beenull/crowdsec
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
1703 commits 83 branches 177 tags 151 MiB
Commit graph

99 commits

Author SHA1 Message Date
mmetc d986ae0ee5
fix yq behavior with bind-mount config.yaml (#1968) 
Co-authored-by: Thibault "bui" Koechlin <thibault@crowdsec.net>
 2023-01-09 21:47:25 +01:00
mmetc dfc4126384
Docker config/auth/TLS refactoring from from v1.4.4 (#1967) 2023-01-04 16:43:35 +01:00
mmetc 72c1753fb7
fix tls communication with lapi and user/pw auth (#1956) 
allow self-signed TLS encryption with user/pw auth

docker:
 - remove defaults for certificate file locations
 - new envvar INSECURE_SKIP_VERIFY
 - register agent before TLS settings (cscli machine add removes them
   from the credentials file)
 2022-12-29 22:00:11 +01:00
mmetc f68bc113a7
docker: separate CLIENT_* and LAPI_* variables for tls certificates (#1929) 2022-12-16 20:41:39 +01:00
mmetc e4ff26d613
docker readme update (#1924) 2022-12-12 10:57:26 +01:00
mmetc 409721414b
docker: fix/improve support for persistent configurations (#1915) 
set all defaults in config.yaml and leave environment variables empty. This way when they are set we know that we must override the values in config.yaml.
ignore tainted objects when calling install/upgrade/remove
use_wal is false by default
 2022-12-10 22:09:25 +01:00
mmetc 10ee07cea0
docker: correctly extract BOUNCER_KEY_* (fix #1912) (#1913) 2022-12-06 16:03:28 +01:00
mmetc cc228f1868
Typos, grammar (#1905) 2022-12-06 15:55:27 +01:00
mmetc 9131d9d568
docker/README: automatic registration with tls (#1909) 2022-12-06 11:58:32 +01:00
mmetc fa0e590778
removed pid_dir (#1906) 2022-12-02 13:42:43 +01:00
mmetc f2528f3e29
add USE_WAL to docker arguments (#1899) 2022-11-30 14:28:33 +01:00
mmetc d15014f82e
silence harmless "machines delete" error in dockerfile (#1904) 2022-11-30 14:19:20 +01:00
mmetc fde9640364
Docker refactoring, tls setup (#1869) 2022-11-28 10:35:12 +01:00
mmetc b0889d7751
docker build flavors: slim, with-plugins, with-geoip, full (#1862) 2022-11-08 12:28:57 +01:00
AlteredCoder 59fc403e32
fix docker_start without using jq (#1855) 
* fix docker_start without using jq
 2022-11-07 10:07:26 +01:00
Stephane de Labrusse daae241ff9
fix #1794 (TLS is forced even when -e USE_TLS="false") 2022-10-07 16:31:03 +02:00
he2ss 3c6834fc18
docker_start: improve start script (#1599) 2022-06-22 11:31:55 +02:00
Greg Myers 0f4ab71f01
Fix typos in docs, comments, code (#1483) 2022-04-27 11:04:12 +02:00
he2ss ec4e193cbb
docker: add enroll on startup (#1463) 
* docker: add enroll on startup
 2022-04-20 13:35:22 +02:00
Adam 33ef6eaea6
Register bouncers on container init (#1341) 
* Register bounces on init
 2022-04-04 10:18:44 +02:00
Shivam Sandbhor 023ac9e138
Add trusted IPs which have admin API access (#1352) 
* Add trusted IPs which have admin API access
 2022-03-16 17:28:34 +01:00
Chad Jones 19817083d1
Docker prestage - correct database directory (#1312) 2022-03-07 10:35:32 +01:00
Andreas Krüger 75ba0e2bfc
Specify journalctl support (#1272) 
Journalctl is only supported from the debian container.
 2022-02-18 17:11:41 +01:00
Andreas Krüger d18620858e
Create debian docker package including journalctl/systemd (#1233) 
* Create debian docker package with journalctl

Co-authored-by: he2ss <hamza.essahely@gmail.com>
 2022-02-15 17:10:15 +01:00
Andreas Krüger 02765a74fa
Add LOCAL_API_URL to register auto an agent (#1231) 2022-02-03 12:26:20 +01:00
Andreas Krüger 8c878b0669
Add TLS functionality from env variables (#1227) 
* Add TLS functionality settings from env variables
 2022-02-02 13:20:12 +01:00
Andreas Krüger ead0a06f0c
Set custom hostname for local agent credentials (#1229) 
* Set custom hostname for local agent credentials
 2022-02-02 10:12:54 +01:00
Andreas Krüger d5f17ee377
Set LOCAL_API_URL on regeneration of local agent (#1226) 
The local agent credentials file contains the URL for the local API endpoint. If you set it through the environment variable, it is not honored when regenerating the URL for the localhost machine.

This PR will set the LOCAL_API_URL on the regeneration of credentials if it's defined.
 2022-02-01 17:45:04 +01:00
Adam d2bd01d009
Prestage files and copy on init to fix bind mount issues (#1216) 2022-02-01 12:35:57 +01:00
Cristian Nitescu 64a672216d
revamp docker documentation (#1189) 2022-01-20 12:29:19 +01:00
Shivam Sandbhor 4bf996a716
Make docker start executable (#1031) 
Signed-off-by: Shivam Sandbhor <shivam.sandbhor@gmail.com>
 2021-11-02 10:24:30 +01:00
mmetc f10187bd6d
typos (#1036) 2021-11-02 09:19:22 +01:00
he2ss 4d4d6d802c
fix #1008 + regenerate localhost credentials on start (#1009) 2021-10-14 17:02:38 +02:00
he2ss 990599a0b5
update docker entrypoint script (#982) 2021-09-21 10:54:05 +02:00
he2ss ff400c9bca
fix docker image + install whitelists on build (#968) 
* fix docker image + install whitelists on build
 2021-09-13 10:48:48 +02:00
he2ss 88846ac115
update docker image documentation + docker start script (#965) 
* update docker image documentation  + docker start script
 2021-09-10 14:59:22 +02:00
blotus 652b75ee68
do no set hub_branch to master in docker (#956) 2021-09-10 09:44:06 +02:00
blotus 90e354650b
add notification plugins in docker image (#951) 2021-09-09 16:05:21 +02:00
ThinkChaos 448a227079
Minor changes to specific logs (#900) 
- Minor changes to specific logs
- Fix LAPI to not push signals to CAPI when disabled #907
 2021-08-25 18:30:05 +02:00
Thibault "bui" Koechlin 42bc31cf23
update docker file to reflect change on acquisitions (#834) 
* update docker file to reflect change on acquisitions

* generic --dsn approach

Co-authored-by: he2ss <he2ss>
 2021-06-29 18:03:45 +02:00
Florian Michel 8a42601d3d
add docker option to specify timezone (#803) 2021-05-26 13:02:23 +02:00
thibaut severac ecad34091e
Misspelling in docker Readme (#688) 
correct an error on a link
 2021-03-15 09:29:55 +01:00
Thibault "bui" Koechlin 17ad9de738
up installation documentation (#678) 
* up installation documentation
 2021-03-12 11:16:17 +01:00
Thibault "bui" Koechlin 6f8b6cdb42
fix the perms of SQLite DB for metabase (#647) 2021-02-25 11:29:39 +01:00
erenJag 18ff3a3a30
update docker image + documentation (#602) 
Co-authored-by: erenJag <erenJag>
 2021-02-10 09:29:29 +01:00
Thibault "bui" Koechlin e74f221044
Fix default configurations (#597) 
* fix default perms on SQLite file

* seed the prng securely

* fix defaults to enforce certificates verification

* ensure file is within path

* ensure the directory doesn't exist beforehand

* verify certificate by default

* disable http ip forward headers
 2021-02-02 14:15:13 +01:00
Thibault "bui" Koechlin dbb420f79e
local api (#482) 
Co-authored-by: AlteredCoder
Co-authored-by: erenJag
 2020-11-30 10:37:17 +01:00
Thibault bui Koechlin 7c7b765d50 cleanup 2020-05-15 12:17:53 +02:00
Thibault bui Koechlin 2016167654 initial import 2020-05-15 11:39:16 +02:00