Compare commits
	
		
			8 Commits
		
	
	
		
			64528a793d
			...
			82ec5e868f
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
| 82ec5e868f | |||
| 289525dbaa | |||
| 2f42576053 | |||
| e501b0665b | |||
| 5981952642 | |||
| d4781e2bc9 | |||
| 37b7089d6b | |||
| 1d37052aa3 | 
| @@ -379,6 +379,12 @@ homepage: | |||||||
|                         query: prometheus_tsdb_storage_blocks_bytes |                         query: prometheus_tsdb_storage_blocks_bytes | ||||||
|                         format: |                         format: | ||||||
|                           type: bytes |                           type: bytes | ||||||
|  |               - Gatus: | ||||||
|  |                   icon: sh-gatus.webp | ||||||
|  |                   description: Uptime Monitoring | ||||||
|  |                   href: https://gatus.alexlebens.net | ||||||
|  |                   siteMonitor: http://gatus.gatus:80 | ||||||
|  |                   statusStyle: dot | ||||||
|               - Tautulli: |               - Tautulli: | ||||||
|                   icon: sh-tautulli.webp |                   icon: sh-tautulli.webp | ||||||
|                   description: Plex Monitoring |                   description: Plex Monitoring | ||||||
|   | |||||||
| @@ -9,7 +9,7 @@ immich: | |||||||
|         main: |         main: | ||||||
|           image: |           image: | ||||||
|             repository: ghcr.io/immich-app/immich-server |             repository: ghcr.io/immich-app/immich-server | ||||||
|             tag: v1.132.3 |             tag: v1.134.0 | ||||||
|             pullPolicy: IfNotPresent |             pullPolicy: IfNotPresent | ||||||
|           env: |           env: | ||||||
|             - name: TZ |             - name: TZ | ||||||
|   | |||||||
							
								
								
									
										28
									
								
								clusters/cl01tl/monitoring/gatus/Chart.yaml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										28
									
								
								clusters/cl01tl/monitoring/gatus/Chart.yaml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,28 @@ | |||||||
|  | apiVersion: v2 | ||||||
|  | name: gatus | ||||||
|  | version: 1.0.0 | ||||||
|  | description: Gatus | ||||||
|  | keywords: | ||||||
|  |   - gatus | ||||||
|  |   - healthcheck | ||||||
|  |   - uptime | ||||||
|  |   - metrics | ||||||
|  | home: https://wiki.alexlebens.dev/s/2a2b0c83-81c7-49e3-aafc-daff4ff23ce2 | ||||||
|  | sources: | ||||||
|  |   - https://github.com/TwiN/gatus | ||||||
|  |   - https://github.com/cloudnative-pg/cloudnative-pg | ||||||
|  |   - https://github.com/TwiN/gatus/pkgs/container/gatus | ||||||
|  |   - https://github.com/TwiN/helm-charts/tree/master/charts/gatus | ||||||
|  |   - https://gitea.alexlebens.dev/alexlebens/helm-charts/src/branch/main/charts/postgres-cluster | ||||||
|  | maintainers: | ||||||
|  |   - name: alexlebens | ||||||
|  | dependencies: | ||||||
|  |   - name: gatus | ||||||
|  |     repository: https://twin.github.io/helm-charts | ||||||
|  |     version: 1.2.0 | ||||||
|  |   - name: postgres-cluster | ||||||
|  |     alias: postgres-17-cluster | ||||||
|  |     version: 5.1.0 | ||||||
|  |     repository: oci://harbor.alexlebens.net/helm-charts | ||||||
|  | icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/gatus.png | ||||||
|  | appVersion: v5.12.0 | ||||||
| @@ -0,0 +1,81 @@ | |||||||
|  | apiVersion: external-secrets.io/v1 | ||||||
|  | kind: ExternalSecret | ||||||
|  | metadata: | ||||||
|  |   name: gatus-config-secret | ||||||
|  |   namespace: {{ .Release.Namespace }} | ||||||
|  |   labels: | ||||||
|  |     app.kubernetes.io/name: gatus-config-secret | ||||||
|  |     app.kubernetes.io/instance: {{ .Release.Name }} | ||||||
|  |     app.kubernetes.io/part-of: {{ .Release.Name }} | ||||||
|  | spec: | ||||||
|  |   secretStoreRef: | ||||||
|  |     kind: ClusterSecretStore | ||||||
|  |     name: vault | ||||||
|  |   data: | ||||||
|  |     - secretKey: NTFY_TOKEN | ||||||
|  |       remoteRef: | ||||||
|  |         conversionStrategy: Default | ||||||
|  |         decodingStrategy: None | ||||||
|  |         key: /ntfy/user/cl01tl | ||||||
|  |         metadataPolicy: None | ||||||
|  |         property: token | ||||||
|  |  | ||||||
|  | --- | ||||||
|  | apiVersion: external-secrets.io/v1 | ||||||
|  | kind: ExternalSecret | ||||||
|  | metadata: | ||||||
|  |   name: gatus-oidc-secret | ||||||
|  |   namespace: {{ .Release.Namespace }} | ||||||
|  |   labels: | ||||||
|  |     app.kubernetes.io/name: gatus-oidc-secret | ||||||
|  |     app.kubernetes.io/instance: {{ .Release.Name }} | ||||||
|  |     app.kubernetes.io/part-of: {{ .Release.Name }} | ||||||
|  | spec: | ||||||
|  |   secretStoreRef: | ||||||
|  |     kind: ClusterSecretStore | ||||||
|  |     name: vault | ||||||
|  |   data: | ||||||
|  |     - secretKey: OIDC_CLIENT_ID | ||||||
|  |       remoteRef: | ||||||
|  |         conversionStrategy: Default | ||||||
|  |         decodingStrategy: None | ||||||
|  |         key: /authentik/oidc/gatus | ||||||
|  |         metadataPolicy: None | ||||||
|  |         property: client | ||||||
|  |     - secretKey: OIDC_CLIENT_SECRET | ||||||
|  |       remoteRef: | ||||||
|  |         conversionStrategy: Default | ||||||
|  |         decodingStrategy: None | ||||||
|  |         key: /authentik/oidc/gatus | ||||||
|  |         metadataPolicy: None | ||||||
|  |         property: secret | ||||||
|  |  | ||||||
|  | --- | ||||||
|  | apiVersion: external-secrets.io/v1 | ||||||
|  | kind: ExternalSecret | ||||||
|  | metadata: | ||||||
|  |   name: gatus-postgresql-17-cluster-backup-secret | ||||||
|  |   namespace: {{ .Release.Namespace }} | ||||||
|  |   labels: | ||||||
|  |     app.kubernetes.io/name: gatus-postgresql-17-cluster-backup-secret | ||||||
|  |     app.kubernetes.io/instance: {{ .Release.Name }} | ||||||
|  |     app.kubernetes.io/part-of: {{ .Release.Name }} | ||||||
|  | spec: | ||||||
|  |   secretStoreRef: | ||||||
|  |     kind: ClusterSecretStore | ||||||
|  |     name: vault | ||||||
|  |   data: | ||||||
|  |     - secretKey: ACCESS_KEY_ID | ||||||
|  |       remoteRef: | ||||||
|  |         conversionStrategy: Default | ||||||
|  |         decodingStrategy: None | ||||||
|  |         key: /digital-ocean/home-infra/postgres-backups | ||||||
|  |         metadataPolicy: None | ||||||
|  |         property: access | ||||||
|  |     - secretKey: ACCESS_SECRET_KEY | ||||||
|  |       remoteRef: | ||||||
|  |         conversionStrategy: Default | ||||||
|  |         decodingStrategy: None | ||||||
|  |         key: /digital-ocean/home-infra/postgres-backups | ||||||
|  |         metadataPolicy: None | ||||||
|  |         property: secret | ||||||
							
								
								
