nps.stacks.crowdsec.enable

Whether to enable crowdsec.

Type: boolean

Default: false

Example: true

Declared by:

nps.stacks.crowdsec.enableGrafanaDashboard

Whether to enable Grafana Dashboard.

Type: boolean

Default: false

Example: true

Declared by:

nps.stacks.crowdsec.enablePrometheusExport

Whether to enable Prometheus Export.

Type: boolean

Default: false

Example: true

Declared by:

nps.stacks.crowdsec.acquisSettings

Acquisitions settings for Crowdsec. Each attribute set value will be mapped to an acquis configuration and mounted into the /etc/crowdsec/acquis.d directory.

See https://docs.crowdsec.net/docs/next/log_processor/data_sources/intro for all available options.

Type: attribute set of (YAML 1.1 value)

Default: { }

Declared by:

nps.stacks.crowdsec.acquisSettings.<name>.labels

A map of labels to add to the event. The type label is mandatory, and used by the Security Engine to choose which parser to use.

See https://docs.crowdsec.net/docs/next/log_processor/data_sources/intro#labels

Type: YAML 1.1 value

Default: { }

Declared by:

nps.stacks.crowdsec.acquisSettings.<name>.labels.type

This option has no description.

Type: string

Declared by:

nps.stacks.crowdsec.acquisSettings.<name>.log_level

Log level to use in the datasource

Type: string

Default: "info"

Declared by:

nps.stacks.crowdsec.acquisSettings.<name>.source

Which type of datasource to use.

Type: string

Example: "docker"

Declared by:

nps.stacks.crowdsec.collections

Collections to install. Will be passed as the COLLECTIONS environment variable.

See https://app.crowdsec.net/hub/collections

Type: strings concatenated with " "

Default: ""

Example: "LePresidente/adguardhome crowdsecurity/aws-console"

Declared by:

nps.stacks.crowdsec.containers.crowdsec

Alias of services.podman.containers.crowdsec.

Type: submodule

Declared by:

nps.stacks.crowdsec.extraEnv

Extra environment variables to set for the container. Variables can be either set directly or sourced from a file (e.g. for secrets).

See https://github.com/crowdsecurity/crowdsec/blob/master/docker/README.md#environment-variables

Type: attribute set of (null or boolean or signed integer or string or absolute path or (submodule))

Default: { }

Example:

{
  FOO = "bar";
  SOME_SECRET = {
    fromFile = "/run/secrets/secret_name";
  };
}

Declared by:

nps.stacks.crowdsec.settings

Configuration settings for Crowdsec. Will be provided as the config.yaml.local file.

See https://docs.crowdsec.net/docs/configuration/crowdsec_configuration/

Type: YAML 1.1 value

Default: { }

Declared by:

nps.stacks.crowdsec.useSocketProxy

Whether to access the Podman socket through the read-only proxy for the crowdsec stack. Will be enabled by default if the ‘docker-socket-proxy’ stack is enabled.

Type: boolean

Default: config.nps.stacks.docker-socket-proxy.enable

Declared by: