From 3f131d44a49d088fd08632a7be0123685f7cebb6 Mon Sep 17 00:00:00 2001
From: edvancecn <34744477+edvancecn@users.noreply.github.com>
Date: Wed, 27 Dec 2017 11:20:23 +0800
Subject: [PATCH] Add Aqua Container Security Platform

---
 templates/aqua/0/README.md           | 13 +++++++++++++
 templates/aqua/0/docker-compose.yml  | 18 ++++++++++++++++++
 templates/aqua/0/rancher-compose.yml | 12 ++++++++++++
 templates/aqua/catalogIcon-aqua.svg  |  1 +
 templates/aqua/config.yml            |  5 +++++
 5 files changed, 49 insertions(+)
 create mode 100644 templates/aqua/0/README.md
 create mode 100644 templates/aqua/0/docker-compose.yml
 create mode 100644 templates/aqua/0/rancher-compose.yml
 create mode 100644 templates/aqua/catalogIcon-aqua.svg
 create mode 100644 templates/aqua/config.yml
diff --git a/templates/aqua/0/README.md b/templates/aqua/0/README.md
new file mode 100644
index 0000000..0530088
--- /dev/null
+++ b/templates/aqua/0/README.md
@@ -0,0 +1,13 @@
+# Aqua
+Aqua’s comprehensive, purpose-built platform for container security provides full visibility and control over containerized environments, with tight runtime security controls and intrusion prevention capabilities, at any scale. The platform provides programmatic access to all its functions through an API.
+#### Features
+- **Continuous Image Assurance:** Scan images for vulnerabilities and malicious behavior, enforce image integrity and permissions from dev to production.
+- **Runtime Protection:** Gain real-time visibility into container activity, enforce policies, and detect and prevent configuration errors, exploits and attacks.
+- **Docker Security:** Scalable security controls for Docker environments that provide optimal, contextualized hardening and runtime protection.of the entire stack.
+- **Network Nano-Segmentation:** Lock down container network activity to permit only legitimate connections in the application context, limiting the "blast radius" in case of an attack.
+- **User Access Control:** Fine-grained access control that enforces role-based access privileges at the container level.with full end-user accountability.
+- **Auditing & Compliance:** Track and audit events in your containerized applications, with real-time logging of granular event data and SIEM integration.
+#### Request a Trial
+For Hong Kong and Singapore, please contact <a style="font-weight:bold" href="mailto:support@edvancesecurity.com">support@edvancesecurity.com</a></br>
+For China, please contact <a style="font-weight:bold" href="mailto:chinasupport@edvancesecurity.com">chinasupport@edvancesecurity.com</a></br>
+For other region, please contact <a style="font-weight:bold" href="mailto:contact@aquasec.com">contact@aquasec.com</a>
diff --git a/templates/aqua/0/docker-compose.yml b/templates/aqua/0/docker-compose.yml
new file mode 100644
index 0000000..e6bb5a7
--- /dev/null
+++ b/templates/aqua/0/docker-compose.yml
@@ -0,0 +1,18 @@
+version: '2'
+services:
+  aqua-csp-service:
+    image: aquasec/csp:2.6.3
+    hostname: aqua-csp
+    environment:
+      BATCH_INSTALL_ENFORCE_MODE: n
+      BATCH_INSTALL_GATEWAY: csp
+      BATCH_INSTALL_NAME: default
+      BATCH_INSTALL_TOKEN: aqua-csp
+      SCALOCK_GATEWAY_NAME: csp
+    volumes:
+    - /var/run/docker.sock:/var/run/docker.sock
+    - /tmp/aqua-data:/var/lib/postgresql/data
+    ports:
+    - ${console_port}:8080/tcp
+    - 3622:3622/tcp
+    user: root
diff --git a/templates/aqua/0/rancher-compose.yml b/templates/aqua/0/rancher-compose.yml
new file mode 100644
index 0000000..ee780ac
--- /dev/null
+++ b/templates/aqua/0/rancher-compose.yml
@@ -0,0 +1,12 @@
+.catalog:
+  name: "aqua"
+  version: "2.6.3"
+  description: "aqua csp 2.6.3"
+  minimum_rancher_version: v1.1.0
+  questions:
+    - variable: console_port
+      description: "Port of the management console"
+      label: "Console Port"
+      type: "int"
+      required: true
