Skip to content
Snippets Groups Projects
Commit 3262f400 authored by Temur Maisuradze's avatar Temur Maisuradze
Browse files

logging and supervisord for cortex

parent 0fd84490
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
inventories/filebeat
+ 1
0
View file @ 3262f400
...@@ -10,3 +10,4 @@ dsoclab-keycloak ansible_connection=docker FILEBEAT_FILES='["/var/log/supervisor ...@@ -10,3 +10,4 @@ dsoclab-keycloak ansible_connection=docker FILEBEAT_FILES='["/var/log/supervisor
dsoclab-mysql ansible_connection=docker FILEBEAT_FILES='["/var/opt/rh/rh-mariadb103/log/mariadb/mariadb.log"]' FILEBEAT_LOG_TYPE="mysql" FILEBEAT_LOG_FORMAT="text" dsoclab-mysql ansible_connection=docker FILEBEAT_FILES='["/var/opt/rh/rh-mariadb103/log/mariadb/mariadb.log"]' FILEBEAT_LOG_TYPE="mysql" FILEBEAT_LOG_FORMAT="text"
dsoclab-haproxy ansible_connection=docker FILEBEAT_SYSLOG_PORT=9000 FILEBEAT_LOG_TYPE="haproxy" FILEBEAT_LOG_FORMAT="text" dsoclab-haproxy ansible_connection=docker FILEBEAT_SYSLOG_PORT=9000 FILEBEAT_LOG_TYPE="haproxy" FILEBEAT_LOG_FORMAT="text"
#dsoclab-zookeeper ansible_connection=docker FILEBEAT_FILES='[""]' #dsoclab-zookeeper ansible_connection=docker FILEBEAT_FILES='[""]'
dsoclab-cortex ansible_connection=docker FILEBEAT_FILES='["/var/log/supervisor/*.log"]' FILEBEAT_LOG_TYPE="cortex" FILEBEAT_LOG_FORMAT="text"
roles/build/files/cortexsupervisord.conf 0 → 100644
+ 43
0
View file @ 3262f400
[unix_http_server]
file=/tmp/supervisor.sock
[supervisord]
pidfile=/tmp/supervisord.pid
nodaemon=true
logfile=/var/log/supervisor/supervisord.log
logfile_maxbytes=10MB
logfile_backups=10
loglevel=info
childlogdir=/var/log/supervisor/
[rpcinterface:supervisor]
supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
[supervisorctl]
serverurl=unix:///tmp/supervisor.sock
[program:elasticsearch]
directory=/usr/share/elasticsearch
user=elasticsearch
group=elasticsearch
command=/bin/bash -c '/usr/share/elasticsearch/bin/elasticsearch'
autostart=false
autorestart=true
logfile_maxbytes=10MB
stdout_logfile_backups = 0
stderr_logfile_backups = 0
stderr_logfile = /var/log/supervisor/elasticsearch_stderr.log
stdout_logfile = /var/log/supervisor/elasticsearch_stdout.log
[program:cortex]
directory=/opt/cortex
user=cortex
group=cortex
command=/bin/bash -c '/opt/cortex/bin/cortex -Dconfig.file=/etc/cortex/application.conf -Dlogger.file=/etc/cortex/logback.xml -J-Xms1g -J-Xmx1g -Dpidfile.path=/dev/null'
autostart=false
autorestart=true
logfile_maxbytes=10MB
stdout_logfile_backups = 0
stderr_logfile_backups = 0
stderr_logfile = /var/log/supervisor/cortex_stderr.log
stdout_logfile = /var/log/supervisor/cortex_stdout.log
roles/build/templates/cortex/Dockerfile.j2
+ 3
2
View file @ 3262f400
...@@ -27,6 +27,7 @@ RUN echo "[thehive-project]" > /etc/yum.repos.d/thehive.repo && \ ...@@ -27,6 +27,7 @@ RUN echo "[thehive-project]" > /etc/yum.repos.d/thehive.repo && \
for I in responders/*/requirements.txt; do LC_ALL=en_US.UTF-8 pip3 install --no-cache-dir -U -r $I || true; done && \ for I in responders/*/requirements.txt; do LC_ALL=en_US.UTF-8 pip3 install --no-cache-dir -U -r $I || true; done && \
yum -y clean all yum -y clean all
EXPOSE 9001 EXPOSE 9001
#ENTRYPOINT ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"] COPY cortexsupervisord.conf /etc/supervisord.conf
USER cortex ENTRYPOINT ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"]
#USER cortex
# ENTRYPOINT ["/start.sh"] # ENTRYPOINT ["/start.sh"]
roles/cortex/tasks/main.yml
+ 15
19
View file @ 3262f400
...@@ -17,6 +17,7 @@ ...@@ -17,6 +17,7 @@
- startcortex - startcortex
- name: Copy certificates in cortex conf dir - name: Copy certificates in cortex conf dir
remote_user: cortex
copy: copy:
src: "{{ item }}" src: "{{ item }}"
dest: "/etc/cortex/{{ item }}" dest: "/etc/cortex/{{ item }}"
...@@ -42,18 +43,13 @@ ...@@ -42,18 +43,13 @@
- name: Start embedded Elasticsearch 6 - name: Start embedded Elasticsearch 6
remote_user: root remote_user: root
command: > command: "supervisorctl start elasticsearch"
daemonize
-u elasticsearch
-c /usr/share/elasticsearch
-p /tmp/elasticsearch.pid
-o /tmp/elasticsearch-stdout.log
/usr/share/elasticsearch/bin/elasticsearch
tags: tags:
- start - start
- startcortex - startcortex
- name: Configure Cortex - name: Configure Cortex
remote_user: cortex
template: template:
src: application.conf.j2 src: application.conf.j2
dest: /etc/cortex/application.conf dest: /etc/cortex/application.conf
...@@ -62,22 +58,14 @@ ...@@ -62,22 +58,14 @@
- startcortex - startcortex
- name: Start Cortex - name: Start Cortex
command: > remote_user: root
daemonize command: "supervisorctl start cortex"
-c /opt/cortex
-p /tmp/cortex.pid
-o /tmp/cortex-stdout.log
/opt/cortex/bin/cortex
-Dconfig.file=/etc/cortex/application.conf
-Dlogger.file=/etc/cortex/logback.xml
-J-Xms1g
-J-Xmx1g
-Dpidfile.path=/dev/null
tags: tags:
- start - start
- startcortex - startcortex
- name: Wait for Cortex - name: Wait for Cortex
remote_user: root
wait_for: wait_for:
host: "{{groups['cortex'][0]}}" host: "{{groups['cortex'][0]}}"
port: 9001 port: 9001
...@@ -87,8 +75,16 @@ ...@@ -87,8 +75,16 @@
- start - start
- startcortex - startcortex
- name: Stop Elasticsearch
remote_user: root
command: "supervisorctl stop elasticsearch"
tags:
- stop
- stopelasticsearch
- name: Stop Cortex - name: Stop Cortex
command: "pkill -SIGTERM -F /tmp/cortex.pid" remote_user: root
command: "supervisorctl stop cortex"
tags: tags:
- stop - stop
- stopcortex - stopcortex
......
roles/docker/tasks/cortex.yml
+ 0
1
View file @ 3262f400
...@@ -12,7 +12,6 @@ ...@@ -12,7 +12,6 @@
# - "9001:9001" # - "9001:9001"
volumes: volumes:
- "{{item}}:/var/lib/elasticsearch/" - "{{item}}:/var/lib/elasticsearch/"
entrypoint: "/bin/bash"
interactive: "yes" interactive: "yes"
with_items: "{{ groups['cortex'] }}" with_items: "{{ groups['cortex'] }}"
tags: tags:
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment