SeanOMik
/
k3s-cluster
1
0
Fork 0
Code Issues 2 Pull Requests 33 Packages Projects Releases Wiki Activity

fix(grafana): Give GrafanaAdmin from OAuth2 groups, include kube-prometheus-stack dashbaords

This commit is contained in:
SeanOMik 2023-10-20 20:42:21 -04:00
parent 47d544c10f
commit c46536467f
Signed by: SeanOMik
GPG Key ID: 568F326C7EB33ACB
2 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
cluster/apps/monitoring/grafana/helm-release.yaml
View File

@ -47,6 +47,10 @@ spec:
auth_url: https://auth.${SECRET_NEW_DOMAIN}/application/o/authorize/ auth_url: https://auth.${SECRET_NEW_DOMAIN}/application/o/authorize/
token_url: https://auth.${SECRET_NEW_DOMAIN}/application/o/token/ token_url: https://auth.${SECRET_NEW_DOMAIN}/application/o/token/
api_url: https://auth.${SECRET_NEW_DOMAIN}/application/o/userinfo/ api_url: https://auth.${SECRET_NEW_DOMAIN}/application/o/userinfo/
role_attribute_path: contains(groups[*], 'authentik Admins') && 'GrafanaAdmin' #|| contains(info.groups[*], 'editor') && 'Editor' || 'Viewer'
groups_attribute_path: groups
name_attribute_path: preferred_username
login_attribute_path: email
allow_assign_grafana_admin: true allow_assign_grafana_admin: true
use_pkce: true use_pkce: true
use_refresh_token: true use_refresh_token: true
@ -66,8 +70,10 @@ spec:
datasources: datasources:
- name: Victoria - name: Victoria
type: prometheus type: prometheus
editable: false jsonData:
tlsSkipVerify: true
url: http://victoria-metrics-server.monitoring.svc:8428 url: http://victoria-metrics-server.monitoring.svc:8428
editable: false
isDefault: true isDefault: true
# datasources: # datasources:

3
cluster/apps/monitoring/kube-prometheus-stack/helm-release.yaml
View File

@ -39,6 +39,9 @@ spec:
grafana: grafana:
enabled: false enabled: false
# enabled dashboards even with grafana being disabled
forceDeployDashboards: true
defaultDashboardsTimezone: America/New_York
prometheus: prometheus:
ingress: ingress: