mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-04-19 21:52:27 +00:00
53 lines
1.8 KiB
Docker
53 lines
1.8 KiB
Docker
FROM ubuntu:24.04
|
|
ENV DEBIAN_FRONTEND noninteractive
|
|
ENV ES_VER=8.17.3
|
|
#
|
|
# Include dist
|
|
COPY dist/ /root/dist/
|
|
#
|
|
# Install packages
|
|
RUN apt-get update -y && \
|
|
apt-get upgrade -y && \
|
|
apt-get install -y \
|
|
adduser \
|
|
aria2 \
|
|
curl && \
|
|
#
|
|
# Determine arch, get and install packages
|
|
ARCH=$(arch) && \
|
|
if [ "$ARCH" = "x86_64" ]; then ES_ARCH="amd64"; export _JAVA_OPTIONS=""; fi && \
|
|
if [ "$ARCH" = "aarch64" ]; then ES_ARCH="arm64"; export _JAVA_OPTIONS="-XX:UseSVE=0"; fi && \
|
|
echo "$ARCH" && \
|
|
cd /root/dist/ && \
|
|
mkdir -p /usr/share/elasticsearch/config \
|
|
/etc/elasticsearch && \
|
|
cp elasticsearch.yml /etc/elasticsearch/ && \
|
|
aria2c -s 16 -x 16 https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-$ES_VER-$ES_ARCH.deb && \
|
|
dpkg --force-confold -i elasticsearch-$ES_VER-$ES_ARCH.deb && \
|
|
#
|
|
# Setup user, groups and configs
|
|
groupmod -g 2000 elasticsearch && \
|
|
usermod -u 2000 elasticsearch && \
|
|
chown -R root:elasticsearch /etc/default/elasticsearch \
|
|
/etc/elasticsearch && \
|
|
chown -R elasticsearch:elasticsearch /var/lib/elasticsearch \
|
|
/var/log/elasticsearch && \
|
|
#
|
|
# Clean up
|
|
apt-get purge aria2 -y && \
|
|
apt-get autoremove -y --purge && \
|
|
apt-get clean && \
|
|
rm -rf /var/lib/apt/lists/* \
|
|
/tmp/* /var/tmp/* \
|
|
/root/.cache \
|
|
/root/*
|
|
#
|
|
# Healthcheck
|
|
HEALTHCHECK --retries=10 CMD curl -s -XGET 'http://127.0.0.1:9200/_cat/health'
|
|
#
|
|
# Start ELK
|
|
USER elasticsearch:elasticsearch
|
|
#CMD ["/usr/share/elasticsearch/bin/elasticsearch"]
|
|
CMD ARCH=$(arch) && \
|
|
if [ "$ARCH" = "aarch64" ]; then export _JAVA_OPTIONS="-XX:UseSVE=0"; fi && \
|
|
exec /usr/share/elasticsearch/bin/elasticsearch
|