API tools faq
paste
Guest User

docker-compose

a guest
Jan 19th, 2025
362
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
JSON 3.78 KB | Cybersecurity | 0 0
raw download clone embed print report
  1. services:
  2.  
  3. redis:
  4.  
  5. image: redis:7.4.1
  6.  
  7. restart: always
  8.  
  9. volumes:
  10.  
  11. - redisdata:/data
  12.  
  13. healthcheck:
  14.  
  15. test: ["CMD", "redis-cli", "ping"]
  16.  
  17. interval: 10s
  18.  
  19. timeout: 5s
  20.  
  21. retries: 3
  22.  
  23. elasticsearch:
  24.  
  25. image: docker.elastic.co/elasticsearch/elasticsearch:8.17.0
  26.  
  27. volumes:
  28.  
  29. - esdata:/usr/share/elasticsearch/data
  30.  
  31. environment:
  32.  
  33. # Comment-out the line below for a cluster of multiple nodes
  34.  
  35. - discovery.type=single-node
  36.  
  37. # Uncomment the line below below for a cluster of multiple nodes
  38.  
  39. # - cluster.name=docker-cluster
  40.  
  41. - xpack.ml.enabled=false
  42.  
  43. - xpack.security.enabled=false
  44.  
  45. - thread_pool.search.queue_size=5000
  46.  
  47. - logger.org.elasticsearch.discovery="ERROR"
  48.  
  49. - "ES_JAVA_OPTS=-Xms${ELASTIC_MEMORY_SIZE} -Xmx${ELASTIC_MEMORY_SIZE}"
  50.  
  51. restart: always
  52.  
  53. ulimits:
  54.  
  55. memlock:
  56.  
  57. soft: -1
  58.  
  59. hard: -1
  60.  
  61. nofile:
  62.  
  63. soft: 65536
  64.  
  65. hard: 65536
  66.  
  67. healthcheck:
  68.  
  69. test: curl -s http://elasticsearch:9200 >/dev/null || exit 1
  70.  
  71. interval: 30s
  72.  
  73. timeout: 10s
  74.  
  75. retries: 50
  76.  
  77. minio:
  78.  
  79. image: minio/minio:RELEASE.2024-05-28T17-19-04Z # Use "minio/minio:RELEASE.2024-05-28T17-19-04Z-cpuv1" to troubleshoot compatibility issues with CPU
  80.  
  81. volumes:
  82.  
  83. - s3data:/data
  84.  
  85. ports:
  86.  
  87. - "9000:9000"
  88.  
  89. environment:
  90.  
  91. MINIO_ROOT_USER: ${MINIO_ROOT_USER}
  92.  
  93. MINIO_ROOT_PASSWORD: ${MINIO_ROOT_PASSWORD}
  94.  
  95. command: server /data
  96.  
  97. restart: always
  98.  
  99. healthcheck:
  100.  
  101. test: ["CMD", "mc", "ready", "local"]
  102.  
  103. interval: 10s
  104.  
  105. timeout: 5s
  106.  
  107. retries: 3
  108.  
  109. rabbitmq:
  110.  
  111. image: rabbitmq:4.0-management
  112.  
  113. environment:
  114.  
  115. - RABBITMQ_DEFAULT_USER=${RABBITMQ_DEFAULT_USER}
  116.  
  117. - RABBITMQ_DEFAULT_PASS=${RABBITMQ_DEFAULT_PASS}
  118.  
  119. - RABBITMQ_NODENAME=rabbit01@localhost
  120.  
  121. volumes:
  122.  
  123. - amqpdata:/var/lib/rabbitmq
  124.  
  125. restart: always
  126.  
  127. healthcheck:
  128.  
  129. test: rabbitmq-diagnostics -q ping
  130.  
  131. interval: 30s
  132.  
  133. timeout: 30s
  134.  
  135. retries: 3
  136.  
  137. opencti:
  138.  
  139. image: opencti/platform:6.4.8
  140.  
  141. environment:
  142.  
  143. - NODE_OPTIONS=--max-old-space-size=8096
  144.  
  145. - APP__PORT=8080
  146.  
  147. - APP__BASE_URL=${OPENCTI_BASE_URL}
  148.  
  149. - APP__ADMIN__EMAIL=${OPENCTI_ADMIN_EMAIL}
  150.  
  151. - APP__ADMIN__PASSWORD=${OPENCTI_ADMIN_PASSWORD}
  152.  
  153. - APP__ADMIN__TOKEN=${OPENCTI_ADMIN_TOKEN}
  154.  
  155. - APP__APP_LOGS__LOGS_LEVEL=error
  156.  
  157. - REDIS__HOSTNAME=redis
  158.  
  159. - REDIS__PORT=6379
  160.  
  161. - ELASTICSEARCH__URL=http://elasticsearch:9200
  162.  
  163. - ELASTICSEARCH__NUMBER_OF_REPLICAS=0
  164.  
  165. - MINIO__ENDPOINT=minio
  166.  
  167. - MINIO__PORT=9000
  168.  
  169. - MINIO__USE_SSL=false
  170.  
  171. - MINIO__ACCESS_KEY=${MINIO_ROOT_USER}
  172.  
  173. - MINIO__SECRET_KEY=${MINIO_ROOT_PASSWORD}
  174.  
  175. - RABBITMQ__HOSTNAME=rabbitmq
  176.  
  177. - RABBITMQ__PORT=5672
  178.  
  179. - RABBITMQ__PORT_MANAGEMENT=15672
  180.  
  181. - RABBITMQ__MANAGEMENT_SSL=false
  182.  
  183. - RABBITMQ__USERNAME=${RABBITMQ_DEFAULT_USER}
  184.  
  185. - RABBITMQ__PASSWORD=${RABBITMQ_DEFAULT_PASS}
  186.  
  187. - SMTP__HOSTNAME=${SMTP_HOSTNAME}
  188.  
  189. - SMTP__PORT=25
  190.  
  191. - PROVIDERS__LOCAL__STRATEGY=LocalStrategy
  192.  
  193. - APP__HEALTH_ACCESS_KEY=${OPENCTI_HEALTHCHECK_ACCESS_KEY}
  194.  
  195. ports:
  196.  
  197. - "8080:8080"
  198.  
  199. depends_on:
  200.  
  201. - redis
  202.  
  203. - elasticsearch
  204.  
  205. - minio
  206.  
  207. - rabbitmq
  208.  
  209. restart: always
  210.  
  211. healthcheck:
  212.  
  213. test: ["CMD", "wget", "-qO-", "http://opencti:8080/health?health_access_key=${OPENCTI_HEALTHCHECK_ACCESS_KEY}"]
  214.  
  215. interval: 10s
  216.  
  217. timeout: 5s
  218.  
  219. retries: 20
  220.  
  221. worker:
  222.  
  223. image: opencti/worker:6.4.8
  224.  
  225. environment:
  226.  
  227. - OPENCTI_URL=http://opencti:8080
  228.  
  229. - OPENCTI_TOKEN=${OPENCTI_ADMIN_TOKEN}
  230.  
  231. - WORKER_LOG_LEVEL=info
  232.  
  233. depends_on:
  234.  
  235. - opencti
  236.  
  237. deploy:
  238.  
  239. mode: replicated
  240.  
  241. replicas: 3
  242.  
  243. restart: always
  244.  
  245. connector-export-file-stix:
  246.  
  247. image: opencti/connector-export-file-stix:6.4.8
  248.  
  249. environment:
  250.  
  251. - OPENCTI_URL=http://opencti:8080
  252.  
  253. - OPENCTI_TOKEN=${OPENCTI_ADMIN_TOKEN}
  254.  
  255. - CONNECTOR_ID=${CONNECTOR_EXPORT_FILE_STIX_ID} # Valid UUIDv4
  256.  
  257. - CONNECTOR_TYPE=INTERNAL_EXPORT_FILE
  258.  
  259. - CONNECTOR_NAME=ExportFileStix2
  260.  
  261. - CONNECTOR_SCOPE=application/json
  262.  
  263. - CONNECTOR_LOG_LEVEL=info
  264.  
  265. restart: always
  266.  
  267. depends_on:
  268.  
  269. - opencti
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!