Revert "thehive integration with keycloak"

This reverts commit d0fc936f

inventories/mysql

+[mysql]
+soctools-mysql ansible_connection=docker
\ No newline at end of file

inventories/nifi

+[nificontainers]
+soctools-nifi-1 ansible_connection=docker
+soctools-nifi-2 ansible_connection=docker
+soctools-nifi-3 ansible_connection=docker

inventories/soctools

+[soctoolsmain]
+localhost ansible_connection=local

inventories/thehive

+[thehive]
+soctools-thehive ansible_connection=docker

restart-soctools.yml

+---
+
+- name: Restart services for haproxy
+  hosts: haproxy
+  roles:
+    - haproxy
+
+- name: Restart services for mysql
+  hosts: mysql
+  roles:
+    - mysql
+
+- name: Restart services for Cassandra
+  hosts: cassandra
+  roles:
+    - cassandra
+
+- name: Restart services for Keycloak
+  hosts: keycloakcontainers
+  roles:
+    - keycloak
+
+- name: Restart services for NiFi
+  hosts: nificontainers
+  roles:
+    - nifi
+
+- name: Restart services for OpenDistro for Elasticsearch
+  hosts: odfeescontainers
+  roles:
+    - odfees
+
+- name: Restart services for OpenDistro Kibana for Elasticsearch
+  hosts: odfekibanacontainers
+  roles:
+    - odfekibana
+
+- name: Restart services for MISP
+  hosts: mispcontainers
+  roles:
+    - misp
+
+- name: Restart services for TheHive
+  hosts: thehive
+  roles:
+    - thehive
+
+- name: Restart services for Cortex
+  hosts: cortex
+  roles:
+    - cortex
+

roles/build/files/cassandra/cassandrasupervisord.conf

+[unix_http_server]
+file=/tmp/supervisor.sock
+
+[supervisord]
+pidfile=/tmp/supervisord.pid
+nodaemon=true
+logfile=/var/log/supervisor/supervisord.log
+logfile_maxbytes=10MB
+logfile_backups=10
+loglevel=info
+childlogdir=/var/log/supervisor/
+
+[rpcinterface:supervisor]
+supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
+
+[supervisorctl]
+serverurl=unix:///tmp/supervisor.sock
+
+[program:cassandra]
+directory=/usr/share/cassandra
+user=cassandra
+group=cassandra
+environment = CASSANDRA_HOME="/usr/share/cassandra",CASSANDRA_CONF="/usr/share/cassandra/conf",CASSANDRA_INCLUDE="/usr/share/cassandra/cassandra.in.sh"
+command=/bin/bash -c '/usr/sbin/cassandra -f'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/cassandra_stderr.log
+stdout_logfile = /var/log/supervisor/cassandra_stdout.log
+
+[program:filebeat]
+directory=/opt/filebeat
+user=root
+group=root
+command=/bin/bash -c '/opt/filebeat/filebeat -c /opt/filebeat/filebeat.yml'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/filebeat_stderr.log
+stdout_logfile = /var/log/supervisor/filebeat_stdout.log

roles/build/files/cassandraDockerfile

-FROM gn43-dsl/openjdk:7a20201004
-
-USER root
-#COPY cassandra.repo /etc/yum.repos.d/cassandra.repo
-#COPY supervisord.conf /etc/supervisord.conf
-#COPY start.sh /start.sh
-RUN echo "[cassandra]" > /etc/yum.repos.d/cassandra.repo && \
-    echo "name=Apache Cassandra" >> /etc/yum.repos.d/cassandra.repo && \
-    echo "baseurl=https://downloads.apache.org/cassandra/redhat/311x/" >> /etc/yum.repos.d/cassandra.repo && \
-    echo "gpgcheck=1" >> /etc/yum.repos.d/cassandra.repo && \
-    echo "repo_gpgcheck=1" >> /etc/yum.repos.d/cassandra.repo && \
-    echo "gpgkey=https://downloads.apache.org/cassandra/KEYS" >> /etc/yum.repos.d/cassandra.repo && \
-    echo '#!/bin/bash' > /start.sh && \
-    echo 'export CASSANDRA_HOME=/usr/share/cassandra' >> /start.sh && \
-    echo 'export CASSANDRA_CONF=$CASSANDRA_HOME/conf' >> /start.sh && \
-    echo 'export CASSANDRA_INCLUDE=$CASSANDRA_HOME/cassandra.in.sh' >> /start.sh && \
-    echo 'log_file=/var/log/cassandra/cassandra.log' >> /start.sh && \
-    echo 'pid_file=/var/run/cassandra/cassandra.pid' >> /start.sh && \
-    echo 'lock_file=/var/lock/subsys/cassandra' >> /start.sh && \
-    echo 'CASSANDRA_PROG=/usr/sbin/cassandra' >> /start.sh && \
-    echo '' >> /start.sh && \
-    echo '$CASSANDRA_PROG -p $pid_file > $log_file 2>&1' >> /start.sh && \
-    yum install -y epel-release && \
-    yum install -y cassandra supervisor && \
-    mkdir /usr/share/cassandra/conf && \
-    cp -a /etc/cassandra/conf/* /usr/share/cassandra/conf && \
-    chown -R cassandra:cassandra /usr/share/cassandra && \
-    chown -R cassandra:cassandra /var/lib/cassandra && \
-    sed -i -e 's,/etc/cassandra,/usr/share/cassandra,g' /usr/share/cassandra/cassandra.in.sh && \
-    chmod a+x /start.sh && \
-    yum -y clean all
-EXPOSE 7000 9042
-#ENTRYPOINT ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"]
-USER cassandra
-# ENTRYPOINT ["/start.sh"]

roles/build/files/cortex/cortexsupervisord.conf

+[unix_http_server]
+file=/tmp/supervisor.sock
+
+[supervisord]
+pidfile=/tmp/supervisord.pid
+nodaemon=true
+logfile=/var/log/supervisor/supervisord.log
+logfile_maxbytes=10MB
+logfile_backups=10
+loglevel=info
+childlogdir=/var/log/supervisor/
+
+[rpcinterface:supervisor]
+supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
+
+[supervisorctl]
+serverurl=unix:///tmp/supervisor.sock
+
+[program:elasticsearch]
+directory=/usr/share/elasticsearch
+user=elasticsearch
+group=elasticsearch
+command=/bin/bash -c '/usr/share/elasticsearch/bin/elasticsearch'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/elasticsearch_stderr.log
+stdout_logfile = /var/log/supervisor/elasticsearch_stdout.log
+
+[program:cortex]
+directory=/opt/cortex
+user=cortex
+group=cortex
+command=/bin/bash -c '/opt/cortex/bin/cortex -Dconfig.file=/etc/cortex/application.conf -Dlogger.file=/etc/cortex/logback.xml -J-Xms1g -J-Xmx1g -Dpidfile.path=/dev/null'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/cortex_stderr.log
+stdout_logfile = /var/log/supervisor/cortex_stdout.log
+
+[program:filebeat]
+directory=/opt/filebeat
+user=root
+group=root
+command=/bin/bash -c '/opt/filebeat/filebeat -c /opt/filebeat/filebeat.yml'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/filebeat_stderr.log
+stdout_logfile = /var/log/supervisor/filebeat_stdout.log

