diff options
| author | Christian Pointner <equinox@spreadspace.org> | 2023-12-03 05:23:28 +0100 |
|---|---|---|
| committer | Christian Pointner <equinox@spreadspace.org> | 2023-12-03 05:23:28 +0100 |
| commit | 73d220d72d491fff4e8f9206491af6bb2ca5a056 (patch) | |
| tree | f1ff9517d69d1182c01309a385aa2a7bc0f999c2 /inventory | |
| parent | fixup! ch-http-proxy: acutally enable the nftables role for this host (diff) | |
add whawty-nginx-sso to prometheus monitoring
Diffstat (limited to 'inventory')
| -rw-r--r-- | inventory/group_vars/promzone-chaos-at-home/vars.yml | 1 | ||||
| -rw-r--r-- | inventory/host_vars/ch-http-proxy.yml | 25 | ||||
| -rw-r--r-- | inventory/host_vars/ch-mon.yml | 6 | ||||
| -rw-r--r-- | inventory/hosts.ini | 1 |
4 files changed, 33 insertions, 0 deletions
diff --git a/inventory/group_vars/promzone-chaos-at-home/vars.yml b/inventory/group_vars/promzone-chaos-at-home/vars.yml index 430fbdd5..47ee79aa 100644 --- a/inventory/group_vars/promzone-chaos-at-home/vars.yml +++ b/inventory/group_vars/promzone-chaos-at-home/vars.yml @@ -33,6 +33,7 @@ prometheus_server_jobs: - smokeping - bind - standalone-kubelet + - whawty-nginx-sso prometheus_zone_name: chaos@home diff --git a/inventory/host_vars/ch-http-proxy.yml b/inventory/host_vars/ch-http-proxy.yml index d26259b9..fc17187e 100644 --- a/inventory/host_vars/ch-http-proxy.yml +++ b/inventory/host_vars/ch-http-proxy.yml @@ -33,9 +33,27 @@ network: - *_network_primary_ +ntp_variant: systemd-timesyncd + + acme_directory_server: "{{ acme_directory_server_le_live_v2 }}" +spreadspace_apt_repo_components: + - main + - prometheus + +prometheus_job_multitarget_blackbox__probe: + ch-mon: + - instance: "ssh-{{ inventory_hostname }}" + target: "{{ network_zones.svc.prefix | ansible.utils.ipaddr(network_zones.svc.offsets[inventory_hostname]) | ansible.utils.ipaddr('address') }}:{{ ansible_port | default(22) }}" + module: ssh_banner + - instance: "https-login.chaos-at-home.org" + target: "https://{{ network_services.http.addr }}/login" + module: "http_tls_2xx" + hostname: "login.chaos-at-home.org" + + whawty_nginx_sso_backends: chaos-at-home: port: 1234 @@ -71,5 +89,12 @@ whawty_nginx_sso_logins: title: "chaoSSO login" revocations: tokens: "{{ vault_whawty_nginx_sso_sync_tokens['chaos-at-home'] | dict2items | map(attribute='value') }}" + prometheus: + listen: 127.0.0.1:1235 whawty_nginx_sso_login_static_credentials__chaos-at-home: "{{ vault_whawty_nginx_sso_login_static_credentials['chaos-at-home'] }}" + +prometheus_job_multitarget_whawty_nginx_sso: + ch-mon: + - instance: "whawty-nginx-sso-{{ inventory_hostname }}-chaos-at-home" + instance_name: chaos-at-home diff --git a/inventory/host_vars/ch-mon.yml b/inventory/host_vars/ch-mon.yml index d7cb9aaa..63bb7cb6 100644 --- a/inventory/host_vars/ch-mon.yml +++ b/inventory/host_vars/ch-mon.yml @@ -93,6 +93,12 @@ whawty_nginx_sso_auths: server-name: "login.chaos-at-home.org" web: listen: 127.0.0.1:1234 + prometheus: {} + +prometheus_job_multitarget_whawty_nginx_sso: + ch-mon: + - instance: "whawty-nginx-sso-{{ inventory_hostname }}-chaos-at-home" + instance_name: chaos-at-home prometheus_server_storage: diff --git a/inventory/hosts.ini b/inventory/hosts.ini index 0db902a0..be63066b 100644 --- a/inventory/hosts.ini +++ b/inventory/hosts.ini @@ -480,6 +480,7 @@ ch-atlas ch-pan ch-mimas ch-iot +ch-http-proxy [promzone-chaos-at-home:children] chaos-at-home-ap chaos-at-home-ups |