									
										28
									
								
								clusters/cl01tl/monitoring/gatus/templates/http-route.yaml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										28
									
								
								clusters/cl01tl/monitoring/gatus/templates/http-route.yaml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,28 @@ | |||||||
|  | apiVersion: gateway.networking.k8s.io/v1 | ||||||
|  | kind: HTTPRoute | ||||||
|  | metadata: | ||||||
|  |   name: http-route-gatus | ||||||
|  |   namespace: {{ .Release.Namespace }} | ||||||
|  |   labels: | ||||||
|  |     app.kubernetes.io/name: http-route-gatus | ||||||
|  |     app.kubernetes.io/instance: {{ .Release.Name }} | ||||||
|  |     app.kubernetes.io/part-of: {{ .Release.Name }} | ||||||
|  | spec: | ||||||
|  |   parentRefs: | ||||||
|  |     - group: gateway.networking.k8s.io | ||||||
|  |       kind: Gateway | ||||||
|  |       name: traefik-gateway | ||||||
|  |       namespace: traefik | ||||||
|  |   hostnames: | ||||||
|  |     - gatus.alexlebens.net | ||||||
|  |   rules: | ||||||
|  |     - matches: | ||||||
|  |       - path: | ||||||
|  |           type: PathPrefix | ||||||
|  |           value: / | ||||||
|  |       backendRefs: | ||||||
|  |         - group: '' | ||||||
|  |           kind: Service | ||||||
|  |           name: gatus | ||||||
|  |           port: 80 | ||||||
|  |           weight: 100 | ||||||
							
								
								
									
										135
									
								
								clusters/cl01tl/monitoring/gatus/values.yaml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										135
									