roles/build/files/cortexDockerfile

-FROM gn43-dsl/openjdk:7a20201004
-
-USER root
-#COPY thehive.repo /etc/yum.repos.d/thehive.repo
-#COPY supervisord.conf /etc/supervisord.conf
-#COPY start.sh /start.sh
-RUN echo "[thehive-project]" > /etc/yum.repos.d/thehive.repo && \
-    echo "enabled=1" >> /etc/yum.repos.d/thehive.repo && \
-    echo "priority=1" >> /etc/yum.repos.d/thehive.repo && \
-    echo "name=TheHive-Project RPM repository" >> /etc/yum.repos.d/thehive.repo && \
-    echo "baseurl=http://rpm.thehive-project.org/stable/noarch" >> /etc/yum.repos.d/thehive.repo && \
-    echo "gpgcheck=1" >> /etc/yum.repos.d/thehive.repo && \
-    yum install -y epel-release && \
-    rpm --import https://raw.githubusercontent.com/TheHive-Project/TheHive/master/PGP-PUBLIC-KEY && \
-    rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch && \
-    yum install -y cortex supervisor daemonize vim net-tools telnet htop python3-pip.noarch git gcc python3-devel.x86_64 ssdeep-devel.x86_64 python3-wheel.noarch libexif-devel.x86_64 libexif.x86_64 perl-Image-ExifTool.noarch  gcc-c++ whois && \
-    rpm -Uvh https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-oss-6.8.13.rpm && \
-    chown -R elasticsearch:elasticsearch /etc/elasticsearch && \
-    mkdir -p /home/cortex && \
-    chown -R cortex:cortex /home/cortex && \
-    chown -R cortex:cortex /etc/cortex && \
-    cd /opt && \
-    git clone https://github.com/TheHive-Project/Cortex-Analyzers && \
-    chown -R cortex:cortex /opt/Cortex-Analyzers && \
-    cd /opt/Cortex-Analyzers && \
-    for I in analyzers/*/requirements.txt; do LC_ALL=en_US.UTF-8 pip3 install --no-cache-dir -U -r $I || true; done && \
-    for I in responders/*/requirements.txt; do LC_ALL=en_US.UTF-8 pip3 install --no-cache-dir -U -r $I || true; done && \
-    yum -y clean all
-EXPOSE 9001
-#ENTRYPOINT ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"]
-USER cortex
-# ENTRYPOINT ["/start.sh"]

roles/build/files/elasticDockerfile

-FROM gn43-dsl/openjdk:7a20201004
-
-ENV PATH="/usr/share/elasticsearch/bin:${PATH}"
-
-RUN groupadd -g 1000 elasticsearch && \
-    adduser -u 1000 -g 1000 -d /usr/share/elasticsearch elasticsearch
-
-WORKDIR /usr/share/elasticsearch
-
-RUN rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch && \
-    rpm -Uvh https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-oss-7.4.2-no-jdk-x86_64.rpm && \
-    cp -a /etc/elasticsearch/ /usr/share/elasticsearch/config/ && \
-    chown -R elasticsearch /usr/share/elasticsearch/config && \
-    mkdir -p /usr/share/elasticsearch/data && \
-    chown -R elasticsearch /usr/share/elasticsearch/data && \
-    sed -i -e 's,ES_PATH_CONF=/etc/elasticsearch,ES_PATH_CONF=/usr/share/elasticsearch/config,g' /etc/sysconfig/elasticsearch
-
-EXPOSE 9200 9300
-USER elasticsearch
-ENTRYPOINT ["/bin/bash"]
-

roles/build/files/haproxy/haproxysupervisord.conf

+[unix_http_server]
+file=/tmp/supervisor.sock
+
+[supervisord]
+pidfile=/tmp/supervisord.pid
+nodaemon=true
+logfile=/var/log/supervisor/supervisord.log
+logfile_maxbytes=10MB
+logfile_backups=10
+loglevel=info
+childlogdir=/var/log/supervisor/
+
+[rpcinterface:supervisor]
+supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
+
+[supervisorctl]
+serverurl=unix:///tmp/supervisor.sock
+
+[program:haproxy]
+directory=/root
+user=root
+group=root
+command=/bin/bash -c '/usr/local/sbin/haproxy -f /usr/local/etc/haproxy/haproxy.cfg'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/haproxy_stderr.log
+stdout_logfile = /var/log/supervisor/haproxy_stdout.log
+
+
+[program:filebeat]
+directory=/opt/filebeat
+user=root
+group=root
+command=/bin/bash -c '/opt/filebeat/filebeat -c /opt/filebeat/filebeat.yml'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/filebeat_stderr.log
+stdout_logfile = /var/log/supervisor/filebeat_stdout.log

