Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support exposing prometheus_server externally #472

Closed
wants to merge 1 commit into from
Closed

Support exposing prometheus_server externally #472

wants to merge 1 commit into from

Conversation

bbezak
Copy link
Member

@bbezak bbezak commented Nov 13, 2023
edited
Loading

This avoids the need to use a proxy, or some other means, to connect to Prometheus. This is disabled by default and can be enabled by setting enable_prometheus_server_external to true.

Change-Id: Ia0af044ff436c2a204b357750a16ff49fcdfec45 (cherry picked from commit 37c2ab2)

Conflicts:
removed vars for 41a9402

@jovial @bbezak
Support exposing prometheus_server externally
26a6b4e 
This avoids the need to use a proxy, or some other means, to connect to
Prometheus. This is disabled by default and can be enabled by setting
enable_prometheus_server_external to true.

Change-Id: Ia0af044ff436c2a204b357750a16ff49fcdfec45
(cherry picked from commit 37c2ab2)
@bbezak bbezak requested a review from a team as a code owner November 13, 2023 11:31
markgoddard
markgoddard suggested changes Nov 13, 2023
View reviewed changes
ansible/roles/grafana/templates/prometheus.yaml.j2
@@ -4,6 +4,9 @@ datasources:
- name: Prometheus
type: prometheus
access: proxy
basicAuth: true
basicAuthPassword: "{{ prometheus_grafana_password }}"
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's not ideal adding a new password to an existing release - on first deployment this is going to change passwords.yml and require being committed to the kayobe config. It could easily be missed, then regenerated by someone else.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should definitely merge this as-is into Z+A, but perhaps for Yoga the basic auth part should be opt-in?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Antelope: #476
Zed: #477

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

making basic auth opt in makes this feature pretty complicated to backport and it is diverging from upstream.
I'm not seeing much value added backporting it to yoga in that form - especially that we're in the upgrade phase to antelope anyway

@bbezak bbezak closed this Nov 16, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@markgoddard markgoddard markgoddard requested changes

@mnasiadka mnasiadka mnasiadka approved these changes

@JohnGarbutt JohnGarbutt Awaiting requested review from JohnGarbutt

@jovial jovial Awaiting requested review from jovial

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@bbezak @markgoddard @mnasiadka @jovial