: "+x"
              contents: |
                #!/bin/bash
                locale-gen $LANG && update-locale
                mkdir -p /shared/postgres_run
                chown postgres:postgres /shared/postgres_run
                chmod 775 /shared/postgres_run
                rm -fr /var/run/postgresql
                ln -s /shared/postgres_run /var/run/postgresql
                if [ -e /shared/postgres_run/.s.PGSQL.5432 ]; then
                  socat /dev/null UNIX-CONNECT:/shared/postgres_run/.s.PGSQL.5432 || exit 0 && echo postgres already running stop container ; exit 1
                fi
                rm -fr /shared/postgres_run/.s*
                rm -fr /shared/postgres_run/*.pid
                mkdir -p /shared/postgres_run/13-main.pg_stat_tmp
                chown postgres:postgres /shared/postgres_run/13-main.pg_stat_tmp

Needs to be:

        chown postgres:postgres /shared/postgres_*

It doesn’t really matter if you chown postgres:postgres inside the container, right?

joffreyjaffeux · October 4, 2024, 3:29pm

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Rebuild app crashes every time :( Installation	7	1150	November 7, 2018
Urgent, upgraded build failed UniqueViolation Installation	24	1506	February 20, 2021
Cannot rebuild following site failure: "postgres already running" Installation	15	4982	June 8, 2024
Postgres failing to update? Installation	15	1525	July 30, 2018
Old Postgres on Docker Image with two containers: web and data Installation two-container	10	1433	December 18, 2020

Permissions trouble upgrading data container

Related topics