roles/build/files/haproxyDockerfile

-FROM gn43-dsl/centos:7a20201004
-
-ENV HAPROXY_VERSION 2.2.3
-ENV HAPROXY_URL https://www.haproxy.org/download/2.2/src/haproxy-2.2.3.tar.gz
-ENV HAPROXY_SHA256 7209db363d4dbecb21133f37b01048df666aebc14ff543525dbea79be202064e
-ENV OPENSSL_VERSION=1.0.2u
-
-
-# see https://sources.debian.net/src/haproxy/jessie/debian/rules/ for some helpful navigation of the possible "make" arguments
-RUN \
-  yum install -y epel-release && \
-  yum update -y && \
-  `# Install build tools. Note: perl needed to compile openssl...` \
-  yum install -y \
-  inotify-tools \
-  wget \
-  tar \
-  gzip \
-  make \
-  gcc \
-  perl \
-  pcre-devel \
-  zlib-devel \
-  iptables \
-  pcre2-devel \
-  daemonize \
-  pth-devel && \
-  `# Install newest openssl...` \
-  wget -O /tmp/openssl.tgz https://www.openssl.org/source/openssl-${OPENSSL_VERSION}.tar.gz && \
-  tar -zxf /tmp/openssl.tgz -C /tmp && \
-  cd /tmp/openssl-* && \
-  ./config --prefix=/usr \
-  --openssldir=/etc/ssl \
-  --libdir=lib          \
-  no-shared zlib-dynamic && \
-  make -j$(getconf _NPROCESSORS_ONLN) V= && make install_sw && \
-  cd && rm -rf /tmp/openssl* && \
-  `# Install HAProxy...` \ 
-  && wget -O haproxy.tar.gz "$HAPROXY_URL" \
-  && echo "$HAPROXY_SHA256 *haproxy.tar.gz" | sha256sum -c \
-  && mkdir -p /usr/src/haproxy \
-  && tar -xzf haproxy.tar.gz -C /usr/src/haproxy --strip-components=1 \
-  && rm haproxy.tar.gz \
-  \
-  && makeOpts=' \
-    TARGET=linux-glibc \
-    USE_GETADDRINFO=1 \
-    USE_OPENSSL=1 \
-    USE_PCRE2=1 USE_PCRE2_JIT=1 \
-    USE_ZLIB=1 \
-    \
-    EXTRA_OBJS=" \
-# see https://github.com/docker-library/haproxy/issues/94#issuecomment-505673353 for more details about prometheus support
-      contrib/prometheus-exporter/service-prometheus.o \
-    " \
-  ' \
-  && nproc="$(nproc)" \
-  && eval "make -C /usr/src/haproxy -j '$nproc' all $makeOpts" \
-  && eval "make -C /usr/src/haproxy install-bin $makeOpts" \
-  \
-  && mkdir -p /usr/local/etc/haproxy \
-  && cp -R /usr/src/haproxy/examples/errorfiles /usr/local/etc/haproxy/errors \
-  && rm -rf /usr/src/haproxy 
-
-ENTRYPOINT ["/bin/bash"]
-
-# https://www.haproxy.org/download/1.8/doc/management.txt
-# "4. Stopping and restarting HAProxy"
-# "when the SIGTERM signal is sent to the haproxy process, it immediately quits and all established connections are closed"
-# "graceful stop is triggered when the SIGUSR1 signal is sent to the haproxy process"
-STOPSIGNAL SIGUSR1

