--- a/Shuffle/.github/push_nightly.sh
+++ b/Shuffle/.github/push_nightly.sh
@@ -1,86 +0,0 @@
 
				-# This can be done in the dockerpush workflow itself
			
 
				-# Done manually for now since GHCR isn't being pushed to easily with the current Github action CI. Nightly = Latest IF we run hotfixes on latest
			
 
				-
			
 
				-### Pull latest from ghcr CI/CD
			
 
				-docker pull ghcr.io/shuffle/shuffle-app_sdk:nightly
			
 
				-docker pull ghcr.io/shuffle/shuffle-worker:nightly
			
 
				-docker pull ghcr.io/shuffle/shuffle-orborus:nightly
			
 
				-docker pull ghcr.io/shuffle/shuffle-frontend:nightly
			
 
				-#docker pull ghcr.io/shuffle/shuffle-backend:nightly
			
 
				-#
			
 
				-### NIGHTLY releases
			
 
				-docker tag ghcr.io/shuffle/shuffle-app_sdk:nightly ghcr.io/frikky/shuffle-app_sdk:nightly
			
 
				-docker tag ghcr.io/shuffle/shuffle-worker:nightly  ghcr.io/frikky/shuffle-worker:nightly
			
 
				-docker tag ghcr.io/shuffle/shuffle-orborus:nightly ghcr.io/frikky/shuffle-orborus:nightly
			
 
				-docker tag ghcr.io/shuffle/shuffle-frontend:nightly ghcr.io/frikky/shuffle-frontend:nightly
			
 
				-docker tag ghcr.io/shuffle/shuffle-backend:nightly ghcr.io/frikky/shuffle-backend:nightly
			
 
				-
			
 
				-docker push ghcr.io/frikky/shuffle-app_sdk:nightly
			
 
				-docker push ghcr.io/frikky/shuffle-worker:nightly
			
 
				-docker push ghcr.io/frikky/shuffle-orborus:nightly
			
 
				-docker push ghcr.io/frikky/shuffle-frontend:nightly
			
 
				-docker push ghcr.io/frikky/shuffle-backend:nightly
			
 
				-
			
 
				-### LATEST releases:
			
 
				-## shuffle/shuffle 
			
 
				-docker tag ghcr.io/shuffle/shuffle-app_sdk:nightly ghcr.io/shuffle/shuffle-app_sdk:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-worker:nightly  ghcr.io/shuffle/shuffle-worker:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-orborus:nightly ghcr.io/shuffle/shuffle-orborus:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-frontend:nightly ghcr.io/shuffle/shuffle-frontend:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-backend:nightly ghcr.io/shuffle/shuffle-backend:latest
			
 
				-
			
 
				-docker push ghcr.io/shuffle/shuffle-app_sdk:latest
			
 
				-docker push ghcr.io/shuffle/shuffle-worker:latest
			
 
				-docker push ghcr.io/shuffle/shuffle-orborus:latest
			
 
				-docker push ghcr.io/shuffle/shuffle-frontend:latest
			
 
				-docker push ghcr.io/shuffle/shuffle-backend:latest
			
 
				-
			
 
				-## frikky/shuffle
			
 
				-docker tag ghcr.io/shuffle/shuffle-app_sdk:nightly ghcr.io/frikky/shuffle-app_sdk:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-worker:nightly  ghcr.io/frikky/shuffle-worker:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-orborus:nightly ghcr.io/frikky/shuffle-orborus:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-frontend:nightly ghcr.io/frikky/shuffle-frontend:latest
			
 
				-docker tag ghcr.io/shuffle/shuffle-backend:nightly ghcr.io/frikky/shuffle-backend:latest
			
 
				-
			
 
				-docker push ghcr.io/frikky/shuffle-app_sdk:latest
			
 
				-docker push ghcr.io/frikky/shuffle-worker:latest
			
 
				-docker push ghcr.io/frikky/shuffle-orborus:latest
			
 
				-docker push ghcr.io/frikky/shuffle-frontend:latest
			
 
				-docker push ghcr.io/frikky/shuffle-backend:latest
			
 
				-
			
 
				-
			
 
				-### 1.1.0 releases:
			
 
				-## shuffle/shuffle
			
 
				-docker tag ghcr.io/shuffle/shuffle-app_sdk:nightly ghcr.io/shuffle/shuffle-app_sdk:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-worker:nightly  ghcr.io/shuffle/shuffle-worker:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-orborus:nightly ghcr.io/shuffle/shuffle-orborus:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-frontend:nightly ghcr.io/shuffle/shuffle-frontend:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-backend:nightly ghcr.io/shuffle/shuffle-backend:1.1.0
			
 
				-
			
 
				-docker push ghcr.io/shuffle/shuffle-app_sdk:1.1.0
			
 
				-docker push ghcr.io/shuffle/shuffle-worker:1.1.0
			
 
				-docker push ghcr.io/shuffle/shuffle-orborus:1.1.0
			
 
				-docker push ghcr.io/shuffle/shuffle-frontend:1.1.0
			
 
				-docker push ghcr.io/shuffle/shuffle-backend:1.1.0
			
 
				-
			
 
				-## frikky/shuffle
			
 
				-docker tag ghcr.io/shuffle/shuffle-app_sdk:nightly 	ghcr.io/frikky/shuffle-app_sdk:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-worker:nightly  	ghcr.io/frikky/shuffle-worker:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-orborus:nightly 	ghcr.io/frikky/shuffle-orborus:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-frontend:nightly ghcr.io/frikky/shuffle-frontend:1.1.0
			
 
				-docker tag ghcr.io/shuffle/shuffle-backend:nightly 	ghcr.io/frikky/shuffle-backend:1.1.0
			
 
				-
			
 
				-docker push ghcr.io/frikky/shuffle-app_sdk:1.1.0
			
 
				-docker push ghcr.io/frikky/shuffle-worker:1.1.0
			
 
				-docker push ghcr.io/frikky/shuffle-orborus:1.1.0
			
 
				-docker push ghcr.io/frikky/shuffle-frontend:1.1.0
			
 
				-docker push ghcr.io/frikky/shuffle-backend:1.1.0
			
 
				-
			
 
				-### Manage worker-scale upload (Requires auth)
			
 
				-# This is supposed to be unavailable, and only be downloadable by customers 
			
 
				-docker pull ghcr.io/shuffle/shuffle-worker-scale:latest
			
 
				-docker save ghcr.io/shuffle/shuffle-worker-scale:latest -o shuffle-worker.zip
			
 
				-echo "1. Upload shuffle-worker.zip to the shuffler.io public repo. If in Github Dev env, download the file, and upload manually."
			
 
				-echo "2. Have customers download it with: $ wget URL"
			
 
				-echo "3. Have customers use with with: docker load shuffle-worker.zip"
			
 
				-
			
--- a/Shuffle/.github/workflows/codeql-analysis.yml
+++ b/Shuffle/.github/workflows/codeql-analysis.yml
@@ -1,71 +0,0 @@
 
				-# For most projects, this workflow file will not need changing; you simply need
			
 
				-# to commit it to your repository.
			
 
				-#
			
 
				-# You may wish to alter this file to override the set of languages analyzed,
			
 
				-# or to provide custom queries or build logic.
			
 
				-#
			
 
				-# ******** NOTE ********
			
 
				-# We have attempted to detect the languages in your repository. Please check
			
 
				-# the `language` matrix defined below to confirm you have the correct set of
			
 
				-# supported CodeQL languages.
			
 
				-#
			
 
				-name: "CodeQL"
			
 
				-
			
 
				-on:
			
 
				-  push:
			
 
				-    branches: 
			
 
				-      - master
			
 
				-      - launch 
			
 
				-  pull_request:
			
 
				-    # The branches below must be a subset of the branches above
			
 
				-    branches: 
			
 
				-      - master
			
 
				-      - launch 
			
 
				-  schedule:
			
 
				-    - cron: '38 16 * * 4'
			
 
				-
			
 
				-jobs:
			
 
				-  analyze:
			
 
				-    name: Analyze
			
 
				-    runs-on: ubuntu-latest
			
 
				-
			
 
				-    strategy:
			
 
				-      fail-fast: false
			
 
				-      matrix:
			
 
				-        language: [ 'go', 'javascript', 'python' ]
			
 
				-        # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python' ]
			
 
				-        # Learn more:
			
 
				-        # https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#changing-the-languages-that-are-analyzed
			
 
				-
			
 
				-    steps:
			
 
				-    - name: Checkout repository
			
 
				-      uses: actions/checkout@v3
			
 
				-
			
 
				-    # Initializes the CodeQL tools for scanning.
			
 
				-    - name: Initialize CodeQL
			
 
				-      uses: github/codeql-action/init@v2
			
 
				-      with:
			
 
				-        languages: ${{ matrix.language }}
			
 
				-        # If you wish to specify custom queries, you can do so here or in a config file.
			
 
				-        # By default, queries listed here will override any specified in a config file.
			
 
				-        # Prefix the list here with "+" to use these queries and those in the config file.
			
 
				-        # queries: ./path/to/local/query, your-org/your-repo/queries@main
			
 
				-
			
 
				-    # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
			
 
				-    # If this step fails, then you should remove it and run the build manually (see below)
			
 
				-    - name: Autobuild
			
 
				-      uses: github/codeql-action/autobuild@v2
			
 
				-
			
 
				-    # ℹ️ Command-line programs to run using the OS shell.
			
 
				-    # 📚 https://git.io/JvXDl
			
 
				-
			
 
				-    # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
			
 
				-    #    and modify them (or add more) to build your code if your project
			
 
				-    #    uses a compiled language
			
 
				-
			
 
				-    #- run: |
			
 
				-    #   make bootstrap
			
 
				-    #   make release
			
 
				-
			
 
				-    - name: Perform CodeQL Analysis
			
 
				-      uses: github/codeql-action/analyze@v2
			
--- a/Shuffle/.github/workflows/dockerbuild-nightly.yaml
+++ b/Shuffle/.github/workflows/dockerbuild-nightly.yaml
@@ -1,82 +0,0 @@
 
				-name: nightly-dockerbuild
			
 
				-
			
 
				-on:
			
 
				-  workflow_dispatch:
			
 
				-  push:
			
 
				-    branches:
			
 
				-      - nightly
			
 
				-    paths:
			
 
				-      - "**"
			
 
				-      - "!.github/**"
			
 
				-      - "!**.md"
			
 
				-      - "!docker-compose.yml"
			
 
				-jobs:
			
 
				-  main:
			
 
				-    runs-on: ubuntu-latest
			
 
				-    continue-on-error: ${{ matrix.experimental }}
			
 
				-    strategy:
			
 
				-      fail-fast: false
			
 
				-      matrix:
			
 
				-        include:
			
 
				-          - app: frontend
			
 
				-            path: frontend
			
 
				-            version: nightly
			
 
				-            experimental: true
			
 
				-          - app: backend
			
 
				-            path: backend
			
 
				-            version: nightly
			
 
				-            experimental: true
			
 
				-          - app: orborus
			
 
				-            path: functions/onprem/orborus
			
 
				-            version: nightly
			
 
				-            experimental: true
			
 
				-          - app: worker
			
 
				-            path: functions/onprem/worker
			
 
				-            version: nightly
			
 
				-            experimental: true
			
 
				-    steps:
			
 
				-      - name: Checkout
			
 
				-        uses: actions/checkout@v3
			
 
				-
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-
			
 
				-      - name: Set up QEMU
			
 
				-        uses: docker/setup-qemu-action@v3
			
 
				-        with:
			
 
				-          platforms: "amd64,arm64,arm"
			
 
				-
			
 
				-      - name: Login to DockerHub
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          username: ${{ secrets.DOCKERHUB_USERNAME }}
			
 
				-          password: ${{ secrets.DOCKERHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Login to Ghcr
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          registry: ghcr.io
			
 
				-          username: ${{ github.actor }}
			
 
				-          password: ${{ secrets.GITHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Ghcr Build and push
			
 
				-        id: docker_build
			
 
				-        uses: docker/build-push-action@v4
			
 
				-        env:
			
 
				-          BUILDX_NO_DEFAULT_LOAD: true
			
 
				-        with:
			
 
				-          logout: false
			
 
				-          context: ${{ matrix.path }}/
			
 
				-          file: ${{ matrix.path }}/Dockerfile
			
 
				-          platforms: linux/amd64,linux/arm64
			
 
				-          push: true
			
 
				-          cache-from: type=local,src=/tmp/.buildx-cache
			
 
				-          cache-to: type=local,dest=/tmp/.buildx-cache
			
 
				-          tags: |
			
 
				-            ghcr.io/shuffle/shuffle-${{ matrix.app }}:${{ matrix.version }}
			
 
				-            ${{ secrets.DOCKERHUB_USERNAME }}/shuffle-${{ matrix.app }}:${{ matrix.version }}
			
 
				-            frikky/shuffle-${{ matrix.app }}:${{ matrix.version }}
			
 
				-            frikky/shuffle:${{ matrix.app }}
			
 
				-
			
 
				-      - name: Image digest
			
 
				-        run: echo ${{ steps.docker_build.outputs.digest }}
			
--- a/Shuffle/.github/workflows/dockerbuild.yaml
+++ b/Shuffle/.github/workflows/dockerbuild.yaml
@@ -1,83 +0,0 @@
 
				-name: dockerbuild
			
 
				-
			
 
				-on:
			
 
				-  workflow_dispatch:
			
 
				-  push:
			
 
				-    branches:
			
 
				-      - main
			
 
				-    paths:
			
 
				-      - "**"
			
 
				-      - "!.github/**"
			
 
				-      - "!**.md"
			
 
				-      - "!docker-compose.yml"
			
 
				-jobs:
			
 
				-  main:
			
 
				-    runs-on: ubuntu-latest
			
 
				-    continue-on-error: ${{ matrix.experimental }}
			
 
				-    strategy:
			
 
				-      fail-fast: false
			
 
				-      matrix:
			
 
				-        include:
			
 
				-          - app: frontend
			
 
				-            path: frontend
			
 
				-            version: 2.2.0
			
 
				-            experimental: true
			
 
				-          - app: backend
			
 
				-            path: backend
			
 
				-            version: 2.2.0
			
 
				-            experimental: true
			
 
				-          - app: orborus
			
 
				-            path: functions/onprem/orborus
			
 
				-            version: 2.2.0
			
 
				-            experimental: true
			
 
				-          - app: worker
			
 
				-            path: functions/onprem/worker
			
 
				-            version: 2.2.0
			
 
				-            experimental: true
			
 
				-    steps:
			
 
				-      - name: Checkout
			
 
				-        uses: actions/checkout@v3
			
 
				-
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-
			
 
				-      - name: Set up QEMU
			
 
				-        uses: docker/setup-qemu-action@v3
			
 
				-        with:
			
 
				-          platforms: "amd64,arm64,arm"
			
 
				-
			
 
				-      - name: Login to DockerHub
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          username: ${{ secrets.DOCKERHUB_USERNAME }}
			
 
				-          password: ${{ secrets.DOCKERHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Login to Ghcr
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          registry: ghcr.io
			
 
				-          username: ${{ github.actor }}
			
 
				-          password: ${{ secrets.GITHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Ghcr Build and push
			
 
				-        id: docker_build
			
 
				-        uses: docker/build-push-action@v4
			
 
				-        env:
			
 
				-          BUILDX_NO_DEFAULT_LOAD: true
			
 
				-        with:
			
 
				-          logout: false
			
 
				-          context: ${{ matrix.path }}/
			
 
				-          file: ${{ matrix.path }}/Dockerfile
			
 
				-          platforms: linux/amd64,linux/arm64
			
 
				-          push: true
			
 
				-          cache-from: type=local,src=/tmp/.buildx-cache
			
 
				-          cache-to: type=local,dest=/tmp/.buildx-cache
			
 
				-          tags: |
			
 
				-            ghcr.io/shuffle/shuffle-${{ matrix.app }}:${{ matrix.version }}
			
 
				-            ghcr.io/shuffle/shuffle-${{ matrix.app }}:latest
			
 
				-            ${{ secrets.DOCKERHUB_USERNAME }}/shuffle-${{ matrix.app }}:${{ matrix.version }}
			
 
				-            frikky/shuffle-${{ matrix.app }}:${{ matrix.version }}
			
 
				-            frikky/shuffle:${{ matrix.app }}
			
 
				-
			
 
				-      - name: Image digest
			
 
				-        run: echo ${{ steps.docker_build.outputs.digest }}
			
--- a/Shuffle/.github/workflows/helm-release.yml
+++ b/Shuffle/.github/workflows/helm-release.yml
@@ -1,77 +0,0 @@
 
				-name: Helm Release
			
 
				-
			
 
				-on:
			
 
				-  release:
			
 
				-    types: [published]
			
 
				-    branches:
			
 
				-      - main
			
 
				-      - nightly
			
 
				-  push:
			
 
				-    branches:
			
 
				-      - nightly
			
 
				-      - main
			
 
				-    paths:
			
 
				-      - "functions/kubernetes/charts/**"
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-permissions:
			
 
				-  contents: read
			
 
				-  packages: write
			
 
				-
			
 
				-jobs:
			
 
				-  main:
			
 
				-    runs-on: ubuntu-latest
			
 
				-    steps:
			
 
				-      - name: Checkout
			
 
				-        uses: actions/checkout@v4
			
 
				-
			
 
				-      - name: Setup Helm
			
 
				-        uses: azure/setup-helm@v4
			
 
				-        with:
			
 
				-          version: v3.18.4 # I run it locally so I know it works :b
			
 
				-
			
 
				-      - name: Verify Helm
			
 
				-        run: helm version
			
 
				-
			
 
				-      - name: Set versions
			
 
				-        run: |
			
 
				-          if [[ ${{ github.event_name }} == 'release' ]]; then
			
 
				-            TAG_NAME="${{ github.event.release.tag_name }}"
			
 
				-
			
 
				-            # Remove the v prefix
			
 
				-            VERSION=${TAG_NAME#v}
			
 
				-
			
 
				-            APP_VERSION="${VERSION}"
			
 
				-            CHART_VERSION="${VERSION}"
			
 
				-          else
			
 
				-            APP_VERSION="latest"
			
 
				-            CHART_VERSION="2.2.0"
			
 
				-          fi
			
 
				-
			
 
				-          echo "APP_VERSION set to ${APP_VERSION}"
			
 
				-          echo "CHART_VERSION set to ${CHART_VERSION}. Validating..."
			
 
				-
			
 
				-          # https://semver.org/#is-there-a-suggested-regular-expression-regex-to-check-a-semver-string
			
 
				-          SEMVER_REGEX="^(0|[1-9]\d*)\.(0|[1-9]\d*)\.(0|[1-9]\d*)(?:-((?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*)(?:\.(?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*))*))?(?:\+([0-9a-zA-Z-]+(?:\.[0-9a-zA-Z-]+)*))?$"
			
 
				-
			
 
				-          if echo "${CHART_VERSION}" | grep -Pq "${SEMVER_REGEX}"; then
			
 
				-            echo "${CHART_VERSION} is a valid SemVer string";
			
 
				-          else
			
 
				-            echo "${CHART_VERSION} is an invalid SemVer string";
			
 
				-            exit 1;
			
 
				-          fi
			
 
				-
			
 
				-          echo "CHART_VERSION=${CHART_VERSION}" >> "$GITHUB_ENV"
			
 
				-          echo "APP_VERSION=${APP_VERSION}" >> "$GITHUB_ENV"
			
 
				-
			
 
				-      - name: Update helm dependencies
			
 
				-        run: helm dependency update ./functions/kubernetes/charts/shuffle
			
 
				-
			
 
				-      - name: Package Helm chart
			
 
				-        run: helm package ./functions/kubernetes/charts/shuffle --version "${CHART_VERSION}" --app-version="${APP_VERSION}" --destination ./functions/kubernetes/charts
			
 
				-
			
 
				-      - name: Login to OCI registry (ghcr.io)
			
 
				-        run: helm registry login ghcr.io --username ${{ github.actor }} --password ${{ secrets.GITHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Push helm chart
			
 
				-        run: helm push ./functions/kubernetes/charts/shuffle-*.tgz oci://ghcr.io/shuffle/charts
			
--- a/Shuffle/.github/workflows/helm-test.yml
+++ b/Shuffle/.github/workflows/helm-test.yml
@@ -1,31 +0,0 @@
 
				-name: Helm Test
			
 
				-
			
 
				-on:
			
 
				-  push:
			
 
				-    paths:
			
 
				-      - "functions/kubernetes/charts/**"
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-permissions:
			
 
				-  contents: read
			
 
				-
			
 
				-jobs:
			
 
				-  main:
			
 
				-    runs-on: ubuntu-latest
			
 
				-    steps:
			
 
				-      - name: Checkout
			
 
				-        uses: actions/checkout@v4
			
 
				-
			
 
				-      - name: Install apt dependencies
			
 
				-        run: |
			
 
				-          sudo apt-get install apt-transport-https -y --no-install-recommends
			
 
				-          curl -fsSL https://packages.buildkite.com/helm-linux/helm-debian/gpgkey | gpg --dearmor | sudo tee /usr/share/keyrings/helm.gpg > /dev/null
			
 
				-          echo "deb [signed-by=/usr/share/keyrings/helm.gpg] https://packages.buildkite.com/helm-linux/helm-debian/any/ any main" | sudo tee /etc/apt/sources.list.d/helm-stable-debian.list
			
 
				-          sudo apt-get update
			
 
				-          sudo apt-get install helm -y --no-install-recommends
			
 
				-
			
 
				-      - name: Update helm dependencies
			
 
				-        run: helm dependency update ./functions/kubernetes/charts/shuffle
			
 
				-
			
 
				-      - name: Template helm chart using default values
			
 
				-        run: helm template shuffle ./functions/kubernetes/charts/shuffle --debug --values ./functions/kubernetes/charts/shuffle/values.yaml
			
--- a/Shuffle/.github/workflows/quick-testing.yml
+++ b/Shuffle/.github/workflows/quick-testing.yml
@@ -1,174 +0,0 @@
 
				-name: Docker Compose Up and Ping
			
 
				-
			
 
				-on:
			
 
				-  workflow_run:
			
 
				-    workflows: ["dockerbuild"]
			
 
				-    types:
			
 
				-      - completed
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-jobs:
			
 
				-  build:
			
 
				-    runs-on: ${{ matrix.os }}
			
 
				-    strategy:
			
 
				-      matrix:
			
 
				-        os: [ubuntu-latest]
			
 
				-        architecture: [x64, arm64]
			
 
				-    steps:
			
 
				-      - name: Checkout code
			
 
				-        uses: actions/checkout@v2
			
 
				-
			
 
				-      - name: Shai-Hulud 2.0 Detector
			
 
				-        uses: gensecaihq/Shai-Hulud-2.0-Detector@v1.0.0
			
 
				-
			
 
				-      - name: Install Docker Compose
			
 
				-        run: |
			
 
				-          sudo apt-get update
			
 
				-          sudo apt-get install -y docker-compose
			
 
				-          docker-compose --version
			
 
				-
			
 
				-      - name: Set up opensearch directory
			
 
				-        run: chmod -R 777 shuffle-database
			
 
				-
			
 
				-      - name: Build the stack
			
 
				-        run: docker compose up -d
			
 
				-
			
 
				-      - name: Wait for 30 seconds
			
 
				-        run: sleep 30
			
 
				-
			
 
				-      - name: Check for restarting containers in a loop and fixing perms again
			
 
				-        run: |
			
 
				-          # echo "Changing permissions on shuffle-database directory again"
			
 
				-          # chmod -R 777 shuffle-database
			
 
				-
			
 
				-          ATTEMPTS=30  # Total time = ATTEMPTS * 5 seconds = 30 seconds
			
 
				-          for i in $(seq 1 $ATTEMPTS); do
			
 
				-            RESTARTING_CONTAINERS=$(docker ps --filter "status=restarting" --format "{{.Names}}")
			
 
				-            if [ -n "$RESTARTING_CONTAINERS" ]; then
			
 
				-              echo "The following containers are restarting:"
			
 
				-              echo "$RESTARTING_CONTAINERS"
			
 
				-              exit 1
			
 
				-            fi
			
 
				-            echo "No containers are restarting. Attempt $i/$ATTEMPTS."
			
 
				-            sleep 1
			
 
				-          done
			
 
				-          echo "No containers were found in a restarting state after $ATTEMPTS checks."
			
