| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 |
- #
- # grafana
- #
- {% set grafana_cfg = salt['pillar.get']('grafana') %}
- {% set node_config = salt['pillar.get']('nodes:' ~ grains['id']) %}
- {% if node_config.get('role') == "prometheus-server" %}
- include:
- - .prometheus
- {% endif %}
- grafana:
- # add Grafana Repo
- file.managed:
- - names:
- - /usr/share/keyrings/grafana.key:
- - source: salt://grafana/grafana.key
- - /etc/apt/sources.list.d/grafana.list:
- - source: salt://grafana/grafana.list.tmpl
- - template: jinja
- - require:
- - file: /usr/share/keyrings/grafana.key
- # install grafana
- pkg.installed:
- - name: grafana
- - require:
- - file: /etc/apt/sources.list.d/grafana.list
- service.running:
- - name: grafana-server
- - enable: True
- - require:
- - pkg: grafana
- - file: /etc/grafana/grafana.ini
- - file: /etc/grafana/ldap.toml
- - user: grafana
- - watch:
- - file: /etc/grafana/grafana.ini
- - file: /etc/grafana/ldap.toml
- # add user 'grafana' to group 'ssl-cert' to access ssl-key file
- user.present:
- - name: grafana
- - system: True
- - groups:
- - ssl-cert
- - require:
- - pkg: grafana
- /etc/grafana/grafana.ini:
- file.managed:
- - source: salt://grafana/grafana.ini.tmpl
- - template: jinja
- config: {{ grafana_cfg }}
- - require:
- - pkg: grafana
- /etc/grafana/ldap.toml:
- {% if 'ldap' in grafana_cfg %}
- file.managed:
- - source: salt://grafana/ldap.toml.tmpl
- - template: jinja
- config: {{ grafana_cfg.ldap }}
- {% else %}
- file.absent:
- {% endif %}
- - require:
- - pkg: grafana
|