roles/build/files/keycloak/keycloaksupervisord.conf

+[unix_http_server]
+file=/tmp/supervisor.sock
+
+[supervisord]
+pidfile=/tmp/supervisord.pid
+nodaemon=true
+logfile=/var/log/supervisor/supervisord.log
+logfile_maxbytes=10MB
+logfile_backups=10
+loglevel=info
+childlogdir=/var/log/supervisor/
+
+[rpcinterface:supervisor]
+supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
+
+[supervisorctl]
+serverurl=unix:///tmp/supervisor.sock
+
+[program:keycloak]
+directory=/opt/jboss/keycloak
+user=jboss
+group=jboss
+#command=/opt/jboss/keycloak/bin/standalone.sh -b 0.0.0.0
+command=/bin/bash -c '/docker-java-home/jre/bin/java -D[Standalone] -server -Xms64m -Xmx512m -XX:MetaspaceSize=96M -XX:MaxMetaspaceSize=256m -Djava.net.preferIPv4Stack=true -Djboss.modules.system.pkgs=org.jboss.byteman -Djava.awt.headless=true -Dorg.jboss.boot.log.file=/opt/jboss/keycloak/standalone/log/server.log -Dlogging.configuration=file:/opt/jboss/keycloak/standalone/configuration/logging.properties -jar /opt/jboss/keycloak/jboss-modules.jar -mp /opt/jboss/keycloak/modules org.jboss.as.standalone -Djboss.home.dir=/opt/jboss/keycloak -Djboss.server.base.dir=/opt/jboss/keycloak/standalone -b 0.0.0.0'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/keycloak_stderr.log
+stdout_logfile = /var/log/supervisor/keycloak_stdout.log
+
+[program:filebeat]
+directory=/opt/filebeat
+user=root
+group=root
+command=/bin/bash -c '/opt/filebeat/filebeat -c /opt/filebeat/filebeat.yml'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/filebeat_stderr.log
+stdout_logfile = /var/log/supervisor/filebeat_stdout.log

roles/build/files/keycloakDockerfile

-FROM gn43-dsl/openjdk:7a20201004
-
-ENV KEYCLOAK_VERSION 10.0.1
-ENV JDBC_POSTGRES_VERSION 42.2.5
-ENV JBOSS_HOME /opt/jboss/keycloak
-
-ARG KEYCLOAK_DIST=https://downloads.jboss.org/keycloak/$KEYCLOAK_VERSION/keycloak-$KEYCLOAK_VERSION.tar.gz
-
-USER root
-
-#ADD //root/ansible-soctools-scm-uninett-no/soctools-buildtest-20201022/roles/build/templates/keycloak/keycloak-tools /opt/jboss/tools
-ADD keycloak-tools /opt/jboss/tools
-#ADD ../templates/keycloak/keycloak-tools /opt/jboss/tools
-RUN yum -y install openssl && yum -y clean all && \
-    mkdir -p /opt/jboss/ && cd /opt/jboss/ && \
-    curl -L $KEYCLOAK_DIST | tar zx && \
-    mv /opt/jboss/keycloak-* /opt/jboss/keycloak && \
-    mkdir -p /opt/jboss/keycloak/modules/system/layers/base/org/postgresql/jdbc/main && \
-    cd /opt/jboss/keycloak/modules/system/layers/base/org/postgresql/jdbc/main && \
-    curl -L https://repo1.maven.org/maven2/org/postgresql/postgresql/$JDBC_POSTGRES_VERSION/postgresql-$JDBC_POSTGRES_VERSION.jar > postgres-jdbc.jar && \
-    cp /opt/jboss/tools/databases/postgres/module.xml . && \
-    cd /opt/jboss/keycloak && \
-    bin/jboss-cli.sh --file=/opt/jboss/tools/cli/standalone-configuration.cli && \
-    rm -rf /opt/jboss/keycloak/standalone/configuration/standalone_xml_history && \
-    rm -rf /opt/jboss/keycloak/standalone/tmp/auth && \
-    rm -rf /opt/jboss/keycloak/domain/tmp/auth && \
-    adduser -u 1000 -g 0 -d /opt/jboss jboss && \
-    chown -R jboss:root /opt/jboss && \
-    chmod -R g+rwX /opt/jboss && \
-    mkdir -p /etc/x509/{https,ca} && chown -R jboss:root /etc/x509/{https,ca}
-
-ENV PATH="/opt/jboss/keycloak/bin:${PATH}"
-
-WORKDIR /opt/jboss/keycloak
-
-EXPOSE 8080
-EXPOSE 8443
-
-USER jboss
-ENTRYPOINT ["/bin/bash"]
-