 
				-
			
 
				-      - name: Check if the response from the frontend contains the word "Shuffle"
			
 
				-        run: |
			
 
				-          RESPONSE=$(curl -s http://localhost:3001)
			
 
				-          if echo "$RESPONSE" | grep -q "Shuffle"; then
			
 
				-            echo "The word 'Shuffle' was found in the response."
			
 
				-          else
			
 
				-            echo "The word 'Shuffle' was not found in the response."
			
 
				-            exit 1
			
 
				-          fi
			
 
				-      - name: Register a user and check the status code
			
 
				-        run: |
			
 
				-          MAX_RETRIES=30
			
 
				-          RETRY_INTERVAL=10
			
 
				-          CONTAINER_NAME="shuffle-backend"
			
 
				-
			
 
				-          for (( i=1; i<=$MAX_RETRIES; i++ ))
			
 
				-          do
			
 
				-            STATUS_CODE=$(curl -s -o /dev/null -w "%{http_code}" 'http://localhost:3001/api/v1/register' \
			
 
				-              -H 'Accept: */*' \
			
 
				-              -H 'Accept-Language: en-US,en;q=0.9' \
			
 
				-              -H 'Connection: keep-alive' \
			
 
				-              -H 'Content-Type: application/json' \
			
 
				-              --data-raw '{"username":"demo@demo.io","password":"supercoolpassword"}')
			
 
				-
			
 
				-            if [ "$STATUS_CODE" -eq 200 ]; then
			
 
				-              echo "User registration was successful with status code 200."
			
 
				-              exit 0
			
 
				-            elif [ "$STATUS_CODE" -ne 502 ]; then
			
 
				-              echo "User registration failed with status code $STATUS_CODE."
			
 
				-              exit 1
			
 
				-            fi
			
 
				-
			
 
				-            echo "Received status code $STATUS_CODE. Retrying in $RETRY_INTERVAL seconds... ($i/$MAX_RETRIES)"
			
 
				-            echo "Fetching last 30 lines of logs from container $CONTAINER_NAME..."
			
 
				-
			
 
				-            logs_output=$(docker logs --tail 30 "$CONTAINER_NAME")
			
 
				-            echo "$logs_output"
			
 
				-
			
 
				-            echo "Fetching last 30 lines of logs from container shuffle-opensearch..."
			
 
				-
			
 
				-            opensearch_logs=$(docker logs --tail 30 shuffle-opensearch)
			
 
				-            echo "$opensearch_logs"
			
 
				-
			
 
				-            sleep $RETRY_INTERVAL
			
 
				-          done
			
 
				-
			
 
				-          echo "User registration failed after $MAX_RETRIES attempts."
			
 
				-          exit 1
			
 
				-
			
 
				-      - name: Run Selenium testing for frontend
			
 
				-        run: |
			
 
				-          cd $GITHUB_WORKSPACE/frontend
			
 
				-          # write some log to see the current directory
			
 
				-          chmod +x frontend-testing.sh
			
 
				-          ./frontend-testing.sh
			
 
				-
			
 
				-      - name: Get the API key and run a health check
			
 
				-        id: health_check
			
 
				-        run: |
			
 
				-          RESPONSE=$(curl -s -k -u admin:StrongShufflePassword321! 'https://localhost:9200/users/_search')
			
 
				-          echo "Raw Response: $RESPONSE"
			
 
				-
			
 
				-          API_KEY=$(echo "$RESPONSE" | jq -r '.hits.hits[0]._source.apikey')
			
 
				-          if [ -n "$API_KEY" ] && [ "$API_KEY" != "null" ]; then
			
 
				-            echo "Admin API key: $API_KEY"
			
 
				-            echo "API_KEY=$API_KEY" >> $GITHUB_ENV
			
 
				-          else
			
 
				-            echo "Failed to retrieve the API key for the admin user."
			
 
				-            exit 1
			
 
				-          fi
			
 
				-
			
 
				-          echo "Waiting 1 minute before sending the health API request..."
			
 
				-          sleep 60
			
 
				-
			
 
				-          echo "Checking health API..."
			
 
				-          HEALTH_RESPONSE=$(curl -s 'http://localhost:3001/api/v1/health?force=true' \
			
 
				-            -H "Authorization: Bearer $API_KEY")
			
 
				-
			
 
				-          echo "Health API Response: $HEALTH_RESPONSE"
			
 
				-
			
 
				-          WORKFLOWS_CREATE=$(echo "$HEALTH_RESPONSE" | jq -r '.workflows.create')
			
 
				-          WORKFLOWS_RUN=$(echo "$HEALTH_RESPONSE" | jq -r '.workflows.run')
			
 
				-          WORKFLOWS_RUN_FINISHED=$(echo "$HEALTH_RESPONSE" | jq -r '.workflows.run_finished')
			
 
				-          WORKFLOWS_RUN_STATUS=$(echo "$HEALTH_RESPONSE" | jq -r '.workflows.run_status')
			
 
				-          WORKFLOWS_DELETE=$(echo "$HEALTH_RESPONSE" | jq -r '.workflows.delete')
			
 
				-
			
 
				-          echo "WORKFLOWS_CREATE: $WORKFLOWS_CREATE"
			
 
				-          echo "WORKFLOWS_RUN: $WORKFLOWS_RUN"
			
 
				-          echo "WORKFLOWS_RUN_FINISHED: $WORKFLOWS_RUN_FINISHED"
			
 
				-          echo "WORKFLOWS_RUN_STATUS: $WORKFLOWS_RUN_STATUS"
			
 
				-          echo "WORKFLOWS_DELETE: $WORKFLOWS_DELETE"
			
 
				-
			
 
				-          if [ "$WORKFLOWS_CREATE" = "true" ] && [ "$WORKFLOWS_RUN" = "true" ] && [ "$WORKFLOWS_RUN_FINISHED" = "true" ] && [ "$WORKFLOWS_RUN_STATUS" = "FINISHED" ] && [ "$WORKFLOWS_DELETE" = "true" ]; then
			
 
				-            echo "Health endpoint check was successful."
			
 
				-            exit 0
			
 
				-          else
			
 
				-            echo "Health check failed."
			
 
				-            exit 1
			
 
				-          fi
			
 
				-
			
 
				-  notify:
			
 
				-    needs: build
			
 
				-    if: failure()
			
 
				-    runs-on: ubuntu-latest
			
 
				-    steps:
			
 
				-      - name: Send Twilio Alert
			
 
				-        run: |
			
 
				-          WORKFLOW_URL="https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}"
			
 
				-          MESSAGE="🚨 Shuffle Workflow Failed!
			
 
				-          Repository: ${{ github.repository }}
			
 
				-          Branch: ${{ github.ref_name }}
			
 
				-          Workflow URL: $WORKFLOW_URL"
			
 
				-
			
 
				-          curl -s -X POST https://api.twilio.com/2010-04-01/Accounts/${{ secrets.TWILIO_ACCOUNT_SID }}/Messages.json \
			
 
				-              --data-urlencode "To=${{ secrets.TWILIO_TO_NUMBER }}" \
			
 
				-              --data-urlencode "From=${{ secrets.TWILIO_FROM_NUMBER }}" \
			
 
				-              --data-urlencode "Body=$MESSAGE" \
			
 
				-              -u "${{ secrets.TWILIO_ACCOUNT_SID }}:${{ secrets.TWILIO_AUTH_TOKEN }}" > /dev/null
			
--- a/Shuffle/.github/workflows/tagged-nightly-release.yaml
+++ b/Shuffle/.github/workflows/tagged-nightly-release.yaml
@@ -1,92 +0,0 @@
 
				-name: Tagged Nightly Release
			
 
				-on:
			
 
				-  release:
			
 
				-    types: [published]
			
 
				-    branches:
			
 
				-      - nightly
			
 
				-
			
 
				-# there is a very clear point to this existing.
			
 
				-# we want to also release versions that look like this: 
			
 
				-# v2.1.0-nightly-date, v2.1.0-nightly-date-1, v2.1.0-nightly-date-2
			
 
				-# we NEVER want to send customers a "nightly" tag. We always want to send them 
			
 
				-# a tagged nightly tag. So that when something breaks, They can always
			
 
				-# point to it.
			
 
				-
			
 
				-jobs:
			
 
				-  main:
			
 
				-    runs-on: ubuntu-latest
			
 
				-    continue-on-error: ${{ matrix.experimental }}
			
 
				-    strategy:
			
 
				-      fail-fast: false
			
 
				-      matrix:
			
 
				-        include:
			
 
				-          - app: frontend
			
 
				-            path: frontend
			
 
				-            experimental: true
			
 
				-          - app: backend
			
 
				-            path: backend
			
 
				-            experimental: true
			
 
				-          - app: app_sdk
			
 
				-            path: backend/app_sdk
			
 
				-            experimental: true
			
 
				-          - app: orborus
			
 
				-            path: functions/onprem/orborus
			
 
				-            experimental: true
			
 
				-          - app: worker
			
 
				-            path: functions/onprem/worker
			
 
				-            experimental: true
			
 
				-    steps:
			
 
				-      - name: Checkout
			
 
				-        uses: actions/checkout@v3
			
 
				-      
			
 
				-      - name: Set version
			
 
				-        id: set_version
			
 
				-        run: |
			
 
				-          if [[ ${{ github.event_name }} == 'release' ]]; then
			
 
				-            echo "VERSION=${{ github.event.release.tag_name }}" >> $GITHUB_OUTPUT
			
 
				-          else
			
 
				-            echo "VERSION=nightly-untagged-latest" >> $GITHUB_OUTPUT
			
 
				-          fi
			
 
				-
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-
			
 
				-      - name: Set up QEMU
			
 
				-        uses: docker/setup-qemu-action@v3
			
 
				-        with:
			
 
				-          platforms: "amd64,arm64,arm"
			
 
				-
			
 
				-      - name: Login to DockerHub
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          username: ${{ secrets.DOCKERHUB_USERNAME }}
			
 
				-          password: ${{ secrets.DOCKERHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Login to Ghcr
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          registry: ghcr.io
			
 
				-          username: ${{ github.actor }}
			
 
				-          password: ${{ secrets.GITHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Ghcr Build and push
			
 
				-        id: docker_build
			
 
				-        uses: docker/build-push-action@v4
			
 
				-        env:
			
 
				-          BUILDX_NO_DEFAULT_LOAD: true
			
 
				-        with:
			
 
				-          logout: false
			
 
				-          context: ${{ matrix.path }}/
			
 
				-          file: ${{ matrix.path }}/Dockerfile
			
 
				-          platforms: linux/amd64,linux/arm64
			
 
				-          push: true
			
 
				-          cache-from: type=local,src=/tmp/.buildx-cache
			
 
				-          cache-to: type=local,dest=/tmp/.buildx-cache
			
 
				-          tags: |
			
 
				-            ghcr.io/shuffle/shuffle-${{ matrix.app }}:${{ steps.set_version.outputs.VERSION }}
			
 
				-            ${{ secrets.DOCKERHUB_USERNAME }}/shuffle-${{ matrix.app }}:${{ steps.set_version.outputs.VERSION }}
			
 
				-            frikky/shuffle-${{ matrix.app }}:${{ steps.set_version.outputs.VERSION }}
			
 
				-            frikky/shuffle:${{ matrix.app }}
			
 
				-
			
 
				-      - name: Image digest
			
 
				-        run: echo ${{ steps.docker_build.outputs.digest }}
			
--- a/Shuffle/.gitignore
+++ b/Shuffle/.gitignore
@@ -1,32 +0,0 @@
 
				-*node_modules/
			
 
				-*build/
			
 
				-*.lock
			
 
				-*.swo
			
 
				-*.swp
			
 
				-*.swn
			
 
				-*__pycache__*
			
 
				-
			
 
				-Shuffle-*.json
			
 
				-backend/go-app/generated*
			
 
				-
			
 
				-functions/generated_apps
			
 
				-*.zip
			
 
				-
			
 
				-*openapi-parsers/generated/*
			
 
				-*openapi-parsers/other/*
			
 
				-
			
 
				-
			
 
				-backend/onprem/app_sdk/apps
			
 
				-*test.py
			
 
				-
			
 
				-*.exe
			
 
				-*debug*
			
 
				-!**/RuntimeDebugger.jsx
			
 
				-
			
 
				-shuffle-database/batch_metrics_enabled.conf
			
 
				-shuffle-database/logging_enabled.conf
			
 
				-shuffle-database/nodes
			
 
				-shuffle-database/performance_analyzer_enabled.conf
			
 
				-shuffle-database/rca_enabled.conf
			
 
				-
			
 
				-#*/package-lock.json
			
--- a/iris-web/.env
+++ b/iris-web/.env
@@ -0,0 +1,103 @@
 
				+# -- COMMON
			
 
				+LOG_LEVEL=info
			
 
				+
			
 
				+# -- NGINX
			
 
				+NGINX_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_nginx
			
 
				+NGINX_IMAGE_TAG=latest
			
 
				+
			
 
				+SERVER_NAME=iris.app.dev
			
 
				+KEY_FILENAME=iris_dev_key.pem
			
 
				+CERT_FILENAME=iris_dev_cert.pem
			
 
				+
			
 
				+# -- DATABASE
			
 
				+DB_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_db
			
 
				+DB_IMAGE_TAG=latest
			
 
				+
			
 
				+POSTGRES_USER=postgres
			
 
				+POSTGRES_PASSWORD=__MUST_BE_CHANGED__
			
 
				+POSTGRES_ADMIN_USER=raptor
			
 
				+POSTGRES_ADMIN_PASSWORD=__MUST_BE_CHANGED__
			
 
				+POSTGRES_DB=iris_db
			
 
				+
			
 
				+POSTGRES_SERVER=db
			
 
				+POSTGRES_PORT=5432
			
 
				+
			
 
				+# -- IRIS
			
 
				+APP_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_app
			
 
				+APP_IMAGE_TAG=latest
			
 
				+
			
 
				+DOCKERIZED=1
			
 
				+
			
 
				+IRIS_SECRET_KEY=AVerySuperSecretKey-SoNotThisOne
			
 
				+IRIS_SECURITY_PASSWORD_SALT=ARandomSalt-NotThisOneEither
			
 
				+IRIS_UPSTREAM_SERVER=app
			
 
				+IRIS_UPSTREAM_PORT=8000
			
 
				+
			
 
				+IRIS_FRONTEND_SERVER=frontend
			
 
				+IRIS_FRONTEND_PORT=5173
			
 
				+
			
 
				+IRIS_SVELTEKIT_FRONTEND_DIR=../iris-frontend
			
 
				+
			
 
				+
			
 
				+# -- WORKER
			
 
				+CELERY_BROKER=amqp://rabbitmq
			
 
				+
			
 
				+# -- AUTH
			
 
				+IRIS_AUTHENTICATION_TYPE=local
			
 
				+## optional
			
 
				+IRIS_ADM_PASSWORD=MySuperAdminPassword!
			
 
				+#IRIS_ADM_API_KEY=B8BA5D730210B50F41C06941582D7965D57319D5685440587F98DFDC45A01594
			
 
				+#IRIS_ADM_EMAIL=admin@localhost
			
 
				+IRIS_ADM_USERNAME=administrator
			
 
				+# requests the just-in-time creation of users with ldap authentification (see https://github.com/dfir-iris/iris-web/issues/203)
			
 
				+#IRIS_AUTHENTICATION_CREATE_USER_IF_NOT_EXIST=True
			
 
				+# the group to which newly created users are initially added, default value is Analysts
			
 
				+#IRIS_NEW_USERS_DEFAULT_GROUP=
			
 
				+
			
 
				+# -- FOR LDAP AUTHENTICATION
			
 
				+#IRIS_AUTHENTICATION_TYPE=ldap
			
 
				+#LDAP_SERVER=127.0.0.1
			
 
				+#LDAP_AUTHENTICATION_TYPE=SIMPLE
			
 
				+#LDAP_PORT=3890
			
 
				+#LDAP_USER_PREFIX=uid=
			
 
				+#LDAP_USER_SUFFIX=ou=people,dc=example,dc=com
			
 
				+#LDAP_USE_SSL=False
			
 
				+# base DN in which to search for users
			
 
				+#LDAP_SEARCH_DN=ou=users,dc=example,dc=org
			
 
				+# unique identifier to search the user
			
 
				+#LDAP_ATTRIBUTE_IDENTIFIER=cn
			
 
				+# name of the attribute to retrieve the user's display name
			
 
				+#LDAP_ATTRIBUTE_DISPLAY_NAME=displayName
			
 
				+# name of the attribute to retrieve the user's email address
			
 
				+#LDAP_ATTRIBUTE_MAIL=mail
			
 
				+#LDAP_VALIDATE_CERTIFICATE=True
			
 
				+#LDAP_TLS_VERSION=1.2
			
 
				+#LDAP_SERVER_CERTIFICATE=
			
 
				+#LDAP_PRIVATE_KEY=
			
 
				+#LDAP_PRIVATE_KEY_PASSWORD=
			
 
				+
			
 
				+# -- FOR OIDC AUTHENTICATION
			
 
				+# IRIS_AUTHENTICATION_TYPE=oidc
			
 
				+# OIDC_ISSUER_URL=
			
 
				+# OIDC_CLIENT_ID=
			
 
				+# OIDC_CLIENT_SECRET=
			
 
				+# endpoints only required if provider doesn't support metadata discovery
			
 
				+# OIDC_AUTH_ENDPOINT=
			
 
				+# OIDC_TOKEN_ENDPOINT=
			
 
				+# optional to include logout from oidc provider
			
 
				+# OIDC_END_SESSION_ENDPOINT=
			
 
				+# OIDC redirect URL for your IDP: https://<IRIS_SERVER_NAME>/oidc-authorize
			
 
				+
			
 
				+# -- LISTENING PORT
			
 
				+INTERFACE_HTTPS_PORT=443
			
 
				+
			
 
				+# -- FOR OIDC AUTHENTICATION
			
 
				+#IRIS_AUTHENTICATION_TYPE=oidc
			
 
				+#OIDC_ISSUER_URL=
			
 
				+#OIDC_CLIENT_ID=
			
 
				+#OIDC_CLIENT_SECRET=
			
 
				+# endpoints only required if provider doesn't support metadata discovery
			
 
				+#OIDC_AUTH_ENDPOINT=
			
 
				+#OIDC_TOKEN_ENDPOINT=
			
 
				+# optional to include logout from oidc provider
			
 
				+#OIDC_END_SESSION_ENDPOINT=
			
--- a/iris-web/.env.model
+++ b/iris-web/.env.model
@@ -0,0 +1,103 @@
 
				+# -- COMMON
			
 
				+LOG_LEVEL=info
			
 
				+
			
 
				+# -- NGINX
			
 
				+NGINX_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_nginx
			
 
				+NGINX_IMAGE_TAG=latest
			
 
				+
			
 
				+SERVER_NAME=iris.app.dev
			
 
				+KEY_FILENAME=iris_dev_key.pem
			
 
				+CERT_FILENAME=iris_dev_cert.pem
			
 
				+
			
 
				+# -- DATABASE
			
 
				+DB_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_db
			
 
				+DB_IMAGE_TAG=latest
			
 
				+
			
 
				+POSTGRES_USER=postgres
			
 
				+POSTGRES_PASSWORD=__MUST_BE_CHANGED__
			
 
				+POSTGRES_ADMIN_USER=raptor
			
 
				+POSTGRES_ADMIN_PASSWORD=__MUST_BE_CHANGED__
			
 
				+POSTGRES_DB=iris_db
			
 
				+
			
 
				+POSTGRES_SERVER=db
			
 
				+POSTGRES_PORT=5432
			
 
				+
			
 
				+# -- IRIS
			
 
				+APP_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_app
			
 
				+APP_IMAGE_TAG=latest
			
 
				+
			
 
				+DOCKERIZED=1
			
 
				+
			
 
				+IRIS_SECRET_KEY=AVerySuperSecretKey-SoNotThisOne
			
 
				+IRIS_SECURITY_PASSWORD_SALT=ARandomSalt-NotThisOneEither
			
 
				+IRIS_UPSTREAM_SERVER=app
			
 
				+IRIS_UPSTREAM_PORT=8000
			
 
				+
			
 
				+IRIS_FRONTEND_SERVER=frontend
			
 
				+IRIS_FRONTEND_PORT=5173
			
 
				+
			
 
				+IRIS_SVELTEKIT_FRONTEND_DIR=../iris-frontend
			
 
				+
			
 
				+
			
 
				+# -- WORKER
			
 
				+CELERY_BROKER=amqp://rabbitmq
			
 
				+
			
 
				+# -- AUTH
			
 
				+IRIS_AUTHENTICATION_TYPE=local
			
 
				+## optional
			
 
				+#IRIS_ADM_PASSWORD=MySuperAdminPassword!
			
 
				+#IRIS_ADM_API_KEY=B8BA5D730210B50F41C06941582D7965D57319D5685440587F98DFDC45A01594
			
 
				+#IRIS_ADM_EMAIL=admin@localhost
			
 
				+#IRIS_ADM_USERNAME=administrator
			
 
				+# requests the just-in-time creation of users with ldap authentification (see https://github.com/dfir-iris/iris-web/issues/203)
			
 
				+#IRIS_AUTHENTICATION_CREATE_USER_IF_NOT_EXIST=True
			
 
				+# the group to which newly created users are initially added, default value is Analysts
			
 
				+#IRIS_NEW_USERS_DEFAULT_GROUP=
			
 
				+
			
 
				+# -- FOR LDAP AUTHENTICATION
			
 
				+#IRIS_AUTHENTICATION_TYPE=ldap
			
 
				+#LDAP_SERVER=127.0.0.1
			
 
				+#LDAP_AUTHENTICATION_TYPE=SIMPLE
			
 
				+#LDAP_PORT=3890
			
 
				+#LDAP_USER_PREFIX=uid=
			
 
				+#LDAP_USER_SUFFIX=ou=people,dc=example,dc=com
			
 
				+#LDAP_USE_SSL=False
			
 
				+# base DN in which to search for users
			
 
				+#LDAP_SEARCH_DN=ou=users,dc=example,dc=org
			
 
				+# unique identifier to search the user
			
 
				+#LDAP_ATTRIBUTE_IDENTIFIER=cn
			
 
				+# name of the attribute to retrieve the user's display name
			
 
				+#LDAP_ATTRIBUTE_DISPLAY_NAME=displayName
			
 
				+# name of the attribute to retrieve the user's email address
			
 
				+#LDAP_ATTRIBUTE_MAIL=mail
			
 
				+#LDAP_VALIDATE_CERTIFICATE=True
			
 
				+#LDAP_TLS_VERSION=1.2
			
 
				+#LDAP_SERVER_CERTIFICATE=
			
 
				+#LDAP_PRIVATE_KEY=
			
 
				+#LDAP_PRIVATE_KEY_PASSWORD=
			
 
				+
			
 
				+# -- FOR OIDC AUTHENTICATION
			
 
				+# IRIS_AUTHENTICATION_TYPE=oidc
			
 
				+# OIDC_ISSUER_URL=
			
 
				+# OIDC_CLIENT_ID=
			
 
				+# OIDC_CLIENT_SECRET=
			
 
				+# endpoints only required if provider doesn't support metadata discovery
			
 
				+# OIDC_AUTH_ENDPOINT=
			
 
				+# OIDC_TOKEN_ENDPOINT=
			
 
				+# optional to include logout from oidc provider
			
 
				+# OIDC_END_SESSION_ENDPOINT=
			
 
				+# OIDC redirect URL for your IDP: https://<IRIS_SERVER_NAME>/oidc-authorize
			
 
				+
			
 
				+# -- LISTENING PORT
			
 
				+INTERFACE_HTTPS_PORT=443
			
 
				+
			
 
				+# -- FOR OIDC AUTHENTICATION
			
 
				+#IRIS_AUTHENTICATION_TYPE=oidc
			
 
				+#OIDC_ISSUER_URL=
			
 
				+#OIDC_CLIENT_ID=
			
 
				+#OIDC_CLIENT_SECRET=
			
 
				+# endpoints only required if provider doesn't support metadata discovery
			
 
				+#OIDC_AUTH_ENDPOINT=
			
 
				+#OIDC_TOKEN_ENDPOINT=
			
 
				+# optional to include logout from oidc provider
			
 
				+#OIDC_END_SESSION_ENDPOINT=
			
--- a/iris-web/.github/FUNDING.yml
+++ b/iris-web/.github/FUNDING.yml
@@ -1,2 +0,0 @@
 
				-github: [whikernel]
			
 
				-open_collective: dfir-iris
			
--- a/iris-web/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/iris-web/.github/ISSUE_TEMPLATE/bug_report.md
@@ -1,38 +0,0 @@
 
				----
			
 
				-name: Bug report
			
 
				-about: Create a report to help us improve
			
 
				-title: "[BUG] "
			
 
				-labels: bug
			
 
				-assignees: ''
			
 
				-
			
 
				----
			
 
				-
			
 
				-**Describe the bug**
			
 
				-A clear and concise description of what the bug is.
			
 
				-
			
 
				-**To Reproduce**
			
 
				-Steps to reproduce the behavior:
			
 
				-1. Go to '...'
			
 
				-2. Click on '....'
			
 
				-3. Scroll down to '....'
			
 
				-4. See error
			
 
				-
			
 
				-**Expected behavior**
			
 
				-A clear and concise description of what you expected to happen.
			
 
				-
			
 
				-**Screenshots**
			
 
				-If applicable, add screenshots to help explain your problem.
			
 
				-
			
 
				-**Desktop (please complete the following information):**
			
 
				- - OS: [e.g. iOS]
			
 
				- - Browser [e.g. chrome, safari]
			
 
				- - Version [e.g. 22]
			
 
				-
			
 
				-**Smartphone (please complete the following information):**
			
 
				- - Device: [e.g. iPhone6]
			
 
				- - OS: [e.g. iOS8.1]
			
 
				- - Browser [e.g. stock browser, safari]
			
 
				- - Version [e.g. 22]
			
 
				-
			
 
				-**Additional context**
			
 
				-Add any other context about the problem here.
			
--- a/iris-web/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/iris-web/.github/ISSUE_TEMPLATE/feature_request.md
@@ -1,22 +0,0 @@
 
				----
			
 
				-name: Feature request
			
 
				-about: Suggest an idea for this project
			
 
				-title: "[FR]"
			
 
				-labels: enhancement
			
 
				-assignees: ''
			
 
				-
			
 
				----
			
 
				-
			
 
				-*Please ensure your feature request is not already on the roadmap or associated with an issue. This can be checked [here](https://github.com/orgs/dfir-iris/projects/1/views/4).*
			
 
				-
			
 
				-**Is your feature request related to a problem? Please describe.**
			
 
				-A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
			
 
				-
			
 
				-**Describe the solution you'd like**
			
 
				-A clear and concise description of what you want to happen.
			
 
				-
			
 
				-**Describe alternatives you've considered**
			
 
				-A clear and concise description of any alternative solutions or features you've considered.
			
 
				-
			
 
				-**Additional context**
			
 
				-Add any other context or screenshots about the feature request here.
			
--- a/iris-web/.github/workflows/build-db.yml
+++ b/iris-web/.github/workflows/build-db.yml
@@ -1,63 +0,0 @@
 
				-name: Build and push DB image
			
 
				-
			
 
				-on:
			
 
				-  push:
			
 
				-    # Publish semver tags as releases.
			
 
				-    tags: [ 'v*.*.*' ]
			
 
				-  pull_request:
			
 
				-    branches: [ "main" ]
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-env:
			
 
				-  REGISTRY: ghcr.io
			
 
				-  IMAGE_NAME: ${{ github.repository }}
			
 
				-
			
 
				-jobs:
			
 
				-  build-db:
			
 
				-    runs-on: ubuntu-latest
			
 
				-
			
 
				-    permissions:
			
 
				-      packages: write
			
 
				-      contents: read
			
 
				-
			
 
				-    steps:
			
 
				-      - run: |
			
 
				-          echo "The job was automatically triggered by a ${{ github.event_name }} event."
			
 
				-          echo "This job is now running on a ${{ runner.os }} server hosted by github!"
			
 
				-          echo "The name of your branch is ${{ github.ref }} and your repository is ${{ github.repository }}."
			
 
				-
			
 
				-      - name: Check out repository code
			
 
				-        uses: actions/checkout@v4
			
 
				-
			
 
				-      - name: Set up QEMU
			
 
				-        uses: docker/setup-qemu-action@v3
			
 
				-        with:
			
 
				-          platforms: 'arm64,amd64'
			
 
				-
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-
			
 
				-      - name: Log into registry ${{ env.REGISTRY }}
			
 
				-        if: github.event_name != 'pull_request'
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          registry: ${{ env.REGISTRY }}
			
 
				-          username: ${{ github.actor }}
			
 
				-          password: ${{ secrets.GITHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Extract Docker metadata
			
 
				-        id: meta
			
 
				-        uses: docker/metadata-action@v5
			
 
				-        with:
			
 
				-          images: ${{ env.REGISTRY }}/dfir-iris/iriswebapp_db
			
 
				-
			
 
				-      - name: Build and push
			
 
				-        uses: docker/build-push-action@v5
			
 
				-        with:
			
 
				-          context: docker/db
			
 
				-          platforms: linux/amd64,linux/arm64
			
 
				-          push: ${{ github.event_name != 'pull_request' }} # Don't push on PR
			
 
				-          tags: ${{ steps.meta.outputs.tags }}
			
 
				-          labels: ${{ steps.meta.outputs.labels }}
			
 
				-          cache-from: type=gha
			
 
				-          cache-to: type=gha,mode=max
			
--- a/iris-web/.github/workflows/build-nginx.yml
+++ b/iris-web/.github/workflows/build-nginx.yml
@@ -1,66 +0,0 @@
 
				-name: Build and push Nginx image
			
 
				-
			
 
				-on:
			
 
				-  push:
			
 
				-    # Publish semver tags as releases.
			
 
				-    tags: [ 'v*.*.*' ]
			
 
				-  pull_request:
			
 
				-    branches: [ "main" ]
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-env:
			
 
				-  REGISTRY: ghcr.io
			
 
				-  IMAGE_NAME: ${{ github.repository }}
			
 
				-
			
 
				-jobs:
			
 
				-  build-db:
			
 
				-    runs-on: ubuntu-latest
			
 
				-
			
 
				-    permissions:
			
 
				-      packages: write
			
 
				-      contents: read
			
 
				-
			
 
				-    steps:
			
 
				-      - run: |
			
 
				-          echo "The job was automatically triggered by a ${{ github.event_name }} event."
			
 
				-          echo "This job is now running on a ${{ runner.os }} server hosted by github!"
			
 
				-          echo "The name of your branch is ${{ github.ref }} and your repository is ${{ github.repository }}."
			
 
				-
			
 
				-      - name: Check out repository code
			
 
				-        uses: actions/checkout@v4
			
 
				-
			
 
				-      - name: Set up QEMU
			
 
				-        uses: docker/setup-qemu-action@v3
			
 
				-        with:
			
 
				-          platforms: 'arm64,amd64'
			
 
				-
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-
			
 
				-      - name: Log into registry ${{ env.REGISTRY }}
			
 
				-        if: github.event_name != 'pull_request'
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          registry: ${{ env.REGISTRY }}
			
 
				-          username: ${{ github.actor }}
			
 
				-          password: ${{ secrets.GITHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Extract Docker metadata
			
 
				-        id: meta
			
 
				-        uses: docker/metadata-action@v5
			
 
				-        with:
			
 
				-          images: ${{ env.REGISTRY }}/dfir-iris/iriswebapp_nginx
			
 
				-
			
 
				-      - name: Build and push
			
 
				-        uses: docker/build-push-action@v5
			
 
				-        with:
			
 
				-          context: docker/nginx
			
 
				-          platforms: linux/amd64,linux/arm64
			
 
				-          push: ${{ github.event_name != 'pull_request' }} # Don't push on PR
			
 
				-          tags: ${{ steps.meta.outputs.tags }}
			
 
				-          labels: ${{ steps.meta.outputs.labels }}
			
 
				-          cache-from: type=gha
			
 
				-          cache-to: type=gha,mode=max
			
 
				-          build-args: |
			
 
				-            NGINX_CONF_GID=1234
			
 
				-            NGINX_CONF_FILE=nginx.conf
			
--- a/iris-web/.github/workflows/build-webApp.yml
+++ b/iris-web/.github/workflows/build-webApp.yml
@@ -1,64 +0,0 @@
 
				-name: Build and push WebApp image
			
 
				-
			
 
				-on:
			
 
				-  push:
			
 
				-    # Publish semver tags as releases.
			
 
				-    tags: [ 'v*.*.*' ]
			
 
				-  pull_request:
			
 
				-    branches: [ "main" ]
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-env:
			
 
				-  REGISTRY: ghcr.io
			
 
				-  IMAGE_NAME: ${{ github.repository }}
			
 
				-
			
 
				-jobs:
			
 
				-  build-webapp:
			
 
				-    runs-on: ubuntu-latest
			
 
				-
			
 
				-    permissions:
			
 
				-      packages: write
			
 
				-      contents: read
			
 
				-
			
 
				-    steps:
			
 
				-      - run: |
			
 
				-          echo "The job was automatically triggered by a ${{ github.event_name }} event."
			
 
				-          echo "This job is now running on a ${{ runner.os }} server hosted by github!"
			
 
				-          echo "The name of your branch is ${{ github.ref }} and your repository is ${{ github.repository }}."
			
 
				-
			
 
				-      - name: Check out repository code
			
 
				-        uses: actions/checkout@v4
			
 
				-
			
 
				-      - name: Set up QEMU
			
 
				-        uses: docker/setup-qemu-action@v3
			
 
				-        with:
			
 
				-          platforms: 'arm64,amd64'
			
 
				-
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-
			
 
				-      - name: Log into registry ${{ env.REGISTRY }}
			
 
				-        if: github.event_name != 'pull_request'
			
 
				-        uses: docker/login-action@v3
			
 
				-        with:
			
 
				-          registry: ${{ env.REGISTRY }}
			
 
				-          username: ${{ github.actor }}
			
 
				-          password: ${{ secrets.GITHUB_TOKEN }}
			
 
				-
			
 
				-      - name: Extract Docker metadata
			
 
				-        id: meta
			
 
				-        uses: docker/metadata-action@v5
			
 
				-        with:
			
 
				-          images: ${{ env.REGISTRY }}/dfir-iris/iriswebapp_app
			
 
				-
			
 
				-      - name: Build and push
			
 
				-        uses: docker/build-push-action@v5
			
 
				-        with:
			
 
				-          context: .
			
 
				-          platforms: linux/amd64,linux/arm64
			
 
				-          push: ${{ github.event_name != 'pull_request' }} # Don't push on PR
			
 
				-          tags: ${{ steps.meta.outputs.tags }}
			
 
				-          labels: ${{ steps.meta.outputs.labels }}
			
 
				-          cache-from: type=gha
			
 
				-          cache-to: type=gha,mode=max
			
 
				-          file: docker/webApp/Dockerfile
			
--- a/iris-web/.github/workflows/chart-releaser.yml
+++ b/iris-web/.github/workflows/chart-releaser.yml
@@ -1,33 +0,0 @@
 
				-name: Release Iris Web Helm Chart
			
 
				-
			
 
				-on:
			
 
				-  push:
			
 
				-    branches:
			
 
				-      - main
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-jobs:
			
 
				-  release:
			
 
				-    permissions:
			
 
				-      contents: write
			
 
				-    runs-on: ubuntu-latest
			
 
				-    steps:
			
 
				-      - name: Checkout
			
 
				-        uses: actions/checkout@v4
			
 
				-        with:
			
 
				-          fetch-depth: 0
			
 
				-
			
 
				-      - name: Configure Git
			
 
				-        run: |
			
 
				-          git config user.name "$GITHUB_ACTOR"
			
 
				-          git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
			
 
				-
			
 
				-      - name: Install Helm
			
 
				-        uses: azure/setup-helm@v4
			
 
				-
			
 
				-      - name: Run chart-releaser
			
 
				-        uses: helm/chart-releaser-action@v1
			
 
				-        with:
			
 
				-            charts_dir: deploy/kubernetes
			
 
				-        env:
			
 
				-          CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
			
--- a/iris-web/.github/workflows/ci.yml
+++ b/iris-web/.github/workflows/ci.yml
@@ -1,238 +0,0 @@
 
				-#  IRIS Source Code
			
 
				-#  Copyright (C) 2023 - DFIR-IRIS
			
 
				-#  contact@dfir-iris.org
			
 
				-#
			
 
				-#  This program is free software; you can redistribute it and/or
			
 
				-#  modify it under the terms of the GNU Lesser General Public
			
 
				-#  License as published by the Free Software Foundation; either
			
 
				-#  version 3 of the License, or (at your option) any later version.
			
 
				-#
			
 
				-#  This program is distributed in the hope that it will be useful,
			
 
				-#  but WITHOUT ANY WARRANTY; without even the implied warranty of
			
 
				-#  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
			
 
				-#  Lesser General Public License for more details.
			
 
				-#
			
 
				-#  You should have received a copy of the GNU Lesser General Public License
			
 
				-#  along with this program; if not, write to the Free Software Foundation,
			
 
				-#  Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
			
 
				-
			
 
				-name: Continuous Integration
			
 
				-on: [push, pull_request]
			
 
				-
			
 
				-jobs:
			
 
				-
			
 
				-  static-checks:
			
 
				-    name: Static analyis checks
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    steps:
			
 
				-      - name: Check out iris
			
 
				-        uses: actions/checkout@v4
			
 
				-      - name: Check code with ruff
			
 
				-        uses: astral-sh/ruff-action@v2
			
 
				-        with:
			
 
				-          args: check --output-format=github
			
 
				-          src: ./source
			
 
				-
			
 
				-  build-docker-db:
			
 
				-    name: Build docker db
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    steps:
			
 
				-      - name: Check out iris
			
 
				-        uses: actions/checkout@v4
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-      - name: Build and export
			
 
				-        uses: docker/build-push-action@v6
			
 
				-        with:
			
 
				-          context: docker/db
			
 
				-          tags: iriswebapp_db:develop
			
 
				-          outputs: type=docker,dest=${{ runner.temp }}/iriswebapp_db.tar
			
 
				-          cache-from: type=gha
			
 
				-          cache-to: type=gha,mode=max
			
 
				-      - name: Upload artifact
			
 
				-        uses: actions/upload-artifact@v4
			
 
				-        with:
			
 
				-          name: iriswebapp_db
			
 
				-          path: ${{ runner.temp }}/iriswebapp_db.tar
			
 
				-
			
 
				-  build-docker-nginx:
			
 
				-    name: Build docker nginx
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    steps:
			
 
				-      - name: Check out iris
			
 
				-        uses: actions/checkout@v4
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-      - name: Build and export
			
 
				-        uses: docker/build-push-action@v6
			
 
				-        with:
			
 
				-          context: docker/nginx
			
 
				-          tags: iriswebapp_nginx:develop
			
 
				-          build-args: |
			
 
				-            NGINX_CONF_GID=1234
			
 
				-            NGINX_CONF_FILE=nginx.conf
			
 
				-          outputs: type=docker,dest=${{ runner.temp }}/iriswebapp_nginx.tar
			
 
				-          cache-from: type=gha
			
 
				-          cache-to: type=gha,mode=max
			
 
				-      - name: Upload artifact
			
 
				-        uses: actions/upload-artifact@v4
			
 
				-        with:
			
 
				-          name: iriswebapp_nginx
			
 
				-          path: ${{ runner.temp }}/iriswebapp_nginx.tar
			
 
				-
			
 
				-  build-docker-app:
			
 
				-    name: Build docker app
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    steps:
			
 
				-      - name: Check out iris
			
 
				-        uses: actions/checkout@v4
			
 
				-      - name: Set up Docker Buildx
			
 
				-        uses: docker/setup-buildx-action@v3
			
 
				-      - name: Build and export
			
 
				-        uses: docker/build-push-action@v6
			
 
				-        with:
			
 
				-          context: .
			
 
				-          file: docker/webApp/Dockerfile
			
 
				-          tags: iriswebapp_app:develop
			
 
				-          outputs: type=docker,dest=${{ runner.temp }}/iriswebapp_app.tar
			
 
				-          cache-from: type=gha
			
 
				-          cache-to: type=gha,mode=max
			
 
				-      - name: Upload artifact
			
 
				-        uses: actions/upload-artifact@v4
			
 
				-        with:
			
 
				-          name: iriswebapp_app
			
 
				-          path: ${{ runner.temp }}/iriswebapp_app.tar
			
 
				-
			
 
				-  build-graphql-documentation:
			
 
				-    name: Generate graphQL documentation
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    needs:
			
 
				-      - build-docker-db
			
 
				-      - build-docker-nginx
			
 
				-      - build-docker-app
			
 
				-    steps:
			
 
				-      - name: Download artifacts
			
 
				-        uses: actions/download-artifact@v4
			
 
				-        with:
			
 
				-          pattern: iriswebapp_*
			
 
				-          path: ${{ runner.temp }}
			
 
				-          merge-multiple: true
			
 
				-      - name: Load docker images
			
 
				-        run: |
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_db.tar
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_nginx.tar
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_app.tar
			
 
				-      - name: Check out iris
			
 
				-        uses: actions/checkout@v4
			
 
				-      - name: Start development server
			
 
				-        run: |
			
 
				-          # Even though, we use --env-file option when running docker compose, this is still necessary, because the compose has a env_file attribute :(
			
 
				-          # TODO should move basic.env file, which is in directory tests, up. It's used in several places. Maybe, rename it into dev.env
			
 
				-          cp tests/data/basic.env .env
			
 
				-          docker compose --file docker-compose.dev.yml --env-file tests/data/basic.env up --detach
			
 
				-      - name: Generate GraphQL documentation
			
 
				-        run: |
			
 
				-          npx spectaql@^3.0.2 source/spectaql/config.yml
			
 
				-      - name: Stop development server
			
 
				-        run: |
			
 
				-          docker compose down
			
 
				-      - uses: actions/upload-artifact@v4
			
 
				-        with:
			
 
				-            name: GraphQL DFIR-IRIS documentation
			
 
				-            path: public
			
 
				-            if-no-files-found: error
			
 
				-
			
 
				-  test-api:
			
 
				-    name: Test API
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    needs:
			
 
				-      - build-docker-db
			
 
				-      - build-docker-nginx
			
 
				-      - build-docker-app
			
 
				-    steps:
			
 
				-      - name: Download artifacts
			
 
				-        uses: actions/download-artifact@v4
			
 
				-        with:
			
 
				-          pattern: iriswebapp_*
			
 
				-          path: ${{ runner.temp }}
			
 
				-          merge-multiple: true
			
 
				-      - name: Load docker images
			
 
				-        run: |
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_db.tar
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_nginx.tar
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_app.tar
			
 
				-      - name: Check out iris
			
 
				-        uses: actions/checkout@v4
			
 
				-      - name: Start development server
			
 
				-        run: |
			
 
				-          # Even though, we use --env-file option when running docker compose, this is still necessary, because the compose has a env_file attribute :(
			
 
				-          # TODO should move basic.env file, which is in directory tests, up. It's used in several places. Maybe, rename it into dev.env
			
 
				-          cp tests/data/basic.env .env
			
 
				-          docker compose --file docker-compose.dev.yml up --detach
			
 
				-      - name: Run tests
			
 
				-        working-directory: tests
			
 
				-        run: |
			
 
				-          python -m venv venv
			
 
				-          source venv/bin/activate
			
 
				-          pip install -r requirements.txt
			
 
				-          PYTHONUNBUFFERED=true python -m unittest --verbose
			
 
				-      - name: Stop development server
			
 
				-        run: |
			
 
				-          docker compose down
			
 
				-
			
 
				-  test-e2e:
			
 
				-    name: End to end tests
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    needs:
			
 
				-      - build-docker-db
			
 
				-      - build-docker-nginx
			
 
				-      - build-docker-app
			
 
				-    steps:
			
 
				-      - name: Download artifacts
			
 
				-        uses: actions/download-artifact@v4
			
 
				-        with:
			
 
				-          pattern: iriswebapp_*
			
 
				-          path: ${{ runner.temp }}
			
 
				-          merge-multiple: true
			
 
				-      - name: Load docker images
			
 
				-        run: |
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_db.tar
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_nginx.tar
			
 
				-          docker load --input ${{ runner.temp }}/iriswebapp_app.tar
			
 
				-      - name: Check out iris
			
 
				-        uses: actions/checkout@v4
			
 
				-      - uses: actions/setup-node@v4
			
 
				-        with:
			
 
				-          node-version: 20
			
 
				-          cache: npm
			
 
				-          cache-dependency-path: |
			
 
				-            ui/package-lock.json
			
 
				-            e2e/package-lock.json
			
 
				-      - name: Build ui to be mounted in development docker
			
 
				-        working-directory: ui
			
 
				-        run: |
			
 
				-          npm ci
			
 
				-          npm run build
			
 
				-      - name: Install e2e dependencies
			
 
				-        working-directory: e2e
			
 
				-        run: npm ci
			
 
				-      - name: Install playwright dependencies
			
 
				-        working-directory: e2e
			
 
				-        run: npx playwright install chromium firefox
			
 
				-      - name: Start development server
			
 
				-        run: |
			
 
				-          # TODO should move basic.env file, which is in directory tests, up. It's used in several places. Maybe, rename it into dev.env
			
 
				-          cp tests/data/basic.env .env
			
 
				-          docker compose --file docker-compose.dev.yml up --detach
			
 
				-      - name: Run end to end tests
			
 
				-        working-directory: e2e
			
 
				-        run: npx playwright test
			
 
				-      - name: Stop development server
			
 
				-        run: |
			
 
				-          docker compose down
			
 
				-      - uses: actions/upload-artifact@v4
			
 
				-        if: ${{ always() }}
			
 
				-        with:
			
 
				-          name: playwright-report
			
 
				-          path: e2e/playwright-report/
			
 
				-
			
--- a/iris-web/.gitignore
+++ b/iris-web/.gitignore
@@ -1,32 +0,0 @@
 
				-flask/
			
 
				-*.pyc
			
 
				-dev
			
 
				-node_modules
			
 
				-source/app/database.db
			
 
				-source/app/build
			
 
				-yarn.lock
			
 
				-yarn-error.log
			
 
				-*.psd
			
 
				-env/
			
 
				-venv/
			
 
				-test/
			
 
				-source/app/config.priv.ini
			
 
				-source/app/config.test.ini
			
 
				-.idea/
			
 
				-libesedb-*/
			
 
				-orcparser/
			
 
				-venv1/
			
 
				-.DS_Store
			
 
				-.env*
			
 
				-.venv/
			
 
				-.vscode/
			
 
				-*.code-workspace
			
 
				-nohup.out
			
 
				-celerybeat-schedule.db
			
 
				-.scannerwork/
			
 
				-source/app/static/assets/dist/
			
 
				-source/app/static/assets/img/graph/*
			
 
				-!source/app/static/assets/img/graph/*.png
			
 
				-run_nv_test.py
			
 
				-!certificates/web_certificates/iris_dev_*
			
 
				-certificates/web_certificates/*.pem
			
--- a/iris-web/certificates/web_certificates/iris_dev_cert.pem
+++ b/iris-web/certificates/web_certificates/iris_dev_cert.pem
@@ -0,0 +1,23 @@
 