								
								clusters/cl01tl/monitoring/gatus/values.yaml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,135 @@ | |||||||
|  | gatus: | ||||||
|  |   readinessProbe: | ||||||
|  |     enabled: true | ||||||
|  |   livenessProbe: | ||||||
|  |     enabled: true | ||||||
|  |   image: | ||||||
|  |     repository: ghcr.io/twin/gatus | ||||||
|  |     tag: v5.17.0 | ||||||
|  |   annotations: | ||||||
|  |     reloader.stakater.com/auto: "true" | ||||||
|  |   service: | ||||||
|  |     type: ClusterIP | ||||||
|  |     port: 80 | ||||||
|  |     targetPort: 8080 | ||||||
|  |     portName: http | ||||||
|  |   ingress: | ||||||
|  |     enabled: false | ||||||
|  |   env: | ||||||
|  |     NTFY_TOKEN: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-config-secret | ||||||
|  |           key: NTFY_TOKEN | ||||||
|  |     OIDC_CLIENT_ID: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-oidc-secret | ||||||
|  |           key: OIDC_CLIENT_ID | ||||||
|  |     OIDC_CLIENT_SECRET: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-oidc-secret | ||||||
|  |           key: OIDC_CLIENT_SECRET | ||||||
|  |     POSTGRES_USER: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-postgresql-17-cluster-app | ||||||
|  |           key: username | ||||||
|  |     POSTGRES_PASSWORD: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-postgresql-17-cluster-app | ||||||
|  |           key: password | ||||||
|  |     POSTGRES_HOST: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-postgresql-17-cluster-app | ||||||
|  |           key: host | ||||||
|  |     POSTGRES_PORT: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-postgresql-17-cluster-app | ||||||
|  |           key: port | ||||||
|  |     POSTGRES_DB: | ||||||
|  |       valueFrom: | ||||||
|  |         secretKeyRef: | ||||||
|  |           name: gatus-postgresql-17-cluster-app | ||||||
|  |           key: dbname | ||||||
|  |   resources: | ||||||
|  |     requests: | ||||||
|  |       cpu: 10m | ||||||
|  |       memory: 128Mi | ||||||
|  |   persistence: | ||||||
|  |     enabled: true | ||||||
|  |     size: 1Gi | ||||||
|  |     mountPath: /data | ||||||
|  |     accessModes: | ||||||
|  |       - ReadWriteOnce | ||||||
|  |     finalizers: | ||||||
|  |       - kubernetes.io/pvc-protection | ||||||
|  |     storageClassName: ceph-block | ||||||
|  |   serviceMonitor: | ||||||
|  |     enabled: true | ||||||
|  |     interval: 1m | ||||||
|  |     path: /metrics | ||||||
|  |     scheme: http | ||||||
|  |     scrapeTimeout: 30s | ||||||
|  |   networkPolicy: | ||||||
|  |     enabled: false | ||||||
|  |   config: | ||||||
|  |     metrics: true | ||||||
|  |     connectivity: | ||||||
|  |       checker: | ||||||
|  |         target: 1.1.1.1:53 | ||||||
|  |         interval: 60s | ||||||
|  |     alerting: | ||||||
|  |       ntfy: | ||||||
|  |         topic: "gatus-alerts" | ||||||
|  |         priority: 3 | ||||||
|  |         url: http://ntfy.ntfy | ||||||
|  |         token: ${NTFY_TOKEN} | ||||||
|  |         default-alert: | ||||||
|  |           failure-threshold: 3 | ||||||
|  |           send-on-resolved: true | ||||||
|  |         click: "https://gatus.alexlebens.net" | ||||||
|  |     security: | ||||||
|  |       oidc: | ||||||
|  |         issuer-url: https://authentik.alexlebens.net/application/o/gatus/ | ||||||
|  |         client-id: ${OIDC_CLIENT_ID} | ||||||
|  |         client-secret: ${OIDC_CLIENT_SECRET} | ||||||
|  |         redirect-url: https://gatus.alexlebens.net/authorization-code/callback | ||||||
|  |         scopes: [openid] | ||||||
|  |     storage: | ||||||
|  |       type: postgres | ||||||
|  |       path: "postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${POSTGRES_HOST}:${POSTGRES_PORT}/${POSTGRES_DB}?sslmode=disable" | ||||||
|  |     endpoints: | ||||||
|  |       - name: homepage | ||||||
|  |         url: https://homepage.alexlebens.net | ||||||
|  |         interval: 60s | ||||||
|  |         conditions: | ||||||
|  |           - "[STATUS] == 200" | ||||||
|  |           - "[CERTIFICATE_EXPIRATION] > 240h" | ||||||
|  |  | ||||||
|  | postgres-17-cluster: | ||||||
|  |   mode: standalone | ||||||
|  |   cluster: | ||||||
|  |     storage: | ||||||
|  |       storageClass: local-path | ||||||
|  |     walStorage: | ||||||
|  |       storageClass: local-path | ||||||
|  |     monitoring: | ||||||
|  |       enabled: true | ||||||
|  |       prometheusRule: | ||||||
|  |         enabled: true | ||||||
|  |   recovery: | ||||||
|  |     method: objectStore | ||||||
|  |     objectStore: | ||||||
|  |       endpointURL: https://nyc3.digitaloceanspaces.com | ||||||
|  |       destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/gatus/gatus-postgresql-17-cluster | ||||||
|  |       recoveryIndex: 1 | ||||||
|  |   backup: | ||||||
|  |     enabled: false | ||||||
|  |     endpointURL: https://nyc3.digitaloceanspaces.com | ||||||
|  |     destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/gatus/gatus-postgresql-17-cluster | ||||||
|  |     backupIndex: 1 | ||||||
