mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-06 17:22:49 +01:00
34 lines
1.5 KiB
Plaintext
34 lines
1.5 KiB
Plaintext
# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
|
|
# or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at
|
|
# https://securityonion.net/license; you may not use this file except in compliance with the
|
|
# Elastic License 2.0.
|
|
|
|
{% from 'kafka/map.jinja' import KAFKAMERGED %}
|
|
{% from 'vars/globals.map.jinja' import GLOBALS %}
|
|
|
|
so-kafka:
|
|
docker_container.absent:
|
|
- force: True
|
|
|
|
so-kafka_so-status.disabled:
|
|
file.comment:
|
|
- name: /opt/so/conf/so-status/so-status.conf
|
|
- regex: ^so-kafka$
|
|
- onlyif: grep -q '^so-kafka$' /opt/so/conf/so-status/so-status.conf
|
|
|
|
{% if GLOBALS.is_manager and KAFKAMERGED.enabled or GLOBALS.pipeline == "KAFKA" %}
|
|
ensure_default_pipeline:
|
|
cmd.run:
|
|
- name: |
|
|
/usr/sbin/so-yaml.py replace /opt/so/saltstack/local/pillar/kafka/soc_kafka.sls kafka.enabled False;
|
|
/usr/sbin/so-yaml.py replace /opt/so/saltstack/local/pillar/global/soc_global.sls global.pipeline REDIS
|
|
{% endif %}
|
|
|
|
{# If Kafka has never been manually enabled, the 'Kafka' user does not exist. In this case certs for Kafka should not exist since they'll be owned by uid 960 #}
|
|
{% for cert in ['kafka-client.crt','kafka-client.key','kafka.crt','kafka.key','kafka-logstash.crt','kafka-logstash.key','kafka-logstash.p12','kafka.p12','elasticfleet-kafka.p8'] %}
|
|
check_kafka_cert_{{cert}}:
|
|
file.absent:
|
|
- name: /etc/pki/{{cert}}
|
|
- onlyif: stat -c %U /etc/pki/{{cert}} | grep -q UNKNOWN
|
|
- show_changes: False
|
|
{% endfor %} |