roles/build/files/kibana/kibanasupervisord.conf

+[unix_http_server]
+file=/tmp/supervisor.sock
+
+[supervisord]
+pidfile=/tmp/supervisord.pid
+nodaemon=true
+logfile=/var/log/supervisor/supervisord.log
+logfile_maxbytes=10MB
+logfile_backups=10
+loglevel=info
+childlogdir=/var/log/supervisor/
+
+[rpcinterface:supervisor]
+supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
+
+[supervisorctl]
+serverurl=unix:///tmp/supervisor.sock
+
+[program:kibana]
+user=kibana
+group=kibana
+directory=/usr/share/kibana
+command=sh -c "/usr/share/kibana/bin/kibana -c /usr/share/kibana/config/kibana.yml"
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/kibana_stderr.log
+stdout_logfile = /var/log/supervisor/kibana_stdout.log
+
+[program:filebeat]
+directory=/opt/filebeat
+user=root
+group=root
+command=/bin/bash -c '/opt/filebeat/filebeat -c /opt/filebeat/filebeat.yml'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/filebeat_stderr.log
+stdout_logfile = /var/log/supervisor/filebeat_stdout.log

roles/build/files/misp/misp_rh-php72-php-fpm

+/var/opt/rh/rh-php72/log/php-fpm/error.log {
+    missingok
+    notifempty
+    sharedscripts
+    delaycompress
+    postrotate
+        /bin/kill -SIGUSR1 `cat /var/opt/rh/rh-php72/run/php-fpm/php-fpm.pid 2>/dev/null` 2>/dev/null || true
+    endscript
+}
+
+/var/opt/rh/rh-php72/log/php-fpm/www-*log {
+    su apache apache
+    create 600 apache apache
+    missingok
+    notifempty
+    sharedscripts
+    delaycompress
+    postrotate
+        /bin/kill -SIGUSR1 `cat /var/opt/rh/rh-php72/run/php-fpm/php-fpm.pid 2>/dev/null` 2>/dev/null || true
+    endscript
+}

roles/build/files/misp/mispsupervisord.conf

+[unix_http_server]
+file=/tmp/supervisor.sock
+
+[supervisord]
+pidfile=/tmp/supervisord.pid
+nodaemon=true
+logfile=/var/log/supervisor/supervisord.log
+logfile_maxbytes=10MB
+logfile_backups=10
+loglevel=info
+childlogdir=/var/log/supervisor/
+user=root
+
+[rpcinterface:supervisor]
+supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
+
+[supervisorctl]
+serverurl=unix:///tmp/supervisor.sock
+
+[program:cron]
+autostart=true
+autorestart=true
+command=crond -n
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/cron_stderr.log
+stdout_logfile = /var/log/supervisor/cron_stdout.log
+
+[program:php-fpm]
+# EnvironmentFile=/etc/opt/rh/rh-php72/sysconfig/php-fpm
+command=/opt/rh/rh-php72/root/usr/sbin/php-fpm --nodaemonize
+autostart=false
+autorestart=true
+
+[program:redis-server]
+process_name = redis-server
+directory = /var/opt/rh/rh-redis32/lib/redis/
+command=/opt/rh/rh-redis32/root/usr/bin/redis-server /etc/opt/rh/rh-redis32/redis.conf
+user=redis
+autostart=false
+autorestart=true
+
+[program:apache2]
+command=/usr/sbin/httpd -DFOREGROUND
+autostart=false
+autorestart=true
+
+[program:misp-modules]
+command=/bin/bash -c "/usr/local/bin/misp-modules -l '0.0.0.0' -s && sleep infinity"
+user = apache
+autostart=false
+autorestart=unexpected
+startsecs = 0
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/misp-modules_stderr.log
+stdout_logfile = /var/log/supervisor/misp-modules_stdout.log
+
+[program:workers]
+command=/bin/bash -c "cleanup() { /var/www/MISP/app/Console/worker/stop.sh; }; trap 'echo signal received!; kill ${child_pid}; wait ${child_pid}; cleanup' SIGINT SIGTERM; /var/www/MISP/app/Console/worker/start.sh; sleep infinity & child_pid=$!; wait ${child_pid};"
+user=apache
+autostart=false
+autorestart=unexpected
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/workers_stderr.log
+stdout_logfile = /var/log/supervisor/workers_stdout.log
+
+[program:filebeat]
+directory=/opt/filebeat
+user=root
+group=root
+command=/bin/bash -c '/opt/filebeat/filebeat -c /opt/filebeat/filebeat.yml'
+autostart=false
+autorestart=true
+logfile_maxbytes=10MB
+stdout_logfile_backups = 0
+stderr_logfile_backups = 0
+stderr_logfile = /var/log/supervisor/filebeat_stderr.log
+stdout_logfile = /var/log/supervisor/filebeat_stdout.log

roles/build/files/mispDockerfile

-FROM gn43-dsl/centos:7a20201004
-
-USER root
-RUN yum install -y epel-release centos-release-scl scl-utils ; \
-    yum install -y gcc git zip openssl supervisor rh-git218 httpd24 mod_ssl mod_auth_openidc rh-redis32 libxslt-devel zlib-devel libcaca-devel ssdeep-devel rh-php72 rh-php72-php-fpm rh-php72-php-devel rh-php72-php-mysqlnd rh-php72-php-mbstring rh-php72-php-xml rh-php72-php-bcmath rh-php72-php-opcache rh-php72-php-gd mariadb devtoolset-7 make cmake3 cppcheck libcxx-devel gpgme-devel openjpeg-devel gcc gcc-c++ poppler-cpp-devel pkgconfig python-devel redhat-rpm-config rubygem-rouge rubygem-asciidoctor zbar-devel opencv-devel wget screen rh-python36-mod_wsgi postfix curl make cmake python3 python3-devel python3-pip python3-yara python3-wheel python3-redis python3-zmq python3-setuptools redis sudo vim zip sqlite moreutils rng-tools libxml2-devel libxslt-devel zlib-devel libpqxx openjpeg2-devel ssdeep-devel ruby asciidoctor tesseract ImageMagick poppler-cpp-devel python36-virtualenv opencv-devel zbar zbar-devel ; \
-    yum -y clean all ; \
-    sed -i "s/max_execution_time = 30/max_execution_time = 300/" /etc/opt/rh/rh-php72/php.ini ; \
-    sed -i "s/memory_limit = 128M/memory_limit = 2048M/" /etc/opt/rh/rh-php72/php.ini ; \
-    sed -i "s/upload_max_filesize = 2M/upload_max_filesize = 50M/" /etc/opt/rh/rh-php72/php.ini ; \
-    sed -i "s/post_max_size = 8M/post_max_size = 50M/" /etc/opt/rh/rh-php72/php.ini ; \
-    mkdir -p /var/www/MISP ; \
-    chown -R apache:apache /var/www/MISP
-
-USER apache
-WORKDIR /var/www/MISP
-RUN git clone https://github.com/MISP/MISP.git /var/www/MISP ; \
-    git submodule update --init --recursive ; \
-    git submodule foreach --recursive git config core.filemode false ; \
-    git config core.filemode false
-
-USER root
-RUN pip3 install --upgrade pip ; \
-    pip3 install git+https://github.com/CybOXProject/mixbox.git ; \
-    pip3 install git+https://github.com/CybOXProject/python-cybox.git ; \
-    pip3 install git+https://github.com/STIXProject/python-stix.git ; \
-    pip3 install git+https://github.com/MAECProject/python-maec.git ; \
-    pip3 install /var/www/MISP/cti-python-stix2 ; \
-    pip3 install /var/www/MISP/PyMISP ; \
-    pip3 install git+https://github.com/kbandla/pydeep.git ; \
-    pip3 install https://github.com/lief-project/packages/raw/lief-master-latest/pylief-0.9.0.dev.zip ; \
-    pip3 install jsonschema ; \
-    pip3 install reportlab ; \
-    pip3 install python-magic ; \
-    pip3 install pyzmq ; \
-    pip3 install redis
-
-USER apache
-WORKDIR /var/www/MISP
-RUN git submodule init ; \
-    git submodule update
-
-USER root
-WORKDIR /usr/local/src
-RUN git clone https://github.com/MISP/misp-modules.git
-WORKDIR /usr/local/src/misp-modules
-RUN git checkout ; \
-    # sudo pip3 install -I -r REQUIREMENTS ;  \
