Introduce expand-configuration script and add tainted nextcloud-logs.…

…yaml parser
NethServer · Sep 19, 2024 · 7a2d034 · 7a2d034
1 parent f52e59e
commit 7a2d034
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 2 deletions.
diff --git a/imageroot/bin/expand-configuration b/imageroot/bin/expand-configuration
@@ -6,10 +6,10 @@
 #
 
 import os
-import json
 import agent
 import agent.tasks
 import re
+import shutil
 
 from jinja2 import Environment, FileSystemLoader, select_autoescape
 
@@ -160,3 +160,7 @@ if whitelists:
         output = template.render(properties)
         with open("crowdsec_config/postoverflows/s01-whitelist/nethserver-postoverflows-whitelists.yaml","w") as f:
             f.write(output)
+
+## expand the tainted configuration files
+os.makedirs("crowdsec_config/hub/parsers/s01-parse/crowdsecurity", exist_ok=True)
+shutil.copyfile("../tainted/nextcloud-logs.yaml", "crowdsec_config/hub/parsers/s01-parse/crowdsecurity/nextcloud-logs.yaml")
diff --git a/imageroot/crowdsec.service b/imageroot/crowdsec.service
@@ -38,7 +38,6 @@ ExecStart=/usr/bin/podman run \
     --volume  ./crowdsec_config:/etc/crowdsec:Z \
     --volume %N-data:/var/lib/crowdsec/data:Z \
     --volume ${CROWDSEC_JOURNAL}:/run/log/journal \
-    --volume ../tainted/nextcloud-logs.yaml:/etc/crowdsec/hub/parsers/s01-parse/crowdsecurity/nextcloud-logs.yaml:Z \
     ${CROWDSEC_IMAGE}
 ExecStop=/usr/bin/podman stop --ignore --cidfile %t/%N.cid -t 10
 ExecStopPost=/usr/bin/podman rm --ignore -f --cidfile %t/%N.cid