Closed zking2000 closed 2 months ago
--- # Source: prometheus/charts/alertmanager/templates/serviceaccount.yaml apiVersion: v1 kind: ServiceAccount metadata: name: prometheus-alertmanager labels: helm.sh/chart: alertmanager-1.12.0 app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v0.27.0" app.kubernetes.io/managed-by: Helm namespace: grafana-stack automountServiceAccountToken: true --- # Source: prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml apiVersion: v1 kind: ServiceAccount automountServiceAccountToken: true metadata: labels: helm.sh/chart: kube-state-metrics-5.25.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: kube-state-metrics app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "2.13.0" name: prometheus-kube-state-metrics namespace: grafana-stack --- # Source: prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml apiVersion: v1 kind: ServiceAccount metadata: name: prometheus-prometheus-node-exporter namespace: grafana-stack labels: helm.sh/chart: prometheus-node-exporter-4.39.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: prometheus-node-exporter app.kubernetes.io/name: prometheus-node-exporter app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "1.8.2" automountServiceAccountToken: false --- # Source: prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml apiVersion: v1 kind: ServiceAccount metadata: labels: helm.sh/chart: prometheus-pushgateway-2.14.0 app.kubernetes.io/name: prometheus-pushgateway app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v1.9.0" app.kubernetes.io/managed-by: Helm name: prometheus-prometheus-pushgateway namespace: grafana-stack automountServiceAccountToken: true --- # Source: prometheus/templates/serviceaccount.yaml apiVersion: v1 kind: ServiceAccount metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus name: prometheus-server namespace: grafana-stack annotations: {} --- # Source: prometheus/charts/alertmanager/templates/configmap.yaml apiVersion: v1 kind: ConfigMap metadata: name: prometheus-alertmanager labels: helm.sh/chart: alertmanager-1.12.0 app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v0.27.0" app.kubernetes.io/managed-by: Helm namespace: grafana-stack data: alertmanager.yml: | global: {} receivers: - name: default-receiver route: group_interval: 5m group_wait: 10s receiver: default-receiver repeat_interval: 3h templates: - /etc/alertmanager/*.tmpl --- # Source: prometheus/templates/cm.yaml apiVersion: v1 kind: ConfigMap metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus name: prometheus-server namespace: grafana-stack data: allow-snippet-annotations: "false" alerting_rules.yml: | {} alerts: | {} prometheus.yml: | global: evaluation_interval: 1m scrape_interval: 1m scrape_timeout: 10s rule_files: - /etc/config/recording_rules.yml - /etc/config/alerting_rules.yml - /etc/config/rules - /etc/config/alerts scrape_configs: - job_name: prometheus static_configs: - targets: - localhost:9090 - bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token job_name: kubernetes-apiservers kubernetes_sd_configs: - role: endpoints relabel_configs: - action: keep regex: default;kubernetes;https source_labels: - __meta_kubernetes_namespace - __meta_kubernetes_service_name - __meta_kubernetes_endpoint_port_name scheme: https tls_config: ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt insecure_skip_verify: true - bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token job_name: kubernetes-nodes kubernetes_sd_configs: - role: node relabel_configs: - action: labelmap regex: __meta_kubernetes_node_label_(.+) - replacement: kubernetes.default.svc:443 target_label: __address__ - regex: (.+) replacement: /api/v1/nodes/$1/proxy/metrics source_labels: - __meta_kubernetes_node_name target_label: __metrics_path__ scheme: https tls_config: ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt insecure_skip_verify: true - bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token job_name: kubernetes-nodes-cadvisor kubernetes_sd_configs: - role: node relabel_configs: - action: labelmap regex: __meta_kubernetes_node_label_(.