				+-----BEGIN CERTIFICATE-----
			
 
				+MIID5zCCAs+gAwIBAgIUR1vu5qp+qpHjXhQ/6sUnFOtgW2kwDQYJKoZIhvcNAQEL
			
 
				+BQAwgYIxCzAJBgNVBAYTAkZSMRYwFAYDVQQIDA1JbGUgZGUgRnJhbmNlMQ4wDAYD
			
 
				+VQQHDAVQYXJpczEYMBYGA1UECgwPQ1NJUlQtRlIgQWlyYnVzMRowGAYDVQQLDBFJ
			
 
				+bmNpZGVudCBSZXNwb25zZTEVMBMGA1UEAwwMaXJpcy5hcHAuZGV2MB4XDTIxMTIw
			
 
				+OTE0MTUyMloXDTIyMTIwOTE0MTUyMlowgYIxCzAJBgNVBAYTAkZSMRYwFAYDVQQI
			
 
				+DA1JbGUgZGUgRnJhbmNlMQ4wDAYDVQQHDAVQYXJpczEYMBYGA1UECgwPQ1NJUlQt
			
 
				+RlIgQWlyYnVzMRowGAYDVQQLDBFJbmNpZGVudCBSZXNwb25zZTEVMBMGA1UEAwwM
			
 
				+aXJpcy5hcHAuZGV2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZWm
			
 
				+hypo/ZJMjmqHSBviR9pzYJYaiSlafeEUa/9LlBe4Ecov74XLVy+3TuG3w1YFzD1M
			
 
				+57j+EJrcZcl5E67uIVreAtJNLdgqDyCk6nCk3BdGgEnhcmQCevLXaCsBH+Z9lBRy
			
 
				+ruuTQAihq3QJztosTuI+so9AaZgSmOm17vL45S3QiFIPUB/Pgv60BfYkd0SV1V4Y
			
 
				+709IKvlCXSixryA0hkqT12D6fNFDPqwbn1o7Ifd7qVqVxD0QS8Wf56PUD8J+41A7
			
 
				+WLzSy/fNKAUOSoOyhWvdh7s5uciqJEXDMh1BvrpBSCmkmW8aprWVOr6yaugmBg58
			
 
				+g4oaM0xWOcFFeIcdrQIDAQABo1MwUTAdBgNVHQ4EFgQUNavtDZIB1hMxp7X0pytN
			
 
				+xACnEigwHwYDVR0jBBgwFoAUNavtDZIB1hMxp7X0pytNxACnEigwDwYDVR0TAQH/
			
 
				+BAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAQEAlA9xbWAfoGVOLUY/nuQ+0slryO/e
			
 
				+C2ChAHehtNKJa3DOGJXTOp1qJJdfuHAHZgplfSZp36N87eHfygFaR04RaHNNUVpg
			
 
				+1vnADd0QvDwYiEbRyjLN+EFdxDcbcsqljUUfPMx1zjlA1Ff2dbCkOVYYfm5xDzoE
			
 
				+weFx6inCtZ0pHqWdF5R77n4Rg3dmR/98dXM3nXhFevoAI7FqyauYFL0QFLXvIufg
			
 
				+3zywJrolNLZrrbpkSJ9kWzIZn0OK4Q+5dSnpBEimBZSrJKbZhgS/uzCL5flezKTF
			
 
				+LzHY0CRXC7nXO5dY2baBbIqRvYlCgbmaN4J505Fn6YSmwm3deCan2xyGHg==
			
 
				+-----END CERTIFICATE-----
			
--- a/iris-web/certificates/web_certificates/iris_dev_key.pem
+++ b/iris-web/certificates/web_certificates/iris_dev_key.pem
@@ -0,0 +1,28 @@
 
				+-----BEGIN PRIVATE KEY-----
			
 
				+MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQCVlaaHKmj9kkyO
			
 
				+aodIG+JH2nNglhqJKVp94RRr/0uUF7gRyi/vhctXL7dO4bfDVgXMPUznuP4Qmtxl
			
 
				+yXkTru4hWt4C0k0t2CoPIKTqcKTcF0aASeFyZAJ68tdoKwEf5n2UFHKu65NACKGr
			
 
				+dAnO2ixO4j6yj0BpmBKY6bXu8vjlLdCIUg9QH8+C/rQF9iR3RJXVXhjvT0gq+UJd
			
 
				+KLGvIDSGSpPXYPp80UM+rBufWjsh93upWpXEPRBLxZ/no9QPwn7jUDtYvNLL980o
			
 
				+BQ5Kg7KFa92Huzm5yKokRcMyHUG+ukFIKaSZbxqmtZU6vrJq6CYGDnyDihozTFY5
			
 
				+wUV4hx2tAgMBAAECggEAV+BbvYpvtZAOA5iXswgWjknKgFKOckfmDo99NNj9KJoq
			
 
				+m+Dg+mDqjWTN1ryJ/Wp663qTxIoMT+r6UZ3j0GlzIgtE4/lyN92HD+4IlGXqpBXU
			
 
				+aCd/F3mjb2FcpKim93usCKNeoF5q2jJ378aywF+xqgIF/VZk6+PYARdDt4XsLI4w
			
 
				+vfJSbjRuynnSHl3kD2atcivAxYDu6AggQPsSPmF66z754eKA3BJIAWRUCdx/llTk
			
 
				+ARizLI4DFHKSYZq9pcKNtCrPIOrUkflG9QPZKn9dI0W+AaSroyqOQQvMY1NT3uEo
			
 
				+TsXYoyxHGH7+tkoaSHX6JteDe4YbZFbQ7z1s6ZHMIQKBgQDHYoS5wpCxOpCUCOxU
			
 
				+4s05n88tOJE7PnUQ1j1AosFes6qY1IFnsUss9ikF0aIL+gYvuEIU1z/ITDmBgWao
			
 
				+bJq6ySCHhyqOMZxMK+nuwIJQEmmIImfxEs8Hf891Cej5NO964VWIsBtNln10yLrj
			
 
				+Rc9J8J643O6YLyGuXDyXdxNcqQKBgQDADxnzPcou1wmlMK6zc7UeZ/bhi6hdYsWU
			
 
				+X3znd5jQZ8576A38g1v742A2yfWIftnNiMrCdwnS8x9Rw1ps160E5MvzEUOckqig
			
 
				+zJXn3PvO7tnReu4/Z4HoTUcbRtbBNMaIFgbW62A4S9CyiFZf9dONHoqhpYvbNJPx
			
 
				+kjGp6Ol3ZQKBgEzz2yIO0+VzIwXfg8cnWenZog5j/LmO24PKDA38QwGX+knOCrvI
			
 
				+k6kgwKh8Rjy1HNoiFW8RvI5DzRYMqWBrujRJGAL2yhfjUd2cPUdmiWT6Fjzyeody
			
 
				+qPDOBXW4g3BbW+pjOa3tujvxzy3ZozfAY8a31aqnqnaWCjvPYZtb298xAoGAYbIM
			
 
				+2D+xLhxyqpXV+DC+jAYEfnylG0PYD353MeMTV8fGMB89phpH2xyxX41iGZm1Pyj7
			
 
				+Qup8k9LaNqQxxjX7rAaafD1m8ClmH82R34z4hi3XnQh0UspbOYi9x/FD4qnu52CV
			
 
				+ABRhMKHYOkjB7zRD9X/4svtb5hibvQFJxA1XXUUCgYBaeZ7tZb8lWkd8v9uZ99qX
			
 
				+wpm2bO+RQpOeNkP31VpO3jj9/0S+SJSRc9a3JnNRLKNtKhNZpTlaP0coBqZqwb+u
			
 
				+gWAvdeZinxFwRj6VXvS8+2SP7ImRL1HgOwDQxDWXQxf3e3Zg7QoZLTea9Lq9Zf2g
			
 
				+JLbJbOUpEOe5W4M8xLItlg==
			
 
				+-----END PRIVATE KEY-----
			
--- a/wazuh-docker/.github/.goss.yaml
+++ b/wazuh-docker/.github/.goss.yaml
@@ -1,103 +0,0 @@
 
				-file:
			
 
				-  /etc/filebeat/filebeat.yml:
			
 
				-    exists: true
			
 
				-    mode: "0644"
			
 
				-    owner: root
			
 
				-    group: root
			
 
				-    filetype: file
			
 
				-    contains: []
			
 
				-  /var/ossec/bin/wazuh-control:
			
 
				-    exists: true
			
 
				-    mode: "0750"
			
 
				-    owner: root
			
 
				-    group: root
			
 
				-    filetype: file
			
 
				-    contains: []
			
 
				-  /var/ossec/etc/lists/audit-keys:
			
 
				-    exists: true
			
 
				-    mode: "0660"
			
 
				-    owner: wazuh
			
 
				-    group: wazuh
			
 
				-    filetype: file
			
 
				-    contains: []
			
 
				-  /var/ossec/etc/ossec.conf:
			
 
				-    exists: true
			
 
				-    mode: "0660"
			
 
				-    owner: root
			
 
				-    group: wazuh
			
 
				-    filetype: file
			
 
				-    contains: []
			
 
				-  /var/ossec/etc/rules/local_rules.xml:
			
 
				-    exists: true
			
 
				-    mode: "0660"
			
 
				-    owner: wazuh
			
 
				-    group: wazuh
			
 
				-    filetype: file
			
 
				-    contains: []
			
 
				-  /var/ossec/etc/sslmanager.cert:
			
 
				-    exists: true
			
 
				-    mode: "0640"
			
 
				-    owner: root
			
 
				-    group: root
			
 
				-    filetype: file
			
 
				-    contains: []
			
 
				-  /var/ossec/etc/sslmanager.key:
			
 
				-    exists: true
			
 
				-    mode: "0640"
			
 
				-    owner: root
			
 
				-    group: root
			
 
				-    filetype: file
			
 
				-    contains: []
			
 
				-package:
			
 
				-  filebeat:
			
 
				-    installed: true
			
 
				-    versions:
			
 
				-    - 7.10.2
			
 
				-  wazuh-manager:
			
 
				-    installed: true
			
 
				-    versions:
			
 
				-    - 4.14.3
			
 
				-port:
			
 
				-  tcp:1514:
			
 
				-    listening: true
			
 
				-    ip:
			
 
				-    - 0.0.0.0
			
 
				-  tcp:1515:
			
 
				-    listening: true
			
 
				-    ip:
			
 
				-    - 0.0.0.0
			
 
				-  tcp:55000:
			
 
				-    listening: true
			
 
				-    ip:
			
 
				-    - 0.0.0.0
			
 
				-process:
			
 
				-  filebeat:
			
 
				-    running: true
			
 
				-  wazuh-analysisd:
			
 
				-    running: true
			
 
				-  wazuh-authd:
			
 
				-    running: true
			
 
				-  wazuh-execd:
			
 
				-    running: true
			
 
				-  wazuh-monitord:
			
 
				-    running: true
			
 
				-  wazuh-remoted:
			
 
				-    running: true
			
 
				-  wazuh-syscheckd:
			
 
				-    running: true
			
 
				-  s6-supervise:
			
 
				-    running: true
			
 
				-  wazuh-db:
			
 
				-    running: true
			
 
				-  wazuh-modulesd:
			
 
				-    running: true
			
 
				-user:
			
 
				-  wazuh:
			
 
				-    exists: true
			
 
				-    groups:
			
 
				-    - wazuh
			
 
				-    home: /var/ossec
			
 
				-    shell: /sbin/nologin
			
 
				-group:
			
 
				-  wazuh:
			
 
				-    exists: true
			
--- a/wazuh-docker/.github/free-disk-space/action.yml
+++ b/wazuh-docker/.github/free-disk-space/action.yml
@@ -1,245 +0,0 @@
 
				-name: "Free Disk Space (Ubuntu)"
			
 
				-description: "A configurable GitHub Action to free up disk space on an Ubuntu GitHub Actions runner."
			
 
				-
			
 
				-# Thanks @jlumbroso for the action code https://github.com/jlumbroso/free-disk-space/
			
 
				-# See: https://docs.github.com/en/actions/creating-actions/metadata-syntax-for-github-actions#branding
			
 
				-
			
 
				-inputs:
			
 
				-  android:
			
 
				-    description: "Remove Android runtime"
			
 
				-    required: false
			
 
				-    default: "true"
			
 
				-  dotnet:
			
 
				-    description: "Remove .NET runtime"
			
 
				-    required: false
			
 
				-    default: "true"
			
 
				-  haskell:
			
 
				-    description: "Remove Haskell runtime"
			
 
				-    required: false
			
 
				-    default: "true"
			
 
				-
			
 
				-  # option inspired by:
			
 
				-  # https://github.com/apache/flink/blob/master/tools/azure-pipelines/free_disk_space.sh
			
 
				-  large-packages:
			
 
				-    description: "Remove large packages"
			
 
				-    required: false
			
 
				-    default: "true"
			
 
				-
			
 
				-  docker-images:
			
 
				-    description: "Remove Docker images"
			
 
				-    required: false
			
 
				-    default: "true"
			
 
				-
			
 
				-  # option inspired by:
			
 
				-  # https://github.com/actions/virtual-environments/issues/2875#issuecomment-1163392159
			
 
				-  tool-cache:
			
 
				-    description: "Remove image tool cache"
			
 
				-    required: false
			
 
				-    default: "false"
			
 
				-
			
 
				-  swap-storage:
			
 
				-    description: "Remove swap storage"
			
 
				-    required: false
			
 
				-    default: "true"
			
 
				-
			
 
				-runs:
			
 
				-  using: "composite"
			
 
				-  steps:
			
 
				-    - shell: bash
			
 
				-      run: |
			
 
				-
			
 
				-        # ======
			
 
				-        # MACROS
			
 
				-        # ======
			
 
				-
			
 
				-        # macro to print a line of equals
			
 
				-        # (silly but works)
			
 
				-        printSeparationLine() {
			
 
				-          str=${1:=}
			
 
				-          num=${2:-80}
			
 
				-          counter=1
			
 
				-          output=""
			
 
				-          while [ $counter -le $num ]
			
 
				-          do
			
 
				-             output="${output}${str}"
			
 
				-             counter=$((counter+1))
			
 
				-          done
			
 
				-          echo "${output}"
			
 
				-        }
			
 
				-
			
 
				-        # macro to compute available space
			
 
				-        # REF: https://unix.stackexchange.com/a/42049/60849
			
 
				-        # REF: https://stackoverflow.com/a/450821/408734
			
 
				-        getAvailableSpace() { echo $(df -a $1 | awk 'NR > 1 {avail+=$4} END {print avail}'); }
			
 
				-
			
 
				-        # macro to make Kb human readable (assume the input is Kb)
			
 
				-        # REF: https://unix.stackexchange.com/a/44087/60849
			
 
				-        formatByteCount() { echo $(numfmt --to=iec-i --suffix=B --padding=7 $1'000'); }
			
 
				-
			
 
				-        # macro to output saved space
			
 
				-        printSavedSpace() {
			
 
				-          saved=${1}
			
 
				-          title=${2:-}
			
 
				-
			
 
				-          echo ""
			
 
				-          printSeparationLine '*' 80
			
 
				-          if [ ! -z "${title}" ]; then
			
 
				-            echo "=> ${title}: Saved $(formatByteCount $saved)"
			
 
				-          else
			
 
				-            echo "=> Saved $(formatByteCount $saved)"
			
 
				-          fi
			
 
				-          printSeparationLine '*' 80
			
 
				-          echo ""
			
 
				-        }
			
 
				-
			
 
				-        # macro to print output of dh with caption
			
 
				-        printDH() {
			
 
				-          caption=${1:-}
			
 
				-
			
 
				-          printSeparationLine '=' 80
			
 
				-          echo "${caption}"
			
 
				-          echo ""
			
 
				-          echo "$ dh -h /"
			
 
				-          echo ""
			
 
				-          df -h /
			
 
				-          echo "$ dh -a /"
			
 
				-          echo ""
			
 
				-          df -a /
			
 
				-          echo "$ dh -a"
			
 
				-          echo ""
			
 
				-          df -a
			
 
				-          printSeparationLine '=' 80
			
 
				-        }
			
 
				-
			
 
				-
			
 
				-
			
 
				-        # ======
			
 
				-        # SCRIPT
			
 
				-        # ======
			
 
				-
			
 
				-        # Display initial disk space stats
			
 
				-
			
 
				-        AVAILABLE_INITIAL=$(getAvailableSpace)
			
 
				-        AVAILABLE_ROOT_INITIAL=$(getAvailableSpace '/')
			
 
				-
			
 
				-        printDH "BEFORE CLEAN-UP:"
			
 
				-        echo ""
			
 
				-
			
 
				-
			
 
				-        # Option: Remove Android library
			
 
				-
			
 
				-        if [[ ${{ inputs.android }} == 'true' ]]; then
			
 
				-          BEFORE=$(getAvailableSpace)
			
 
				-          
			
 
				-          sudo rm -rf /usr/local/lib/android || true
			
 
				-
			
 
				-          AFTER=$(getAvailableSpace)
			
 
				-          SAVED=$((AFTER-BEFORE))
			
 
				-          printSavedSpace $SAVED "Android library"
			
 
				-        fi
			
 
				-
			
 
				-        # Option: Remove .NET runtime
			
 
				-
			
 
				-        if [[ ${{ inputs.dotnet }} == 'true' ]]; then
			
 
				-          BEFORE=$(getAvailableSpace)
			
 
				-
			
 
				-          # https://github.community/t/bigger-github-hosted-runners-disk-space/17267/11
			
 
				-          sudo rm -rf /usr/share/dotnet || true
			
 
				-          
			
 
				-          AFTER=$(getAvailableSpace)
			
 
				-          SAVED=$((AFTER-BEFORE))
			
 
				-          printSavedSpace $SAVED ".NET runtime"
			
 
				-        fi
			
 
				-
			
 
				-        # Option: Remove Haskell runtime
			
 
				-
			
 
				-        if [[ ${{ inputs.haskell }} == 'true' ]]; then
			
 
				-          BEFORE=$(getAvailableSpace)
			
 
				-
			
 
				-          sudo rm -rf /opt/ghc || true
			
 
				-          sudo rm -rf /usr/local/.ghcup || true
			
 
				-          
			
 
				-          AFTER=$(getAvailableSpace)
			
 
				-          SAVED=$((AFTER-BEFORE))
			
 
				-          printSavedSpace $SAVED "Haskell runtime"
			
 
				-        fi
			
 
				-
			
 
				-        # Option: Remove large packages
			
 
				-        # REF: https://github.com/apache/flink/blob/master/tools/azure-pipelines/free_disk_space.sh
			
 
				-
			
 
				-        if [[ ${{ inputs.large-packages }} == 'true' ]]; then
			
 
				-          BEFORE=$(getAvailableSpace)
			
 
				-          
			
 
				-          sudo apt-get remove -y '^aspnetcore-.*' || echo "::warning::The command [sudo apt-get remove -y '^aspnetcore-.*'] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y '^dotnet-.*' --fix-missing || echo "::warning::The command [sudo apt-get remove -y '^dotnet-.*' --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y '^llvm-.*' --fix-missing || echo "::warning::The command [sudo apt-get remove -y '^llvm-.*' --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y 'php.*' --fix-missing || echo "::warning::The command [sudo apt-get remove -y 'php.*' --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y '^mongodb-.*' --fix-missing || echo "::warning::The command [sudo apt-get remove -y '^mongodb-.*' --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y '^mysql-.*' --fix-missing || echo "::warning::The command [sudo apt-get remove -y '^mysql-.*' --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y azure-cli google-chrome-stable firefox powershell mono-devel libgl1-mesa-dri --fix-missing || echo "::warning::The command [sudo apt-get remove -y azure-cli google-chrome-stable firefox powershell mono-devel libgl1-mesa-dri --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y google-cloud-sdk --fix-missing || echo "::debug::The command [sudo apt-get remove -y google-cloud-sdk --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get remove -y google-cloud-cli --fix-missing || echo "::debug::The command [sudo apt-get remove -y google-cloud-cli --fix-missing] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get autoremove -y || echo "::warning::The command [sudo apt-get autoremove -y] failed to complete successfully. Proceeding..."
			
 
				-          sudo apt-get clean || echo "::warning::The command [sudo apt-get clean] failed to complete successfully. Proceeding..."
			
 
				-
			
 
				-          AFTER=$(getAvailableSpace)
			
 
				-          SAVED=$((AFTER-BEFORE))
			
 
				-          printSavedSpace $SAVED "Large misc. packages"
			
 
				-        fi
			
 
				-
			
 
				-        # Option: Remove Docker images
			
 
				-
			
 
				-        if [[ ${{ inputs.docker-images }} == 'true' ]]; then
			
 
				-          BEFORE=$(getAvailableSpace)
			
 
				-
			
 
				-          sudo docker image prune --all --force || true
			
 
				-
			
 
				-          AFTER=$(getAvailableSpace)
			
 
				-          SAVED=$((AFTER-BEFORE))
			
 
				-          printSavedSpace $SAVED "Docker images"
			
 
				-        fi
			
 
				-
			
 
				-        # Option: Remove tool cache
			
 
				-        # REF: https://github.com/actions/virtual-environments/issues/2875#issuecomment-1163392159
			
 
				-
			
 
				-        if [[ ${{ inputs.tool-cache }} == 'true' ]]; then
			
 
				-          BEFORE=$(getAvailableSpace)
			
 
				-
			
 
				-          sudo rm -rf "$AGENT_TOOLSDIRECTORY" || true
			
 
				-          
			
 
				-          AFTER=$(getAvailableSpace)
			
 
				-          SAVED=$((AFTER-BEFORE))
			
 
				-          printSavedSpace $SAVED "Tool cache"
			
 
				-        fi
			
 
				-
			
 
				-        # Option: Remove Swap storage
			
 
				-
			
 
				-        if [[ ${{ inputs.swap-storage }} == 'true' ]]; then
			
 
				-          BEFORE=$(getAvailableSpace)
			
 
				-
			
 
				-          sudo swapoff -a || true
			
 
				-          sudo rm -f /mnt/swapfile || true
			
 
				-          free -h
			
 
				-          
			
 
				-          AFTER=$(getAvailableSpace)
			
 
				-          SAVED=$((AFTER-BEFORE))
			
 
				-          printSavedSpace $SAVED "Swap storage"
			
 
				-        fi
			
 
				-
			
 
				-
			
 
				-
			
 
				-        # Output saved space statistic
			
 
				-
			
 
				-        AVAILABLE_END=$(getAvailableSpace)
			
 
				-        AVAILABLE_ROOT_END=$(getAvailableSpace '/')
			
 
				-
			
 
				-        echo ""
			
 
				-        printDH "AFTER CLEAN-UP:"
			
 
				-
			
 
				-        echo ""
			
 
				-        echo ""
			
 
				-
			
 
				-        echo "/dev/root:"
			
 
				-        printSavedSpace $((AVAILABLE_ROOT_END - AVAILABLE_ROOT_INITIAL))
			
 
				-        echo "overall:"
			
 
				-        printSavedSpace $((AVAILABLE_END - AVAILABLE_INITIAL))
			
--- a/wazuh-docker/.github/multi-node-filebeat-check.sh
+++ b/wazuh-docker/.github/multi-node-filebeat-check.sh
@@ -1,39 +0,0 @@
 
				-COMMAND_TO_EXECUTE="filebeat test output"
			
 
				-
			
 
				-MASTER_CONTAINERS=$(docker ps --format '{{.Names}}' | grep -E 'master')
			
 
				-
			
 
				-if [ -z "$MASTER_CONTAINERS" ]; then
			
 
				-  echo "No containers were found with 'master' in their name."
			
 
				-else
			
 
				-  for MASTER_CONTAINERS in $MASTER_CONTAINERS; do
			
 
				-    FILEBEAT_OUTPUT=$(docker exec "$MASTER_CONTAINERS" $COMMAND_TO_EXECUTE)
			
 
				-    FILEBEAT_STATUS=$(echo "${FILEBEAT_OUTPUT}" | grep -c OK)
			
 
				-    if [[ $FILEBEAT_STATUS -eq 7 ]]; then
			
 
				-      echo "No errors in filebeat"
			
 
				-      echo "${FILEBEAT_OUTPUT}"
			
 
				-    else
			
 
				-      echo "Errors in filebeat"
			
 
				-      echo "${FILEBEAT_OUTPUT}"
			
 
				-      exit 1
			
 
				-    fi
			
 
				-  done
			
 
				-fi
			
 
				-
			
 
				-MASTER_CONTAINERS=$(docker ps --format '{{.Names}}' | grep -E 'worker')
			
 
				-
			
 
				-if [ -z "$MASTER_CONTAINERS" ]; then
			
 
				-  echo "No containers were found with 'worker' in their name."
			
