Crea volumen config, mueve certs y conecta metrics (b23d9759) · Commits · REDMIC Project / Elastic / Elasticsearch

deploy/docker-compose.es6-1.dev.yml

+5 −2

Original line number	Diff line number	Diff line
		@@ -7,5 +7,8 @@ services:
		- discovery.zen.minimum_master_nodes=${ES_DISCOVERY_ZEN_MINIMUM_MASTER_NODES:-1}

		volumes:
		es-vol:
		name: "${VOLUME_NAME:-es6-1-vol}"
		es-data-vol:
		name: "${ES_DATA_VOL_NAME:-es6-1-vol}"

		es-conf-vol:
		name: "${ES_CONF_VOL_NAME:-es6-1-conf-vol}"

deploy/docker-compose.es6-1.tmpl.yml

+21 −15

Original line number	Diff line number	Diff line
		@@ -17,59 +17,61 @@ services:
		- searchguard.nodes_dn.1=${SG_NODE_2_DN}
		- searchguard.nodes_dn.2=${SG_NODE_3_DN}
		- searchguard.authcz.admin_dn.0=${SG_ADMIN_DN}
		- searchguard.ssl.transport.pemcert_filepath=certs/node.pem
		- searchguard.ssl.transport.pemkey_filepath=certs/node.key
		- searchguard.ssl.transport.pemtrustedcas_filepath=certs/root-ca.pem
		- searchguard.ssl.transport.pemcert_filepath=../certs/node.pem
		- searchguard.ssl.transport.pemkey_filepath=../certs/node.key
		- searchguard.ssl.transport.pemtrustedcas_filepath=../certs/root-ca.pem
		- searchguard.ssl.transport.enforce_hostname_verification=false
		- searchguard.ssl.transport.resolve_hostname=false
		- searchguard.ssl.http.enabled=false
		- searchguard.ssl.http.pemcert_filepath=certs/node.pem
		- searchguard.ssl.http.pemkey_filepath=certs/node.key
		- searchguard.ssl.http.pemtrustedcas_filepath=certs/root-ca.pem
		- searchguard.ssl.http.pemcert_filepath=../certs/node.pem
		- searchguard.ssl.http.pemkey_filepath=../certs/node.key
		- searchguard.ssl.http.pemtrustedcas_filepath=../certs/root-ca.pem
		networks:
		elastic-net:
		aliases:
		- ${ELASTIC_NET_ALIAS:-es6-1}
		metric-net:
		volumes:
		- es-vol:${ES_PATH_DATA}
		- es-data-vol:${ES_PATH_DATA}
		- es-conf-vol:/usr/share/elasticsearch/config
		secrets:
		- source: ca-pem
		target: /usr/share/elasticsearch/config/certs/root-ca.pem
		target: /usr/share/elasticsearch/certs/root-ca.pem
		mode: 0600
		uid: '1000'
		gid: '1000'
		- source: ca-key
		target: /usr/share/elasticsearch/config/certs/root-ca.key
		target: /usr/share/elasticsearch/certs/root-ca.key
		mode: 0600
		uid: '1000'
		gid: '1000'
		- source: node-pem
		target: /usr/share/elasticsearch/config/certs/node.pem
		target: /usr/share/elasticsearch/certs/node.pem
		mode: 0600
		uid: '1000'
		gid: '1000'
		- source: node-key
		target: /usr/share/elasticsearch/config/certs/node.key
		target: /usr/share/elasticsearch/certs/node.key
		mode: 0600
		uid: '1000'
		gid: '1000'
		- source: node-csr
		target: /usr/share/elasticsearch/config/certs/node.csr
		target: /usr/share/elasticsearch/certs/node.csr
		mode: 0600
		uid: '1000'
		gid: '1000'
		- source: admin-pem
		target: /usr/share/elasticsearch/config/certs/admin.pem
		target: /usr/share/elasticsearch/certs/admin.pem
		mode: 0600
		uid: '1000'
		gid: '1000'
		- source: admin-key
		target: /usr/share/elasticsearch/config/certs/admin.key
		target: /usr/share/elasticsearch/certs/admin.key
		mode: 0600
		uid: '1000'
		gid: '1000'
		- source: admin-csr
		target: /usr/share/elasticsearch/config/certs/admin.csr
		target: /usr/share/elasticsearch/certs/admin.csr
		mode: 0600
		uid: '1000'
		gid: '1000'
		@@ -118,6 +120,10 @@ networks:
		driver: overlay
		attachable: true

		metric-net:
		name: ${METRIC_NET_NAME:-metric-net}
		external: true

		secrets:
		ca-pem:
		name: ${CA_PEM_NAME:-ca-pem}