forked from karmi/elastic-observability-demo
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathcertificates-create.yml
32 lines (30 loc) · 1.05 KB
/
certificates-create.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
# Create the certificates for the stack:
#
# docker-compose --file certificates-create.yml up
#
# See: https://www.elastic.co/guide/en/elasticsearch/reference/current/configuring-tls-docker.html
version: "3.7"
services:
create_certificates:
image: docker.elastic.co/elasticsearch/elasticsearch:${VERSION}
container_name: certificates_generator
user: root
working_dir: /usr/share/elasticsearch
command: >
bash -c '
yum install -y -q -e 0 unzip tree;
if [[ ! -f /certificates/bundle.zip ]]; then
bin/elasticsearch-certutil cert \
--pem \
--days 365 \
--keep-ca-key \
--in config/certificates/certificates-config.yml \
--out /certificates/bundle.zip;
unzip /certificates/bundle.zip -d /certificates;
fi;
chown -R 1000:0 /certificates; echo;
tree /certificates;
'
volumes:
- ./certificates:/certificates
- ./certificates-config.yml:/usr/share/elasticsearch/config/certificates/certificates-config.yml