admin/airflow3-kub
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ingress for monitoring

Browse Source
This commit is contained in:
Mohand Ou Idir Belfares
2026-06-08 15:35:03 +02:00
parent cad03104f7
commit ff70f82ca8
2 changed files with 12 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/deploy.yml
+9 -1
View File
@@ -79,10 +79,18 @@ jobs:
if: ${{ inputs.service == 'all' || inputs.service == 'monitoring' }}
run: |
kubectl create namespace monitoring --dry-run=client -o yaml | kubectl apply -f -
- name: Create Grafana OAuth secret
if: ${{ inputs.service == 'all' || inputs.service == 'monitoring' }}
run: |
kubectl create secret generic grafana-oauth-secret \
-n monitoring \
--from-literal=GF_AUTH_GENERIC_OAUTH_CLIENT_SECRET="${{ secrets.GRAFANA_CLIENT_SECRET }}" \
--dry-run=client -o yaml | kubectl apply -f -
- name: Create oauth2-proxy secrets
if: ${{ inputs.service == 'all' || inputs.service == 'monitoring' }}
run: |
kubectl create secret generic oauth2-proxy-prometheus \
-n monitoring \
--from-literal=client-id=prometheus \
helm/monitoring/values.yaml
+3 -1
View File
@@ -1,6 +1,8 @@
grafana:
enabled: true
envFromSecret: grafana-oauth-secret
grafana.ini:
server:
root_url: http://grafana.13.140.150.2.nip.io
@@ -14,7 +16,7 @@ grafana:
name: Keycloak
allow_sign_up: true
client_id: grafana
client_secret: kvULFcvaeWLYzivg1eJFYT9s0Nj674Qr
client_secret: $__env{GF_AUTH_GENERIC_OAUTH_CLIENT_SECRET}
scopes: openid email profile
auth_url: http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/auth
token_url: http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/token