+) - replacement: kubernetes.default.svc:443 target_label: __address__ - regex: (.+) replacement: /api/v1/nodes/$1/proxy/metrics/cadvisor source_labels: - __meta_kubernetes_node_name target_label: __metrics_path__ scheme: https tls_config: ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt insecure_skip_verify: true - honor_labels: true job_name: kubernetes-service-endpoints kubernetes_sd_configs: - role: endpoints relabel_configs: - action: keep regex: true source_labels: - __meta_kubernetes_service_annotation_prometheus_io_scrape - action: drop regex: true source_labels: - __meta_kubernetes_service_annotation_prometheus_io_scrape_slow - action: replace regex: (https?) source_labels: - __meta_kubernetes_service_annotation_prometheus_io_scheme target_label: __scheme__ - action: replace regex: (.+) source_labels: - __meta_kubernetes_service_annotation_prometheus_io_path target_label: __metrics_path__ - action: replace regex: (.+?)(?::\d+)?;(\d+) replacement: $1:$2 source_labels: - __address__ - __meta_kubernetes_service_annotation_prometheus_io_port target_label: __address__ - action: labelmap regex: __meta_kubernetes_service_annotation_prometheus_io_param_(.+) replacement: __param_$1 - action: labelmap regex: __meta_kubernetes_service_label_(.+) - action: replace source_labels: - __meta_kubernetes_namespace target_label: namespace - action: replace source_labels: - __meta_kubernetes_service_name target_label: service - action: replace source_labels: - __meta_kubernetes_pod_node_name target_label: node - honor_labels: true job_name: kubernetes-service-endpoints-slow kubernetes_sd_configs: - role: endpoints relabel_configs: - action: keep regex: true source_labels: - __meta_kubernetes_service_annotation_prometheus_io_scrape_slow - action: replace regex: (https?) source_labels: - __meta_kubernetes_service_annotation_prometheus_io_scheme target_label: __scheme__ - action: replace regex: (.+) source_labels: - __meta_kubernetes_service_annotation_prometheus_io_path target_label: __metrics_path__ - action: replace regex: (.+?)(?::\d+)?;(\d+) replacement: $1:$2 source_labels: - __address__ - __meta_kubernetes_service_annotation_prometheus_io_port target_label: __address__ - action: labelmap regex: __meta_kubernetes_service_annotation_prometheus_io_param_(.+) replacement: __param_$1 - action: labelmap regex: __meta_kubernetes_service_label_(.+) - action: replace source_labels: - __meta_kubernetes_namespace target_label: namespace - action: replace source_labels: - __meta_kubernetes_service_name target_label: service - action: replace source_labels: - __meta_kubernetes_pod_node_name target_label: node scrape_interval: 5m scrape_timeout: 30s - honor_labels: true job_name: prometheus-pushgateway kubernetes_sd_configs: - role: service relabel_configs: - action: keep regex: pushgateway source_labels: - __meta_kubernetes_service_annotation_prometheus_io_probe - honor_labels: true job_name: kubernetes-services kubernetes_sd_configs: - role: service metrics_path: /probe params: module: - http_2xx relabel_configs: - action: keep regex: true source_labels: - __meta_kubernetes_service_annotation_prometheus_io_probe - source_labels: - __address__ target_label: __param_target - replacement: blackbox target_label: __address__ - source_labels: - __param_target target_label: instance - action: labelmap regex: __meta_kubernetes_service_label_(.+) - source_labels: - __meta_kubernetes_namespace target_label: namespace - source_labels: - __meta_kubernetes_service_name target_label: service - honor_labels: true job_name: kubernetes-pods kubernetes_sd_configs: - role: pod relabel_configs: - action: keep regex: true source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_scrape - action: drop regex: true source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_scrape_slow - action: replace regex: (https?) source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_scheme target_label: __scheme__ - action: replace regex: (.