depot/cluster/services/monitoring/default.nix

{ config, lib, ... }:

let
  nodeFor = nodeType: builtins.head config.services.monitoring.nodes.${nodeType};

  meshIpFor = nodeType: config.vars.mesh.${nodeFor nodeType}.meshIp;

  meshIpForNode = name: config.vars.mesh.${name}.meshIp;
in

{
  imports = [
    ./options.nix
  ];

  links = {
    prometheus-ingest = {
      protocol = "http";
      ipv4 = meshIpFor "server";
    };
  };
  hostLinks = lib.genAttrs config.services.monitoring.nodes.grafana (name: {
    grafana = {
      protocol = "http";
      ipv4 = meshIpForNode name;
    };
  });
  services.monitoring = {
    nodes = {
      client = [ "checkmate" "grail" "thunderskin" "VEGAS" "prophet" ];
      blackbox = [ "checkmate" "grail" "prophet" ];
      grafana = [ "VEGAS" "prophet" ];
      logging = [ "VEGAS" "grail" ];
      tracing = [ "VEGAS" "grail" ];
      server = [ "VEGAS" ];
    };
    nixos = {
      client = ./client.nix;
      blackbox = ./blackbox.nix;
      grafana = [
        ./grafana-ha.nix
        ./provisioning/dashboards.nix
      ];
      logging = ./logging.nix;
      tracing = ./tracing.nix;
      server = [
        ./server.nix
      ];
    };
    meshLinks = {
      logging.loki.link.protocol = "http";
      tracing = {
        tempo.link.protocol = "http";
        tempo-otlp-http.link.protocol = "http";
        tempo-otlp-grpc.link.protocol = "grpc";
        tempo-zipkin-http.link.protocol = "http";
      };
    };
  };

  garage = config.lib.forService "monitoring" {
    keys = {
      loki-ingest.locksmith = {
        nodes = config.services.monitoring.nodes.logging;
        format = "envFile";
      };
      loki-query.locksmith = {
        nodes = config.services.monitoring.nodes.logging;
        format = "envFile";
      };
      tempo-ingest.locksmith = {
        nodes = config.services.monitoring.nodes.tracing;
        format = "envFile";
      };
      tempo-query.locksmith = {
        nodes = config.services.monitoring.nodes.tracing;
        format = "envFile";
      };
    };
    buckets = {
      loki-chunks.allow = {
        loki-ingest = [ "read" "write" ];
        loki-query = [ "read" ];
      };
      tempo-chunks.allow = {
        tempo-ingest = [ "read" "write" ];
        tempo-query = [ "read" ];
      };
    };
  };

  ways = let
    query = consulService: {
      inherit consulService;
      internal = true;
      extras.extraConfig = ''
        proxy_read_timeout 3600s;
      '';
    };
    ingest = consulService: {
      inherit consulService;
      internal = true;
      extras.extraConfig = ''
        client_max_body_size 4G;
        proxy_read_timeout 3600s;
      '';
    };
  in config.lib.forService "monitoring" {
    monitoring = {
      consulService = "grafana";
      extras.locations."/".proxyWebsockets = true;
    };
    monitoring-logs = query "loki";
    monitoring-traces = query "tempo";
    ingest-logs = ingest "loki";
    ingest-traces-otlp = ingest "tempo-ingest-otlp-grpc" // { grpc = true; };
  };
}
cluster/services/monitoring: make grafana highly available 2023-06-03 01:33:51 +03:00			`{ config, lib, ... }:`
modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00
VEGAS/monitoring: move to cluster 2023-05-10 00:13:30 +03:00			`let`
			`nodeFor = nodeType: builtins.head config.services.monitoring.nodes.${nodeType};`

			`meshIpFor = nodeType: config.vars.mesh.${nodeFor nodeType}.meshIp;`
cluster/services/monitoring: make grafana highly available 2023-06-03 01:33:51 +03:00
			`meshIpForNode = name: config.vars.mesh.${name}.meshIp;`
VEGAS/monitoring: move to cluster 2023-05-10 00:13:30 +03:00			`in`

modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`{`
cluster/services/monitoring: make blackbox targets configurable through cluster config 2023-06-05 00:06:53 +03:00			`imports = [`
			`./options.nix`
			`];`

modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`links = {`
cluster/services/monitoring: make Prometheus accessible in host mesh 2023-05-26 17:26:24 +03:00			`prometheus-ingest = {`
			`protocol = "http";`
			`ipv4 = meshIpFor "server";`
			`};`
modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`};`
cluster/services/monitoring: make grafana highly available 2023-06-03 01:33:51 +03:00			`hostLinks = lib.genAttrs config.services.monitoring.nodes.grafana (name: {`
			`grafana = {`
			`protocol = "http";`
			`ipv4 = meshIpForNode name;`
			`};`
			`});`
modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`services.monitoring = {`
			`nodes = {`
cluster/services/monitoring: enable monitoring on grail 2023-11-04 02:24:34 +02:00			`client = [ "checkmate" "grail" "thunderskin" "VEGAS" "prophet" ];`
cluster/services/monitoring: move one blackbox agent from VEGAS to grail 2023-11-05 01:12:19 +02:00			`blackbox = [ "checkmate" "grail" "prophet" ];`
cluster/services/monitoring: make grafana highly available 2023-06-03 01:33:51 +03:00			`grafana = [ "VEGAS" "prophet" ];`
cluster/services/monitoring: make loki HA 2024-08-03 01:56:13 +03:00			`logging = [ "VEGAS" "grail" ];`
cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`tracing = [ "VEGAS" "grail" ];`
VEGAS/monitoring: move to cluster 2023-05-10 00:13:30 +03:00			`server = [ "VEGAS" ];`
modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`};`
			`nixos = {`
			`client = ./client.nix;`
cluster/services/monitoring: add blackbox_exporter 2023-05-27 14:44:31 +03:00			`blackbox = ./blackbox.nix;`
cluster/services/monitoring: provision dashboards correctly 2024-07-08 23:00:00 +03:00			`grafana = [`
			`./grafana-ha.nix`
			`./provisioning/dashboards.nix`
			`];`
VEGAS/monitoring: move to cluster 2023-05-10 00:13:30 +03:00			`logging = ./logging.nix;`
cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`tracing = ./tracing.nix;`
VEGAS/monitoring: move to cluster 2023-05-10 00:13:30 +03:00			`server = [`
			`./server.nix`
			`];`
modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`};`
cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`meshLinks = {`
			`logging.loki.link.protocol = "http";`
			`tracing = {`
			`tempo.link.protocol = "http";`
			`tempo-otlp-http.link.protocol = "http";`
			`tempo-otlp-grpc.link.protocol = "grpc";`
			`tempo-zipkin-http.link.protocol = "http";`
			`};`
			`};`
modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`};`
cluster/services/monitoring: add dns records 2023-11-03 00:15:09 +02:00
cluster/services/monitoring: use forService 2024-08-03 03:33:20 +03:00			`garage = config.lib.forService "monitoring" {`
cluster/services/monitoring: create buckets for loki and tempo 2023-11-06 21:53:06 +02:00			`keys = {`
cluster/services/monitoring: use lockmith for loki 2024-08-03 01:37:06 +03:00			`loki-ingest.locksmith = {`
			`nodes = config.services.monitoring.nodes.logging;`
			`format = "envFile";`
			`};`
			`loki-query.locksmith = {`
			`nodes = config.services.monitoring.nodes.logging;`
			`format = "envFile";`
			`};`
cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`tempo-ingest.locksmith = {`
			`nodes = config.services.monitoring.nodes.tracing;`
			`format = "envFile";`
			`};`
			`tempo-query.locksmith = {`
			`nodes = config.services.monitoring.nodes.tracing;`
			`format = "envFile";`
			`};`
cluster/services/monitoring: create buckets for loki and tempo 2023-11-06 21:53:06 +02:00			`};`
			`buckets = {`
cluster/services/monitoring: use lockmith for loki 2024-08-03 01:37:06 +03:00			`loki-chunks.allow = {`
			`loki-ingest = [ "read" "write" ];`
			`loki-query = [ "read" ];`
			`};`
cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`tempo-chunks.allow = {`
			`tempo-ingest = [ "read" "write" ];`
			`tempo-query = [ "read" ];`
			`};`
cluster/services/monitoring: create buckets for loki and tempo 2023-11-06 21:53:06 +02:00			`};`
			`};`

cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`ways = let`
			`query = consulService: {`
			`inherit consulService;`
cluster/services/monitoring: add ingest-logs endpoint 2024-08-23 01:32:44 +03:00			`internal = true;`
			`extras.extraConfig = ''`
			`proxy_read_timeout 3600s;`
			`'';`
			`};`
cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`ingest = consulService: {`
			`inherit consulService;`
cluster/services/monitoring: run loki over ways 2024-08-03 01:12:15 +03:00			`internal = true;`
			`extras.extraConfig = ''`
			`client_max_body_size 4G;`
			`proxy_read_timeout 3600s;`
			`'';`
			`};`
cluster/services/monitoring: make tempo HA 2024-08-23 03:50:18 +03:00			`in config.lib.forService "monitoring" {`
			`monitoring = {`
			`consulService = "grafana";`
			`extras.locations."/".proxyWebsockets = true;`
			`};`
			`monitoring-logs = query "loki";`
			`monitoring-traces = query "tempo";`
			`ingest-logs = ingest "loki";`
			`ingest-traces-otlp = ingest "tempo-ingest-otlp-grpc" // { grpc = true; };`
cluster/services/monitoring: switch to ways 2024-07-04 18:31:59 +03:00			`};`
modules/monitoring: convert to cluster service 2022-08-04 00:36:11 +03:00			`}`