percona · mayankshah1607 · Dec 17, 2025 · Dec 17, 2025 · Dec 17, 2025 · Dec 17, 2025
 exec "$@" $fluentbit_opt 
 exec "$@" $fluentbit_opt 
@@ -4,18 +4,23 @@
 
 export PATH="$PATH":/opt/fluent-bit/bin
 
+LOGROTATE_CONF_DIR=""
+if [ -f /opt/percona/logcollector/logrotate/conf.d ]; then
+	LOGROTATE_CONF_DIR="/opt/percona/logcollector/logrotate/conf.d"
+fi
+
 if [ "$1" = 'logrotate' ]; then
 	if [[ $EUID != 1001 ]]; then
 		# logrotate requires UID in /etc/passwd
 		sed -e "s^x:1001:^x:$EUID:^" /etc/passwd >/tmp/passwd
 		cat /tmp/passwd >/etc/passwd
 		rm -rf /tmp/passwd
 	fi
-	exec go-cron "0 0 * * *" sh -c "logrotate -s /data/db/logs/logrotate.status /opt/percona/logcollector/logrotate/logrotate.conf;"
+	exec go-cron "0 0 * * *" sh -c "logrotate -s /data/db/logs/logrotate.status /opt/percona/logcollector/logrotate/logrotate.conf ${LOGROTATE_CONF_DIR};"
 else
 	if [ "$1" = 'fluent-bit' ]; then
 		fluentbit_opt+='-c /opt/percona/logcollector/fluentbit/fluentbit.conf'
 	fi

 	exec "$@" $fluentbit_opt
 fi
@@ -698,6 +698,18 @@ spec:
                     type: string
                   imagePullPolicy:
                     type: string
+                  logRotate:
+                    properties:
+                      configuration:
+                        type: string
+                      extraConfig:
+                        properties:
+                          name:
+                            default: ""
+                            type: string
+                        type: object
+                        x-kubernetes-map-type: atomic
+                    type: object
                   resources:
                     properties:
                       claims:

@@ -1555,6 +1555,18 @@ spec:
                     type: string
                   imagePullPolicy:
                     type: string
+                  logRotate:
+                    properties:
+                      configuration:
+                        type: string
+                      extraConfig:
+                        properties:
+                          name:
+                            default: ""
+                            type: string
+                        type: object
+                        x-kubernetes-map-type: atomic
+                    type: object
                   resources:
                     properties:
                       claims:

@@ -1555,6 +1555,18 @@ spec:
                     type: string
                   imagePullPolicy:
                     type: string
+                  logRotate:
+                    properties:
+                      configuration:
+                        type: string
+                      extraConfig:
+                        properties:
+                          name:
+                            default: ""
+                            type: string
+                        type: object
+                        x-kubernetes-map-type: atomic
+                    type: object
                   resources:
                     properties:
                       claims:

@@ -1555,6 +1555,18 @@ spec:
                     type: string
                   imagePullPolicy:
                     type: string
+                  logRotate:
+                    properties:
+                      configuration:
+                        type: string
+                      extraConfig:
+                        properties:
+                          name:
+                            default: ""
+                            type: string
+                        type: object
+                        x-kubernetes-map-type: atomic
+                    type: object
                   resources:
                     properties:
                       claims:

@@ -1555,6 +1555,18 @@ spec:
                     type: string
                   imagePullPolicy:
                     type: string
+                  logRotate:
+                    properties:
+                      configuration:
+                        type: string
+                      extraConfig:
+                        properties:
+                          name:
+                            default: ""
+                            type: string
+                        type: object
+                        x-kubernetes-map-type: atomic
+                    type: object
                   resources:
                     properties:
                       claims:

@@ -1502,6 +1502,15 @@ type LogCollectorSpec struct {
 	Configuration            string                      `json:"configuration,omitempty"`
 	ContainerSecurityContext *corev1.SecurityContext     `json:"containerSecurityContext,omitempty"`
 	ImagePullPolicy          corev1.PullPolicy           `json:"imagePullPolicy,omitempty"`
+	LogRotate                *LogRotateSpec              `json:"logRotate,omitempty"`
+}
+
+type LogRotateSpec struct {
+	// Configuration allows overriding the default logrotate configuration.
+	Configuration string `json:"configuration,omitempty"`
+	// ExtraConfig allows specifying logrotate configuration file in addition to the main configuration file.
+	// This should be a reference to a ConfigMap in the same namespace.
+	ExtraConfig corev1.LocalObjectReference `json:"extraConfig,omitempty"`
 }
 
 func (cr *PerconaServerMongoDB) IsLogCollectorEnabled() bool {

@@ -40,6 +40,7 @@ import (
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/backup"
 	psmdbconfig "github.com/percona/percona-server-mongodb-operator/pkg/psmdb/config"
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/logcollector"
+	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/logcollector/logrotate"
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/pmm"
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/secret"
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/tls"
@@ -350,6 +351,12 @@ func (r *ReconcilePerconaServerMongoDB) Reconcile(ctx context.Context, request r
 		}
 	}
 
+	if cr.CompareVersion("1.22.0") >= 0 {
+		if err := r.reconcileLogRotateConfigMaps(ctx, cr); err != nil {
+			return reconcile.Result{}, errors.Wrap(err, "reconcile log rotate config map")
+		}
+	}
+
 	err = r.reconcileUsers(ctx, cr, repls)
 	if err != nil {
 		return reconcile.Result{}, errors.Wrap(err, "failed to reconcile users")
@@ -1249,6 +1256,40 @@ func (r *ReconcilePerconaServerMongoDB) reconcileLogCollectorConfigMaps(ctx cont
 	return nil
 }
 
+func (r *ReconcilePerconaServerMongoDB) reconcileLogRotateConfigMaps(ctx context.Context, cr *api.PerconaServerMongoDB) error {
+	if !cr.IsLogCollectorEnabled() {
+		if err := deleteConfigMapIfExists(ctx, r.client, cr, logrotate.ConfigMapName(cr.Name)); err != nil {
+			return errors.Wrap(err, "failed to delete log rotate config map when log collector is disabled")
+		}
+		return nil
+	}
+
+	if cr.Spec.LogCollector == nil || cr.Spec.LogCollector.LogRotate == nil || cr.Spec.LogCollector.LogRotate.Configuration == "" {
+		if err := deleteConfigMapIfExists(ctx, r.client, cr, logrotate.ConfigMapName(cr.Name)); err != nil {
+			return errors.Wrap(err, "failed to delete log rotate config map when the configuration is empty")
+		}
+		return nil
+	}
+
+	cm := &corev1.ConfigMap{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      logrotate.ConfigMapName(cr.Name),
+			Namespace: cr.GetNamespace(),
+			Labels:    naming.ClusterLabels(cr),
+		},
+		Data: map[string]string{
+			logrotate.MongodbConfig: cr.Spec.LogCollector.LogRotate.Configuration,
+		},
+	}
+
+	err := r.createOrUpdateConfigMap(ctx, cr, cm)
+	if err != nil {
+		return errors.Wrap(err, "create or update config map")
+	}
+
+	return nil
+}
+
 func deleteConfigMapIfExists(ctx context.Context, cl client.Client, cr *api.PerconaServerMongoDB, cmName string) error {
 	configMap := &corev1.ConfigMap{}
 

@@ -13,7 +13,9 @@ import (
 	api "github.com/percona/percona-server-mongodb-operator/pkg/apis/psmdb/v1"
 	"github.com/percona/percona-server-mongodb-operator/pkg/naming"
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb"
+	psmdbconfig "github.com/percona/percona-server-mongodb-operator/pkg/psmdb/config"
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/logcollector"
+	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/logcollector/logrotate"
 )
 
 func (r *ReconcilePerconaServerMongoDB) reconcileStatefulSet(ctx context.Context, cr *api.PerconaServerMongoDB, rs *api.ReplsetSpec, ls map[string]string) (*appsv1.StatefulSet, error) {
@@ -118,6 +120,19 @@ func (r *ReconcilePerconaServerMongoDB) getStatefulsetFromReplset(ctx context.Co
 		return nil, errors.Wrap(err, "check if log collection custom configuration exists")
 	}
 
+	logRotateCustomConfig, err := r.getCustomConfig(ctx, cr.Namespace, logrotate.ConfigMapName(cr.Name))
+	if err != nil {
+		return nil, errors.Wrap(err, "check if log rotate configuration exists")
+	}
+
+	logRotateExtraConfig := psmdbconfig.CustomConfig{}
+	if cr.Spec.LogCollector != nil && cr.Spec.LogCollector.LogRotate != nil && cr.Spec.LogCollector.LogRotate.ExtraConfig.Name != "" {
+		logRotateExtraConfig, err = r.getCustomConfig(ctx, cr.Namespace, cr.Spec.LogCollector.LogRotate.ExtraConfig.Name)
+		if err != nil {
+			return nil, errors.Wrap(err, "check if log rotate extra configuration exists")
+		}
+	}
+
 	usersSecret := new(corev1.Secret)
 	err = r.client.Get(ctx, types.NamespacedName{Name: api.UserSecretName(cr), Namespace: cr.Namespace}, usersSecret)
 	if client.IgnoreNotFound(err) != nil {
@@ -130,16 +145,20 @@ func (r *ReconcilePerconaServerMongoDB) getStatefulsetFromReplset(ctx context.Co
 		return nil, errors.Wrap(err, "check ssl secrets")
 	}
 
+	configs := psmdb.StatefulConfigParams{
+		MongoDConf:         mongodCustomConfig,
+		LogCollectionConf:  logCollectionCustomConfig,
+		LogRotateConf:      logRotateCustomConfig,
+		LogRotateExtraConf: logRotateExtraConfig,
+	}
+	secrets := psmdb.StatefulSpecSecretParams{
+		UsersSecret: usersSecret,
+		SSLSecret:   sslSecret,
+	}
 	sfsSpec, err := psmdb.StatefulSpec(
 		ctx, cr, rs, ls, r.initImage,
-		psmdb.StatefulConfigParams{
-			MongoDConf:        mongodCustomConfig,
-			LogCollectionConf: logCollectionCustomConfig,
-		},
-		psmdb.StatefulSpecSecretParams{
-			UsersSecret: usersSecret,
-			SSLSecret:   sslSecret,
-		},
+		configs,
+		secrets,
 	)
 	if err != nil {
 		return nil, errors.Wrapf(err, "create StatefulSet.Spec %s", sfs.Name)

@@ -2,13 +2,13 @@ package logcollector
 
 import (
 	"fmt"
-	"strconv"
 
 	"github.com/pkg/errors"
 	corev1 "k8s.io/api/core/v1"
 
 	api "github.com/percona/percona-server-mongodb-operator/pkg/apis/psmdb/v1"
 	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/config"
+	"github.com/percona/percona-server-mongodb-operator/pkg/psmdb/logcollector/logrotate"
 )
 
 const (
@@ -35,7 +35,7 @@ func Containers(cr *api.PerconaServerMongoDB, mongoPort int32) ([]corev1.Contain
 		return nil, err
 	}
 
-	logRotationCont, err := logRotationContainer(cr, mongoPort)
+	logRotationCont, err := logrotate.Container(cr, mongoPort)
 	if err != nil {
 		return nil, err
 	}
@@ -103,72 +103,3 @@ func logContainer(cr *api.PerconaServerMongoDB) (*corev1.Container, error) {
 
 	return &container, nil
 }
-
-func logRotationContainer(cr *api.PerconaServerMongoDB, mongoPort int32) (*corev1.Container, error) {
-	if cr.Spec.LogCollector == nil {
-		return nil, errors.New("logcollector can't be nil")
-	}
-
-	boolFalse := false
-
-	usersSecretName := api.UserSecretName(cr)
-
-	envs := []corev1.EnvVar{
-		{
-			Name:  "MONGODB_HOST",
-			Value: "localhost",
-		},
-		{
-			Name:  "MONGODB_PORT",
-			Value: strconv.Itoa(int(mongoPort)),
-		},
-		{
-			Name: "MONGODB_USER",
-			ValueFrom: &corev1.EnvVarSource{
-				SecretKeyRef: &corev1.SecretKeySelector{
-					Key: "MONGODB_CLUSTER_ADMIN_USER_ESCAPED",
-					LocalObjectReference: corev1.LocalObjectReference{
-						Name: usersSecretName,
-					},
-					Optional: &boolFalse,
-				},
-			},
-		},
-		{
-			Name: "MONGODB_PASSWORD",
-			ValueFrom: &corev1.EnvVarSource{
-				SecretKeyRef: &corev1.SecretKeySelector{
-					Key: "MONGODB_CLUSTER_ADMIN_PASSWORD_ESCAPED",
-					LocalObjectReference: corev1.LocalObjectReference{
-						Name: usersSecretName,
-					},
-					Optional: &boolFalse,
-				},
-			},
-		},
-	}
-
-	container := corev1.Container{
-		Name:            "logrotate",
-		Image:           cr.Spec.LogCollector.Image,
-		Env:             envs,
-		ImagePullPolicy: cr.Spec.LogCollector.ImagePullPolicy,
-		SecurityContext: cr.Spec.LogCollector.ContainerSecurityContext,
-		Resources:       cr.Spec.LogCollector.Resources,
-		Args: []string{
-			"logrotate",
-		},
-		Command: []string{"/opt/percona/logcollector/entrypoint.sh"},
-		VolumeMounts: []corev1.VolumeMount{
-			{
-				Name:      config.MongodDataVolClaimName,
-				MountPath: config.MongodContainerDataDir,
-			},
-			{
-				Name:      config.BinVolumeName,
-				MountPath: config.BinMountPath,
-			},
-		},
-	}
-	return &container, nil
-}