techitesh · June 13, 2020 23:02
diff --git a/elastic-with-x-pack-security.yml b/elastic-with-x-pack-security.yml
 version: '3'

 services:
  create_certs:
    container_name: create_certs
    image: docker.elastic.co/elasticsearch/elasticsearch:6.8.0
    command: >
      bash -c '
        if [[ ! -f ./config/certificates/elastic-certificates.p12 ]]; then
          bin/elasticsearch-certutil cert -out config/certificates/elastic-certificates.p12 -pass ""
        fi;
        chown -R 1000:0 /usr/share/elasticsearch/config/certificates
      '
    user: "0"
    working_dir: /usr/share/elasticsearch
    volumes: ['certs:/usr/share/elasticsearch/config/certificates']

  elasticsearch:
    container_name: elasticsearch
    depends_on: [create_certs]
    image: docker.elastic.co/elasticsearch/elasticsearch:6.8.0
    environment:
      - cluster.name=docker-cluster
      - bootstrap.memory_lock=true
      - "ES_JAVA_OPTS=-Xms512m -Xmx512m"
      - ELASTIC_PASSWORD=MyPassword # password for default user: elastic 
      - xpack.security.enabled=true
      - xpack.security.transport.ssl.enabled=true
      - xpack.security.transport.ssl.verification_mode=certificate
      - xpack.security.transport.ssl.keystore.path=/usr/share/elasticsearch/config/certificates/elastic-certificates.p12
      - xpack.security.transport.ssl.truststore.path=/usr/share/elasticsearch/config/certificates/elastic-certificates.p12
    volumes: ['esdata:/usr/share/elasticsearch/data', 'certs:/usr/share/elasticsearch/config/certificates']
    ulimits:
      nofile:
        soft: 65536
        hard: 65536
      memlock:
        soft: -1
        hard: -1
    ports:
      - "9200:9200"

  kibana:
    container_name: kibana
    depends_on: [elasticsearch]
    image: docker.elastic.co/kibana/kibana:6.8.0
    environment:
      - ELASTICSEARCH_USERNAME=elastic
      - ELASTICSEARCH_PASSWORD=MyPassword
    ports:
      - "5601:5601"

 volumes: {"esdata", "certs"}
	version: '3'

	services:
	create_certs:
	container_name: create_certs
	image: docker.elastic.co/elasticsearch/elasticsearch:6.8.0
	command: >
	bash -c '
	if [[ ! -f ./config/certificates/elastic-certificates.p12 ]]; then
	bin/elasticsearch-certutil cert -out config/certificates/elastic-certificates.p12 -pass ""
	fi;
	chown -R 1000:0 /usr/share/elasticsearch/config/certificates
	'
	user: "0"
	working_dir: /usr/share/elasticsearch
	volumes: ['certs:/usr/share/elasticsearch/config/certificates']

	elasticsearch:
	container_name: elasticsearch
	depends_on: [create_certs]
	image: docker.elastic.co/elasticsearch/elasticsearch:6.8.0
	environment:
	- cluster.name=docker-cluster
	- bootstrap.memory_lock=true
	- "ES_JAVA_OPTS=-Xms512m -Xmx512m"
	- ELASTIC_PASSWORD=MyPassword # password for default user: elastic
	- xpack.security.enabled=true
	- xpack.security.transport.ssl.enabled=true
	- xpack.security.transport.ssl.verification_mode=certificate
	- xpack.security.transport.ssl.keystore.path=/usr/share/elasticsearch/config/certificates/elastic-certificates.p12
	- xpack.security.transport.ssl.truststore.path=/usr/share/elasticsearch/config/certificates/elastic-certificates.p12
	volumes: ['esdata:/usr/share/elasticsearch/data', 'certs:/usr/share/elasticsearch/config/certificates']
	ulimits:
	nofile:
	soft: 65536
	hard: 65536
	memlock:
	soft: -1
	hard: -1
	ports:
	- "9200:9200"

	kibana:
	container_name: kibana
	depends_on: [elasticsearch]
	image: docker.elastic.co/kibana/kibana:6.8.0
	environment:
	- ELASTICSEARCH_USERNAME=elastic
	- ELASTICSEARCH_PASSWORD=MyPassword
	ports:
	- "5601:5601"

	volumes: {"esdata", "certs"}