certs目录存放的是一个自签名的证书,使用elasticsearch工具生成
./setup_certs.sh
# or
docker-compose run -it --rm setup_certs
生成内容如下
certs
├── ca
│ ├── ca.crt
│ └── ca.key
├── ca.zip
├── certs.zip
├── gwq5210.com
│ ├── gwq5210.com.crt # 可以使用权威机构颁发的证书替换
│ └── gwq5210.com.key
└── instances.yml
gwq5210.com.crt和gwq5210.com.key用于nginx、elasticsearch、portainer的https服务
docker secret create gwq5210.com.crt certs/gwq5210.com/gwq5210.com.crt
docker secret create gwq5210.com.key certs/gwq5210.com/gwq5210.com.key
echo "a123456789" | docker secret create elasticsearch_bootstrap_password.txt -
echo "a123456789" | docker secret create elasticsearch_keystore_password.txt -
filebrowser密码可以使用初始密码admin,然后再网页端进行修改
密码保存在filebrowser.db中,不确定是否加密
echo "2423087292" | docker secret create mirai_bot_qq.txt -
echo "d41d8cd98f00b204e9800998ecf8427e" | docker secret create mirai_bot_qq_password.txt -
echo "a123456789" | docker secret create mirai_verify_key.txt -
echo "a123456789" | docker secret create mysql_root_password.txt -
echo "gwq5210" | docker secret create scrapyd_username.txt -
echo "a123456789" | docker secret create scrapyd_password.txt -
tank当前不需要设置密码,可以在网页端设置,密码保存在mysql数据库中
echo "ffffffff-ffff-ffff-ffff-ffffffffffff" | docker secret create v2ray_uuid.txt -
./pull_all.sh
# 1. 如果没有自签名证书和根证书,则在certs目录下生成证书
# 2. 设置docker secrets
# 3. 设置elasticsearch和kibana的keystore文件
./setup.sh
# 启动docker_site服务
./start.sh
./stop.sh
./restart.sh
# 启动portainer服务
./portainer_start.sh
./portainer_stop.sh