forked from PeoplePerHour/elastalert-docker
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Dockerfile
91 lines (70 loc) · 3.13 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
FROM alpine:3.5
# URL from which to download Elastalert.
ENV ELASTALERT_URL https://github.com/Yelp/elastalert/archive/v0.1.6.zip
# Directory holding configuration for Elastalert and Supervisor.
ENV CONFIG_DIR /opt/config
# Elastalert rules directory.
ENV RULES_DIRECTORY /opt/rules
# Elastalert configuration file path in configuration directory.
ENV ELASTALERT_CONFIG ${CONFIG_DIR}/config.yaml
# Directory to which Elastalert and Supervisor logs are written.
ENV LOG_DIR /opt/logs
# Elastalert home directory name.
ENV ELASTALERT_DIRECTORY_NAME elastalert
# Elastalert home directory full path.
ENV ELASTALERT_HOME /opt/${ELASTALERT_DIRECTORY_NAME}
# Supervisor configuration file for Elastalert.
ENV ELASTALERT_SUPERVISOR_CONF ${CONFIG_DIR}/elastalert_supervisord.conf
# Alias, DNS or IP of Elasticsearch host to be queried by Elastalert. Set in default Elasticsearch configuration file.
ENV ELASTICSEARCH_HOST es_host
# Port on above Elasticsearch host. Set in default Elasticsearch configuration file.
ENV ELASTICSEARCH_PORT 9200
ENV S3_BUCKET=staging_elastalert_rules
# Python has a problem with SSL certificate verification
ENV PYTHONHTTPSVERIFY=0
RUN apk add --no-cache bash gcc musl-dev openssl gettext wget python python-dev py-setuptools && \
apk add --no-cache --virtual=build-dependencies wget ca-certificates && \
wget "https://bootstrap.pypa.io/get-pip.py" -O /dev/stdout | python && \
apk del build-dependencies
WORKDIR /opt
COPY ./config /opt/config
COPY ./start-elastalert.sh /opt/
RUN \
# Install AWS CLI
pip install awscli &&\
# Download and unpack Elastalert.
wget --no-check-certificate ${ELASTALERT_URL} && \
unzip *.zip && \
rm *.zip &&\
mv e* ${ELASTALERT_DIRECTORY_NAME}
WORKDIR ${ELASTALERT_HOME}
# Install Elastalert.
RUN python setup.py install && \
pip install -e . && \
# Install Supervisor.
pip install supervisor && \
# Make the start-script executable.
chmod +x /opt/start-elastalert.sh && \
# Create directories.
mkdir -p ${CONFIG_DIR} && \
mkdir -p ${RULES_DIRECTORY} && \
mkdir -p ${LOG_DIR} && \
# Copy default configuration files to configuration directory.
cp ${ELASTALERT_HOME}/supervisord.conf.example ${ELASTALERT_SUPERVISOR_CONF} && \
# Elastalert Supervisor configuration:
# Redirect Supervisor log output to a file in the designated logs directory.
sed -i -e"s|logfile=.*log|logfile=${LOG_DIR}/elastalert_supervisord.log|g" ${ELASTALERT_SUPERVISOR_CONF} && \
# Redirect Supervisor stderr output to a file in the designated logs directory.
sed -i -e"s|stderr_logfile=.*log|stderr_logfile=${LOG_DIR}/elastalert_stderr.log|g" ${ELASTALERT_SUPERVISOR_CONF} && \
# Modify the start-command.
sed -i -e"s|python elastalert.py|python -m elastalert.elastalert --config ${ELASTALERT_CONFIG}|g" ${ELASTALERT_SUPERVISOR_CONF} && \
# Clean up.
apk del python-dev && \
apk del musl-dev && \
apk del gcc && \
# Add Elastalert to Supervisord.
supervisord -c ${ELASTALERT_SUPERVISOR_CONF}
# Define mount points.
VOLUME [ "${CONFIG_DIR}", "${RULES_DIRECTORY}", "${LOG_DIR}"]
# Launch Elastalert when a container is started.
CMD ["/opt/start-elastalert.sh"]