 
				-else
			
 
				-  for MASTER_CONTAINERS in $MASTER_CONTAINERS; do
			
 
				-    FILEBEAT_OUTPUT=$(docker exec "$MASTER_CONTAINERS" $COMMAND_TO_EXECUTE)
			
 
				-    FILEBEAT_STATUS=$(echo "${FILEBEAT_OUTPUT}" | grep -c OK)
			
 
				-    if [[ $FILEBEAT_STATUS -eq 7 ]]; then
			
 
				-      echo "No errors in filebeat"
			
 
				-      echo "${FILEBEAT_OUTPUT}"
			
 
				-    else
			
 
				-      echo "Errors in filebeat"
			
 
				-      echo "${FILEBEAT_OUTPUT}"
			
 
				-      exit 1
			
 
				-    fi
			
 
				-  done
			
 
				-fi
			
--- a/wazuh-docker/.github/multi-node-log-check.sh
+++ b/wazuh-docker/.github/multi-node-log-check.sh
@@ -1,16 +0,0 @@
 
				-log1=$(docker exec multi-node_wazuh.master_1 sh -c 'cat /var/ossec/logs/ossec.log' | grep -P "ERR|WARN|CRIT")
			
 
				-if [[ -z "$log1" ]]; then
			
 
				-  echo "No errors in master ossec.log"
			
 
				-else
			
 
				-  echo "Errors in master ossec.log:"
			
 
				-  echo "${log1}"
			
 
				-  exit 1
			
 
				-fi
			
 
				-log2=$(docker exec multi-node_wazuh.worker_1 sh -c 'cat /var/ossec/logs/ossec.log' | grep -P "ERR|WARN|CRIT")
			
 
				-if [[ -z "${log2}" ]]; then
			
 
				-  echo "No errors in worker ossec.log"
			
 
				-else
			
 
				-  echo "Errors in worker ossec.log:"
			
 
				-  echo "${log2}"
			
 
				-  exit 1
			
 
				-fi
			
--- a/wazuh-docker/.github/single-node-filebeat-check.sh
+++ b/wazuh-docker/.github/single-node-filebeat-check.sh
@@ -1,20 +0,0 @@
 
				-COMMAND_TO_EXECUTE="filebeat test output"
			
 
				-
			
 
				-MASTER_CONTAINERS=$(docker ps --format '{{.Names}}' | grep -E 'manager')
			
 
				-
			
 
				-if [ -z "$MASTER_CONTAINERS" ]; then
			
 
				-  echo "No containers were found with 'manager' in their name."
			
 
				-else
			
 
				-  for MASTER_CONTAINERS in $MASTER_CONTAINERS; do
			
 
				-    FILEBEAT_OUTPUT=$(docker exec "$MASTER_CONTAINERS" $COMMAND_TO_EXECUTE)
			
 
				-    FILEBEAT_STATUS=$(echo "${FILEBEAT_OUTPUT}" | grep -c OK)
			
 
				-    if [[ $FILEBEAT_STATUS -eq 7 ]]; then
			
 
				-      echo "No errors in filebeat"
			
 
				-      echo "${FILEBEAT_OUTPUT}"
			
 
				-    else
			
 
				-      echo "Errors in filebeat"
			
 
				-      echo "${FILEBEAT_OUTPUT}"
			
 
				-      exit 1
			
 
				-    fi
			
 
				-  done
			
 
				-fi
			
--- a/wazuh-docker/.github/single-node-log-check.sh
+++ b/wazuh-docker/.github/single-node-log-check.sh
@@ -1,8 +0,0 @@
 
				-log=$(docker exec single-node_wazuh.manager_1 sh -c 'cat /var/ossec/logs/ossec.log' | grep -P "ERR|WARN|CRIT")
			
 
				-if [[ -z "$log" ]]; then
			
 
				-  echo "No errors in ossec.log"
			
 
				-else
			
 
				-  echo "Errors in ossec.log:"
			
 
				-  echo "${log}"
			
 
				-  exit 1
			
 
				-fi
			
--- a/wazuh-docker/.github/workflows/4_bumper_repository.yml
+++ b/wazuh-docker/.github/workflows/4_bumper_repository.yml
@@ -1,142 +0,0 @@
 
				-name: Repository bumper
			
 
				-run-name: Bump ${{ github.ref_name }} (${{ inputs.id }})
			
 
				-
			
 
				-on:
			
 
				-  workflow_dispatch:
			
 
				-    inputs:
			
 
				-      version:
			
 
				-        description: 'Target version (e.g. 1.2.3)'
			
 
				-        default: ''
			
 
				-        required: false
			
 
				-        type: string
			
 
				-      stage:
			
 
				-        description: 'Version stage (e.g. alpha0)'
			
 
				-        default: ''
			
 
				-        required: false
			
 
				-        type: string
			
 
				-      tag:
			
 
				-        description: 'Change branches references to tag-like references (e.g. v4.12.0-alpha7)'
			
 
				-        default: false
			
 
				-        required: false
			
 
				-        type: boolean
			
 
				-      issue-link:
			
 
				-        description: 'Issue link in format https://github.com/wazuh/<REPO>/issues/<ISSUE-NUMBER>'
			
 
				-        required: true
			
 
				-        type: string
			
 
				-      id:
			
 
				-        description: 'Optional identifier for the run'
			
 
				-        required: false
			
 
				-        type: string
			
 
				-
			
 
				-jobs:
			
 
				-  bump:
			
 
				-    name: Repository bumper
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    permissions:
			
 
				-      contents: write
			
 
				-      pull-requests: write
			
 
				-
			
 
				-    env:
			
 
				-      CI_COMMIT_AUTHOR: wazuhci
			
 
				-      CI_COMMIT_EMAIL: 22834044+wazuhci@users.noreply.github.com
			
 
				-      CI_GPG_PRIVATE_KEY: ${{ secrets.CI_WAZUHCI_GPG_PRIVATE }}
			
 
				-      GH_TOKEN: ${{ secrets.CI_WAZUHCI_BUMPER_TOKEN }}
			
 
				-      BUMP_SCRIPT_PATH: tools/repository_bumper.sh
			
 
				-      BUMP_LOG_PATH: tools
			
 
				-
			
 
				-    steps:
			
 
				-      - name: Dump event payload
			
 
				-        run: |
			
 
				-          cat $GITHUB_EVENT_PATH | jq '.inputs'
			
 
				-
			
 
				-      - name: Set up GPG key
			
 
				-        id: signing_setup
			
 
				-        run: |
			
 
				-          echo "${{ env.CI_GPG_PRIVATE_KEY }}" | gpg --batch --import
			
 
				-          KEY_ID=$(gpg --list-secret-keys --with-colons | awk -F: '/^sec/ {print $5; exit}')
			
 
				-          echo "gpg_key_id=$KEY_ID" >> $GITHUB_OUTPUT
			
 
				-
			
 
				-      - name: Set up git
			
 
				-        run: |
			
 
				-          git config --global user.name "${{ env.CI_COMMIT_AUTHOR }}"
			
 
				-          git config --global user.email "${{ env.CI_COMMIT_EMAIL }}"
			
 
				-          git config --global commit.gpgsign true
			
 
				-          git config --global user.signingkey "${{ steps.signing_setup.outputs.gpg_key_id }}"
			
 
				-          echo "use-agent" >> ~/.gnupg/gpg.conf
			
 
				-          echo "pinentry-mode loopback" >> ~/.gnupg/gpg.conf
			
 
				-          echo "allow-loopback-pinentry" >> ~/.gnupg/gpg-agent.conf
			
 
				-          echo RELOADAGENT | gpg-connect-agent
			
 
				-          export DEBIAN_FRONTEND=noninteractive
			
 
				-          export GPG_TTY=$(tty)
			
 
				-
			
 
				-      - name: Checkout repository
			
 
				-        uses: actions/checkout@v4
			
 
				-        with:
			
 
				-          # Using workflow-specific GITHUB_TOKEN because currently CI_WAZUHCI_BUMPER_TOKEN
			
 
				-          # doesn't have all the necessary permissions
			
 
				-          token: ${{ env.GH_TOKEN }}
			
 
				-
			
 
				-      - name: Determine branch name
			
 
				-        id: vars
			
 
				-        env:
			
 
				-          VERSION: ${{ inputs.version }}
			
 
				-          STAGE: ${{ inputs.stage }}
			
 
				-          TAG: ${{ inputs.tag }}
			
 
				-        run: |
			
 
				-          script_params=""
			
 
				-          version=${{ env.VERSION }}
			
 
				-          stage=${{ env.STAGE }}
			
 
				-          tag=${{ env.TAG }}
			
 
				-
			
 
				-          # Both version and stage provided
			
 
				-          if [[ -n "$version" && -n "$stage" && "$tag" != "true" ]]; then
			
 
				-            script_params="--version ${version} --stage ${stage}"
			
 
				-          elif [[ -n "$version" && -n "$stage" && "$tag" == "true" ]]; then
			
 
				-            script_params="--version ${version} --stage ${stage} --tag ${tag}"
			
 
				-          fi
			
 
				-
			
 
				-          issue_number=$(echo "${{ inputs.issue-link }}" | awk -F'/' '{print $NF}')
			
 
				-          BRANCH_NAME="enhancement/wqa${issue_number}-bump-${{ github.ref_name }}"
			
 
				-          echo "branch_name=$BRANCH_NAME" >> $GITHUB_OUTPUT
			
 
				-          echo "script_params=${script_params}" >> $GITHUB_OUTPUT
			
 
				-
			
 
				-      - name: Create and switch to bump branch
			
 
				-        run: |
			
 
				-          git checkout -b ${{ steps.vars.outputs.branch_name }}
			
 
				-
			
 
				-      - name: Make version bump changes
			
 
				-        run: |
			
 
				-          echo "Running bump script"
			
 
				-          bash ${{ env.BUMP_SCRIPT_PATH }} ${{ steps.vars.outputs.script_params }}
			
 
				-
			
 
				-      - name: Commit and push changes
			
 
				-        run: |
			
 
				-          git add .
			
 
				-          git commit -m "feat: bump ${{ github.ref_name }}"
			
 
				-          git push origin ${{ steps.vars.outputs.branch_name }}
			
 
				-
			
 
				-      - name: Create pull request
			
 
				-        id: create_pr
			
 
				-        run: |
			
 
				-          gh auth setup-git
			
 
				-          PR_URL=$(gh pr create \
			
 
				-            --title "Bump ${{ github.ref_name }} branch" \
			
 
				-            --body "Issue: ${{ inputs.issue-link }}" \
			
 
				-            --base ${{ github.ref_name }} \
			
 
				-            --head ${{ steps.vars.outputs.branch_name }})
			
 
				-
			
 
				-          echo "Pull request created: ${PR_URL}"
			
 
				-          echo "pull_request_url=${PR_URL}" >> $GITHUB_OUTPUT
			
 
				-
			
 
				-      - name: Merge pull request
			
 
				-        run: |
			
 
				-          # Any checks for the PR are bypassed since the branch is expected to be functional (i.e. the bump process does not introduce any bugs)
			
 
				-          gh pr merge "${{ steps.create_pr.outputs.pull_request_url }}" --merge --admin
			
 
				-
			
 
				-      - name: Show logs
			
 
				-        run: |
			
 
				-          echo "Bump complete."
			
 
				-          echo "Branch: ${{ steps.vars.outputs.branch_name }}"
			
 
				-          echo "PR: ${{ steps.create_pr.outputs.pull_request_url }}"
			
 
				-          echo "Bumper scripts logs:"
			
 
				-          cat ${BUMP_LOG_PATH}/repository_bumper*log
			
--- a/wazuh-docker/.github/workflows/Procedure_push_docker_images.yml
+++ b/wazuh-docker/.github/workflows/Procedure_push_docker_images.yml
@@ -1,243 +0,0 @@
 
				-run-name: Launch Push Docker Images - ${{ inputs.id }}
			
 
				-name: Push Docker Images
			
 
				-
			
 
				-on:
			
 
				-  workflow_dispatch:
			
 
				-    inputs:
			
 
				-      image_tag:
			
 
				-        description: 'Docker image tag'
			
 
				-        default: '4.14.3'
			
 
				-        required: true
			
 
				-      docker_reference:
			
 
				-        description: 'wazuh-docker reference'
			
 
				-        required: true
			
 
				-      filebeat_module_version:
			
 
				-        description: 'Filebeat module version'
			
 
				-        default: '0.5'
			
 
				-        required: true
			
 
				-      revision:
			
 
				-        description: 'Package revision'
			
 
				-        default: '1'
			
 
				-        required: true
			
 
				-      id:
			
 
				-        description: "ID used to identify the workflow uniquely."
			
 
				-        type: string
			
 
				-        required: false
			
 
				-      dev:
			
 
				-        description: "Add tag suffix '-dev' to the image tag ?"
			
 
				-        type: boolean
			
 
				-        default: true
			
 
				-        required: false
			
 
				-  workflow_call:
			
 
				-    inputs:
			
 
				-      image_tag:
			
 
				-        description: 'Docker image tag'
			
 
				-        default: '4.14.3'
			
 
				-        required: true
			
 
				-        type: string
			
 
				-      docker_reference:
			
 
				-        description: 'wazuh-docker reference'
			
 
				-        required: false
			
 
				-        type: string
			
 
				-      filebeat_module_version:
			
 
				-        description: 'Filebeat module version'
			
 
				-        default: '0.5'
			
 
				-        required: true
			
 
				-        type: string
			
 
				-      revision:
			
 
				-        description: 'Package revision'
			
 
				-        default: '1'
			
 
				-        required: true
			
 
				-        type: string
			
 
				-      id:
			
 
				-        description: "ID used to identify the workflow uniquely."
			
 
				-        type: string
			
 
				-        required: false
			
 
				-      dev:
			
 
				-        description: "Add tag suffix '-dev' to the image tag ?"
			
 
				-        type: boolean
			
 
				-        default: false
			
 
				-        required: false
			
 
				-
			
 
				-jobs:
			
 
				-  build-and-push:
			
 
				-    runs-on: ubuntu-22.04
			
 
				-
			
 
				-    permissions:
			
 
				-      id-token: write
			
 
				-      contents: read
			
 
				-
			
 
				-    env:
			
 
				-      IMAGE_REGISTRY: ${{ inputs.dev && vars.IMAGE_REGISTRY_DEV || vars.IMAGE_REGISTRY_PROD }}
			
 
				-      IMAGE_TAG: ${{ inputs.image_tag }}
			
 
				-      FILEBEAT_MODULE_VERSION: ${{ inputs.filebeat_module_version }}
			
 
				-      REVISION: ${{ inputs.revision }}
			
 
				-
			
 
				-    steps:
			
 
				-    - name: Print inputs
			
 
				-      run: |
			
 
				-        echo "---------------------------------------------"
			
 
				-        echo "Running Procedure_push_docker_images workflow"
			
 
				-        echo "---------------------------------------------"
			
 
				-        echo "* BRANCH: ${{ github.ref }}"
			
 
				-        echo "* COMMIT: ${{ github.sha }}"
			
 
				-        echo "---------------------------------------------"
			
 
				-        echo "Inputs provided:"
			
 
				-        echo "---------------------------------------------"
			
 
				-        echo "* id: ${{ inputs.id }}"
			
 
				-        echo "* image_tag: ${{ inputs.image_tag }}"
			
 
				-        echo "* docker_reference: ${{ inputs.docker_reference }}"
			
 
				-        echo "* filebeat_module_version: ${{ inputs.filebeat_module_version }}"
			
 
				-        echo "* revision: ${{ inputs.revision }}"
			
 
				-        echo "* dev: ${{ inputs.dev }}"
			
 
				-        echo "---------------------------------------------"
			
 
				-
			
 
				-    - name: Checkout repository
			
 
				-      uses: actions/checkout@v4
			
 
				-      with:
			
 
				-        ref: ${{ inputs.docker_reference }}
			
 
				-
			
 
				-    - name: free disk space
			
 
				-      uses: ./.github/free-disk-space
			
 
				-
			
 
				-    - name: Set up QEMU
			
 
				-      uses: docker/setup-qemu-action@v3
			
 
				-
			
 
				-    - name: Set up Docker Buildx
			
 
				-      uses: docker/setup-buildx-action@v3
			
 
				-
			
 
				-    - name: Configure aws credentials
			
 
				-      if: ${{ inputs.dev == true }}
			
 
				-      uses: aws-actions/configure-aws-credentials@v4
			
 
				-      with:
			
 
				-        role-to-assume: ${{ secrets.AWS_IAM_DOCKER_ROLE }}
			
 
				-        aws-region: "${{ secrets.AWS_REGION }}"
			
 
				-
			
 
				-    - name: Log in to Amazon ECR
			
 
				-      if: ${{ inputs.dev == true }}
			
 
				-      uses: aws-actions/amazon-ecr-login@v2
			
 
				-
			
 
				-    - name: Log in to Docker Hub
			
 
				-      if: ${{ inputs.dev == false }}
			
 
				-      uses: docker/login-action@v3
			
 
				-      with:
			
 
				-        username: ${{ secrets.DOCKERHUB_USERNAME }}
			
 
				-        password: ${{ secrets.DOCKERHUB_PASSWORD }}
			
 
				-
			
 
				-    - name: Build Wazuh images
			
 
				-      run: |
			
 
				-        IMAGE_TAG="${{ inputs.image_tag }}"
			
 
				-        FILEBEAT_MODULE_VERSION=${{ inputs.filebeat_module_version }}
			
 
				-        REVISION=${{ inputs.revision }}
			
 
				-
			
 
				-        if [[ "$IMAGE_TAG" == *"-"* ]]; then
			
 
				-          IFS='-' read -r -a tokens <<< "$IMAGE_TAG"
			
 
				-          if [ -z "${tokens[1]}" ]; then
			
 
				-            echo "Invalid image tag: $IMAGE_TAG"
			
 
				-            exit 1
			
 
				-          fi
			
 
				-          DEV_STAGE=${tokens[1]}
			
 
				-          WAZUH_VER=${tokens[0]}
			
 
				-          ./build-images.sh -v $WAZUH_VER -r $REVISION -d $DEV_STAGE -f $FILEBEAT_MODULE_VERSION -rg $IMAGE_REGISTRY -m
			
 
				-        else
			
 
				-          ./build-images.sh -v $IMAGE_TAG -r $REVISION -f $FILEBEAT_MODULE_VERSION -rg $IMAGE_REGISTRY -m
			
 
				-        fi
			
 
				-
			
 
				-        # Save .env file (generated by build-images.sh) contents to $GITHUB_ENV
			
 
				-        ENV_FILE_PATH="../.env"
			
 
				-
			
 
				-        if [ -f $ENV_FILE_PATH ]; then
			
 
				-          while IFS= read -r line || [ -n "$line" ]; do
			
 
				-            echo "$line" >> $GITHUB_ENV
			
 
				-          done < $ENV_FILE_PATH
			
 
				-        else
			
 
				-          echo "The environment file $ENV_FILE_PATH does not exist!"
			
 
				-          exit 1
			
 
				-        fi
			
 
				-      working-directory: ./build-docker-images
			
 
				-
			
 
				-    - name: Image exists validation
			
 
				-      if: ${{ inputs.dev == false }}
			
 
				-      id: validation
			
 
				-      run: |
			
 
				-        IMAGE_TAG=${{ inputs.image_tag }}
			
 
				-        PURPOSE=""
			
 
				-
			
 
				-        if [[ "$IMAGE_TAG" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
			
 
				-          if docker manifest inspect $IMAGE_REGISTRY/wazuh/wazuh-manager:$IMAGE_TAG > /dev/null 2>&1; then
			
 
				-            PURPOSE="regeneration"
			
 
				-            echo "Image wazuh/wazuh-manager:$IMAGE_TAG exists. Setting PURPOSE to 'regeneration'"
			
 
				-          else
			
 
				-            PURPOSE="new release"
			
 
				-            echo "Image wazuh/wazuh-manager:$IMAGE_TAG does NOT exist. Setting PURPOSE to 'new release'"
			
 
				-          fi
			
 
				-          echo "✅ Release tag: '$IMAGE_TAG'"
			
 
				-        elif [[ "$IMAGE_TAG" =~ ^[0-9]+\.[0-9]+\.[0-9]+-(alpha|beta|rc)[0-9]+$ ]]; then
			
 
				-          PURPOSE="new stage"
			
 
				-          echo "✅ Stage tag: '$IMAGE_TAG'. Setting PURPOSE to 'new stage'"
			
 
				-        else
			
 
				-          echo "❌ No release or stage tag ('$IMAGE_TAG'), the GH issue will not be created"
			
 
				-        fi
			
 
				-
			
 
				-        echo "purpose=$PURPOSE" >> $GITHUB_OUTPUT
			
 
				-
			
 
				-    - name: GH issue notification
			
 
				-      if: ${{ inputs.dev == false && steps.validation.outputs.purpose != '' }}
			
 
				-      run: |
			
 
				-        IMAGE_TAG=${{ inputs.image_tag }}
			
 
				-        GH_TITLE=""
			
 
				-        GH_MESSAGE=""
			
 
				-        PURPOSE="${{ steps.validation.outputs.purpose }}"
			
 
				-
			
 
				-        ## Setting GH issue title
			
 
				-        GH_TITLE="Artifactory vulnerabilities update \`v$IMAGE_TAG\`"
			
 
				-
			
 
				-        ## Setting GH issue body
			
 
				-        GH_MESSAGE=$(cat <<- EOF | tr -d '\r' | sed 's/^[[:space:]]*//'
			
 
				-        ### Description
			
 
				-        - [ ] Update the [Artifactory vulnerabilities](${{ secrets.NOTIFICATION_SHEET_URL }}) sheet with the \`v$IMAGE_TAG\` vulnerabilities.
			