| @@ -206,6 +206,25 @@ spec: | |||||||
|   resyncPeriod: 1h |   resyncPeriod: 1h | ||||||
|   url: http://gitea-http.gitea:3000/alexlebens/grafana-dashboards/raw/branch/main/dashboards/service/descheduler.json |   url: http://gitea-http.gitea:3000/alexlebens/grafana-dashboards/raw/branch/main/dashboards/service/descheduler.json | ||||||
|  |  | ||||||
|  | --- | ||||||
|  | apiVersion: grafana.integreatly.org/v1beta1 | ||||||
|  | kind: GrafanaDashboard | ||||||
|  | metadata: | ||||||
|  |   name: grafana-dashboard-gatus | ||||||
|  |   namespace: {{ .Release.Namespace }} | ||||||
|  |   labels: | ||||||
|  |     app.kubernetes.io/name: grafana-dashboard-gatus | ||||||
|  |     app.kubernetes.io/instance: {{ .Release.Name }} | ||||||
|  |     app.kubernetes.io/part-of: {{ .Release.Name }} | ||||||
|  | spec: | ||||||
|  |   instanceSelector: | ||||||
|  |     matchLabels: | ||||||
|  |       app: grafana-main | ||||||
|  |   contentCacheDuration: 1h | ||||||
|  |   folderUID: grafana-folder-service | ||||||
|  |   resyncPeriod: 1h | ||||||
|  |   url: http://gitea-http.gitea:3000/alexlebens/grafana-dashboards/raw/branch/main/dashboards/service/gatus.json | ||||||
|  |  | ||||||
| --- | --- | ||||||
| apiVersion: grafana.integreatly.org/v1beta1 | apiVersion: grafana.integreatly.org/v1beta1 | ||||||
| kind: GrafanaDashboard | kind: GrafanaDashboard | ||||||
|   | |||||||
| @@ -106,6 +106,7 @@ kube-prometheus-stack: | |||||||
|         - directus |         - directus | ||||||
|         - external-dns |         - external-dns | ||||||
|         - freshrss |         - freshrss | ||||||
|  |         - gatus | ||||||
|         - generic-device-plugin |         - generic-device-plugin | ||||||
|         - gitea |         - gitea | ||||||
|         - grafana-operator |         - grafana-operator | ||||||
|   | |||||||
| @@ -113,6 +113,7 @@ blocky: | |||||||
|               ceph                            IN      CNAME   traefik-cl01tl |               ceph                            IN      CNAME   traefik-cl01tl | ||||||
|               code-server                     IN      CNAME   traefik-cl01tl |               code-server                     IN      CNAME   traefik-cl01tl | ||||||
|               eigenfocus                      IN      CNAME   traefik-cl01tl |               eigenfocus                      IN      CNAME   traefik-cl01tl | ||||||
|  |               gatus                           IN      CNAME   traefik-cl01tl | ||||||
|               gitea                           IN      CNAME   traefik-cl01tl |               gitea                           IN      CNAME   traefik-cl01tl | ||||||
|               grafana                         IN      CNAME   traefik-cl01tl |               grafana                         IN      CNAME   traefik-cl01tl | ||||||
|               harbor                          IN      CNAME   traefik-cl01tl |               harbor                          IN      CNAME   traefik-cl01tl | ||||||
|   | |||||||
| @@ -88,6 +88,7 @@ customDNS: | |||||||
|     ceph                            IN      CNAME   traefik-cl01tl |     ceph                            IN      CNAME   traefik-cl01tl | ||||||
|     code-server                     IN      CNAME   traefik-cl01tl |     code-server                     IN      CNAME   traefik-cl01tl | ||||||
|     eigenfocus                      IN      CNAME   traefik-cl01tl |     eigenfocus                      IN      CNAME   traefik-cl01tl | ||||||
|  |     gatus                           IN      CNAME   traefik-cl01tl | ||||||
|     gitea                           IN      CNAME   traefik-cl01tl |     gitea                           IN      CNAME   traefik-cl01tl | ||||||
|     grafana                         IN      CNAME   traefik-cl01tl |     grafana                         IN      CNAME   traefik-cl01tl | ||||||
|     harbor                          IN      CNAME   traefik-cl01tl |     harbor                          IN      CNAME   traefik-cl01tl | ||||||
|   | |||||||
| @@ -88,6 +88,7 @@ customDNS: | |||||||
|     ceph                            IN      CNAME   traefik-cl01tl |     ceph                            IN      CNAME   traefik-cl01tl | ||||||
|     code-server                     IN      CNAME   traefik-cl01tl |     code-server                     IN      CNAME   traefik-cl01tl | ||||||
|     eigenfocus                      IN      CNAME   traefik-cl01tl |     eigenfocus                      IN      CNAME   traefik-cl01tl | ||||||
|  |     gatus                           IN      CNAME   traefik-cl01tl | ||||||
|     gitea                           IN      CNAME   traefik-cl01tl |     gitea                           IN      CNAME   traefik-cl01tl | ||||||
|     grafana                         IN      CNAME   traefik-cl01tl |     grafana                         IN      CNAME   traefik-cl01tl | ||||||
|     harbor                          IN      CNAME   traefik-cl01tl |     harbor                          IN      CNAME   traefik-cl01tl | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user