Maxime Leroux (MaximeL4)
Sopra Steria Group

Sopra Steria Group
MaximeL4 Member since 2020 3 posts
Sopra Steria Group
Posted: October 8, 2020
Last activity: October 8, 2020
Posted: 8 Oct 2020 8:38 EDT
Last activity: 8 Oct 2020 8:43 EDT

Pega create file with wrong permissions

We are migrating our infrastructure on our private kubernetes cloud. Pega creates files thanks to "Connect File": CreateExtractedFile. On our on premise architecture, we had a custom bashrc with umask to 022 to change file permission. When Pega create a file, it respect the umask -rw-r--r-- 1 salto16 salto 16 May 28 16:02 202005281602ST_Salto.xml It worked perfectly.

Now on our cloud architecture, we had the same bashrc but when we run the activity, files are created with only 640 rights. -rw-r-----. 1 root root 1713 Oct 7 19:15 20201007ACT_Salto.xml

On cloud architecture on batch pod pega is started with root user. Is it normal? root@pega-batch-79c6bb7fd6-cq7v4:/var/opt/data/flat/bpm/flow/out/WED# ps -elf F S UID PID PPID C PRI NI ADDR SZ WCHAN STIME TTY TIME CMD 4 S root 1 0 11 80 0 - 3456606 futex_ 12:47 ? 00:16:41 /opt/java/openjdk/bin/java -Djava.util.logging.config.file=/usr/local/tomcat/conf/ -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Xms4096m -Xmx7168m

When I create a file with touch command, it create a file with correct rights (644) that's mean umask is correctly used root@pega-batch-79c6bb7fd6-cq7v4:/var/opt/data/flat/bpm/flow/out/WED# touch test5 root@pega-batch-79c6bb7fd6-cq7v4:/var/opt/data/flat/bpm/flow/out/WED# ll | grep test5 -rw-r--r--. 1 root root 0 Oct 8 09:52 test5

How to customize rights on file creation?

Pega Customer Service 8.3 Case Management Communications and Media System Architect