88 lines
3.3 KiB
YAML
88 lines
3.3 KiB
YAML
---
|
|
# Default variables for the monitoring role
|
|
|
|
# Infrastructure
|
|
# Ansible instructions to deploy the infrastructure
|
|
# Copyright (C) 2019-2020 Christoph (Sheogorath) Kern
|
|
# Copyright (C) 2020 Saibotk
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation, version 3 of the License.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
# Install locations
|
|
monitoring_install_location: "/srv/monitoring"
|
|
monitoring_grafana_location: "{{ monitoring_install_location }}/grafana"
|
|
monitoring_influxdb_location: "{{ monitoring_install_location }}/influxdb"
|
|
|
|
# The certresolver for traefik to use on this domain
|
|
monitoring_traefik_certresolver: letsencrypt_http
|
|
|
|
# The domain that traefik should serve grafana on
|
|
monitoring_grafana_domain: "grafana.example.com"
|
|
|
|
# The domain traefik should serve influxdb on
|
|
monitoring_influxdb_domain: influxdb.example.com
|
|
|
|
# The grafana version
|
|
# renovate: depName=docker.io/grafana/grafana
|
|
monitoring_grafana_version: 9.4.3
|
|
|
|
# The influxdb version
|
|
# renovate: depName=docker.io/library/influxdb
|
|
monitoring_influxdb_version: 1.8.10
|
|
|
|
# The influxdb/grafana image tag
|
|
monitoring_influxdb_image_version: "{{ monitoring_influxdb_version }}"
|
|
monitoring_grafana_image_version: "{{ monitoring_grafana_version }}"
|
|
|
|
# Additional plugins, that should be installed (see https://grafana.com/docs/grafana/latest/installation/docker/)
|
|
monitoring_grafana_plugins: []
|
|
monitoring_grafana_renderer_enabled: true
|
|
|
|
# OAuth settings for grafana
|
|
monitoring_grafana_oauth:
|
|
enabled: false
|
|
name: "OAuth"
|
|
allow_sign_up: false
|
|
signout_url: "https://auth.example.com/auth/realms/sso/protocol/openid-connect/logout"
|
|
auth_url: "https://auth.example.com/auth/realms/sso/protocol/openid-connect/auth"
|
|
token_url: "https://auth.example.com/auth/realms/sso/protocol/openid-connect/token"
|
|
api_url: "https://auth.example.com/auth/realms/sso/protocol/openid-connect/userinfo"
|
|
client_id: "grafana"
|
|
client_secret: "something-secret123"
|
|
|
|
# Additional feature toggles to enable (See https://grafana.com/docs/grafana/latest/administration/configuration/#feature_toggles)
|
|
monitoring_grafana_feature_toggles: []
|
|
|
|
# The influxdb admin credentials that should be created
|
|
monitoring_influxdb_admin_username: "admin"
|
|
monitoring_influxdb_admin_password: "{{ lookup('passwordstore', monitoring_influxdb_domain + '/db-admin create=true length=42') }}"
|
|
|
|
# The influxdb databases that should be created and their policies
|
|
monitoring_influxdb_databases:
|
|
- name: "telegraf"
|
|
policies:
|
|
- name: autogen
|
|
duration: 30d
|
|
replication: 1
|
|
default: "true"
|
|
- name: logs
|
|
duration: 14d
|
|
replication: 1
|
|
|
|
# Other influxdb users, that should be created
|
|
monitoring_influxdb_users:
|
|
- username: "telegraf"
|
|
password: "{{ lookup('passwordstore', monitoring_influxdb_domain + '/db create=true length=42') }}"
|
|
grants:
|
|
- database: "telegraf"
|
|
privilege: "ALL"
|