From 58bf4d64be76e5dd120fc1b3113654b2edc8f658 Mon Sep 17 00:00:00 2001 From: Fede Tux Date: Fri, 5 Jul 2024 10:43:41 -0300 Subject: [PATCH] Adding tls to Kibana in manager to elastic integration --- integrations/docker/manager-elastic.yml | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/integrations/docker/manager-elastic.yml b/integrations/docker/manager-elastic.yml index e98a2871dff8b..12ee41527ee24 100644 --- a/integrations/docker/manager-elastic.yml +++ b/integrations/docker/manager-elastic.yml @@ -150,6 +150,12 @@ services: " - localhost\n"\ " ip:\n"\ " - 127.0.0.1\n"\ + " - name: kibana\n"\ + " dns:\n"\ + " - kibana\n"\ + " - localhost\n"\ + " ip:\n"\ + " - 127.0.0.1\n"\ > config/certs/instances.yml; bin/elasticsearch-certutil cert --silent --pem -out config/certs/certs.zip --in config/certs/instances.yml --ca-cert config/certs/ca/ca.crt --ca-key config/certs/ca/ca.key; unzip config/certs/certs.zip -d config/certs; @@ -226,12 +232,15 @@ services: - ELASTICSEARCH_USERNAME=kibana_system - ELASTICSEARCH_PASSWORD=${KIBANA_PASSWORD} - ELASTICSEARCH_SSL_CERTIFICATEAUTHORITIES=config/certs/ca/ca.crt + - SERVER_SSL_ENABLED=true + - SERVER_SSL_KEY=/usr/share/kibana/config/certs/kibana/kibana.key + - SERVER_SSL_CERTIFICATE=/usr/share/kibana/config/certs/kibana/kibana.crt mem_limit: ${MEM_LIMIT} healthcheck: test: [ 'CMD-SHELL', - "curl -s -I http://localhost:5601 | grep -q 'HTTP/1.1 302 Found'", + "curl -s -I https://localhost:5601 | grep -q 'HTTP/1.1 302 Found'", ] interval: 10s timeout: 10s