-    LANG=en_US.UTF-8 pip3 install -I -r REQUIREMENTS; \
-    pip3 install -I . ; \
-    mkdir /var/www/.composer && chown -R apache:apache /var/www/.composer ; \
-    cd /tmp ; \
-    wget https://github.com/ssdeep-project/ssdeep/releases/download/release-2.14.1/ssdeep-2.14.1.tar.gz ; \
-    tar zxvf ssdeep-2.14.1.tar.gz && cd ssdeep-2.14.1 && ./configure && make && make install ; \
-    /usr/bin/scl enable rh-php72 "pecl install ssdeep" ; \
-    echo "extension=ssdeep.so" > /etc/opt/rh/rh-php72/php.d/88-ssdeep.ini ; \
-    cd
-
-USER apache
-WORKDIR /var/www/MISP/app
-RUN wget https://getcomposer.org/download/1.2.1/composer.phar -O composer.phar ; \
-    COMPOSER_CACHE_DIR=/var/www/.composer /usr/bin/scl enable rh-php72 "php composer.phar require kamisama/cake-resque:4.1.2" ; \
-    COMPOSER_CACHE_DIR=/var/www/.composer /usr/bin/scl enable rh-php72 "php composer.phar config vendor-dir Vendor" ; \
-    COMPOSER_CACHE_DIR=/var/www/.composer /usr/bin/scl enable rh-php72 "php composer.phar install" ; \
-    sed -i -e "s/bind 127.0.0.1/bind 0.0.0.0/" /etc/redis.conf ; \
-    cp -fa /var/www/MISP/INSTALL/setup/config.php /var/www/MISP/app/Plugin/CakeResque/Config/config.php ; \
-    cp -a /var/www/MISP/app/Config/bootstrap.default.php /var/www/MISP/app/Config/bootstrap.php ; \
-    cp -a /var/www/MISP/app/Config/database.default.php /var/www/MISP/app/Config/database.php ; \
-    cp -a /var/www/MISP/app/Config/core.default.php /var/www/MISP/app/Config/core.php ; \
-    cp -a /var/www/MISP/app/Config/config.default.php /var/www/MISP/app/Config/config.php
-
-USER root
-COPY mispstart.sh /var/www/MISP/app/Console/worker/start.sh
-RUN chown -R apache:apache /var/www/MISP ; \
-    chmod -R 750 /var/www/MISP ; \
-    chmod -R g+ws /var/www/MISP/app/tmp ; \
-    chmod -R g+ws /var/www/MISP/app/files ; \
-    chmod -R g+ws /var/www/MISP/app/files/scripts/tmp
-
-# 80/443 - MISP web server, 3306 - mysql, 6379 - redis, 6666 - MISP modules, 50000 - MISP ZeroMQ
-EXPOSE 80 443 6443 6379 6666 50000
-
-COPY mispsupervisord.conf /etc/supervisord.conf
-#ENTRYPOINT ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"]
-

roles/build/files/mispsupervisord.conf

-[supervisord]
-nodaemon=false
-user=root
-
-[program:php-fpm]
-# EnvironmentFile=/etc/opt/rh/rh-php72/sysconfig/php-fpm
-command=/opt/rh/rh-php72/root/usr/sbin/php-fpm --nodaemonize
-
-[program:redis-server]
-process_name = redis-server
-directory = /var/opt/rh/rh-redis32/lib/redis/
-command=/opt/rh/rh-redis32/root/usr/bin/redis-server /etc/opt/rh/rh-redis32/redis.conf
-user=redis
-
-[program:apache2]
-command=/usr/sbin/httpd -DFOREGROUND
-
-[program:misp-modules]
-command=/bin/bash -c "/usr/local/bin/misp-modules -l '0.0.0.0' -s"
-user = apache
-startsecs = 0
-
-[program:workers]
-command=/bin/bash /var/www/MISP/app/Console/worker/start.sh
-user=apache