diff options
author | Christian Pointner <equinox@spreadspace.org> | 2023-12-03 05:23:28 +0100 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2023-12-03 05:23:28 +0100 |
commit | 73d220d72d491fff4e8f9206491af6bb2ca5a056 (patch) | |
tree | f1ff9517d69d1182c01309a385aa2a7bc0f999c2 /inventory/host_vars/ch-http-proxy.yml | |
parent | fixup! ch-http-proxy: acutally enable the nftables role for this host (diff) |
add whawty-nginx-sso to prometheus monitoring
Diffstat (limited to 'inventory/host_vars/ch-http-proxy.yml')
-rw-r--r-- | inventory/host_vars/ch-http-proxy.yml | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/inventory/host_vars/ch-http-proxy.yml b/inventory/host_vars/ch-http-proxy.yml index d26259b9..fc17187e 100644 --- a/inventory/host_vars/ch-http-proxy.yml +++ b/inventory/host_vars/ch-http-proxy.yml @@ -33,9 +33,27 @@ network: - *_network_primary_ +ntp_variant: systemd-timesyncd + + acme_directory_server: "{{ acme_directory_server_le_live_v2 }}" +spreadspace_apt_repo_components: + - main + - prometheus + +prometheus_job_multitarget_blackbox__probe: + ch-mon: + - instance: "ssh-{{ inventory_hostname }}" + target: "{{ network_zones.svc.prefix | ansible.utils.ipaddr(network_zones.svc.offsets[inventory_hostname]) | ansible.utils.ipaddr('address') }}:{{ ansible_port | default(22) }}" + module: ssh_banner + - instance: "https-login.chaos-at-home.org" + target: "https://{{ network_services.http.addr }}/login" + module: "http_tls_2xx" + hostname: "login.chaos-at-home.org" + + whawty_nginx_sso_backends: chaos-at-home: port: 1234 @@ -71,5 +89,12 @@ whawty_nginx_sso_logins: title: "chaoSSO login" revocations: tokens: "{{ vault_whawty_nginx_sso_sync_tokens['chaos-at-home'] | dict2items | map(attribute='value') }}" + prometheus: + listen: 127.0.0.1:1235 whawty_nginx_sso_login_static_credentials__chaos-at-home: "{{ vault_whawty_nginx_sso_login_static_credentials['chaos-at-home'] }}" + +prometheus_job_multitarget_whawty_nginx_sso: + ch-mon: + - instance: "whawty-nginx-sso-{{ inventory_hostname }}-chaos-at-home" + instance_name: chaos-at-home |