Gluu on LXD - Thu, Jun 3, 2021
If you are experiencing errors when installing Gluu, the Open Source digital identity server in LXD, this is because Gluu works in a chrooted environment by default. Errors like these should appear on systems with deb or RPM packages installed:
Jun 03 14:05:10 gluu systemd: Starting Container gluu-server... Jun 03 14:05:10 gluu systemd-nspawn: Failed to mount n/a (type n/a) on /opt/gluu-server (MS_REC|MS_SHARED ""): Permission denied Jun 03 14:05:10 gluu systemd: email@example.com: Main process exited, code=exited, status=1/FAILURE Jun 03 14:05:10 gluu systemd: firstname.lastname@example.org: Failed with result 'exit-code'. Jun 03 14:05:10 gluu systemd: Failed to start Container gluu-server. Jun 03 14:05:12 gluu dbus-daemon: [system] Reloaded configuration
To resolve the problem, the container must be privileged and nesting must be enabled. The same profile settings are required for Docker and nested LXD containers:
security.nesting: "true" security.privileged: "true"
It’s a Java application. In some cases, it may also require tunning of the kernel ulimits! Here is the documentation from from LXD: https://lxd.readthedocs.io/en/latest/production-setup/Comments