JankySolutions/infra
2
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages 12 Wiki Activity Actions

Add config for grafana

Browse source
This commit is contained in:
Finn 2024-07-27 12:11:56 -07:00
parent b2691bcec6
commit e342f1ade7
3 changed files with 64 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
k8s/operators/kube-prometheus/grafana-deployment-patch.yaml Normal file
View file

@ -0,0 +1,5 @@
- op: add
path: /spec/template/spec/containers/0/envFrom
value:
- secretRef:
name: grafana-secrets

47
k8s/operators/kube-prometheus/grafana.ini Normal file
View file

@ -0,0 +1,47 @@
[server]
domain = grafana.home.finn.io
root_url = https://%(domain)s/
[date_formats]
default_timezone = America/Los_Angeles
[analytics]
reporting_enabled = false
check_for_updates = false
[security]
strict_transport_security = true
strict_transport_security_max_age_seconds = 86400
strict_transport_security_subdomains = true
[auth]
disable_signout_menu = false
oauth_auto_login = true
[auth.generic_oauth]
auto_login = true
enabled = true
name = Janky Solutions Auth
client_id = $__env{OAUTH_CLIENT_ID}
client_secret = $__env{OAUTH_CLIENT_SECRET}
scopes = openid email profile offline_access roles
email_attribute_path = email
login_attribute_path = username
name_attribute_path = full_name
auth_url = https://auth.janky.solutions/realms/janky.solutions/protocol/openid-connect/auth
token_url = https://auth.janky.solutions/realms/janky.solutions/protocol/openid-connect/token
api_url = https://auth.janky.solutions/realms/janky.solutions/protocol/openid-connect/userinfo
role_attribute_path = contains(roles[*], 'admin') && 'Admin' || contains(roles[*], 'editor') && 'Editor' || 'Viewer'
allow_assign_grafana_admin = true
[external_image_storage]
provider = s3
[external_image_storage.s3]
endpoint = storage.home.finn.io
path_style_access = true
bucket = grafana
region = sea-01
;path =
access_key = BOx3M6NesE3HilaWg9PJ
secret_key = $__env{S3_SECRET_ACCESS_KEY}

12
k8s/operators/kube-prometheus/kustomization.yaml
View file

@ -34,3 +34,15 @@ patches:
target: target:
kind: ClusterRole kind: ClusterRole
name: prometheus-k8s name: prometheus-k8s
- path: grafana-deployment-patch.yaml
target:
kind: Deployment
name: grafana
secretGenerator:
- name: grafana-config
namespace: monitoring
behavior: replace
files:
- grafana.ini