We have few self signed SSL certificates to be installed in Nexus3. How do be install these ssl certs using operator as part of configuration ?

I want to use NodeSelctor to specify the Node on which the Nexus Repo (instance) will run.
I checked Yaml on the screen of the created instance and specified NodeSelector in spec.nexus, but the pod of the instance does not start. (When I deleted the description in spec.nexus that I added, it started successfully.)

• Is it possible to specify NodeSelector in Nexus Repo (Instance, not Operator)?

• If possible, could you please tell me how to set it up?

OpenShift 4.7.7,
SonaType Nexus Operator v3.32.0-1

Steps:

1. Create Docker repository.
2. Under Repository Connectors, Select HTTPS w/ any port. I tried 5001 .. 5005
3. Click Save.
4. Check Pod logs for errors

org.sonatype.nexus.repository.manager.internal.RepositoryManagerImpl - Creating repository: demo-docker -> OrientConfiguration{repositoryName='demo-docker', recipeName='docker-hosted', attributes={docker={httpsPort=5003.0, forceBasicAuth=true, v1Enabled=false}, storage={blobStoreName=default, strictContentTypeValidation=true, writePolicy=ALLOW, latestPolicy=false}, component={proprietaryComponents=false}}} 2021-08-13 01:53:34,889+0000 WARN [qtp931670639-89] admin org.sonatype.nexus.repository.docker.internal.DockerConnectorFacetImpl - Could not configure HTTPS connector on port 5003 for docker repository demo-docker org.sonatype.nexus.bootstrap.jetty.UnsupportedHttpSchemeException: Unsupported HTTP Scheme: https at org.sonatype.nexus.internal.jetty.ConnectorRegistrarImpl.validate(ConnectorRegistrarImpl.java:128) at org.sonatype.nexus.internal.jetty.ConnectorRegistrarImpl.addConnector(ConnectorRegistrarImpl.java:84) at org.sonatype.nexus.repository.docker.internal.DockerConnectorFacetImpl.doStart(DockerConnectorFacetImpl.java:121)

Getting below errors..I used the operator.yaml file as is

kubectl logs example-nexusrepo-sonatype-nexus-659bf8b554-9bff6
mkdir: cannot create directory '../sonatype-work/nexus3/log': Permission denied
mkdir: cannot create directory '../sonatype-work/nexus3/tmp': Permission denied
OpenJDK 64-Bit Server VM warning: Cannot open file ../sonatype-work/nexus3/log/jvm.log due to No such file or directory

Warning: Cannot open log file: ../sonatype-work/nexus3/log/jvm.log
Warning: Forcing option -XX:LogFile=/tmp/jvm.log
java.io.FileNotFoundException: ../sonatype-work/nexus3/tmp/i4j_ZTDnGON8hezynsMX2ZCYAVDtQog=.lock (No such file or directory)
at java.io.RandomAccessFile.open0(Native Method)
at java.io.RandomAccessFile.open(RandomAccessFile.java:316)
at java.io.RandomAccessFile.(RandomAccessFile.java:243)
at com.install4j.runtime.launcher.util.SingleInstance.check(SingleInstance.java:72)
at com.install4j.runtime.launcher.util.SingleInstance.checkForCurrentLauncher(SingleInstance.java:31)
at com.install4j.runtime.launcher.UnixLauncher.checkSingleInstance(UnixLauncher.java:88)
at com.install4j.runtime.launcher.UnixLauncher.main(UnixLauncher.java:67)
java.io.FileNotFoundException: /nexus-data/karaf.pid (Permission denied)
at java.io.FileOutputStream.open0(Native Method)
at java.io.FileOutputStream.open(FileOutputStream.java:270)
at java.io.FileOutputStream.(FileOutputStream.java:213)
at java.io.FileOutputStream.(FileOutputStream.java:101)
at org.apache.karaf.main.InstanceHelper.writePid(InstanceHelper.java:126)
at org.apache.karaf.main.Main.launch(Main.java:278)
at org.sonatype.nexus.karaf.NexusMain.launch(NexusMain.java:113)
at org.sonatype.nexus.karaf.NexusMain.main(NexusMain.java:52)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at com.exe4j.runtime.LauncherEngine.launch(LauncherEngine.java:85)
at com.install4j.runtime.launcher.UnixLauncher.main(UnixLauncher.java:69)
java.lang.RuntimeException: /nexus-data/log/karaf.log (No such file or directory)
at org.apache.karaf.main.util.BootstrapLogManager.getDefaultHandlerInternal(BootstrapLogManager.java:102)
at org.apache.karaf.main.util.BootstrapLogManager.getDefaultHandlersInternal(BootstrapLogManager.java:137)
at org.apache.karaf.main.util.BootstrapLogManager.getDefaultHandlers(BootstrapLogManager.java:70)
at org.apache.karaf.main.util.BootstrapLogManager.configureLogger(BootstrapLogManager.java:75)
at org.apache.karaf.main.Main.launch(Main.java:279)
at org.sonatype.nexus.karaf.NexusMain.launch(NexusMain.java:113)
at org.sonatype.nexus.karaf.NexusMain.main(NexusMain.java:52)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at com.exe4j.runtime.LauncherEngine.launch(LauncherEngine.java:85)
at com.install4j.runtime.launcher.UnixLauncher.main(UnixLauncher.java:69)
Caused by: java.io.FileNotFoundException: /nexus-data/log/karaf.log (No such file or directory)
at java.io.FileOutputStream.open0(Native Method)
at java.io.FileOutputStream.open(FileOutputStream.java:270)
at java.io.FileOutputStream.(FileOutputStream.java:213)
at org.apache.karaf.main.util.BootstrapLogManager$SimpleFileHandler.open(BootstrapLogManager.java:193)
at org.apache.karaf.main.util.BootstrapLogManager$SimpleFileHandler.(BootstrapLogManager.java:182)
at org.apache.karaf.main.util.BootstrapLogManager.getDefaultHandlerInternal(BootstrapLogManager.java:100)
... 12 more
Error creating bundle cache.

After an automatic update of the operator to the latest version our NexusRepo PVC was deleted. Is it possible that the operator did this? While trying to do a restore on the newly created PV we see that the operator keeps overwriting the data and so we keep landing with a new defaulted Nexus instance. Is there a way to prevent the operator to ever remove the PVC?

repository registry.connect.redhat.com/sonatype/nexus-repository-manager not found: name unknown: Image not found
Failed to pull image "registry.connect.redhat.com/sonatype/nexus-repositor
eac96a0815cb0920aa9b": rpc error: code = Unknown desc = reading manifest sha256:4965872d251958699b762a0107fa89ad484636bb2ef4eac96a0815cb0920aa9b in r
name unknown: Image not found
Is it possible to rollback the operator

Setting nexus.securityContext to {} has no effect. The deployment still gets created with fsGroup: 200. The deployment resource doesn't specify a ServiceAccount to run the pods as so my only option at the moment is to add a new SCC to the default ServiceAccount which is not great.

I installed the operator through the web console by the way.

Thanks

issue

Currently there is only two ports hard coded in the Deployment, (

request

make the ports in the Deployment an array that can be ajusted by the NexusRepo CR. One solution maybe to use the existing service parameter and automatically add any targetport in the service to the Deployment port list.

When I'm trying to create an instance for Nexus Repo Manager, and enable statefulset with true value. A warning message appear saying that the default serviceaccount (that the operator create) has no permission to manipulate statefulset objets.

After creating the proper role and rolebinding objets to support statefulsets objets and recreate the Nexus Repo Manager instance, I can bypass the problem. Please, check that. Regards!