mistborn/extra/scirius.yml

version: '3'

services:
  scirius:
    container_name: mistborn_production_scirius
    image: "cyber5k/scirius:${MISTBORN_TAG}"
    #environment:
    #  - SECRET_KEY: <SECRET KEY>
    env_file:
      - ../.envs/.production/.scirius
    volumes:
      - /var/log/suricata:/logs
      - /etc/suricata/rules:/etc/suricata/rules
      - ../../mistborn_volumes/extra/scirius/static:/static
      - ../../mistborn_volumes/extra/scirius/data:/data
      - /var/run:/var/run:ro
      - /var/run/suricata/suricata-command.socket:/var/run/suricata/suricata-command.socket:ro
      - /sys/fs/cgroup:/sys/fs/cgroup:ro
      - /run/systemd/system:/run/systemd/system:ro
      - /var/run/dbus/system_bus_socket:/var/run/dbus/system_bus_socket:ro
      - /bin/systemctl:/bin/systemctl:ro
      - /lib:/lib:ro
    cap_add:
      - SYS_ADMIN
    privileged: true
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.scirius-http.rule=Host(`scirius.mistborn`)"
      - "traefik.http.routers.scirius-http.entrypoints=web"
      - "traefik.http.routers.scirius-http.middlewares=mistborn_auth@file"
      - "traefik.http.routers.scirius-https.rule=Host(`scirius.mistborn`)"
      - "traefik.http.routers.scirius-https.entrypoints=websecure"
      - "traefik.http.routers.scirius-https.middlewares=mistborn_auth@file"
      - "traefik.http.routers.scirius-https.tls.certresolver=basic"
      - "traefik.http.services.scirius-service.loadbalancer.server.port=8000"
    restart: unless-stopped 

networks:
  default:
    external:
      name: mistborn_default
scirius 5 years ago			`version: '3'`

			`services:`
			`scirius:`
			`container_name: mistborn_production_scirius`
			`image: "cyber5k/scirius:${MISTBORN_TAG}"`
			`#environment:`
			`# - SECRET_KEY: <SECRET KEY>`
tweaks 5 years ago			`env_file:`
scirius 5 years ago			`- ../.envs/.production/.scirius`
scirius 5 years ago			`volumes:`
rules and logs 5 years ago			`- /var/log/suricata:/logs`
mounts 5 years ago			`- /etc/suricata/rules:/etc/suricata/rules`
scirius 5 years ago			`- ../../mistborn_volumes/extra/scirius/static:/static`
rules and logs 5 years ago			`- ../../mistborn_volumes/extra/scirius/data:/data`
var run 5 years ago			`- /var/run:/var/run:ro`
systemctl 5 years ago			`- /var/run/suricata/suricata-command.socket:/var/run/suricata/suricata-command.socket:ro`
privileged 5 years ago			`- /sys/fs/cgroup:/sys/fs/cgroup:ro`
systemctl 5 years ago			`- /run/systemd/system:/run/systemd/system:ro`
			`- /var/run/dbus/system_bus_socket:/var/run/dbus/system_bus_socket:ro`
			`- /bin/systemctl:/bin/systemctl:ro`
lib 5 years ago			`- /lib:/lib:ro`
privileged 5 years ago			`cap_add:`
			`- SYS_ADMIN`
			`privileged: true`
scirius 5 years ago			`labels:`
			`- "traefik.enable=true"`
scirius 5 years ago			- "traefik.http.routers.scirius-http.rule=Host(`scirius.mistborn`)"
traefik naming 5 years ago			`- "traefik.http.routers.scirius-http.entrypoints=web"`
			`- "traefik.http.routers.scirius-http.middlewares=mistborn_auth@file"`
scirius 5 years ago			- "traefik.http.routers.scirius-https.rule=Host(`scirius.mistborn`)"
traefik naming 5 years ago			`- "traefik.http.routers.scirius-https.entrypoints=websecure"`
			`- "traefik.http.routers.scirius-https.middlewares=mistborn_auth@file"`
			`- "traefik.http.routers.scirius-https.tls.certresolver=basic"`
			`- "traefik.http.services.scirius-service.loadbalancer.server.port=8000"`
scirius 5 years ago			`restart: unless-stopped`

			`networks:`
			`default:`
			`external:`
privileged 5 years ago			`name: mistborn_default`