diff --git a/roles/monitoring/tasks/main.yml b/roles/monitoring/tasks/main.yml index c32396e..e8fcd38 100644 --- a/roles/monitoring/tasks/main.yml +++ b/roles/monitoring/tasks/main.yml @@ -8,3 +8,33 @@ - name: Include the Prometheus - alertmanager role ansible.builtin.include_role: name: prometheus.prometheus.alertmanager +# region: Install Grafana +- name: Include user role + ansible.builtin.include_role: + name: user + vars: + user_username: "{{ grafana_username }}" + user_password: "{{ grafana_password }}" +- name: Create the grafana container + ansible.builtin.include_role: + name: podman-container + apply: + become: true + become_user: "{{ grafana_username }}" + vars: + podman_container_name: grafana-server + podman_container_image: docker.io/grafana/grafana + podman_container_tag: "{{ grafana_version }}" + podman_container_env: + GF_INSTALL_PLUGINS: "grafana-clock-panel 2.1.7" + podman_container_publish: + - 127.0.0.1:3000:3000 + podman_container_volumes: + - name: grafana_storage + mnt: /var/lib/grafana +- name: Include simple-reverse-proxy role + ansible.builtin.include_role: + name: simple-reverse-proxy + vars: + simple_reverse_proxy_internal_port: 3000 + simple_reverse_proxy_internal_subdomain: grafana diff --git a/roles/monitoring/vars/main/defaults.yml b/roles/monitoring/vars/main/defaults.yml index 18f91f6..c4e1b02 100644 --- a/roles/monitoring/vars/main/defaults.yml +++ b/roles/monitoring/vars/main/defaults.yml @@ -24,3 +24,6 @@ alertmanager_receivers: parse_mode: '' alertmanager_route: receiver: telegram +# Grafana +grafana_version: "11.2.0" +grafana_username: grafana diff --git a/roles/monitoring/vars/main/vault.yml b/roles/monitoring/vars/main/vault.yml index 6c137ff..01c6965 100644 --- a/roles/monitoring/vars/main/vault.yml +++ b/roles/monitoring/vars/main/vault.yml @@ -1,10 +1,14 @@ $ANSIBLE_VAULT;1.1;AES256 -39623466373835376134656330346565393137353735626466316262343939303563336634393337 -6265323966383732393138383339393130663164633039390a366361346331323235323763636561 -35373334656435323933663235656334353338643563303335373039326466366662363066363939 -3730653136366166370a366636306438356461656239376465653763663566333036353439663265 -39653731313366373166613237346133616232373566373835393063303035663037663735663130 -33643438663662393135643639646662303431376366656138666536323336633966656464346262 -35613861346661613566303865376539316631613837373263653238363565353662303539616637 -30643730646261336536663865386562313466383066373861383435353366313064653433643531 -65613963396664616565333832613632626665313638353366646665353836653337 +38383439376266613165643939663135643264326131366634633231356337306539313235363133 +6631383666333766356236656565666265323964373862370a313861376132636164363937336263 +35343432336238623362616131643861636332383731306431666264393466656439336335663232 +3537373163353432350a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diff --git a/roles/podman-container/tasks/main.yml b/roles/podman-container/tasks/main.yml index b4983f5..84feb00 100644 --- a/roles/podman-container/tasks/main.yml +++ b/roles/podman-container/tasks/main.yml @@ -65,6 +65,7 @@ name: "{{ podman_container_name }}" image: "{{ podman_container_image }}:{{ podman_container_tag }}" restart_policy: always + user: root # Still isolated from host system 👍 hostname: "{{ ansible_facts['hostname'] }}" publish: "{{ podman_container_publish }}" env: "{{ podman_container_env }}"