k3s-cluster/cluster/apps/monitoring/kube-prometheus-stack/helm-release.yaml

76 lines
2.1 KiB
YAML
Raw Normal View History

2023-04-15 05:19:04 +00:00
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
name: kube-prometheus-stack
namespace: monitoring
spec:
interval: 5m
chart:
spec:
chart: kube-prometheus-stack
version: 45.10.x
sourceRef:
kind: HelmRepository
name: prometheus-community-charts
namespace: flux-system
values:
2023-04-15 05:24:13 +00:00
namespaceOverride: "monitoring"
2023-04-15 05:19:04 +00:00
alertmanager:
ingress:
enabled: true
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production
traefik.ingress.kubernetes.io/router.entrypoints: websecure
traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd
hosts:
2023-04-15 05:27:27 +00:00
- &alertmanager-host alertmanager.${SECRET_NEW_DOMAIN}
paths:
- "/"
2023-04-15 05:19:04 +00:00
tls:
- hosts:
- *alertmanager-host
secretName: wildcard-main-tls
config:
receivers:
- name: gotify-bridge
webhook_configs:
- url: http://alertmanager-gotify-bridge.monitoring:8080/gotify_webhook
send_resolved: true
2023-04-15 05:19:04 +00:00
grafana:
ingress:
enabled: true
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production
traefik.ingress.kubernetes.io/router.entrypoints: websecure
hosts:
2023-04-15 05:27:27 +00:00
- &grafana-host grafana.${SECRET_NEW_DOMAIN}
path: "/"
2023-04-15 05:19:04 +00:00
tls:
- hosts:
- *grafana-host
secretName: wildcard-main-tls
# Enable this when the cluster expands to have more than a single node
kubeEtcd:
enabled: false
prometheus:
ingress:
enabled: true
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production
traefik.ingress.kubernetes.io/router.entrypoints: websecure
traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd
hosts:
2023-04-15 05:27:27 +00:00
- &prometheus-host metrics.${SECRET_NEW_DOMAIN}
paths:
- "/"
2023-04-15 05:19:04 +00:00
tls:
- hosts:
- *prometheus-host
secretName: wildcard-main-tls