Skip to content

Instantly share code, notes, and snippets.

View ericrdgz's full-sized avatar

Eric Rodriguez ericrdgz

View GitHub Profile
@ericrdgz
ericrdgz / s3_elb_logs.conf
Last active July 19, 2017 02:17
Logstash S3 ELB Access Logs Conf
input {
s3 {
type => "elb-access-log"
bucket => "elb-absencetracker"
region => "us-west-2"
access_key_id => "access_key_id_goes_here"
secret_access_key => "secret_access_key_goes_here"
sincedb_path => "/tmp/.prod_s3_elb_logs_since.db"
}
@ericrdgz
ericrdgz / web.xml
Created July 19, 2017 01:58
rundeck web.xml
<security-role>
<role-name>rundeckusers</role-name>
</security-role>
@ericrdgz
ericrdgz / jaas-activedirectory.conf
Created July 19, 2017 01:57
jaas-activedirectory.conf
activedirectory {
com.dtolabs.rundeck.jetty.jaas.JettyCachingLdapLoginModule required
debug="true"
contextFactory="com.sun.jndi.ldap.LdapCtxFactory"
providerUrl="ldap://ad-server.ad.myorg.com:389"
bindDn="admin@ad.myorg.com"
bindPassword="password_goes_here"
authenticationMethod="simple"
forceBindingLogin="true"
userBaseDn="dc=ad,dc=myorg,dc=com"
@ericrdgz
ericrdgz / profile
Created July 19, 2017 01:56
/etc/rundeck/profile
BEFORE
RDECK_JVM="-Djava.security.auth.login.config=$JAAS_CONF \
-Dloginmodule.name=$LOGIN_MODULE \
-Drdeck.config=$RDECK_CONFIG \
-Drundeck.server.configDir=$RDECK_SERVER_CONFIG \
-Dserver.datastore.path=$RDECK_SERVER_DATA/rundeck \
-Drundeck.server.serverDir=$RDECK_INSTALL \
-Drdeck.projects=$RDECK_PROJECTS \
-Drdeck.runlogs=$RUNDECK_LOGDIR \
@ericrdgz
ericrdgz / gist:f567492629dc8f1bd952b9c3ffd3b89a
Created July 19, 2017 01:53
/etc/rundeck/rundeckusers.aclpolicy
description: Admin project level access control. Applies to resources within a specific project.
context:
project: '.*' # all projects
for:
resource:
- equals:
kind: job
allow: [create] # allow create jobs
- equals:
kind: node