+      default: "9090"
diff --git a/templates/aqua/catalogIcon-aqua.svg b/templates/aqua/catalogIcon-aqua.svg
new file mode 100644
index 0000000..f6cf1cb
--- /dev/null
+++ b/templates/aqua/catalogIcon-aqua.svg
@@ -0,0 +1 @@
+<svg id="_02" data-name="02" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 452 138"><defs><style>.cls-1{fill:#f1df36;}.cls-2{fill:#faaf42;}.cls-3{fill:#9ad7ec;}.cls-4{fill:#08b1d5;}.cls-5{fill:#f69421;}.cls-6{fill:#1180c4;}.cls-7{fill:#464547;}</style></defs><title>logo_aqua</title><polygon class="cls-1" points="70.65 1 35.84 35 105.45 35 105.45 1 70.65 1"/><polygon class="cls-2" points="105.45 103 140.25 69 140.25 35 105.45 35 105.45 103"/><polygon class="cls-3" points="35.84 103 35.84 137 70.65 137 105.45 103 35.84 103"/><polygon class="cls-4" points="1.05 69 1.05 103 35.84 103 35.84 35 1.05 69"/><rect class="cls-5" x="105.45" y="1" width="34.8" height="34"/><rect class="cls-6" x="1.05" y="103" width="34.8" height="34"/><path class="cls-7" d="M225,32.45A25.86,25.86,0,0,0,215.22,28a59.53,59.53,0,0,0-12.93-1.21A70,70,0,0,0,189.54,28c-4.24.79-7.54,1.52-9.82,2.18l-1.08.31v15h2.52l0.28-.12a65.57,65.57,0,0,1,11.17-3.59,45.5,45.5,0,0,1,9.61-1.23A47.4,47.4,0,0,1,209,41a12.9,12.9,0,0,1,5.15,1.78,8.09,8.09,0,0,1,3.07,3.44,14.35,14.35,0,0,1,1.14,6.25v0.92c-5.91.35-11.49,0.86-16.62,1.52a51.69,51.69,0,0,0-14.84,4,23.27,23.27,0,0,0-10.73,9,26,26,0,0,0-3.4,13.6,26.31,26.31,0,0,0,1.86,9.81,23.78,23.78,0,0,0,5,7.87,23.46,23.46,0,0,0,16.65,6.87,31.87,31.87,0,0,0,8.91-1,38,38,0,0,0,6.5-2.69,29.78,29.78,0,0,0,5.1-3.32l1.56-1.23v6.2h15.14V52.94a32.05,32.05,0,0,0-2.06-12.13A19.67,19.67,0,0,0,225,32.45ZM218.32,84a44,44,0,0,1-8,5.5,20.44,20.44,0,0,1-9.75,2.32c-4.1,0-7.21-.94-9.25-2.79s-3-4.56-3-8.3c0-3.29.89-5.75,2.73-7.53A18.22,18.22,0,0,1,198.5,69,58.31,58.31,0,0,1,209,67.13c3.59-.37,6.72-0.68,9.35-0.92V84Zm73.45-53.16a40.8,40.8,0,0,0-6.95-3,33.78,33.78,0,0,0-10.13-1.37,28.89,28.89,0,0,0-12.26,2.74A29.53,29.53,0,0,0,252.33,37a39,39,0,0,0-7.07,12.52,50.69,50.69,0,0,0-2.65,17c0,12.05,2.57,21.63,7.63,28.46a24.78,24.78,0,0,0,20.88,10.51A29.1,29.1,0,0,0,283,103.12a37.47,37.47,0,0,0,8.28-5.21v32.91h15.21V28.52h-14.1Zm-0.52,52.82a35,35,0,0,1-8.08,5.1,22.6,22.6,0,0,1-9.38,2.08c-5.33,0-9.14-2-11.64-6.13-2.61-4.31-3.94-10.63-3.94-18.8,0-8.33,1.65-14.76,4.9-19.1s7.64-6.35,13.61-6.35a30.68,30.68,0,0,1,7.43.87A39.15,39.15,0,0,1,291.25,44V83.69Zm74.16-.19A42.28,42.28,0,0,1,357,89.07a20,20,0,0,1-8.88,2.38,15.39,15.39,0,0,1-6.69-1.14A7.82,7.82,0,0,1,338,86.86a17.3,17.3,0,0,1-1.75-6.13,88,88,0,0,1-.41-9.41V28.52H320.6V77.1A41.14,41.14,0,0,0,322.4,90a24.82,24.82,0,0,0,5.16,9,20.29,20.29,0,0,0,7.89,5.32,27,27,0,0,0,9.45,1.65,26.25,26.25,0,0,0,12-2.73,50.21,50.21,0,0,0,8.54-5.63v6.34h15.21V28.52H365.41v55Zm83.48-42.68a19.67,19.67,0,0,0-6.4-8.36A25.86,25.86,0,0,0,432.7,28a59.53,59.53,0,0,0-12.93-1.21A70,70,0,0,0,407,28c-4.24.79-7.54,1.52-9.82,2.18l-1.08.31v15h2.52l0.28-.12a65.57,65.57,0,0,1,11.17-3.59,45.5,45.5,0,0,1,9.61-1.23,47.4,47.4,0,0,1,6.74.47,12.9,12.9,0,0,1,5.15,1.78,8.09,8.09,0,0,1,3.07,3.44,14.35,14.35,0,0,1,1.14,6.25v0.92c-5.91.35-11.49,0.86-16.62,1.52a51.69,51.69,0,0,0-14.84,4,23.27,23.27,0,0,0-10.73,9,26,26,0,0,0-3.4,13.6,26.31,26.31,0,0,0,1.86,9.81,23.78,23.78,0,0,0,5,7.87,23.46,23.46,0,0,0,16.65,6.87,31.87,31.87,0,0,0,8.91-1,38,38,0,0,0,6.5-2.69,29.78,29.78,0,0,0,5.1-3.32l1.56-1.23v6.2H451V52.94A32.05,32.05,0,0,0,448.89,40.81ZM435.81,84a44,44,0,0,1-8,5.5,20.44,20.44,0,0,1-9.75,2.32c-4.1,0-7.21-.94-9.25-2.79s-3-4.56-3-8.3c0-3.29.89-5.75,2.73-7.53A18.22,18.22,0,0,1,416,69a58.31,58.31,0,0,1,10.47-1.86c3.59-.37,6.72-0.68,9.35-0.92V84Z"/></svg>
\ No newline at end of file
diff --git a/templates/aqua/config.yml b/templates/aqua/config.yml
new file mode 100644
index 0000000..57fa6cb
--- /dev/null
+++ b/templates/aqua/config.yml
@@ -0,0 +1,5 @@
+name: Aqua
+description: |
+  Aqua Container Security Platform
+version: 2.6.3
+category: Security
