gwg313/homelab-gitops
1
0
Fork 0
mirror of https://github.com/gwg313/homelab-gitops.git synced 2026-06-06 11:10:46 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

add kube-prometheus-stack

Browse source 
Signed-off-by: gwg313 <gwg313@pm.me>

istio-update

Signed-off-by: gwg313 <gwg313@pm.me>
This commit is contained in:
gwg313 2026-05-12 21:10:15 -04:00
parent cebf8d3e22
commit 96a45730a5
Signed by: gwg313
GPG key ID: 60FF63B4826B7400
7 changed files with 140 additions and 20 deletions
Download patch file Download diff file Expand all files Collapse all files

40
apps/istio/istio-istiod.yaml
View file

@ -12,28 +12,28 @@ spec:
chart: istiod
targetRevision: 1.26.0
helm:
values: |
global:
istioCNI:
enabled: true
values: |
cni:
enabled: true
provider: default
sidecarInjectorWebhook:
disableInitContainers: true
sidecarInjectorWebhook:
disableInitContainers: true
pilot:
autoscaleEnabled: false
replicaCount: 2
resources:
requests:
cpu: "500m"
memory: "512Mi"
limits:
cpu: "1000m"
memory: "1Gi"
pilot:
autoscaleEnabled: false
replicaCount: 2
resources:
requests:
cpu: "500m"
memory: "512Mi"
limits:
cpu: "1000m"
memory: "1Gi"
podDisruptionBudget:
enabled: true
minAvailable: 1
podDisruptionBudget:
enabled: true
minAvailable: 1
destination:
server: https://kubernetes.default.svc
namespace: istio-system

20
apps/kube-prometheus-stack-config.yaml Normal file
View file

@ -0,0 +1,20 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: monitoring-config
namespace: argocd
annotations:
argocd.argoproj.io/sync-wave: "-1"
spec:
project: default
source:
repoURL: https://github.com/gwg313/homelab-gitops
targetRevision: main
path: kube-prometheus-stack/
destination:
server: https://kubernetes.default.svc
namespace: monitoring
syncPolicy:
automated:
selfHeal: true
prune: true

37
apps/kube-prometheus-stack.yaml Normal file
View file

@ -0,0 +1,37 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: prometheus
namespace: argocd
annotations:
argocd.argoproj.io/sync-wave: "0"
spec:
destination:
namespace: monitoring
server: https://kubernetes.default.svc
project: default
source:
repoURL: https://prometheus-community.github.io/helm-charts
chart: kube-prometheus-stack
targetRevision: 85.0.2
helm:
releaseName: prometheus
values: |
namespaceOverride: "monitoring"
grafana:
ingress:
enabled: false
defaultRules:
create: true
prometheusOperator:
hostNetwork: false
syncPolicy:
automated:
prune: true
selfHeal: true
syncOptions:
- CreateNamespace=true
- ServerSideApply=true

13
kube-prometheus-stack/certificate.yaml Normal file
View file

@ -0,0 +1,13 @@
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: grafana-cert
namespace: istio-system
spec:
secretName: grafana-cert
issuerRef:
name: letsencrypt-dns
kind: ClusterIssuer
dnsNames:
- grafana.local.gwg313.xyz
- grafana.zerotier.gwg313.xyz

19
kube-prometheus-stack/gateway.yaml Normal file
View file

@ -0,0 +1,19 @@
apiVersion: networking.istio.io/v1beta1
kind: Gateway
metadata:
name: grafana-gateway
namespace: monitoring
spec:
selector:
istio: gateway
servers:
- port:
number: 443
name: https
protocol: HTTPS
tls:
mode: SIMPLE
credentialName: grafana-cert
hosts:
- grafana.local.gwg313.xyz
- grafana.zerotier.gwg313.xyz

11
kube-prometheus-stack/namespace.yaml Normal file
View file

@ -0,0 +1,11 @@
apiVersion: v1
kind: Namespace
metadata:
name: monitoring
labels:
# istio-injection: enabled
pod-security.kubernetes.io/enforce: privileged
pod-security.kubernetes.io/audit: privileged
pod-security.kubernetes.io/warn: privileged
app.kubernetes.io/name: monitoring

20
kube-prometheus-stack/virtualservice.yaml Normal file
View file

@ -0,0 +1,20 @@
apiVersion: networking.istio.io/v1beta1
kind: VirtualService
metadata:
name: grafana
namespace: monitoring
spec:
hosts:
- grafana.local.gwg313.xyz
- grafana.zerotier.gwg313.xyz
gateways:
- grafana-gateway
http:
- match:
- uri:
prefix: /
route:
- destination:
host: prometheus-grafana
port:
number: 80