Omite seguridad en prod e instala plugin para S3

variables:

  DOCKER_DRIVER: overlay2

  AWS_ACCESS_KEY_ID: ${S3_ACCESS_KEY}

  AWS_SECRET_ACCESS_KEY: ${S3_SECRET_KEY}

  ES_PLUGINS: repository-s3

docker-build-commit-non-master-branches:

  stage: package

  artifacts:

    paths: [gl-sast-container-report.json]

deploy-dev:

  stage: deploy

  image: registry.gitlab.com/redmic-project/docker/docker-deploy:latest

  variables:

    SSH_REMOTE: ${DEV_SSH_REMOTE}

    STACK: elastic

    SERVICES_TO_CHECK: elastic_${CI_PROJECT_NAME}-1

    IMAGE_NAME: ${CI_REGISTRY_IMAGE}

    IMAGE_TAG: ${CI_COMMIT_SHA}

    COMPOSE_FILE: docker-compose.${CI_PROJECT_NAME}-1.tmpl.yml:docker-compose.${CI_PROJECT_NAME}-1.dev.yml

    OLD_ELASTIC_ADMIN_PASS: ${DEV_OLD_ELASTIC_ADMIN_PASS}

    ELASTIC_ADMIN_PASS: ${DEV_ELASTIC_ADMIN_PASS}

    ELASTIC_USER: ${DEV_ELASTIC_USER}

    ELASTIC_USER_PASS: ${DEV_ELASTIC_USER_PASS}

    ELASTIC_USER_ROLE: ${DEV_ELASTIC_USER_ROLE}

  script:

    - create-nets.sh elastic-net

    - >

      deploy.sh IMAGE_NAME=${IMAGE_NAME} IMAGE_TAG=${IMAGE_TAG} COMPOSE_FILE=${COMPOSE_FILE}

      OLD_ELASTIC_ADMIN_PASS=${OLD_ELASTIC_ADMIN_PASS} ELASTIC_ADMIN_PASS=${ELASTIC_ADMIN_PASS}

      ELASTIC_USER=${ELASTIC_USER} ELASTIC_USER_PASS=${ELASTIC_USER_PASS} ELASTIC_USER_ROLE=${ELASTIC_USER_ROLE}

  environment:

    name: dev

  only:

    - dev

  when: manual

deploy-supporting-branch:

  stage: deploy

  image: registry.gitlab.com/redmic-project/docker/docker-deploy

  image: ${DOCKER_DEPLOY_IMAGE_NAME}:${DOCKER_DEPLOY_IMAGE_TAG}

  variables:

    SSH_REMOTE: ${DEV_SSH_REMOTE}

    STACK: elastic

    ELASTIC_USER: ${DEV_ELASTIC_USER}

    ELASTIC_USER_PASS: ${DEV_ELASTIC_USER_PASS}

    ELASTIC_USER_ROLE: ${DEV_ELASTIC_USER_ROLE}

    AWS_ACCESS_KEY_ID: ${DEV_AWS_ACCESS_KEY_ID}

    AWS_SECRET_ACCESS_KEY: ${DEV_AWS_SECRET_ACCESS_KEY}

    ES_PLUGINS: ${DEV_ES_PLUGINS}

  script:

    - >

      deploy.sh IMAGE_NAME=${IMAGE_NAME} IMAGE_TAG=${IMAGE_TAG} COMPOSE_FILE=${COMPOSE_FILE}

    - branches

  except:

    - master

    - dev

  when: manual

deploy-pro:

  stage: deploy

  image: registry.gitlab.com/redmic-project/docker/docker-deploy:latest

  image: ${DOCKER_DEPLOY_IMAGE_NAME}:${DOCKER_DEPLOY_IMAGE_TAG}

  variables:

    SSH_REMOTE: ${PRO_SSH_REMOTE}

    STACK: elastic

    ELASTIC_USER: ${PRO_ELASTIC_USER}

    ELASTIC_USER_PASS: ${PRO_ELASTIC_USER_PASS}

    ELASTIC_USER_ROLE: ${PRO_ELASTIC_USER_ROLE}

    AWS_ACCESS_KEY_ID: ${PRO_AWS_ACCESS_KEY_ID}

    AWS_SECRET_ACCESS_KEY: ${PRO_AWS_SECRET_ACCESS_KEY}

    ES_PLUGINS: ${PRO_ES_PLUGINS}

  script:

    - create-nets.sh elastic-net

    - >

ELASTIC_USER=user

ELASTIC_USER_PASS=pass

ES_PLUGINS=repository-s3

ES_XPACK_SECURITY_ENABLED=false

      - ES_NODE_NAME=node-1

      - ES_DISCOVERY_ZEN_MINIMUM_MASTER_NODES=1

      - ES_DISCOVERY_ZEN_PING_UNICAST_HOSTS=elasticsearch-1

      - ES_XPACK_SECURITY_ENABLED=false

    ports:

      - target: ${PORT1}

        published: ${PORT1}

      - ES_NODE_NAME={{.Service.Name}}

      - ES_DISCOVERY_ZEN_PING_UNICAST_HOSTS=['elasticsearch-1', 'elasticsearch-2', 'elasticsearch-3']

      - USER_MANAGEMENT_DELAY=200

      - ES_XPACK_SECURITY_ENABLED

    healthcheck:

      test: curl --silent localhost:${PORT}/_cluster/health

      timeout: 10s

      retries: 3

      start_period: 2m

    deploy:

      placement:

        constraints:

          memory: 1G

        reservations:

          memory: 820M

    #healthcheck:

      #test: >

        #status=$$(curl --write-out %{http_code} --silent --output /dev/null -u "${ELASTIC_USER}:${ELASTIC_USER_PASS}" localhost:${PORT1}/_cluster/health);

        #[ "$${status}" -eq "200" ] || [ "$${status}" -eq "401" ]

      #timeout: 10s

      #retries: 3

      #start_period: 2m

networks:

  elastic-net: