logo标签列表

使用docker-compose配置带有用户名和密码的MongoDB Graylog设置

mongodbdocker-composegraylog
4

我试图在制作Graylog的docker-compose文件时设置MongoDB用户密码,但是我无法正确设置用户和密码。

以下是我的docker-compose.yml:

version: '2'
services:
  # MongoDB: https://hub.docker.com/_/mongo/
  mongodb:
    image: mongo:4.2
    volumes:
      - mongo_data:/data/db
    environment: 
      - MONGO_INITDB_ROOT_USERNAME=user
      - MONGO_INITDB_ROOT_PASSWORD=password
      - MONGO_INITDB_DATABASE=graylog
    ports:
      # mongodb
      - 27017:27017
  # Elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/7.10/docker.html
  elasticsearch:
    image: docker.elastic.co/elasticsearch/elasticsearch-oss:7.10.2
    volumes:
      - es_data:/usr/share/elasticsearch/data
    environment:
      - http.host=0.0.0.0
      - transport.host=localhost
      - network.host=0.0.0.0
      - "ES_JAVA_OPTS=-Xms512m -Xmx512m"
    ulimits:
      memlock:
        soft: -1
        hard: -1
    mem_limit: 1g
  # Graylog: https://hub.docker.com/r/graylog/graylog/
  graylog:
    image: graylog/graylog:4.1
    volumes:
      - graylog_data:/usr/share/graylog/data
    environment:
      # CHANGE ME (must be at least 16 characters)!
      - GRAYLOG_PASSWORD_SECRET=somepasswordpepper
      # Password: admin
      - GRAYLOG_ROOT_PASSWORD_SHA2=8c6976e5b5410415bde908bd4dee15dfb167a9c873fc4bb8a81f6f2ab448a918
      - GRAYLOG_HTTP_EXTERNAL_URI=http://127.0.0.1:9000/
      - MONGODB_URI=mongodb://user:password@localhost:27017/graylog
      - GRAYLOG_MONGODB_URI=mongodb://user:password@localhost:27017/graylog
      - MONGO_INITDB_ROOT_USERNAME=user
      - MONGO_INITDB_ROOT_PASSWORD=password
      - GRAYLOG_MONGO_INITDB_ROOT_USERNAME=user
      - GRAYLOG_MONGO_INITDB_ROOT_PASSWORD=password
    entrypoint: /usr/bin/tini -- wait-for-it elasticsearch:9200 --  /docker-entrypoint.sh
    links:
      - mongodb:mongo
      - elasticsearch
    restart: always
    depends_on:
      - mongodb
      - elasticsearch
    ports:
      # Graylog web interface and REST API
      - 9000:9000
      # Syslog TCP
      - 1514:1514
      # Syslog UDP
      - 1514:1514/udp
      # GELF TCP
      - 12201:12201
      # GELF UDP
      - 12201:12201/udp
# Volumes for persisting data, see https://docs.docker.com/engine/admin/volumes/volumes/
volumes:
  mongo_data:
    driver: local
  es_data:
    driver: local
  graylog_data:
    driver: local

但我仍然有一个问题:

graylog_1 | 2021-06-30 07:00:32,022 信息 : org.mongodb.driver.cluster - 集群描述尚不可用。 等待30000毫秒超时 graylog_1 | 2021-06-30 07:00:32,022 信息 : org.mongodb.driver.cluster - 在连接到服务器localhost:27017期间,监视器线程中出现异常 graylog_1 | com.mongodb.MongoSocketOpenException: 打开套接字异常 graylog_1 | at com.mongodb.internal.connection.SocketStream.open(SocketStream.java:70) ~[graylog.jar:?] graylog_1 | at com.mongodb.internal.connection.InternalStreamConnection.open(InternalStreamConnection.java:128) ~[graylog.jar:?] graylog_1 | at com.mongodb.internal.connection.DefaultServerMonitor$ServerMonitorRunnable.run(DefaultServerMonitor.java:117) [graylog.jar:?] graylog_1 | at java.lang.Thread.run(Thread.java:748) [?:1.8.0_292] graylog_1 | 原因是:java.net.ConnectException: 拒绝连接(拒绝连接)

所以,有没有想法在docker compose文件中指定用户/密码?

1个回答
1
错误信息显示连接被拒绝(即端口关闭)。这是因为您在此处使用了localhost作为数据库地址:
- GRAYLOG_MONGODB_URI=mongodb://user:password@localhost:27017/graylog

localhost 更改为 mongodb

- GRAYLOG_MONGODB_URI=mongodb://user:password@mongodb:27017/graylog

在正常情况下,容器内的localhost指的是容器本身。由于graylog容器内没有mongodb实例,因此它告诉你在graylog容器中没有任何东西在localhost:27017上监听。
更改后,graylog可能会告诉你由于凭据错误而无法连接。这是因为由MONGO_INITDB_ROOT_USERNAME创建的用户被添加到admin数据库(而不是'graylog')。如果您还没有手动创建用户,则需要创建一个用户。
另外,这些:
- MONGODB_URI=mongodb://user:password@localhost:27017/graylog
- MONGO_INITDB_ROOT_USERNAME=user
- MONGO_INITDB_ROOT_PASSWORD=password
- GRAYLOG_MONGO_INITDB_ROOT_USERNAME=user
- GRAYLOG_MONGO_INITDB_ROOT_PASSWORD=password

graylog没有影响。

网页内容由stack overflow 提供, 点击上面的
可以查看英文原文,
原文链接