+) source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_path target_label: __metrics_path__ - action: replace regex: (\d+);(([A-Fa-f0-9]{1,4}::?){1,7}[A-Fa-f0-9]{1,4}) replacement: '[$2]:$1' source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_port - __meta_kubernetes_pod_ip target_label: __address__ - action: replace regex: (\d+);((([0-9]+?)(\.|$)){4}) replacement: $2:$1 source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_port - __meta_kubernetes_pod_ip target_label: __address__ - action: labelmap regex: __meta_kubernetes_pod_annotation_prometheus_io_param_(.+) replacement: __param_$1 - action: labelmap regex: __meta_kubernetes_pod_label_(.+) - action: replace source_labels: - __meta_kubernetes_namespace target_label: namespace - action: replace source_labels: - __meta_kubernetes_pod_name target_label: pod - action: drop regex: Pending|Succeeded|Failed|Completed source_labels: - __meta_kubernetes_pod_phase - action: replace source_labels: - __meta_kubernetes_pod_node_name target_label: node - honor_labels: true job_name: kubernetes-pods-slow kubernetes_sd_configs: - role: pod relabel_configs: - action: keep regex: true source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_scrape_slow - action: replace regex: (https?) source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_scheme target_label: __scheme__ - action: replace regex: (.+) source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_path target_label: __metrics_path__ - action: replace regex: (\d+);(([A-Fa-f0-9]{1,4}::?){1,7}[A-Fa-f0-9]{1,4}) replacement: '[$2]:$1' source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_port - __meta_kubernetes_pod_ip target_label: __address__ - action: replace regex: (\d+);((([0-9]+?)(\.|$)){4}) replacement: $2:$1 source_labels: - __meta_kubernetes_pod_annotation_prometheus_io_port - __meta_kubernetes_pod_ip target_label: __address__ - action: labelmap regex: __meta_kubernetes_pod_annotation_prometheus_io_param_(.+) replacement: __param_$1 - action: labelmap regex: __meta_kubernetes_pod_label_(.+) - action: replace source_labels: - __meta_kubernetes_namespace target_label: namespace - action: replace source_labels: - __meta_kubernetes_pod_name target_label: pod - action: drop regex: Pending|Succeeded|Failed|Completed source_labels: - __meta_kubernetes_pod_phase - action: replace source_labels: - __meta_kubernetes_pod_node_name target_label: node scrape_interval: 5m scrape_timeout: 30s alerting: alertmanagers: - kubernetes_sd_configs: - role: pod tls_config: ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token relabel_configs: - source_labels: [__meta_kubernetes_namespace] regex: grafana-stack action: keep - source_labels: [__meta_kubernetes_pod_label_app_kubernetes_io_instance] regex: prometheus action: keep - source_labels: [__meta_kubernetes_pod_label_app_kubernetes_io_name] regex: alertmanager action: keep - source_labels: [__meta_kubernetes_pod_container_port_number] regex: "9093" action: keep recording_rules.yml: | {} rules: | {} --- # Source: prometheus/templates/pvc.yaml apiVersion: v1 kind: PersistentVolumeClaim metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus name: prometheus-server namespace: grafana-stack spec: accessModes: - ReadWriteOnce resources: requests: storage: "8Gi" --- # Source: prometheus/charts/kube-state-metrics/templates/role.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: labels: helm.sh/chart: kube-state-metrics-5.25.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: kube-state-metrics app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "2.13.0" name: prometheus-kube-state-metrics rules: - apiGroups: ["certificates.k8s.io"] resources: - certificatesigningrequests verbs: ["list", "watch"] - apiGroups: [""] resources: - configmaps verbs: ["list", "watch"] - apiGroups: ["batch"] resources: - cronjobs verbs: ["list", "watch"] - apiGroups: ["extensions", "apps"] resources: - daemonsets verbs: ["list", "watch"] - apiGroups: ["extensions", "apps"] resources: - deployments verbs: ["list", "watch"] - apiGroups: [""] resources: - endpoints verbs: ["list", "watch"] - apiGroups: ["autoscaling"] resources: - horizontalpodautoscalers verbs: ["list", "watch"] - apiGroups: ["extensions", "networking.k8s.io"] resources: - ingresses verbs: ["list", "watch"] - apiGroups: ["batch"] resources: - jobs verbs: ["list", "watch"] - apiGroups: ["coordination.k8s.io"] resources: - leases verbs: ["list", "watch"] - apiGroups: [""] resources: - limitranges verbs: ["list", "watch"] - apiGroups: ["admissionregistration.k8s.io"] resources: - mutatingwebhookconfigurations verbs: ["list", "watch"] - apiGroups: [""] resources: - namespaces verbs: ["list", "watch"] - apiGroups: ["networking.k8s.io"] resources: - networkpolicies verbs: ["list", "watch"] - apiGroups: [""] resources: - nodes verbs: ["list", "watch"] - apiGroups: [""] resources: - persistentvolumeclaims verbs: ["list", "watch"] - apiGroups: [""] resources: - persistentvolumes verbs: ["list", "watch"] - apiGroups: ["policy"] resources: - poddisruptionbudgets verbs: ["list", "watch"] - apiGroups: [""] resources: - pods verbs: ["list", "watch"] - apiGroups: ["extensions", "apps"] resources: - replicasets verbs: ["list", "watch"] - apiGroups: [""] resources: - replicationcontrollers verbs: ["list", "watch"] - apiGroups: [""] resources: - resourcequotas verbs: ["list", "watch"] - apiGroups: [""] resources: - secrets verbs: ["list", "watch"] - apiGroups: [""] resources: - services verbs: ["list", "watch"] - apiGroups: ["apps"] resources: - statefulsets verbs: ["list", "watch"] - apiGroups: ["storage.k8s.io"] resources: - storageclasses verbs: ["list", "watch"] - apiGroups: ["admissionregistration.k8s.io"] resources: - validatingwebhookconfigurations verbs: ["list", "watch"] - apiGroups: ["storage.k8s.io"] resources: - volumeattachments verbs: ["list", "watch"] --- # Source: prometheus/templates/clusterrole.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus name: prometheus-server rules: - apiGroups: - "" resources: - nodes - nodes/proxy - nodes/metrics - services - endpoints - pods - ingresses - configmaps verbs: - get - list - watch - apiGroups: - "extensions" - "networking.k8s.io" resources: - ingresses/status - ingresses verbs: - get - list - watch - apiGroups: - "discovery.k8s.io" resources: - endpointslices verbs: - get - list - watch - nonResourceURLs: - "/metrics" verbs: - get --- # Source: prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: helm.sh/chart: kube-state-metrics-5.25.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: kube-state-metrics app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "2.13.0" name: prometheus-kube-state-metrics roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: prometheus-kube-state-metrics subjects: - kind: ServiceAccount name: prometheus-kube-state-metrics namespace: grafana-stack --- # Source: prometheus/templates/clusterrolebinding.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus name: prometheus-server subjects: - kind: ServiceAccount name: prometheus-server namespace: grafana-stack roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: prometheus-server --- # Source: prometheus/charts/alertmanager/templates/services.yaml apiVersion: v1 kind: Service metadata: name: prometheus-alertmanager labels: helm.sh/chart: alertmanager-1.12.0 app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v0.27.0" app.kubernetes.io/managed-by: Helm namespace: grafana-stack spec: type: ClusterIP ports: - port: 9093 targetPort: http protocol: TCP name: http selector: app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus --- # Source: prometheus/charts/alertmanager/templates/services.yaml apiVersion: v1 kind: Service metadata: name: prometheus-alertmanager-headless labels: helm.sh/chart: alertmanager-1.12.0 app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v0.27.0" app.kubernetes.io/managed-by: Helm namespace: grafana-stack spec: clusterIP: None ports: - port: 9093 targetPort: http protocol: TCP name: http selector: app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus --- # Source: prometheus/charts/kube-state-metrics/templates/service.yaml apiVersion: v1 kind: Service metadata: name: prometheus-kube-state-metrics namespace: grafana-stack labels: helm.sh/chart: kube-state-metrics-5.25.