Merge changes I1ba3967a,Id55095c3
* changes: Describe infrastructure dependencies Use object store to store chunks created by Loki
This commit is contained in:
Thomas Dräbing
Gerrit Code Review
commit
81ab4f166a
22
README.md
22
README.md
|
|
@ -20,6 +20,8 @@ easier.
|
||||||
|
|
||||||
## Dependencies
|
## Dependencies
|
||||||
|
|
||||||
|
### Software
|
||||||
|
|
||||||
- Gerrit \
|
- Gerrit \
|
||||||
Gerrit requires the following plugin to be installed:
|
Gerrit requires the following plugin to be installed:
|
||||||
- [metrics-reporter-prometheus](https://gerrit.googlesource.com/plugins/metrics-reporter-prometheus/)
|
- [metrics-reporter-prometheus](https://gerrit.googlesource.com/plugins/metrics-reporter-prometheus/)
|
||||||
|
|
@ -43,6 +45,20 @@ configuration. Installation instructions can be found
|
||||||
yq is a commandline processor for yaml-files. Installation instructions can be
|
yq is a commandline processor for yaml-files. Installation instructions can be
|
||||||
found [here](https://mikefarah.gitbook.io/yq/).
|
found [here](https://mikefarah.gitbook.io/yq/).
|
||||||
|
|
||||||
|
### Infrastructure
|
||||||
|
|
||||||
|
- Kubernetes Cluster \
|
||||||
|
A cluster with at least 3 free CPUs and 4 GB of free memory are required. In
|
||||||
|
addition persistent storage of about 30 GB will be used.
|
||||||
|
|
||||||
|
- Ingress Controller \
|
||||||
|
The charts currently expect a Nginx ingress controller to be installed in the
|
||||||
|
cluster.
|
||||||
|
|
||||||
|
- Object store \
|
||||||
|
Loki will store the data chunks in an object store. This store has to be callable
|
||||||
|
via the S3 API.
|
||||||
|
|
||||||
## Add dashboards
|
## Add dashboards
|
||||||
|
|
||||||
To have dashboards deployed automatically during installation, export the dashboards
|
To have dashboards deployed automatically during installation, export the dashboards
|
||||||
|
|
@ -78,6 +94,12 @@ are listed here:
|
||||||
| `loki.host` | Loki ingress hostname |
|
| `loki.host` | Loki ingress hostname |
|
||||||
| `loki.username` | Username for Loki |
|
| `loki.username` | Username for Loki |
|
||||||
| `loki.password` | Password for Loki |
|
| `loki.password` | Password for Loki |
|
||||||
|
| `loki.s3.protocol` | Protocol used for communicating with S3 |
|
||||||
|
| `loki.s3.host` | Hostname of the S3 object store |
|
||||||
|
| `loki.s3.accessToken` | The EC2 accessToken used for authentication with S3 |
|
||||||
|
| `loki.s3.secret` | The secret associated with the accessToken |
|
||||||
|
| `loki.s3.bucket` | The name of the S3 bucket |
|
||||||
|
| `loki.s3.region` | The region in which the S3 bucket is hosted |
|
||||||
| `loki.tls.cert` | TLS certificate |
|
| `loki.tls.cert` | TLS certificate |
|
||||||
| `loki.tls.key` | TLS key |
|
| `loki.tls.key` | TLS key |
|
||||||
| `grafana.host` | Grafana ingress hostname |
|
| `grafana.host` | Grafana ingress hostname |
|
||||||
|
|
|
||||||
|
|
@ -73,7 +73,7 @@ config:
|
||||||
configs:
|
configs:
|
||||||
- from: 2018-04-15
|
- from: 2018-04-15
|
||||||
store: boltdb
|
store: boltdb
|
||||||
object_store: filesystem
|
object_store: s3
|
||||||
schema: v9
|
schema: v9
|
||||||
index:
|
index:
|
||||||
prefix: index_
|
prefix: index_
|
||||||
|
|
@ -86,8 +86,9 @@ config:
|
||||||
storage_config:
|
storage_config:
|
||||||
boltdb:
|
boltdb:
|
||||||
directory: /data/loki/index
|
directory: /data/loki/index
|
||||||
filesystem:
|
aws:
|
||||||
directory: /data/loki/chunks
|
s3: #@ "{}://{}:{}@{}/{}".format(data.values.loki.s3.protocol, data.values.loki.s3.accessToken, data.values.loki.s3.secret, data.values.loki.s3.host, data.values.loki.s3.bucket)
|
||||||
|
s3forcepathstyle: true
|
||||||
chunk_store_config:
|
chunk_store_config:
|
||||||
max_look_back_period: 0
|
max_look_back_period: 0
|
||||||
table_manager:
|
table_manager:
|
||||||
|
|
@ -240,4 +241,6 @@ extraPorts: []
|
||||||
# targetPort: http
|
# targetPort: http
|
||||||
|
|
||||||
# Extra env variables to pass to the loki container
|
# Extra env variables to pass to the loki container
|
||||||
env: []
|
env:
|
||||||
|
- name: AWS_REGION
|
||||||
|
value: #@ data.values.loki.s3.region
|
||||||
|
|
|
||||||
|
|
@ -25,6 +25,13 @@ loki:
|
||||||
host: loki.example.com
|
host: loki.example.com
|
||||||
username:
|
username:
|
||||||
password:
|
password:
|
||||||
|
s3:
|
||||||
|
protocol: https
|
||||||
|
host: s3.eu-de-1.example.com
|
||||||
|
accessToken: abcd
|
||||||
|
secret: "1234"
|
||||||
|
bucket: bucket
|
||||||
|
region: eu-de-1
|
||||||
tls:
|
tls:
|
||||||
cert:
|
cert:
|
||||||
key:
|
key:
|
||||||
|
|
|
||||||
|
|
@ -48,7 +48,7 @@ Run the following command to encode the file:
|
||||||
sops \
|
sops \
|
||||||
--encrypt \
|
--encrypt \
|
||||||
--in-place \
|
--in-place \
|
||||||
--encrypted-regex '(password|htpasswd|cert|key|apiUrl|caCert)$' \
|
--encrypted-regex '(password|htpasswd|cert|key|apiUrl|caCert|secret|accessToken)$' \
|
||||||
--pgp \
|
--pgp \
|
||||||
`gpg --fingerprint "$EMAIL" | \
|
`gpg --fingerprint "$EMAIL" | \
|
||||||
grep pub -A 1 | \
|
grep pub -A 1 | \
|
||||||
|
|
|
||||||
|
|
@ -53,6 +53,6 @@ fi
|
||||||
sops \
|
sops \
|
||||||
--encrypt \
|
--encrypt \
|
||||||
--in-place \
|
--in-place \
|
||||||
--encrypted-regex '(password|htpasswd|cert|key|apiUrl|caCert)$' \
|
--encrypted-regex '(password|htpasswd|cert|key|apiUrl|caCert|secret|accessToken)$' \
|
||||||
--pgp $FINGERPRINT \
|
--pgp $FINGERPRINT \
|
||||||
$CONFIG
|
$CONFIG
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue