feat(podman_prometheus): add hostname labels to targets
Some checks failed
Ansible Lint Check / lint (push) Failing after 1m2s
Some checks failed
Ansible Lint Check / lint (push) Failing after 1m2s
This commit is contained in:
parent
c404d08b89
commit
0d92344f16
7 changed files with 74 additions and 79 deletions
|
|
@ -1,6 +1,7 @@
|
|||
---
|
||||
- name: Node Exporter | AUDIT | Get Tailscale IP
|
||||
ansible.builtin.shell: tailscale ip -4 2>/dev/null
|
||||
- name: Node Exporter | AUDIT | Get Tailscale IP address
|
||||
become: true
|
||||
ansible.builtin.shell: tailscale ip -4
|
||||
register: node_exporter_tailscale_ipv4
|
||||
changed_when: false
|
||||
|
||||
|
|
@ -10,52 +11,12 @@
|
|||
name: node-exporter
|
||||
state: present
|
||||
|
||||
- name: Node Exporter | PATCH | Generate private TLS key
|
||||
community.crypto.openssl_privatekey:
|
||||
path: /etc/ssl/node-exporter.key
|
||||
size: 4096
|
||||
owner: prometheus
|
||||
group: root
|
||||
mode: '0440'
|
||||
become: true
|
||||
|
||||
- name: Node Exporter | PATCH | Create certificate signing request
|
||||
community.crypto.openssl_csr:
|
||||
path: /etc/ssl/node-exporter.csr
|
||||
privatekey_path: /etc/ssl/node-exporter.key
|
||||
common_name: "{{ inventory_hostname }}"
|
||||
subject_alt_name: "DNS:{{ inventory_hostname }}"
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0400'
|
||||
become: true
|
||||
|
||||
- name: Generate self-signed certificate
|
||||
community.crypto.x509_certificate:
|
||||
provider: selfsigned
|
||||
path: /etc/ssl/node-exporter.crt
|
||||
privatekey_path: /etc/ssl/node-exporter.key
|
||||
csr_path: /etc/ssl/node-exporter.csr
|
||||
owner: prometheus
|
||||
group: root
|
||||
mode: '0440'
|
||||
become: true
|
||||
|
||||
- name: Node Exporter | PATCH | Install node-exporter web configuration
|
||||
become: true
|
||||
ansible.builtin.template:
|
||||
src: etc/node-exporter-web.yml
|
||||
dest: /etc/node-exporter-web.yml
|
||||
owner: root
|
||||
group: root
|
||||
mode: "0444"
|
||||
|
||||
- name: Node Exporter | PATCH | Set command line arguments
|
||||
become: true
|
||||
ansible.builtin.lineinfile:
|
||||
path: /etc/default/prometheus-node-exporter
|
||||
regexp: "^ARGS"
|
||||
line: "ARGS='--web.config.file=\"/etc/node-exporter-web.yml\"{% if node_exporter_textfile_directory is defined %} --collector.textfile.directory {{ node_exporter_textfile_directory }}{% endif %}'"
|
||||
line: "ARGS='--web.listen-address={{ node_exporter_tailscale_ipv4.stdout }}:9100{% if node_exporter_textfile_directory is defined %} --collector.textfile.directory {{ node_exporter_textfile_directory }}{% endif %}'"
|
||||
notify: Restart Node Exporter
|
||||
|
||||
- name: Node Exporter | PATCH | Ensure node-exporter is enabled and running
|
||||
|
|
@ -83,6 +44,7 @@
|
|||
become: true
|
||||
ansible.posix.firewalld:
|
||||
service: node-exporter
|
||||
zone: internal
|
||||
permanent: true
|
||||
state: enabled
|
||||
immediate: true
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue