CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 10:12:53 +01:00
Code Issues Packages Projects Releases Wiki Activity

Core Module - Fix NGinx config

Browse Source
This commit is contained in:
Mike Reeves
2019-07-15 21:55:48 -04:00
parent 186defe0e2
commit e0e6e2193a
3 changed files with 25 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
salt/common/init.sls
View File

@@ -63,6 +63,16 @@ alwaysupdated:
Etc/UTC: Etc/UTC:
timezone.system timezone.system
# Sync some Utilities
utilsyncscripts:
file.recurse:
- name: /usr/sbin
- user: 0
- group: 0
- file_mode: 755
- template: jinja
- source: salt://common/tools/sbin
# Make sure Docker is running! # Make sure Docker is running!
docker: docker:
service.running: service.running:

10
salt/common/nginx/nginx.conf.so-eval
View File

@@ -88,6 +88,8 @@ http {
# } # }
location /grafana/ { location /grafana/ {
auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
rewrite /grafana/(.*) /$1 break; rewrite /grafana/(.*) /$1 break;
proxy_pass http://{{ masterip }}:3000/; proxy_pass http://{{ masterip }}:3000/;
proxy_read_timeout 90; proxy_read_timeout 90;
@@ -100,6 +102,8 @@ http {
} }
location /kibana/ { location /kibana/ {
auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
rewrite /kibana/(.*) /$1 break; rewrite /kibana/(.*) /$1 break;
proxy_pass http://{{ masterip }}:5601/; proxy_pass http://{{ masterip }}:5601/;
proxy_read_timeout 90; proxy_read_timeout 90;
@@ -125,6 +129,8 @@ http {
} }
location /fleet/ { location /fleet/ {
auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
rewrite /fleet/(.*) /$1 break; rewrite /fleet/(.*) /$1 break;
proxy_pass https://{{ masterip }}:8080/; proxy_pass https://{{ masterip }}:8080/;
proxy_read_timeout 90; proxy_read_timeout 90;
@@ -137,6 +143,8 @@ http {
} }
location /thehive/ { location /thehive/ {
auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
proxy_pass http://{{ masterip }}:9000/thehive/; proxy_pass http://{{ masterip }}:9000/thehive/;
proxy_read_timeout 90; proxy_read_timeout 90;
proxy_connect_timeout 90; proxy_connect_timeout 90;
@@ -159,6 +167,8 @@ http {
} }
location /sensoroni/ { location /sensoroni/ {
auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
proxy_pass http://{{ masterip }}:9822/; proxy_pass http://{{ masterip }}:9822/;
proxy_read_timeout 90; proxy_read_timeout 90;
proxy_connect_timeout 90; proxy_connect_timeout 90;

10
salt/common/nginx/nginx.conf.so-master
View File

@@ -88,7 +88,7 @@ http {
# } # }
location /grafana/ { location /grafana/ {
auth_basic Security Onion; auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd; auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
rewrite /grafana/(.*) /$1 break; rewrite /grafana/(.*) /$1 break;
proxy_pass http://{{ masterip }}:3000/; proxy_pass http://{{ masterip }}:3000/;
@@ -102,7 +102,7 @@ http {
} }
location /kibana/ { location /kibana/ {
auth_basic Security Onion; auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd; auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
rewrite /kibana/(.*) /$1 break; rewrite /kibana/(.*) /$1 break;
proxy_pass http://{{ masterip }}:5601/; proxy_pass http://{{ masterip }}:5601/;
@@ -130,7 +130,7 @@ http {
location /fleet/ { location /fleet/ {
rewrite /fleet/(.*) /$1 break; rewrite /fleet/(.*) /$1 break;
auth_basic Security Onion; auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd; auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
proxy_pass https://{{ masterip }}:8080/; proxy_pass https://{{ masterip }}:8080/;
proxy_read_timeout 90; proxy_read_timeout 90;
@@ -143,7 +143,7 @@ http {
} }
location /thehive/ { location /thehive/ {
auth_basic Security Onion; auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd; auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
proxy_pass http://{{ masterip }}:9000/thehive/; proxy_pass http://{{ masterip }}:9000/thehive/;
proxy_read_timeout 90; proxy_read_timeout 90;
@@ -168,7 +168,7 @@ http {
} }
location /sensoroni/ { location /sensoroni/ {
auth_basic Security Onion; auth_basic "Security Onion";
auth_basic_user_file /opt/so/conf/nginx/.htpasswd; auth_basic_user_file /opt/so/conf/nginx/.htpasswd;
proxy_pass http://{{ masterip }}:9822/; proxy_pass http://{{ masterip }}:9822/;
proxy_read_timeout 90; proxy_read_timeout 90;