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: kube-state-metrics app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "2.13.0" annotations: prometheus.io/scrape: 'true' spec: type: "ClusterIP" ports: - name: "http" protocol: TCP port: 8080 targetPort: 8080 selector: app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus --- # Source: prometheus/charts/prometheus-node-exporter/templates/service.yaml apiVersion: v1 kind: Service metadata: name: prometheus-prometheus-node-exporter namespace: grafana-stack labels: helm.sh/chart: prometheus-node-exporter-4.39.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: prometheus-node-exporter app.kubernetes.io/name: prometheus-node-exporter app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "1.8.2" annotations: prometheus.io/scrape: "true" spec: type: ClusterIP ports: - port: 9100 targetPort: 9100 protocol: TCP name: metrics selector: app.kubernetes.io/name: prometheus-node-exporter app.kubernetes.io/instance: prometheus --- # Source: prometheus/charts/prometheus-pushgateway/templates/service.yaml apiVersion: v1 kind: Service metadata: annotations: prometheus.io/probe: pushgateway labels: helm.sh/chart: prometheus-pushgateway-2.14.0 app.kubernetes.io/name: prometheus-pushgateway app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v1.9.0" app.kubernetes.io/managed-by: Helm name: prometheus-prometheus-pushgateway namespace: grafana-stack spec: type: ClusterIP ports: - port: 9091 targetPort: 9091 protocol: TCP name: http selector: app.kubernetes.io/name: prometheus-pushgateway app.kubernetes.io/instance: prometheus --- # Source: prometheus/templates/service.yaml apiVersion: v1 kind: Service metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus name: prometheus-server namespace: grafana-stack spec: ports: - name: http port: 80 protocol: TCP targetPort: 9090 selector: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus sessionAffinity: None type: "ClusterIP" --- # Source: prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml apiVersion: apps/v1 kind: DaemonSet metadata: name: prometheus-prometheus-node-exporter namespace: grafana-stack labels: helm.sh/chart: prometheus-node-exporter-4.39.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: prometheus-node-exporter app.kubernetes.io/name: prometheus-node-exporter app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "1.8.2" spec: selector: matchLabels: app.kubernetes.io/name: prometheus-node-exporter app.kubernetes.io/instance: prometheus revisionHistoryLimit: 10 updateStrategy: rollingUpdate: maxUnavailable: 1 type: RollingUpdate template: metadata: annotations: cluster-autoscaler.kubernetes.io/safe-to-evict: "true" labels: helm.sh/chart: prometheus-node-exporter-4.39.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: prometheus-node-exporter app.kubernetes.io/name: prometheus-node-exporter app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "1.8.2" spec: automountServiceAccountToken: false securityContext: fsGroup: 65534 runAsGroup: 65534 runAsNonRoot: true runAsUser: 65534 serviceAccountName: prometheus-prometheus-node-exporter containers: - name: node-exporter image: quay.io/prometheus/node-exporter:v1.8.2 imagePullPolicy: IfNotPresent args: - --path.procfs=/host/proc - --path.sysfs=/host/sys - --path.rootfs=/host/root - --path.udev.data=/host/root/run/udev/data - --web.listen-address=[$(HOST_IP)]:9100 securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true env: - name: HOST_IP value: 0.0.0.0 ports: - name: metrics containerPort: 9100 protocol: TCP livenessProbe: failureThreshold: 3 httpGet: httpHeaders: path: / port: 9100 scheme: HTTP initialDelaySeconds: 0 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 1 readinessProbe: failureThreshold: 3 httpGet: httpHeaders: path: / port: 9100 scheme: HTTP initialDelaySeconds: 0 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 1 