From 17cf7925d6fdb1809a910f5e88f7a762c478192f Mon Sep 17 00:00:00 2001
From: djpbessems <danny@bessems.eu>
Date: Tue, 24 Jan 2023 10:41:22 +0100
Subject: [PATCH] Traefik /data volume permission fix

---
 ansible/vars/metacluster.yml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/ansible/vars/metacluster.yml b/ansible/vars/metacluster.yml
index 01693dd..a503c1d 100644
--- a/ansible/vars/metacluster.yml
+++ b/ansible/vars/metacluster.yml
@@ -23,6 +23,13 @@ platform:
             ingressRoute:
               dashboard:
                 enabled: false
+            initContainers:
+              - name: volume-permissions
+                image: busybox:1
+                command: ["sh", "-c", "touch /data/acme.json && chmod -Rv 600 /data/* && chown 65532:65532 /data/acme.json"]
+                volumeMounts:
+                  - name: data
+                    mountPath: /data
             persistence:
               enabled: true
             ports:
@@ -209,6 +216,8 @@ dependencies:
     - kubernetes.core
 
   container_images:
+    # This should match the image tag referenced at `platform.packaged_components[.name==traefik].config`
+    - busybox:1
     - ghcr.io/kube-vip/kube-vip:v0.5.8
     # The following list is generated by running the following commands:
     #   $ clusterctl init -i vsphere:<version> [...]