 
				-
			
 
				-        **Purpose**: $PURPOSE
			
 
				-        >[!NOTE]
			
 
				-        >To update the \`Tentative Release\` column, follow these steps:
			
 
				-        https://github.com/wazuh/${{ secrets.NOTIFICATION_REPO }}/issues/2049#issuecomment-2671590268
			
 
				-        EOF
			
 
				-        )
			
 
				-
			
 
				-        # Print the GH Variables content
			
 
				-        echo "--- Variable Content ---"
			
 
				-        echo "$GH_TITLE"
			
 
				-        echo "------------------------"
			
 
				-
			
 
				-        echo "--- Variable Content ---"
			
 
				-        echo "$GH_MESSAGE"
			
 
				-        echo "------------------------"
			
 
				-
			
 
				-        ## GH issue creation
			
 
				-        ISSUE_URL=$(gh issue create \
			
 
				-          -R wazuh/${{ secrets.NOTIFICATION_REPO }} \
			
 
				-          --title "$GH_TITLE" \
			
 
				-          --body "$GH_MESSAGE" \
			
 
				-          --label "level/task" \
			
 
				-          --label "type/maintenance" \
			
 
				-          --label "request/operational")
			
 
				-
			
 
				-        ## Adding the issue to the team project
			
 
				-        PROJECT_ITEM_ID=$(gh project item-add \
			
 
				-          ${{ secrets.NOTIFICATION_PROJECT_NUMBER }} \
			
 
				-          --url $ISSUE_URL \
			
 
				-          --owner wazuh \
			
 
				-          --format json \
			
 
				-          | jq -r '.id')
			
 
				-
			
 
				-          ## Setting Objective
			
 
				-          gh project item-edit --id $PROJECT_ITEM_ID --project-id ${{ secrets.NOTIFICATION_PROJECT_ID }} --field-id ${{ secrets.NOTIFICATION_PROJECT_OBJECTIVE_ID }} --text  "Security scans"
			
 
				-          ## Setting Priority
			
 
				-          gh project item-edit --id $PROJECT_ITEM_ID --project-id ${{ secrets.NOTIFICATION_PROJECT_ID }} --field-id ${{ secrets.NOTIFICATION_PROJECT_PRIORITY_ID }} --single-select-option-id ${{ secrets.NOTIFICATION_PROJECT_PRIORITY_OPTION_ID }}
			
 
				-          ## Setting Size
			
 
				-          gh project item-edit --id $PROJECT_ITEM_ID --project-id ${{ secrets.NOTIFICATION_PROJECT_ID }} --field-id ${{ secrets.NOTIFICATION_PROJECT_SIZE_ID }} --single-select-option-id ${{ secrets.NOTIFICATION_PROJECT_SIZE_OPTION_ID }}
			
 
				-          ## Setting Subteam
			
 
				-          gh project item-edit --id $PROJECT_ITEM_ID --project-id ${{ secrets.NOTIFICATION_PROJECT_ID }} --field-id ${{ secrets.NOTIFICATION_PROJECT_SUBTEAM_ID }} --single-select-option-id ${{ secrets.NOTIFICATION_PROJECT_SUBTEAM_OPTION_ID }}
			
 
				-
			
 
				-      env:
			
 
				-        GH_TOKEN: ${{ secrets.NOTIFICATION_GH_ARTIFACT_TOKEN }}
			
--- a/wazuh-docker/.github/workflows/push.yml
+++ b/wazuh-docker/.github/workflows/push.yml
@@ -1,369 +0,0 @@
 
				-name: Wazuh Docker pipeline
			
 
				-
			
 
				-on: [pull_request]
			
 
				-
			
 
				-jobs:
			
 
				-  build-docker-images:
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    steps:
			
 
				-
			
 
				-    - name: Check out code
			
 
				-      uses: actions/checkout@v4
			
 
				-
			
 
				-    - name: Build Wazuh images
			
 
				-      run: ./build-images.sh
			
 
				-      working-directory: ./build-docker-images
			
 
				-
			
 
				-    - name: Create enviroment variables
			
 
				-      run: cat .env > $GITHUB_ENV
			
 
				-
			
 
				-    - name: Create backup Docker images
			
 
				-      run: |
			
 
				-        mkdir -p /home/runner/work/wazuh-docker/wazuh-docker/docker-images/
			
 
				-        docker save wazuh/wazuh-manager:${{env.WAZUH_IMAGE_VERSION}} -o /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-manager.tar
			
 
				-        docker save wazuh/wazuh-indexer:${{env.WAZUH_IMAGE_VERSION}} -o /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-indexer.tar
			
 
				-        docker save wazuh/wazuh-dashboard:${{env.WAZUH_IMAGE_VERSION}} -o /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-dashboard.tar
			
 
				-        docker save wazuh/wazuh-agent:${{env.WAZUH_IMAGE_VERSION}} -o /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-agent.tar
			
 
				-
			
 
				-    - name: Temporarily save Wazuh manager Docker image
			
 
				-      uses: actions/upload-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-manager
			
 
				-        path: /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-manager.tar
			
 
				-        retention-days: 1
			
 
				-
			
 
				-    - name: Temporarily save Wazuh indexer Docker image
			
 
				-      uses: actions/upload-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-indexer
			
 
				-        path: /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-indexer.tar
			
 
				-        retention-days: 1
			
 
				-
			
 
				-    - name: Temporarily save Wazuh dashboard Docker image
			
 
				-      uses: actions/upload-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-dashboard
			
 
				-        path: /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-dashboard.tar
			
 
				-        retention-days: 1
			
 
				-
			
 
				-    - name: Temporarily save Wazuh agent Docker image
			
 
				-      uses: actions/upload-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-agent
			
 
				-        path: /home/runner/work/wazuh-docker/wazuh-docker/docker-images/wazuh-agent.tar
			
 
				-        retention-days: 1
			
 
				-
			
 
				-    - name: Install Goss
			
 
				-      uses: e1himself/goss-installation-action@v1.0.3
			
 
				-      with:
			
 
				-        version: v0.3.16
			
 
				-
			
 
				-    - name: Execute Goss tests (wazuh-manager)
			
 
				-      run: dgoss run wazuh/wazuh-manager:${{env.WAZUH_IMAGE_VERSION}}
			
 
				-      env:
			
 
				-        GOSS_SLEEP: 30
			
 
				-        GOSS_FILE: .github/.goss.yaml
			
 
				-
			
 
				-  check-single-node:
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    needs: build-docker-images
			
 
				-    steps:
			
 
				-
			
 
				-    - name: Check out code
			
 
				-      uses: actions/checkout@v4
			
 
				-
			
 
				-    - name: Create enviroment variables
			
 
				-      run: cat .env > $GITHUB_ENV
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh indexer Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-indexer
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh manager Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-manager
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh dashboard Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-dashboard
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh agent Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-agent
			
 
				-
			
 
				-    - name: Docker load
			
 
				-      run: |
			
 
				-        docker load --input ./wazuh-indexer.tar
			
 
				-        docker load --input ./wazuh-dashboard.tar
			
 
				-        docker load --input ./wazuh-manager.tar
			
 
				-        docker load --input ./wazuh-agent.tar
			
 
				-
			
 
				-    - name: Create single node certficates
			
 
				-      run: docker compose -f single-node/generate-indexer-certs.yml run --rm generator
			
 
				-
			
 
				-    - name: Start single node stack
			
 
				-      run: docker compose -f single-node/docker-compose.yml up -d
			
 
				-
			
 
				-    - name: Check Wazuh indexer start
			
 
				-      run: |
			
 
				-       sleep 60
			
 
				-       status_green="`curl -XGET "https://0.0.0.0:9200/_cluster/health" -u admin:SecretPassword -k -s | grep green | wc -l`"
			
 
				-       if [[ $status_green -eq 1 ]]; then
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cluster/health" -u admin:SecretPassword -k -s
			
 
				-       else
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cluster/health" -u admin:SecretPassword -k -s
			
 
				-        exit 1
			
 
				-       fi
			
 
				-       status_index="`curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s | wc -l`"
			
 
				-       status_index_green="`curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s | grep "green" | wc -l`"
			
 
				-       if [[ $status_index_green -eq $status_index ]]; then
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s
			
 
				-       else
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-
			
 
				-    - name: Check Wazuh indexer nodes
			
 
				-      run: |
			
 
				-       nodes="`curl -XGET "https://0.0.0.0:9200/_cat/nodes" -u admin:SecretPassword -k -s | grep -E "indexer" | wc -l`"
			
 
				-       if [[ $nodes -eq 1 ]]; then
			
 
				-        echo "Wazuh indexer nodes: ${nodes}"
			
 
				-       else
			
 
				-        echo "Wazuh indexer nodes: ${nodes}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Check documents into wazuh-alerts index
			
 
				-      run: |
			
 
				-       sleep 120
			
 
				-       docs="`curl -XGET "https://0.0.0.0:9200/wazuh-alerts*/_count" -u admin:SecretPassword -k -s | jq -r ".count"`"
			
 
				-       if [[ $docs -gt 0 ]]; then
			
 
				-        echo "wazuh-alerts index documents: ${docs}"
			
 
				-       else
			
 
				-        echo "wazuh-alerts index documents: ${docs}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Check Wazuh templates
			
 
				-      run: |
			
 
				-       qty_templates="`curl -XGET "https://0.0.0.0:9200/_cat/templates" -u admin:SecretPassword -k -s | grep -P "wazuh|wazuh-agent|wazuh-statistics" | wc -l`"
			
 
				-       templates="`curl -XGET "https://0.0.0.0:9200/_cat/templates" -u admin:SecretPassword -k -s | grep -P "wazuh|wazuh-agent|wazuh-statistics"`"
			
 
				-       if [[ $qty_templates -gt 3 ]]; then
			
 
				-        echo "wazuh templates:"
			
 
				-        echo "${templates}"
			
 
				-       else
			
 
				-        echo "wazuh templates:"
			
 
				-        echo "${templates}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Check Wazuh manager start
			
 
				-      run: |
			
 
				-        services="`curl -k -s -X GET "https://0.0.0.0:55000/manager/status?pretty=true" -H  "Authorization: Bearer ${{env.TOKEN}}" | jq -r .data.affected_items | grep running | wc -l`"
			
 
				-        if [[ $services -gt 9 ]]; then
			
 
				-          echo "Wazuh Manager Services: ${services}"
			
 
				-          echo "OK"
			
 
				-        else
			
 
				-          echo "Wazuh indexer nodes: ${nodes}"
			
 
				-          curl -k -X GET "https://0.0.0.0:55000/manager/status?pretty=true" -H  "Authorization: Bearer ${{env.TOKEN}}" | jq -r .data.affected_items
			
 
				-          exit 1
			
 
				-        fi
			
 
				-      env:
			
 
				-        TOKEN: $(curl -s -u wazuh-wui:MyS3cr37P450r.*- -k -X GET "https://0.0.0.0:55000/security/user/authenticate?raw=true")
			
 
				-
			
 
				-    - name: Check filebeat output
			
 
				-      run: ./.github/single-node-filebeat-check.sh
			
 
				-
			
 
				-    - name: Check Wazuh dashboard service URL
			
 
				-      run: |
			
 
				-       status=$(curl -XGET --silent  https://0.0.0.0:443/app/status -k -u admin:SecretPassword -I -s | grep -E "^HTTP" | awk  '{print $2}')
			
 
				-       if [[ $status -eq 200 ]]; then
			
 
				-        echo "Wazuh dashboard status: ${status}"
			
 
				-       else
			
 
				-        echo "Wazuh dashboard status: ${status}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Modify Docker endpoint into Wazuh agent docker-compose.yml file
			
 
				-      run: sed -i "s/<WAZUH_MANAGER_IP>/$(ip addr show docker0 | grep 'inet ' | awk '{print $2}' | cut -d'/' -f1)/g" wazuh-agent/docker-compose.yml
			
 
				-
			
 
				-    - name: Start Wazuh agent
			
 
				-      run: docker compose -f wazuh-agent/docker-compose.yml up -d
			
 
				-
			
 
				-    - name: Check Wazuh agent enrollment
			
 
				-      run: |
			
 
				-        sleep 20
			
 
				-        curl -k -s -X GET "https://localhost:55000/agents?pretty=true" -H  "Authorization: Bearer ${{env.TOKEN}}"
			
 
				-      env:
			
 
				-        TOKEN: $(curl -s -u wazuh-wui:MyS3cr37P450r.*- -k -X GET "https://0.0.0.0:55000/security/user/authenticate?raw=true")
			
 
				-
			
 
				-    - name: Check errors in ossec.log for Wazuh manager
			
 
				-      run: ./.github/single-node-log-check.sh
			
 
				-
			
 
				-  check-multi-node:
			
 
				-    runs-on: ubuntu-22.04
			
 
				-    needs: build-docker-images
			
 
				-    steps:
			
 
				-
			
 
				-    - name: Check out code
			
 
				-      uses: actions/checkout@v4
			
 
				-
			
 
				-    - name: Create enviroment variables
			
 
				-      run: cat .env > $GITHUB_ENV
			
 
				-
			
 
				-    - name: free disk space
			
 
				-      uses: ./.github/free-disk-space
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh dashboard Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-dashboard
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh manager Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-manager
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh indexer Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-indexer
			
 
				-
			
 
				-    - name: Retrieve saved Wazuh agent Docker image
			
 
				-      uses: actions/download-artifact@v4
			
 
				-      with:
			
 
				-        name: docker-artifact-agent
			
 
				-
			
 
				-    - name: Docker load
			
 
				-      run: |
			
 
				-        docker load --input ./wazuh-manager.tar
			
 
				-        docker load --input ./wazuh-indexer.tar
			
 
				-        docker load --input ./wazuh-dashboard.tar
			
 
				-        docker load --input ./wazuh-agent.tar
			
 
				-        rm -rf wazuh-manager.tar wazuh-indexer.tar wazuh-dashboard.tar wazuh-agent.tar
			
 
				-
			
 
				-    - name: Create multi node certficates
			
 
				-      run: docker compose -f multi-node/generate-indexer-certs.yml run --rm generator
			
 
				-
			
 
				-    - name: Start multi node stack
			
 
				-      run: docker compose -f multi-node/docker-compose.yml up -d
			
 
				-
			
 
				-    - name: Check Wazuh indexer start
			
 
				-      run: |
			
 
				-       until [[ `curl -XGET "https://0.0.0.0:9200/_cluster/health" -u admin:SecretPassword -k -s | grep green | wc -l`  -eq 1 ]]
			
 
				-       do
			
 
				-         echo 'Waiting for Wazuh indexer start'
			
 
				-         free -m
			
 
				-         df -h
			
 
				-         sleep 120
			
 
				-       done
			
 
				-       status_green="`curl -XGET "https://0.0.0.0:9200/_cluster/health" -u admin:SecretPassword -k -s | grep green | wc -l`"
			
 
				-       if [[ $status_green -eq 1 ]]; then
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cluster/health" -u admin:SecretPassword -k -s
			
 
				-       else
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cluster/health" -u admin:SecretPassword -k -s
			
 
				-        exit 1
			
 
				-       fi
			
 
				-       status_index="`curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s | wc -l`"
			
 
				-       status_index_green="`curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s | grep -E "green" | wc -l`"
			
 
				-       if [[ $status_index_green -eq $status_index ]]; then
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s
			
 
				-       else
			
 
				-        curl -XGET "https://0.0.0.0:9200/_cat/indices" -u admin:SecretPassword -k -s
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Check Wazuh indexer nodes
			
 
				-      run: |
			
 
				-       nodes="`curl -XGET "https://0.0.0.0:9200/_cat/nodes" -u admin:SecretPassword -k -s | grep -E "indexer" | wc -l`"
			
 
				-       if [[ $nodes -eq 3 ]]; then
			
 
				-        echo "Wazuh indexer nodes: ${nodes}"
			
 
				-       else
			
 
				-        echo "Wazuh indexer nodes: ${nodes}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Check documents into wazuh-alerts index
			
 
				-      run: |
			
 
				-       until [[ $(``curl -XGET "https://0.0.0.0:9200/wazuh-alerts*/_count" -u admin:SecretPassword -k -s | jq -r ".count"``)  -gt 0 ]]
			
 
				-       do
			
 
				-         echo 'Waiting for Wazuh indexer events'
			
 
				-         free -m
			
 
				-         df -h
			
 
				-         sleep 10
			
 
				-       done
			
 
				-       docs="`curl -XGET "https://0.0.0.0:9200/wazuh-alerts*/_count" -u admin:SecretPassword -k -s | jq -r ".count"`"
			
 
				-       if [[ $docs -gt 0 ]]; then
			
 
				-        echo "wazuh-alerts index documents: ${docs}"
			
 
				-       else
			
 
				-        echo "wazuh-alerts index documents: ${docs}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Check Wazuh templates
			
 
				-      run: |
			
 
				-       qty_templates="`curl -XGET "https://0.0.0.0:9200/_cat/templates" -u admin:SecretPassword -k -s | grep "wazuh" | wc -l`"
			
 
				-       templates="`curl -XGET "https://0.0.0.0:9200/_cat/templates" -u admin:SecretPassword -k -s | grep "wazuh"`"
			
 
				-       if [[ $qty_templates -gt 3 ]]; then
			
 
				-        echo "wazuh templates:"
			
 
				-        echo "${templates}"
			
 
				-       else
			
 
				-        echo "wazuh templates:"
			
 
				-        echo "${templates}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Check Wazuh manager start
			
 
				-      run: |
			
 
				-        services="`curl -k -s -X GET "https://0.0.0.0:55000/manager/status?pretty=true" -H  "Authorization: Bearer ${{env.TOKEN}}" | jq -r .data.affected_items | grep running | wc -l`"
			
 
				-        if [[ $services -gt 10 ]]; then
			
 
				-          echo "Wazuh Manager Services: ${services}"
			
 
				-          echo "OK"
			
 
				-        else
			
 
				-          echo "Wazuh indexer nodes: ${nodes}"
			
 
				-          curl -k -s -X GET "https://0.0.0.0:55000/manager/status?pretty=true" -H  "Authorization: Bearer ${{env.TOKEN}}" | jq -r .data.affected_items
			
 
				-          exit 1
			
 
				-        fi
			
 
				-        nodes=$(curl -k -s -X GET "https://0.0.0.0:55000/cluster/nodes" -H "Authorization: Bearer ${{env.TOKEN}}" | jq -r ".data.affected_items[].name" | wc -l)
			
 
				-        if [[ $nodes -eq 2 ]]; then
			
 
				-         echo "Wazuh manager nodes: ${nodes}"
			
 
				-        else
			
 
				-         echo "Wazuh manager nodes: ${nodes}"
			
 
				-         exit 1
			
 
				-        fi
			
 
				-      env:
			
 
				-        TOKEN: $(curl -s -u wazuh-wui:MyS3cr37P450r.*- -k -X GET "https://0.0.0.0:55000/security/user/authenticate?raw=true")
			
 
				-
			
 
				-    - name: Check filebeat output
			
 
				-      run: ./.github/multi-node-filebeat-check.sh
			
 
				-
			
 
				-    - name: Check Wazuh dashboard service URL
			
 
				-      run: |
			
 
				-       status=$(curl -XGET --silent  https://0.0.0.0:443/app/status -k -u admin:SecretPassword -I | grep -E "^HTTP" | awk  '{print $2}')
			
 
				-       if [[ $status -eq 200 ]]; then
			
 
				-        echo "Wazuh dashboard status: ${status}"
			
 
				-       else
			
 
				-        echo "Wazuh dashboard status: ${status}"
			
 
				-        exit 1
			
 
				-       fi
			
 
				-
			
 
				-    - name: Modify Docker endpoint into Wazuh agent docker-compose.yml file
			
 
				-      run: sed -i "s/<WAZUH_MANAGER_IP>/$(ip addr show docker0 | grep 'inet ' | awk '{print $2}' | cut -d'/' -f1)/g" wazuh-agent/docker-compose.yml
			
 
				-
			
 
				-    - name: Start Wazuh agent
			
 
				-      run: docker compose -f wazuh-agent/docker-compose.yml up -d
			
 
				-
			
 
				-    - name: Check Wazuh agent enrollment
			
 
				-      run: |
			
 
				-        sleep 20
			
 
				-        curl -k -s -X GET "https://localhost:55000/agents?pretty=true" -H  "Authorization: Bearer ${{env.TOKEN}}"
			
 
				-      env:
			
 
				-        TOKEN: $(curl -s -u wazuh-wui:MyS3cr37P450r.*- -k -X GET "https://0.0.0.0:55000/security/user/authenticate?raw=true")
			
 
				-
			
 
				-    - name: Check errors in ossec.log for Wazuh manager
			
 
				-      run: ./.github/multi-node-log-check.sh
			
--- a/wazuh-docker/.github/workflows/trivy-dashboard.yml
+++ b/wazuh-docker/.github/workflows/trivy-dashboard.yml
@@ -1,76 +0,0 @@
 
				-# This workflow uses actions that are not certified by GitHub.
			
 
				-# They are provided by a third-party and are governed by
			
 
				-# separate terms of service, privacy policy, and support
			
 
				-# documentation.
			
 
				-
			
 
				-name: Trivy scan Wazuh dashboard
			
 
				-
			
 
				-on:
			
 
				-  release:
			
 
				-    types:
			
 
				-    - published
			
 
				-  pull_request:
			
 
				-    branches:
			
 
				-      - main
			
 
				-  schedule:
			
 
				-    - cron: '34 2 * * 1'
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-permissions:
			
 
				-  contents: read
			
 
				-
			
 
				-jobs:
			
 
				-  build:
			
 
				-    permissions:
			
 
				-      contents: read # for actions/checkout to fetch code
			
 
				-      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
			
 
				-
			
 
				-    name: Build images and upload Trivy results
			
 
				-    runs-on: "ubuntu-22.04"
			
 
				-    steps:
			
 
				-      - name: Checkout code
			
 
				-        uses: actions/checkout@v3
			
 
				-
			
 
				-      - name: Installing dependencies
			
 
				-        run: |
			
 
				-          sudo apt-get update
			
 
				-          sudo apt-get install -y jq
			
 
				-
			
 
				-      - name: Checkout latest tag
			
 
				-        run: |
			
 
				-          latest=$(curl -s "https://api.github.com/repos/wazuh/wazuh-docker/releases/latest" | jq -r '.tag_name')
			
 
				-          git fetch origin
			
 
				-          git checkout $latest
			
 
				-
			
 
				-      - name: Build Wazuh images
			
 
				-        run: build-docker-images/build-images.sh
			
 
				-
			
 
				-      - name: Create enviroment variables
			
 
				-        run: |
			
 
				-          cat .env > $GITHUB_ENV
			
 
				-          echo "GITHUB_REF_NAME="${GITHUB_REF_NAME%/*} >> $GITHUB_ENV
			
 
				-
			
 
				-      - name: Run Trivy vulnerability scanner for Wazuh dashboard
			
 
				-        uses: aquasecurity/trivy-action@2a2157eb22c08c9a1fac99263430307b8d1bc7a2
			
 
				-        with:
			
 
				-          image-ref: 'wazuh/wazuh-dashboard:${{env.WAZUH_IMAGE_VERSION}}'
			
 
				-          format: 'template'
			
 
				-          template: '@/contrib/sarif.tpl'
			
 
				-          output: 'trivy-results-dashboard.sarif'
			
 
				-          severity: 'LOW,MEDIUM,CRITICAL,HIGH'
			
 
				-
			
 
				-      - name: Upload Trivy scan results to GitHub Security tab
			
 
				-        uses: github/codeql-action/upload-sarif@v2
			
 
				-        with:
			
 
				-          sarif_file: 'trivy-results-dashboard.sarif'
			
 
				-
			
 
				-      - name: Slack notification
			
 
				-        uses: rtCamp/action-slack-notify@v2
			
 
				-        env:
			
 
				-          SLACK_CHANNEL: cicd-monitoring
			
 
				-          SLACK_COLOR: ${{ job.status }} # or a specific color like 'good' or '#ff00ff'
			
 
				-          #SLACK_ICON: https://github.com/rtCamp.png?size=48
			
 
				-          SLACK_MESSAGE: "Check the results: https://github.com/wazuh/wazuh-docker/security/code-scanning?query=is%3Aopen+branch%3A${{ env.GITHUB_REF_NAME }}"
			
 
				-          SLACK_TITLE: Wazuh docker Trivy vulnerability scan finished.
			
 
				-          SLACK_USERNAME: github_actions
			
 
				-          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK }}
			
--- a/wazuh-docker/.github/workflows/trivy-indexer.yml
+++ b/wazuh-docker/.github/workflows/trivy-indexer.yml
@@ -1,76 +0,0 @@
 
				-# This workflow uses actions that are not certified by GitHub.
			
 
				-# They are provided by a third-party and are governed by
			
 
				-# separate terms of service, privacy policy, and support
			
 
				-# documentation.
			
 
				-
			
 
				-name: Trivy scan Wazuh indexer
			
 
				-
			
 
				-on:
			
 
				-  release:
			
 
				-    types:
			
 
				-    - published
			
 
				-  pull_request:
			
 
				-    branches:
			
 
				-      - main
			
 
				-  schedule:
			
 
				-    - cron: '34 2 * * 1'
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-permissions:
			
 
				-  contents: read
			
 
				-
			
 
				-jobs:
			
 
				-  build:
			
 
				-    permissions:
			
 
				-      contents: read # for actions/checkout to fetch code
			
 
				-      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
			
 
				-
			
 
				-    name: Build images and upload Trivy results
			
 
				-    runs-on: "ubuntu-22.04"
			
 
				-    steps:
			
 
				-      - name: Checkout code
			
 
				-        uses: actions/checkout@v3
			
 
				-
			
 
				-      - name: Installing dependencies
			
 
				-        run: |
			
 
				-          sudo apt-get update
			
 
				-          sudo apt-get install -y jq
			
 
				-
			
 
				-      - name: Checkout latest tag
			
 
				-        run: |
			
 
				-          latest=$(curl -s "https://api.github.com/repos/wazuh/wazuh-docker/releases/latest" | jq -r '.tag_name')
			
 
				-          git fetch origin
			
 
				-          git checkout $latest
			
 
				-
			
 
				-      - name: Build Wazuh images
			
 
				-        run: build-docker-images/build-images.sh
			
 
				-
			
 
				-      - name: Create enviroment variables
			
 
				-        run: |
			
 
				-          cat .env > $GITHUB_ENV
			
 
				-          echo "GITHUB_REF_NAME="${GITHUB_REF_NAME%/*} >> $GITHUB_ENV
			
 
				-
			
 
				-      - name: Run Trivy vulnerability scanner for Wazuh indexer
			
 
				-        uses: aquasecurity/trivy-action@2a2157eb22c08c9a1fac99263430307b8d1bc7a2
			
 
				-        with:
			
 
				-          image-ref: 'wazuh/wazuh-indexer:${{env.WAZUH_IMAGE_VERSION}}'
			
 
				-          format: 'template'
			
 
				-          template: '@/contrib/sarif.tpl'
			
 
				-          output: 'trivy-results-indexer.sarif'
			
 
				-          severity: 'LOW,MEDIUM,CRITICAL,HIGH'
			
 
				-
			
 
				-      - name: Upload Trivy scan results to GitHub Security tab
			
 
				-        uses: github/codeql-action/upload-sarif@v2
			
 
				-        with:
			
 
				-          sarif_file: 'trivy-results-indexer.sarif'
			
 
				-
			
 
				-      - name: Slack notification
			
 
				-        uses: rtCamp/action-slack-notify@v2
			
 
				-        env:
			
 
				-          SLACK_CHANNEL: cicd-monitoring
			
 
				-          SLACK_COLOR: ${{ job.status }} # or a specific color like 'good' or '#ff00ff'
			
 
				-          #SLACK_ICON: https://github.com/rtCamp.png?size=48
			
 
				-          SLACK_MESSAGE: "Check the results: https://github.com/wazuh/wazuh-docker/security/code-scanning?query=is%3Aopen+branch%3A${{ env.GITHUB_REF_NAME }}"
			
 
				-          SLACK_TITLE: Wazuh docker Trivy vulnerability scan finished.
			
 
				-          SLACK_USERNAME: github_actions
			
 
				-          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK }}
			
--- a/wazuh-docker/.github/workflows/trivy-manager.yml
+++ b/wazuh-docker/.github/workflows/trivy-manager.yml
@@ -1,76 +0,0 @@
 
				-# This workflow uses actions that are not certified by GitHub.
			
 
				-# They are provided by a third-party and are governed by
			
 
				-# separate terms of service, privacy policy, and support
			
 
				-# documentation.
			
 
				-
			
 
				-name: Trivy scan Wazuh manager
			
 
				-
			
 
				-on:
			
 
				-  release:
			
 
				-    types:
			
 
				-    - published
			
 
				-  pull_request:
			
 
				-    branches:
			
 
				-      - main
			
 
				-  schedule:
			
 
				-    - cron: '34 2 * * 1'
			
 
				-  workflow_dispatch:
			
 
				-
			
 
				-permissions:
			
 
				-  contents: read
			
 
				-
			
 
				-jobs:
			
 
				-  build:
			
 
				-    permissions:
			
 
				-      contents: read # for actions/checkout to fetch code
			
 
				-      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
			
 
				-
			
 
				-    name: Build images and upload Trivy results
			
 
				-    runs-on: "ubuntu-22.04"
			
 
				-    steps:
			
 
				-      - name: Checkout code
			
 
				-        uses: actions/checkout@v3
			
 
				-
			
 
				-      - name: Installing dependencies
			
 
				-        run: |
			
 
				-          sudo apt-get update
			
 
				-          sudo apt-get install -y jq
			
 
				-
			
 
				-      - name: Checkout latest tag
			
 
				-        run: |
			
 
				-          latest=$(curl -s "https://api.github.com/repos/wazuh/wazuh-docker/releases/latest" | jq -r '.tag_name')
			
 
				-          git fetch origin
			
 
				-          git checkout $latest
			
 
				-
			
 
				-      - name: Build Wazuh images
			
 
				-        run: build-docker-images/build-images.sh
			
 
				-
			
 
				-      - name: Create enviroment variables
			
 
				-        run: |
			
 
				-          cat .env > $GITHUB_ENV
			
 
				-          echo "GITHUB_REF_NAME="${GITHUB_REF_NAME%/*} >> $GITHUB_ENV
			
 
				-
			
 
				-      - name: Run Trivy vulnerability scanner for Wazuh manager
			
 
				-        uses: aquasecurity/trivy-action@2a2157eb22c08c9a1fac99263430307b8d1bc7a2
			
 
				-        with:
			
 
				-          image-ref: 'wazuh/wazuh-manager:${{env.WAZUH_IMAGE_VERSION}}'
			
 
				-          format: 'template'
			
 
				-          template: '@/contrib/sarif.tpl'
			
 
				-          output: 'trivy-results-manager.sarif'
			
 
				-          severity: 'LOW,MEDIUM,CRITICAL,HIGH'
			
 
				-
			
 
				-      - name: Upload Trivy scan results to GitHub Security tab
			
 
				-        uses: github/codeql-action/upload-sarif@v2
			
 
				-        with:
			
 
				-          sarif_file: 'trivy-results-manager.sarif'
			
 
				-
			
 
				-      - name: Slack notification
			
 
				-        uses: rtCamp/action-slack-notify@v2
			
 
				-        env:
			
 
				-          SLACK_CHANNEL: cicd-monitoring
			
 
				-          SLACK_COLOR: ${{ job.status }} # or a specific color like 'good' or '#ff00ff'
			
 
				-          #SLACK_ICON: https://github.com/rtCamp.png?size=48
			
 
				-          SLACK_MESSAGE: "Check the results: https://github.com/wazuh/wazuh-docker/security/code-scanning?query=is%3Aopen+branch%3A${{ env.GITHUB_REF_NAME }}"
			
 
				-          SLACK_TITLE: Wazuh docker Trivy vulnerability scan finished.
			
 
				-          SLACK_USERNAME: github_actions
			
 
				-          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK }}
			
--- a/wazuh-docker/.gitignore
+++ b/wazuh-docker/.gitignore
@@ -1,5 +0,0 @@
 
				-single-node/config/wazuh_indexer_ssl_certs/*.pem
			
 
				-single-node/config/wazuh_indexer_ssl_certs/*.key
			
 
				-multi-node/config/wazuh_indexer_ssl_certs/*.pem
			
 
				-multi-node/config/wazuh_indexer_ssl_certs/*.key
			
 
				-*.log
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/admin-key.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/admin-key.pem
@@ -0,0 +1,28 @@
 
				+-----BEGIN PRIVATE KEY-----
			
 
				+MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQCkux590+ruNmYd
			
 
				+iWYi8x2XTXBms1gTLthRqmxukIk8eoHjoXyGWarj+TtJ88jpWQ+P9KgeiSk3kVnJ
			
 
				+jEOt5OO7xLFM/LEWPqPk+YArmb4msUbWsO4Gh9+Xd7qlv0OFEcTDZ4kl/cli2T1f
			
 
				+podQlPGc3poxxF+B5ucePIto0E4Of1NWP5JtJy+wYm9vOhmxWxCKnHybNblLPdA2
			
 
				+SQSfjRin890/BJVDkN1ENoZ6D39NKssqVUtsC9g1O7ModLu/O2BzMBzheyQ+OzeT
			
 
				+HGZ1Tb7RXsGxi/NuMpS9xlFTjb891L2zr1knYxtWM96R+AMw/GHu9NpFHYX3vD24
			
 
				+NUByeMtTAgMBAAECggEAEOPMnwsc4dq7AplFWx0BMjOy7BzEUYcyj8EBCB8SqxxG
			
 
				+eA/lJCNKdcBml1EDDwXeJhzoJeVbUAK7qYITqF85CFYE9cdM4uJ+TGpWfWHwkKgJ
			
 
				+gta2OP4yayXQAdGH+ztUqNJTSg1o2hU7CTUaV6VF1pcuSR8AyeFiXgPIKXF+J1c1
			
 
				+ldhuvOoTPy2+q/9j7dwBNDzMNqRWugOpI8FOkbEPUXB9Gz3ebaSH7VeU0lw7o/Bi
			
 
				+frJe2vkXD16UaiztWA10OxvR6hPjYkpcBL74+31kLr9qYFQeP1/RwAY/C6mvjxZz
			
 
				+TPhiR/R3OAOlFt9jRMvBAIv/JPU9/GlI152nGNHiYQKBgQDRz/ZVhpciXvwUCZvI
			
 
				+vvi4vXJ8pT/GLOBTWPrrCFWeERV3Cbz+ZftDbvz5g2W6huuUDWSJITwSJbCEuO6k
			
 
				+M0eZ8JEFDLFVT3vu1s5u7xfZx8c9fLKuuRLFjEMKJ2iO0DyB9i5A7FArNUxkVVgU
			
 
				+swZu8j9i1SRDMdVrv7OMwnmKoQKBgQDI/pR/WXk+gw+dB9tQYodB8WUv4/UY9KIO
			
 
				+9GnhUeRxmSSX3DURMrJwQPJgj/yc5fGODLwf3feuHhxhoTWvbOj2vXFkwU8FC0rd
			
 
				+GsABOL4vGEZhwajOA2TqHZtQs070i+udgL/3SDVaXaNCSgRfLdvSU1zrWj44cVBI
			
 
				++U6Q8W5lcwKBgHn/PVHvp5OBvXt9NsscWA07gwV9JL77uxhbpdLiDr6RWnTUAcO+
			
 
				+0sIcGBaRU6aI6xQ0UV/3JjG7Ho+d5I0vkBOvsPNJtRdQ11RCLNiOR8UHCA/1oQQ9
			
 
				+cu/RJe4SihZ4eKZs2epAPkFRhXDVuxiWHEiIrVivbJ1xrZIwbpuLPRbhAoGAK4At
			
 
				+04Ih442qC2pv5O3uKC9+nubPXR9VE7eCUunOb2edq+BU++vlAraLvqprGeoKZZwL
			
 
				++zmnKWAK9HZXkCgaI4zMxemwmH7hLQllFN6bCsZONUocprnFVYYi30xvgi3mSKhc
			
 
				+48AVDAHIG8i5OYBLWzH/olBdtwmPPrv2bRhTtFECgYByKEHQHCIko7c6iI/ZFT1F
			
 
				+e3HeOmVznjI8cO7YSWIYGXnydvEOMTHpEf5xlYsm9/4BvCA453TzRZR70CmhiTXs
			
 
				+DdrhvMEQU0yJRMYfEMzX+aCD0ebb8BqhhBL1VfVw233n09z34MkLErBgEI+zqsTw
			
 
				+IndfOU0qstU7dEtO/mbfsg==
			
 
				+-----END PRIVATE KEY-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/admin.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/admin.pem
@@ -0,0 +1,20 @@
 
				+-----BEGIN CERTIFICATE-----
			
 
				+MIIDVzCCAj+gAwIBAgIULFbK3UZ6IzUQxV7OmO6HixZeHEYwDQYJKoZIhvcNAQEL
			
 
				+BQAwNTEOMAwGA1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApD
			
 
				+YWxpZm9ybmlhMB4XDTI2MDIxMjEwNTgwM1oXDTM2MDIxMDEwNTgwM1owUjELMAkG
			
 
				+A1UEBhMCVVMxEzARBgNVBAcMCkNhbGlmb3JuaWExDjAMBgNVBAoMBVdhenVoMQ4w
			
 
				+DAYDVQQLDAVXYXp1aDEOMAwGA1UEAwwFYWRtaW4wggEiMA0GCSqGSIb3DQEBAQUA
			
 
				+A4IBDwAwggEKAoIBAQCkux590+ruNmYdiWYi8x2XTXBms1gTLthRqmxukIk8eoHj
			
 
				+oXyGWarj+TtJ88jpWQ+P9KgeiSk3kVnJjEOt5OO7xLFM/LEWPqPk+YArmb4msUbW
			
 
				+sO4Gh9+Xd7qlv0OFEcTDZ4kl/cli2T1fpodQlPGc3poxxF+B5ucePIto0E4Of1NW
			
 
				+P5JtJy+wYm9vOhmxWxCKnHybNblLPdA2SQSfjRin890/BJVDkN1ENoZ6D39NKssq
			
 
				+VUtsC9g1O7ModLu/O2BzMBzheyQ+OzeTHGZ1Tb7RXsGxi/NuMpS9xlFTjb891L2z
			
 
				+r1knYxtWM96R+AMw/GHu9NpFHYX3vD24NUByeMtTAgMBAAGjQjBAMB0GA1UdDgQW
			
 
				+BBT/6YRR+qitrGWLCspCDN4YgEAOczAfBgNVHSMEGDAWgBRv3BT6rAx2EzaS4Ia5
			
 
				+p4vkW51juzANBgkqhkiG9w0BAQsFAAOCAQEAHnTkKTdpBsRJRpIAahhml9x+S1kD
			
 
				+irUoSOyIG4PrXTmiA0qmAeTowU5PwnPm3Q1L/O/B+t4/sqRnuhGzUvWktcC1zjtu
			
 
				+vgLczuEZxR3L2I9KbV8JNNenI5/a32kyEFlDvCrWmxmElqB68yIeYde4YZNRsSiR
			
 
				+Y5+u37DNR1bXK1JYYgTDyLsAzCgM7THF36BABgz5ct+hFxj5TTJN+acBe7kQX4Sb
			
 
				+IVIPKX/bpXe1O1t/Kfdt6VDeQwGbZLINMk1imzDQiMf23bqEWUGyRWVoF9jdfR7F
			
 
				+8+Tge8YUB+G90g6uaTohKzgY56/h97zZWVEE3VsMWWEXXQyXoMQDP2JjzQ==
			
 
				+-----END CERTIFICATE-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca-manager.key
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca-manager.key
@@ -0,0 +1,28 @@
 
				+-----BEGIN PRIVATE KEY-----
			
 
				+MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQDn8aUbvxKsmRQV
			
 
				+3cjAxmfeLkjX5udyGg4cD6s/fSLjgFdW3RnHgXW4KZofFMgWUusAsDTRVp9NOkGW
			
 
				+dRhSX4Q0vlS+t38Jm6PTxJvqkEGCWtCB2xVUQMeKMaL9FsDGbfEJOnoCbMyxQB29
			
 
				+yz1cP4K3uwBeU3wCobBnf6Ui/Uo0h/psUAryOh38s7RIG3eitzq31JEmH2Y3LPsN
			
 
				+MOE1xnHv+JrHGKnH9awCZAFhYpawSHVI2e9+N46tBFEi4QLV2VCBLPgWATGhkUVR
			
 
				+ZQieG+bUn6ivruQZqeZGeJ3R9GGHXfBAkMKFSp0VwCnLglhfhGeWas1GY7bYiAcT
			
 
				+UplUNflzAgMBAAECggEAY2D2DV1g8vLj2DqeuXpJJrlOHLOilxDy2rMb/KfxOujS
			
 
				+gzVYxlKBzdaFYqvUzzvX1QOqnccvmjdLwtuJAEJMswyZ4t1cYRF+sE2dQHNunhur
			
 
				+GvhzuxXGaT+7RhVpo5uXmwyjGkbjrU57b8aVE+FicLZ/AetjRv1gR/g5GTTNhpOr
			
 
				+qzaEnF7Q+BP6Zu8JmhpvwFeUzWEl43rMBp0bn1qkZgH5AY8lJhK0tCy+J9NsFXDH
			
 
				+tkOC3Pc3xiU4loUKwdMZy5JYI7xaSU6o2h8bTg/55DQtUwjTSc9ZuOKy2u2T+Ybn
			
 
				+nxHStcU1AWPNEOdVjJvKCa0Hz1iSjFShNGggPN3+AQKBgQD5IxrLI4fG0Mx8lxF0
			
 
				+vsEF+YZQVZk7U+13uThsDUu13DICcmdh1MyNf4LkjFY3727jrfR8DBtJof8R/+/4
			
 
				+ZZ1tiDdX7JdOiy0ej5gC30XUbBZUst1U55ajIppNNdWZHbziXwMu9A0D5qwN2dft
			
 
				+GQ0dJPrml2TKIwdX08FbgOJq0QKBgQDuVUuRnRHor5PnXTlp772E33833w6Gc4GY
			
 
				+nK0F5HKIJFjDxH/qi9BVJj1H0miGDqBqAqcU6xb5pyCueSv1zuwi4A0TonGi2oDe
			
 
				+LhvjWKAHI2mDxE+tqH8sTzlgPU0t32Rcvd/55esVjMrAS6Bw7Z6dZIlEzVVDBMo5
			
 
				+mHZb+Y9pAwKBgDRz5aI7OszrDQJ2M+CmgLEnVdX4D6jkBK0eO/jT28rQL19Agu+g
			
 
				+A+kOnZpMyaJBMNGSwFSVn/EiwDcj8XwUuM5kzXIfh8OrnbY/eTuxklwk3Za7icnk
			
 
				+cFysXlw/J1dzYV8vrdXm4A6gND0+Ti3HBnHKZWDDIx9DvLoLBTykqAbhAoGAQbL9
			
 
				+m+xijXQpH3RRaWSPJ9u8ZBh3FpUsuncmMyOgduseFQlMAcn86hwadHwKGDpb+h01
			
 
				+Fc0gjj2GAtKgTah26747nJgBH1WAhL7NLUS3CIC4i3xIQqTaOcq1FFSRu/2C2xX0
			
 
				+chzxSwV+treiSL8YJGccd/zqbgkZ/fqLVhtbbyUCgYBnfSX0Xpqzxd+WdWnSQq4c
			
 
				+A4zc8A4vZZHknm9GPAmUYYadEEwF6xb1AQfPOht68n94DxD3iG5hhNfUAx/cm7Ww
			
 
				+8eG/6OUai/u4DeY8ye2u2QhmhLLth489ylHNsRvGnNRYdrnHcYXpzvge8ITq8k/X
			
 
				+E5bVFxSabknmo8a+SIelbA==
			
 
				+-----END PRIVATE KEY-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca-manager.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca-manager.pem
@@ -0,0 +1,20 @@
 
				+-----BEGIN CERTIFICATE-----
			
 
				+MIIDSzCCAjOgAwIBAgIUX6UzxTYrydj8YKmmXS05ZeFb5FIwDQYJKoZIhvcNAQEL
			
 
				+BQAwNTEOMAwGA1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApD
			
 
				+YWxpZm9ybmlhMB4XDTI2MDIxMjEwNTgwM1oXDTM2MDIxMDEwNTgwM1owNTEOMAwG
			
 
				+A1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApDYWxpZm9ybmlh
			
 
				+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5/GlG78SrJkUFd3IwMZn
			
 
				+3i5I1+bnchoOHA+rP30i44BXVt0Zx4F1uCmaHxTIFlLrALA00VafTTpBlnUYUl+E
			
 
				+NL5Uvrd/CZuj08Sb6pBBglrQgdsVVEDHijGi/RbAxm3xCTp6AmzMsUAdvcs9XD+C
			
 
				+t7sAXlN8AqGwZ3+lIv1KNIf6bFAK8jod/LO0SBt3orc6t9SRJh9mNyz7DTDhNcZx
			
 
				+7/iaxxipx/WsAmQBYWKWsEh1SNnvfjeOrQRRIuEC1dlQgSz4FgExoZFFUWUInhvm
			
 
				+1J+or67kGanmRnid0fRhh13wQJDChUqdFcApy4JYX4RnlmrNRmO22IgHE1KZVDX5
			
 
				+cwIDAQABo1MwUTAdBgNVHQ4EFgQUb9wU+qwMdhM2kuCGuaeL5FudY7swHwYDVR0j
			
 
				+BBgwFoAUb9wU+qwMdhM2kuCGuaeL5FudY7swDwYDVR0TAQH/BAUwAwEB/zANBgkq
			
 
				+hkiG9w0BAQsFAAOCAQEAMY/83p2A2zLoqXPmbyjswEShB9qJae8EgVH4K54o3pAN
			
 
				+lrUL3E073lVngsxOvU8siMXjVLZWd0hi2lhsfHIw22M7O4FjINS7STwDmdBID610
			
 
				+5dz2NQJ5ipnWk4R4/Ex2vhZUOUK7PsMZe55PeMJ4irVNYInVwOUvMxRYYT7i8yfq
			
 
				+JgaCmL/XKbfv0qMlzW55a9a7UYVNvKYzjgsHncMdInkgWZ1NC6Hf7YpL9bwgF9pd
			
 
				+z/B8drsjIvdXF+cJ+zHHp3rWY6mOd2J+y4+9PpR9Z+OCQfTfUgLxUrnCZgoM9MEY
			
 
				+1N/IVMAvKcirxx+zwfKE+X/uArosROdFGTbzRmdKRg==
			
 
				+-----END CERTIFICATE-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca.key
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca.key
@@ -0,0 +1,28 @@
 
				+-----BEGIN PRIVATE KEY-----
			
 
				+MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQDn8aUbvxKsmRQV
			
 
				+3cjAxmfeLkjX5udyGg4cD6s/fSLjgFdW3RnHgXW4KZofFMgWUusAsDTRVp9NOkGW
			
 
				+dRhSX4Q0vlS+t38Jm6PTxJvqkEGCWtCB2xVUQMeKMaL9FsDGbfEJOnoCbMyxQB29
			
 
				+yz1cP4K3uwBeU3wCobBnf6Ui/Uo0h/psUAryOh38s7RIG3eitzq31JEmH2Y3LPsN
			
 
				+MOE1xnHv+JrHGKnH9awCZAFhYpawSHVI2e9+N46tBFEi4QLV2VCBLPgWATGhkUVR
			
 
				+ZQieG+bUn6ivruQZqeZGeJ3R9GGHXfBAkMKFSp0VwCnLglhfhGeWas1GY7bYiAcT
			
 
				+UplUNflzAgMBAAECggEAY2D2DV1g8vLj2DqeuXpJJrlOHLOilxDy2rMb/KfxOujS
			
 
				+gzVYxlKBzdaFYqvUzzvX1QOqnccvmjdLwtuJAEJMswyZ4t1cYRF+sE2dQHNunhur
			
 
				+GvhzuxXGaT+7RhVpo5uXmwyjGkbjrU57b8aVE+FicLZ/AetjRv1gR/g5GTTNhpOr
			
 
				+qzaEnF7Q+BP6Zu8JmhpvwFeUzWEl43rMBp0bn1qkZgH5AY8lJhK0tCy+J9NsFXDH
			
 
				+tkOC3Pc3xiU4loUKwdMZy5JYI7xaSU6o2h8bTg/55DQtUwjTSc9ZuOKy2u2T+Ybn
			
 
				+nxHStcU1AWPNEOdVjJvKCa0Hz1iSjFShNGggPN3+AQKBgQD5IxrLI4fG0Mx8lxF0
			
 
				+vsEF+YZQVZk7U+13uThsDUu13DICcmdh1MyNf4LkjFY3727jrfR8DBtJof8R/+/4
			
 
				+ZZ1tiDdX7JdOiy0ej5gC30XUbBZUst1U55ajIppNNdWZHbziXwMu9A0D5qwN2dft
			
 
				+GQ0dJPrml2TKIwdX08FbgOJq0QKBgQDuVUuRnRHor5PnXTlp772E33833w6Gc4GY
			
 
				+nK0F5HKIJFjDxH/qi9BVJj1H0miGDqBqAqcU6xb5pyCueSv1zuwi4A0TonGi2oDe
			
 
				+LhvjWKAHI2mDxE+tqH8sTzlgPU0t32Rcvd/55esVjMrAS6Bw7Z6dZIlEzVVDBMo5
			
 
				+mHZb+Y9pAwKBgDRz5aI7OszrDQJ2M+CmgLEnVdX4D6jkBK0eO/jT28rQL19Agu+g
			
 
				+A+kOnZpMyaJBMNGSwFSVn/EiwDcj8XwUuM5kzXIfh8OrnbY/eTuxklwk3Za7icnk
			
 
				+cFysXlw/J1dzYV8vrdXm4A6gND0+Ti3HBnHKZWDDIx9DvLoLBTykqAbhAoGAQbL9
			
 
				+m+xijXQpH3RRaWSPJ9u8ZBh3FpUsuncmMyOgduseFQlMAcn86hwadHwKGDpb+h01
			
 
				+Fc0gjj2GAtKgTah26747nJgBH1WAhL7NLUS3CIC4i3xIQqTaOcq1FFSRu/2C2xX0
			
 
				+chzxSwV+treiSL8YJGccd/zqbgkZ/fqLVhtbbyUCgYBnfSX0Xpqzxd+WdWnSQq4c
			
 
				+A4zc8A4vZZHknm9GPAmUYYadEEwF6xb1AQfPOht68n94DxD3iG5hhNfUAx/cm7Ww
			
 
				+8eG/6OUai/u4DeY8ye2u2QhmhLLth489ylHNsRvGnNRYdrnHcYXpzvge8ITq8k/X
			
 
				+E5bVFxSabknmo8a+SIelbA==
			
 
				+-----END PRIVATE KEY-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/root-ca.pem
@@ -0,0 +1,20 @@
 