volumeMounts: - name: proc mountPath: /host/proc readOnly: true - name: sys mountPath: /host/sys readOnly: true - name: root mountPath: /host/root mountPropagation: HostToContainer readOnly: true hostNetwork: true hostPID: true hostIPC: false nodeSelector: kubernetes.io/os: linux tolerations: - effect: NoSchedule operator: Exists volumes: - name: proc hostPath: path: /proc - name: sys hostPath: path: /sys - name: root hostPath: path: / --- # Source: prometheus/charts/kube-state-metrics/templates/deployment.yaml apiVersion: apps/v1 kind: Deployment metadata: name: prometheus-kube-state-metrics namespace: grafana-stack labels: helm.sh/chart: kube-state-metrics-5.25.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: kube-state-metrics app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "2.13.0" spec: selector: matchLabels: app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus replicas: 1 strategy: type: RollingUpdate revisionHistoryLimit: 10 template: metadata: labels: helm.sh/chart: kube-state-metrics-5.25.1 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: metrics app.kubernetes.io/part-of: kube-state-metrics app.kubernetes.io/name: kube-state-metrics app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "2.13.0" spec: automountServiceAccountToken: true hostNetwork: false serviceAccountName: prometheus-kube-state-metrics securityContext: fsGroup: 65534 runAsGroup: 65534 runAsNonRoot: true runAsUser: 65534 seccompProfile: type: RuntimeDefault containers: - name: kube-state-metrics args: - --port=8080 - --resources=certificatesigningrequests,configmaps,cronjobs,daemonsets,deployments,endpoints,horizontalpodautoscalers,ingresses,jobs,leases,limitranges,mutatingwebhookconfigurations,namespaces,networkpolicies,nodes,persistentvolumeclaims,persistentvolumes,poddisruptionbudgets,pods,replicasets,replicationcontrollers,resourcequotas,secrets,services,statefulsets,storageclasses,validatingwebhookconfigurations,volumeattachments imagePullPolicy: IfNotPresent image: registry.k8s.io/kube-state-metrics/kube-state-metrics:v2.13.0 ports: - containerPort: 8080 name: "http" livenessProbe: failureThreshold: 3 httpGet: httpHeaders: path: /livez port: 8080 scheme: HTTP initialDelaySeconds: 5 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 5 readinessProbe: failureThreshold: 3 httpGet: httpHeaders: path: /readyz port: 8080 scheme: HTTP initialDelaySeconds: 5 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 5 resources: {} securityContext: allowPrivilegeEscalation: false capabilities: drop: - ALL readOnlyRootFilesystem: true --- # Source: prometheus/charts/prometheus-pushgateway/templates/deployment.yaml apiVersion: apps/v1 kind: Deployment metadata: labels: helm.sh/chart: prometheus-pushgateway-2.14.0 app.kubernetes.io/name: prometheus-pushgateway app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v1.9.0" app.kubernetes.io/managed-by: Helm name: prometheus-prometheus-pushgateway namespace: grafana-stack spec: replicas: 1 strategy: type: Recreate selector: matchLabels: app.kubernetes.io/name: prometheus-pushgateway app.kubernetes.io/instance: prometheus template: metadata: labels: helm.sh/chart: prometheus-pushgateway-2.14.0 app.kubernetes.io/name: prometheus-pushgateway app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v1.9.0" app.kubernetes.io/managed-by: Helm spec: serviceAccountName: prometheus-prometheus-pushgateway automountServiceAccountToken: true containers: - name: pushgateway image: "quay.io/prometheus/pushgateway:v1.9.0" imagePullPolicy: IfNotPresent ports: - name: metrics containerPort: 9091 protocol: TCP livenessProbe: httpGet: path: /-/healthy port: 9091 initialDelaySeconds: 10 timeoutSeconds: 10 readinessProbe: httpGet: path: /-/ready port: 9091 initialDelaySeconds: 10 timeoutSeconds: 10 volumeMounts: - name: storage-volume mountPath: "/data" subPath: "" securityContext: fsGroup: 65534 runAsNonRoot: true runAsUser: 65534 volumes: - name: storage-volume emptyDir: {} --- # Source: prometheus/templates/deploy.yaml apiVersion: apps/v1 kind: Deployment metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus name: prometheus-server namespace: grafana-stack spec: selector: matchLabels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus replicas: 1 revisionHistoryLimit: 10 strategy: type: Recreate rollingUpdate: null template: metadata: labels: app.kubernetes.io/component: server app.kubernetes.io/name: prometheus app.kubernetes.io/instance: prometheus app.kubernetes.io/version: v2.54.1 helm.sh/chart: prometheus-25.27.