				+-----BEGIN CERTIFICATE-----
			
 
				+MIIDSzCCAjOgAwIBAgIUX6UzxTYrydj8YKmmXS05ZeFb5FIwDQYJKoZIhvcNAQEL
			
 
				+BQAwNTEOMAwGA1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApD
			
 
				+YWxpZm9ybmlhMB4XDTI2MDIxMjEwNTgwM1oXDTM2MDIxMDEwNTgwM1owNTEOMAwG
			
 
				+A1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApDYWxpZm9ybmlh
			
 
				+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5/GlG78SrJkUFd3IwMZn
			
 
				+3i5I1+bnchoOHA+rP30i44BXVt0Zx4F1uCmaHxTIFlLrALA00VafTTpBlnUYUl+E
			
 
				+NL5Uvrd/CZuj08Sb6pBBglrQgdsVVEDHijGi/RbAxm3xCTp6AmzMsUAdvcs9XD+C
			
 
				+t7sAXlN8AqGwZ3+lIv1KNIf6bFAK8jod/LO0SBt3orc6t9SRJh9mNyz7DTDhNcZx
			
 
				+7/iaxxipx/WsAmQBYWKWsEh1SNnvfjeOrQRRIuEC1dlQgSz4FgExoZFFUWUInhvm
			
 
				+1J+or67kGanmRnid0fRhh13wQJDChUqdFcApy4JYX4RnlmrNRmO22IgHE1KZVDX5
			
 
				+cwIDAQABo1MwUTAdBgNVHQ4EFgQUb9wU+qwMdhM2kuCGuaeL5FudY7swHwYDVR0j
			
 
				+BBgwFoAUb9wU+qwMdhM2kuCGuaeL5FudY7swDwYDVR0TAQH/BAUwAwEB/zANBgkq
			
 
				+hkiG9w0BAQsFAAOCAQEAMY/83p2A2zLoqXPmbyjswEShB9qJae8EgVH4K54o3pAN
			
 
				+lrUL3E073lVngsxOvU8siMXjVLZWd0hi2lhsfHIw22M7O4FjINS7STwDmdBID610
			
 
				+5dz2NQJ5ipnWk4R4/Ex2vhZUOUK7PsMZe55PeMJ4irVNYInVwOUvMxRYYT7i8yfq
			
 
				+JgaCmL/XKbfv0qMlzW55a9a7UYVNvKYzjgsHncMdInkgWZ1NC6Hf7YpL9bwgF9pd
			
 
				+z/B8drsjIvdXF+cJ+zHHp3rWY6mOd2J+y4+9PpR9Z+OCQfTfUgLxUrnCZgoM9MEY
			
 
				+1N/IVMAvKcirxx+zwfKE+X/uArosROdFGTbzRmdKRg==
			
 
				+-----END CERTIFICATE-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.dashboard-key.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.dashboard-key.pem
@@ -0,0 +1,28 @@
 
				+-----BEGIN PRIVATE KEY-----
			
 
				+MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQDiYuHoFpJQu1+J
			
 
				++Di9Rk94azWptd5Oli38WDsTpiuIVeHsJCBxE814RQUKtG6gd/o4maLBtRCrJ+r2
			
 
				+ShCvK6Fdf2taM8xziaAd5xgW2NVN/m51eOCippJiDA8Y1POznBONSq7MONT98tNt
			
 
				+GssBotP8QoXnQJOrbh2tWc00WY15Vc7xWcPsPbwJ2t/cZUNHbpvxE0G8iPMn7ZAU
			
 
				+gk1DfbWWaZrNyGo2IcW3ffVQUhoAgnFkvbjFJFqauVP3LRHbRg5s+XDYrDonf57E
			
 
				+ST+KgMTO/EUshVd5pKiXGEc2kMGDX2AosfDSPP3YqBkAPnWk3GmEG/yMc82+qKu5
			
 
				+M49jRA0lAgMBAAECggEACwjVO6hkZIyXHfTilYQCOghfvgns8Ax56VbgakpeZm+c
			
 
				+aq1ht24Tq2arb3FXNkZWBMELiEDFgAVnra5ZtqNI/KZ9Td3aFVE1lyXweQydbDox
			
 
				+zOzU/8vGtTWJQ6Vj/r+YysZDhuJhePW6pt+R2l6P0dGCqibuC7Xhh6Jc683oC2xM
			
 
				+mrMGp/9tuXVKuatpcdpPqsuZ2AWTSdaYXVrcN4fD5f8ejO1UBSFBlOOCzMx2C47H
			
 
				+sUxkSsEIuwYG9D/XUI+OGZXaaSulR3S2ubfsZo/URB1PMMNN+tZ1hiqx+2joubs3
			
 
				+P2lyO5858/Bg5BaC2Gs9Ao1Z+DMNbXRNv7BLZ5V08QKBgQD9mPP5ai9FiNJ/3efY
			
 
				+mSEZgt6oXdJ6GZyhe+rGRq8byh4nRBDJngFmVON6FkzjQUv64nj9dG5dn+Eu+l79
			
 
				+LgGqabfUJu3IrjeW/z8EBaa8qIAuZKd8SfC4jotlEbCTfgsmfj8qCtH4IY9nDze0
			
 
				+BtZq3g9o98ZjVEudFYwlaVUJqwKBgQDkh+8z/JmkBEj8QTAKSHKzc6ZIbS9AXRZZ
			
 
				+aTYD0JIwUgwg9S3WotvwnqczVQG3Wr810DjfKIjUlaWHmhrLPHTGRPmdSROEI2dV
			
 
				+qdYhvTAZqFBbJo1/A36RObTxCq22bquIHvLeep931nPsoYLVtL6WYw4SyIbA/Y35
			
 
				+e5zHp2qUbwKBgQCVLpovWhjO5es2zzqpP4OqN0N2diLwMwriMDxvQXuXdHIClVbu
			
 
				+1CVspnlfA6ldcrcYsouMRib6qqfUc/LXK25Nan16rx/okxwelq7iVdS9XL5zDEE+
			
 
				+q1yRpUE5RovCaD50+YV83Pqh5lQuw1P4cqFGIrWcAU5Sdm84zEkyZOFimwKBgQCf
			
 
				+BghpwIiZHXI8NpBbV3aZcQxwsamDvELlDNVNakGP5kgSVwoCpWku0ve+PJTpJfiQ
			
 
				+Vch9YRN1+nwpFA85BWSs4ypfTI6MEKbDcV9UMvXZpMnl47nqfGACZomGgcvHetNZ
			
 
				+8U9HiUSWe2BHdUw5sYA93cfZQjii6s10oZPDSrhbeQKBgQDUP+/X7EtB+YQs6UXP
			
 
				++wQuhawvAJiuhIz32/WrwzsWPfB65xtq/L6E33l/UQC8otif2CW1iAYUKM9Vmkdz
			
 
				+DEEJjHipKpaZ11fnhIQVp+q8SNRhGyTycDJlaxxk/aR7Txdj+56qAesafQ48nW6Q
			
 
				+pRjpUOIsJ/zvC4NCkEZP0sjniw==
			
 
				+-----END PRIVATE KEY-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.dashboard.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.dashboard.pem
@@ -0,0 +1,22 @@
 
				+-----BEGIN CERTIFICATE-----
			
 
				+MIIDlTCCAn2gAwIBAgIULFbK3UZ6IzUQxV7OmO6HixZeHEkwDQYJKoZIhvcNAQEL
			
 
				+BQAwNTEOMAwGA1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApD
			
 
				+YWxpZm9ybmlhMB4XDTI2MDIxMjEwNTgwNFoXDTM2MDIxMDEwNTgwNFowXDELMAkG
			
 
				+A1UEBhMCVVMxEzARBgNVBAcMCkNhbGlmb3JuaWExDjAMBgNVBAoMBVdhenVoMQ4w
			
 
				+DAYDVQQLDAVXYXp1aDEYMBYGA1UEAwwPd2F6dWguZGFzaGJvYXJkMIIBIjANBgkq
			
 
				+hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4mLh6BaSULtfifg4vUZPeGs1qbXeTpYt
			
 
				+/Fg7E6YriFXh7CQgcRPNeEUFCrRuoHf6OJmiwbUQqyfq9koQryuhXX9rWjPMc4mg
			
 
				+HecYFtjVTf5udXjgoqaSYgwPGNTzs5wTjUquzDjU/fLTbRrLAaLT/EKF50CTq24d
			
 
				+rVnNNFmNeVXO8VnD7D28Cdrf3GVDR26b8RNBvIjzJ+2QFIJNQ321lmmazchqNiHF
			
 
				+t331UFIaAIJxZL24xSRamrlT9y0R20YObPlw2Kw6J3+exEk/ioDEzvxFLIVXeaSo
			
 
				+lxhHNpDBg19gKLHw0jz92KgZAD51pNxphBv8jHPNvqiruTOPY0QNJQIDAQABo3Yw
			
 
				+dDAfBgNVHSMEGDAWgBRv3BT6rAx2EzaS4Ia5p4vkW51juzAJBgNVHRMEAjAAMAsG
			
 
				+A1UdDwQEAwIE8DAaBgNVHREEEzARgg93YXp1aC5kYXNoYm9hcmQwHQYDVR0OBBYE
			
 
				+FFg7twssEPAIfjNzs+t1+qGf/7wUMA0GCSqGSIb3DQEBCwUAA4IBAQBdGj82dYej
			
 
				+iAzxyT3C387qy8/PugXFQYOmsSgdzdvfyqxsnc6IVlh0DTNEj/f6ortd0Wk04fku
			
 
				+ekm6nD3lYYjTBZo9NB/2vg2P7PFVMhT44hIRF3hA+40WyMso6Un3xr4moBjd3PyM
			
 
				+yj39vPwZnWvD6hOC5pAIz+QMCVlCz+TVCnhq7vpdfCb1kJOxmrXrjUZtYumdXnAY
			
 
				+2x4RfTlgRp3ePzOenknkpMgzXkkMf/ZXvxdoAouLW00bufulSX8WcnrOWbMKv5Lg
			
 
				+QBJhRnXRaJ+GCqBhTWxaigdWBtiMS6lxrIFfj5T7DvRibT1uQzXwnb1O1OoLi3Sn
			
 
				+TatH5kKvLje6
			
 
				+-----END CERTIFICATE-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.indexer-key.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.indexer-key.pem
@@ -0,0 +1,28 @@
 
				+-----BEGIN PRIVATE KEY-----
			
 
				+MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQC03QaMEhErjsjV
			
 
				+qsgJ5UYUgMwAR8tia0O4LdT5FvMtq7Aey40CH81gQ0yd8wkOIA+ZKr7TIzqVp9QS
			
 
				+epHDukfdIz3qoM8p9mR39KZByG1VYrxhP88TGadjdEfZTqkY8mXz9PSoECVnPR5i
			
 
				+gcjsg8IlqfgVkcOdmKwwCM0BsGakeJbu/gJwHE1Xhfi/eH+5XFK9kXaqzcZ61/9T
			
 
				+bAR7OSt3my1ug+F3dU17KDD2ySbMQ5EyVTlpg30i9fDaFM+/ZPxEOnWDrQIN6DXr
			
 
				+T0VkDmwBWn+8NppwLdJNnmlX4BLC+NClo8Sh9NhmMFZPb2IP2tdI2mGkuwswLeq4
			
 
				+HvYzqHxhAgMBAAECggEAFlgSBX776Q4wSJlbMkHFeSX6TfSQr12CFcBvxcAsldFW
			
 
				+pk9OYdtM854M2pyaW0jhtHH/9jSteaysugWzeWNLmonOjeyE+3GpstoiKhFZVImo
			
 
				+rTkFW545PEOy1qltoZvctZlnGlY4ULtPxCq1iGa0txN7ByslaBRi/WIw9Yr1+06G
			
 
				+yzG8h/i3vDivgpETU4/mytxionrPtEMDkoU+iT35nC0P8W42haU7Y66ilqnKdkoO
			
 
				+j4M28PUlqPRLTbkDzhDds+8hcn7W2qbmSyRuWQPdJmCI8HypV8AhEopAtA4Zdf+I
			
 
				+EXIdkJD34LcfnFfzGTJdcJB4q2ryx0Mb5+GdD4D/SwKBgQD6cfqF6suoTHeUYqME
			
 
				++8dNw08X1rPm6n5kcCDIkKDbqijGD2FR8Rw8cmFK3QAhyLJmBDQG+ablUo98WwTY
			
 
				+O05fvzvhUyfZXpEtrZIvVKd0/gbAf6tjxpbrYwOK0vErrVkEhZKRCSy4ryEsm1ev
			
 
				+ircIZ0bZvKpWrRGfZOB4B6esywKBgQC43/aMGibWn4IPti90HLMPzHQ/uFd15Gaz
			
 
				+S9zFzjeIKGyI50OSbCDIydrrsBJ/S9zGA6g91HwvJz39rFB3ykKp1lasCrH7qQoz
			
 
				+Yif5IX9GPdjqIF5SDATgijifXgBK2pevYnnsCcUPA8AG7I+9O/GoHnXxvMqdxY+B
			
 
				+0fR9yeuiAwKBgG2VWc0nA53Md7ZRwor3sClygDUqGOW9TTidZ3ra7cewGM8xA6Bb
			
 
				+I8O/OJsNQHWH36eLx0gWDNTi3y3GlcQXjx+OCaF6RUFzg4q9G+3h2LP0QvgP5Opv
			
 
				+hrHQTUh9LFG0M/MqjwsvPIZC+v0Nq7x/sb7XkcTMLKxoZgGcnitnDhMpAoGAYWDW
			
 
				+pIVB39q0z0HPTQGw76lpsgaPSvG7hsV2zFoKthVU1ee6l+2MdzabsXlUxOhYqZRT
			
 
				+kf3SS6QH6w5QdEh9RKg5jvUzOrOXQ+l31KnoOD9reicCh4T9LKihmpAQ51yseR0N
			
 
				+y156BaacBwmjzLE+YKdqyKIAt4nQRTkp5vfsvbECgYEA8biHP5np/CUwWlYEbZQa
			
 
				+vhHJax0l3hxMGTYT9K+GM8rlcEKxfsdWyDWOIUXrz8KKoixS1QTwqOqeAgPkTGRa
			
 
				+b28vgFV4s0SGXTVeGXspBL0wWBT9K9d59PhmNSDOyPlsr9PBcUorL0UPJSb2CMzf
			
 
				+uNOf6EKPJ3jBN9Djea2ui/o=
			
 
				+-----END PRIVATE KEY-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.indexer.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.indexer.pem
@@ -0,0 +1,22 @@
 
				+-----BEGIN CERTIFICATE-----
			
 
				+MIIDkTCCAnmgAwIBAgIULFbK3UZ6IzUQxV7OmO6HixZeHEcwDQYJKoZIhvcNAQEL
			
 
				+BQAwNTEOMAwGA1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApD
			
 
				+YWxpZm9ybmlhMB4XDTI2MDIxMjEwNTgwNFoXDTM2MDIxMDEwNTgwNFowWjELMAkG
			
 
				+A1UEBhMCVVMxEzARBgNVBAcMCkNhbGlmb3JuaWExDjAMBgNVBAoMBVdhenVoMQ4w
			
 
				+DAYDVQQLDAVXYXp1aDEWMBQGA1UEAwwNd2F6dWguaW5kZXhlcjCCASIwDQYJKoZI
			
 
				+hvcNAQEBBQADggEPADCCAQoCggEBALTdBowSESuOyNWqyAnlRhSAzABHy2JrQ7gt
			
 
				+1PkW8y2rsB7LjQIfzWBDTJ3zCQ4gD5kqvtMjOpWn1BJ6kcO6R90jPeqgzyn2ZHf0
			
 
				+pkHIbVVivGE/zxMZp2N0R9lOqRjyZfP09KgQJWc9HmKByOyDwiWp+BWRw52YrDAI
			
 
				+zQGwZqR4lu7+AnAcTVeF+L94f7lcUr2RdqrNxnrX/1NsBHs5K3ebLW6D4Xd1TXso
			
 
				+MPbJJsxDkTJVOWmDfSL18NoUz79k/EQ6dYOtAg3oNetPRWQObAFaf7w2mnAt0k2e
			
 
				+aVfgEsL40KWjxKH02GYwVk9vYg/a10jaYaS7CzAt6rge9jOofGECAwEAAaN0MHIw
			
 
				+HwYDVR0jBBgwFoAUb9wU+qwMdhM2kuCGuaeL5FudY7swCQYDVR0TBAIwADALBgNV
			
 
				+HQ8EBAMCBPAwGAYDVR0RBBEwD4INd2F6dWguaW5kZXhlcjAdBgNVHQ4EFgQUL2Gn
			
 
				+QSqH2NsnDES7MfEod84Syk8wDQYJKoZIhvcNAQELBQADggEBAMy4ijWm7m3zzEQL
			
 
				+2AGtguF9VjSh2voCqdleNYgkkaDfbRJxl5woS+e03hjTAgVcOJwtbxa8vC2Mcfwf
			
 
				+JxYAxZlSlHEJOpZDTC4/tTbbuccRTz9D1PqzgC9+w0dKknjFikqblQrhNRaSvnl8
			
 
				+oPNwsR9lrl/qWXSH7Mpt6ryIv+SMTVUddbAZe1d44HvEgei9sgB36fOp2P+Rebp6
			
 
				+MWdEOlmhqCOWFwwOhs1V3IgKkhOfveqFgguUX7iZAtUF1daW83/qDvCF2EXWFXsJ
			
 
				+/tg3o8aYpN/w6JcBA4qcxVRJODOPGR1YFWWK9+IPPyGzRsa/rdmt9AWkHEd2T1rw
			
 
				+qpRtfRw=
			
 
				+-----END CERTIFICATE-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.manager-key.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.manager-key.pem
@@ -0,0 +1,28 @@
 
				+-----BEGIN PRIVATE KEY-----
			
 
				+MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC3V1oiPYhG611G
			
 
				+erjzSFBAlg1y4XA7/reGBhFsJKTA+nQ0DVd95QFSDMyh09ZX+Qz3Cdsqqi4Nonrk
			
 
				+1Z4wZoBx2JVpofQOdkOsKTQWH4R+sOGK7Ad0nnYXQjs5QjvQ7V0RRVgsaP0CNFj6
			
 
				+hRgr9Oj0EGuVGDK7r+KXYyrOvAzcXYV2qrAzFpB3sP4FN6Lvlvb1/uYBceKxK7ol
			
 
				+3WoUD2pEKm+Fl8sUH17kY0crIqvEsZtx9Tj51iQwDu09GKQvxoFUdkpIRjedlTO4
			
 
				+HND4RP8hhJnwA6lmMZm4vNLhuwPef+VZFCN1Xyygy+tDQ4IB1wIloGinOtGjRnKP
			
 
				+P91ounqBAgMBAAECggEAANQqAeQd0NZBCG/HFMBzrmsPOgD3YSoMWdR+sSq0PPQU
			
 
				+4ORbjCPkHuMUbLnYqvKjAp3eigGVbjXZEN4/VhAsjfcw67aR9BvIQAe6psvzLSBv
			
 
				+EJHzEa2isoW331EjlJTyGgEifibmV+N1MIK4AoDbqbjGR7kBh7Qqlc0atS8H7toS
			
 
				+agtrBaNZfoIpZRhALVWpnRgeL+1+t5tNUsDt8k4zLpPIZQ1M1jJSwLqaGqGREIUT
			
 
				+p3m41mQ9NFneYSWLZmcI7L0YgLz9vpxdFQMgMpDfzP//sB4INMSzb34NphiNh281
			
 
				+vf3vp2FnQfhDiI8w7w6aFPMHn1/79YCIukuMlfF/LQKBgQDeRVijws6niJqug0nw
			
 
				+AU0XGRa/VCJj+GU0WtEUMVinwy+wFias807jLXuj9LGdTtAQRHkv9SUnOkna/SYk
			
 
				+taqP6wRFuYO9U4pphmsEfpL5Fl76zQASGAjx58vMjPQSsx/u8ixDZqWcb9TK+oBS
			
 
				+Lzz+OGZHZoVHX4NiM3NkZqt6lQKBgQDTKbAuhf7GtQ4vUB1sbhpkSSfal/tVJ8zZ
			
 
				+IlLOOrqoxbVs1lJSMfV3/y+BT1qizQlcCYOKwaednHwRlqR4LXkz7hKJxyZM1YGo
			
 
				+Ylaq0xJGGSV1jtc9m5RHuupr9EB2CowYyv3I4mN2YHlkRYs9bzH7rFIMKe7uu3Nd
			
 
				+agiiD5jxPQKBgQDLVSL2hHKqPkRK2x3bakVMmQ3/L4dabtSeZWoZD99rcRqB+nGd
			
 
				+C+Oh3WzbGzEUmBGsoAdBAQDg9uizZZvsPyhuCe/ZnRFQNElNqcLi1Ku9JGL1Cm5D
			
 
				+HyunqIX+dP+ez7Cp1W76pb9g8cj3etvC0yX35j5imP3Zwh2dyzWHpoi+VQKBgFH5
			
 
				+ox3MgwXdD+6qKWIItFIuXDxuN/HtC4dX3dGV1xTh+/aOlVK3dlXpSSXoCoWdF38V
			
 
				+am2ZlFqJf1jMpHjLHnxcdfHq0CGP2U/nLUIPws5XwMUMeN6/4Safl5XlMokguxZ8
			
 
				+51zvFjHEbhvRK6bj3gGX+hoixVEEkFq5aTSQ3Yz5AoGBAITv4dOTGTPPVTMCO5x6
			
 
				+6zjYinAND2+0OWSuy3qRkmv/ePBNr2YPJtVuwcqNS+gPSt9JirDtE418sXhMuA6T
			
 
				+HJcwlBPkMg3hrr4TZVD6S1+7qV4bcGpi1/wXNqSYG/EyeFMdrk0HUk1axeQqPUGz
			
 
				+mtHqQxmSyXTXnQQ8BlU/5mda
			
 
				+-----END PRIVATE KEY-----
			
--- a/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.manager.pem
+++ b/wazuh-docker/single-node/config/wazuh_indexer_ssl_certs/wazuh.manager.pem
@@ -0,0 +1,22 @@
 
				+-----BEGIN CERTIFICATE-----
			
 
				+MIIDkTCCAnmgAwIBAgIULFbK3UZ6IzUQxV7OmO6HixZeHEgwDQYJKoZIhvcNAQEL
			
 
				+BQAwNTEOMAwGA1UECwwFV2F6dWgxDjAMBgNVBAoMBVdhenVoMRMwEQYDVQQHDApD
			
 
				+YWxpZm9ybmlhMB4XDTI2MDIxMjEwNTgwNFoXDTM2MDIxMDEwNTgwNFowWjELMAkG
			
 
				+A1UEBhMCVVMxEzARBgNVBAcMCkNhbGlmb3JuaWExDjAMBgNVBAoMBVdhenVoMQ4w
			
 
				+DAYDVQQLDAVXYXp1aDEWMBQGA1UEAwwNd2F6dWgubWFuYWdlcjCCASIwDQYJKoZI
			
 
				+hvcNAQEBBQADggEPADCCAQoCggEBALdXWiI9iEbrXUZ6uPNIUECWDXLhcDv+t4YG
			
 
				+EWwkpMD6dDQNV33lAVIMzKHT1lf5DPcJ2yqqLg2ieuTVnjBmgHHYlWmh9A52Q6wp
			
 
				+NBYfhH6w4YrsB3SedhdCOzlCO9DtXRFFWCxo/QI0WPqFGCv06PQQa5UYMruv4pdj
			
 
				+Ks68DNxdhXaqsDMWkHew/gU3ou+W9vX+5gFx4rEruiXdahQPakQqb4WXyxQfXuRj
			
 
				+Rysiq8Sxm3H1OPnWJDAO7T0YpC/GgVR2SkhGN52VM7gc0PhE/yGEmfADqWYxmbi8
			
 
				+0uG7A95/5VkUI3VfLKDL60NDggHXAiWgaKc60aNGco8/3Wi6eoECAwEAAaN0MHIw
			
 
				+HwYDVR0jBBgwFoAUb9wU+qwMdhM2kuCGuaeL5FudY7swCQYDVR0TBAIwADALBgNV
			
 
				+HQ8EBAMCBPAwGAYDVR0RBBEwD4INd2F6dWgubWFuYWdlcjAdBgNVHQ4EFgQUI45X
			
 
				+qnT7ZcIKKm2SQTq+gKtsLX8wDQYJKoZIhvcNAQELBQADggEBAKGlp8dGRi7kf20b
			
 
				+Zud+mnM/mLJD6/AlOf9IcSbE/zWLiCsx8eLtNh/NIJoY6q4+guNhA9A+15MdA+NK
			
 
				+oTHNcu485K9duHCB+1eDojIqbenZRKpes9icCZem0tE39VLJxGcVrrAZflvA2F6Q
			
 
				+LSzrlr+UbywjH/2zvk86ez0g9eIqDmvJF7mOkICxD5Q6Dy30ePpSrGJTKhF1CG8m
			
 
				+0hfbdNesGfcKCxePfXNS2lVJPSwN6r/5J5tSFxHGzggKXO0UrRblzO6ViiWblavb
			
 
				+mcvvQ37V+E+WZ29vDwHGfK+ozl2DT2uNlvcr6iC4zlDUQ1nza8n2InuzuBp8deyT
			
 
				+i6/AQf8=
			
 
				+-----END CERTIFICATE-----