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: prometheus spec: enableServiceLinks: true serviceAccountName: prometheus-server containers: - name: prometheus-server-configmap-reload image: "quay.io/prometheus-operator/prometheus-config-reloader:v0.76.0" imagePullPolicy: "IfNotPresent" args: - --watched-dir=/etc/config - --listen-address=0.0.0.0:8080 - --reload-url=http://127.0.0.1:9090/-/reload ports: - containerPort: 8080 name: metrics livenessProbe: httpGet: path: /healthz port: metrics scheme: HTTP initialDelaySeconds: 2 periodSeconds: 10 readinessProbe: httpGet: path: /healthz port: metrics scheme: HTTP periodSeconds: 10 volumeMounts: - name: config-volume mountPath: /etc/config readOnly: true - name: prometheus-server image: "quay.io/prometheus/prometheus:v2.54.1" imagePullPolicy: "IfNotPresent" args: - --storage.tsdb.retention.time=15d - --config.file=/etc/config/prometheus.yml - --storage.tsdb.path=/data - --web.console.libraries=/etc/prometheus/console_libraries - --web.console.templates=/etc/prometheus/consoles - --web.enable-lifecycle ports: - containerPort: 9090 readinessProbe: httpGet: path: /-/ready port: 9090 scheme: HTTP initialDelaySeconds: 30 periodSeconds: 5 timeoutSeconds: 4 failureThreshold: 3 successThreshold: 1 livenessProbe: httpGet: path: /-/healthy port: 9090 scheme: HTTP initialDelaySeconds: 30 periodSeconds: 15 timeoutSeconds: 10 failureThreshold: 3 successThreshold: 1 volumeMounts: - name: config-volume mountPath: /etc/config - name: storage-volume mountPath: /data subPath: "" dnsPolicy: ClusterFirst securityContext: fsGroup: 65534 runAsGroup: 65534 runAsNonRoot: true runAsUser: 65534 terminationGracePeriodSeconds: 300 volumes: - name: config-volume configMap: name: prometheus-server - name: storage-volume persistentVolumeClaim: claimName: prometheus-server --- # Source: prometheus/charts/alertmanager/templates/statefulset.yaml apiVersion: apps/v1 kind: StatefulSet metadata: name: prometheus-alertmanager labels: helm.sh/chart: alertmanager-1.12.0 app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus app.kubernetes.io/version: "v0.27.0" app.kubernetes.io/managed-by: Helm namespace: grafana-stack spec: replicas: 1 minReadySeconds: 0 revisionHistoryLimit: 10 selector: matchLabels: app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus serviceName: prometheus-alertmanager-headless template: metadata: labels: app.kubernetes.io/name: alertmanager app.kubernetes.io/instance: prometheus annotations: checksum/config: d06fcdcd29cc1c743206dc3fe82368d2ef6f83bb14257c729a029bf34f19e338 spec: automountServiceAccountToken: true serviceAccountName: prometheus-alertmanager securityContext: fsGroup: 65534 runAsGroup: 65534 runAsNonRoot: true runAsUser: 65534 containers: - name: alertmanager securityContext: runAsGroup: 65534 runAsNonRoot: true runAsUser: 65534 image: "quay.io/prometheus/alertmanager:v0.27.0" imagePullPolicy: IfNotPresent env: - name: POD_IP valueFrom: fieldRef: apiVersion: v1 fieldPath: status.podIP args: - --storage.path=/alertmanager - --config.file=/etc/alertmanager/alertmanager.yml ports: - name: http containerPort: 9093 protocol: TCP livenessProbe: httpGet: path: / port: http readinessProbe: httpGet: path: / port: http resources: {} volumeMounts: - name: config mountPath: /etc/alertmanager - name: storage mountPath: /alertmanager volumes: - name: config configMap: name: prometheus-alertmanager volumeClaimTemplates: - metadata: name: storage spec: accessModes: - ReadWriteOnce resources: requests: storage: 2Gi
zking2000
commented
2 months ago zking2000
commented
2 months ago