mirror of https://github.com/grafana/loki
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
721 lines
29 KiB
721 lines
29 KiB
apiVersion: operators.coreos.com/v1alpha1
|
|
kind: ClusterServiceVersion
|
|
metadata:
|
|
annotations:
|
|
alm-examples: |-
|
|
[
|
|
{
|
|
"apiVersion": "loki.grafana.com/v1beta1",
|
|
"kind": "LokiStack",
|
|
"metadata": {
|
|
"name": "lokistack-sample"
|
|
},
|
|
"spec": {
|
|
"size": "1x.small",
|
|
"storage": {
|
|
"secret": {
|
|
"name": "test"
|
|
}
|
|
},
|
|
"storageClassName": "standard"
|
|
}
|
|
}
|
|
]
|
|
capabilities: Full Lifecycle
|
|
categories: OpenShift Optional, Logging & Tracing
|
|
certified: "false"
|
|
containerImage: quay.io/openshift-logging/loki-operator:v0.0.1
|
|
description: |
|
|
The Loki Operator for OCP provides a means for configuring and managing a Loki stack for cluster logging.
|
|
## Prerequisites and Requirements
|
|
### Loki Operator Namespace
|
|
The Loki Operator must be deployed to the global operator group namespace `openshift-logging`.
|
|
### Memory Considerations
|
|
Loki is a memory intensive application. The initial
|
|
set of OCP nodes may not be large enough to support the Loki stack. Additional OCP nodes must be added
|
|
to the OCP cluster if you desire to run with the recommended (or better) memory.
|
|
olm.skipRange: '>=5.4.0-0 <5.5.0'
|
|
operatorframework.io/cluster-monitoring: "true"
|
|
operatorframework.io/suggested-namespace: openshift-operators-redhat
|
|
operators.operatorframework.io/builder: operator-sdk-unknown
|
|
operators.operatorframework.io/project_layout: go.kubebuilder.io/v3
|
|
support: AOS Cluster Logging
|
|
labels:
|
|
operatorframework.io/arch.amd64: supported
|
|
operatorframework.io/arch.arm64: supported
|
|
operatorframework.io/arch.ppc64le: supported
|
|
operatorframework.io/arch.s390x: supported
|
|
name: loki-operator.v0.0.1
|
|
namespace: placeholder
|
|
spec:
|
|
apiservicedefinitions: {}
|
|
customresourcedefinitions:
|
|
owned:
|
|
- description: LokiStack is the Schema for the lokistacks API
|
|
displayName: LokiStack
|
|
kind: LokiStack
|
|
name: lokistacks.loki.grafana.com
|
|
resources:
|
|
- kind: ConfigMap
|
|
name: ""
|
|
version: v1
|
|
- kind: Deployment
|
|
name: ""
|
|
version: v1
|
|
- kind: Ingress
|
|
name: ""
|
|
version: v1
|
|
- kind: PersistentVolumeClaims
|
|
name: ""
|
|
version: v1
|
|
- kind: Route
|
|
name: ""
|
|
version: v1
|
|
- kind: Service
|
|
name: ""
|
|
version: v1
|
|
- kind: ServiceAccount
|
|
name: ""
|
|
version: v1
|
|
- kind: ServiceMonitor
|
|
name: ""
|
|
version: v1
|
|
- kind: StatefulSet
|
|
name: ""
|
|
version: v1
|
|
specDescriptors:
|
|
- description: Limits defines the limits to be applied to log stream processing.
|
|
displayName: Rate Limiting
|
|
path: limits
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:advanced
|
|
- description: Global defines the limits applied globally across the cluster.
|
|
displayName: Global Limits
|
|
path: limits.global
|
|
- description: IngestionBurstSize defines the local rate-limited sample size
|
|
per distributor replica. It should be set to the set at least to the maximum
|
|
logs size expected in a single push request.
|
|
displayName: Ingestion Burst Size (in MB)
|
|
path: limits.global.ingestion.ingestionBurstSize
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: IngestionRate defines the sample size per second. Units MB.
|
|
displayName: Ingestion Rate (in MB)
|
|
path: limits.global.ingestion.ingestionRate
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxGlobalStreamsPerTenant defines the maximum number of active
|
|
streams per tenant, across the cluster.
|
|
displayName: Max Global Streams per Tenant
|
|
path: limits.global.ingestion.maxGlobalStreamsPerTenant
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLabelNameLength defines the maximum number of characters allowed
|
|
for label keys in log streams.
|
|
displayName: Max Label Name Length
|
|
path: limits.global.ingestion.maxLabelNameLength
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLabelNamesPerSeries defines the maximum number of label names
|
|
per series in each log stream.
|
|
displayName: Max Labels Names per Series
|
|
path: limits.global.ingestion.maxLabelNamesPerSeries
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLabelValueLength defines the maximum number of characters
|
|
allowed for label values in log streams.
|
|
displayName: Max Label Value Length
|
|
path: limits.global.ingestion.maxLabelValueLength
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLineSize defines the maximum line size on ingestion path.
|
|
Units in Bytes.
|
|
displayName: Max Line Size
|
|
path: limits.global.ingestion.maxLineSize
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxChunksPerQuery defines the maximum number of chunks that can
|
|
be fetched by a single query.
|
|
displayName: Max Chunk per Query
|
|
path: limits.global.queries.maxChunksPerQuery
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxEntriesLimitsPerQuery defines the maximum number of log entries
|
|
that will be returned for a query.
|
|
displayName: Max Entries Limit per Query
|
|
path: limits.global.queries.maxEntriesLimitPerQuery
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxQuerySeries defines the the maximum of unique series that
|
|
is returned by a metric query.
|
|
displayName: Max Query Series
|
|
path: limits.global.queries.maxQuerySeries
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: Tenants defines the limits applied per tenant.
|
|
displayName: Limits per Tenant
|
|
path: limits.tenants
|
|
- description: IngestionBurstSize defines the local rate-limited sample size
|
|
per distributor replica. It should be set to the set at least to the maximum
|
|
logs size expected in a single push request.
|
|
displayName: Ingestion Burst Size (in MB)
|
|
path: limits.tenants.ingestion.ingestionBurstSize
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: IngestionRate defines the sample size per second. Units MB.
|
|
displayName: Ingestion Rate (in MB)
|
|
path: limits.tenants.ingestion.ingestionRate
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxGlobalStreamsPerTenant defines the maximum number of active
|
|
streams per tenant, across the cluster.
|
|
displayName: Max Global Streams per Tenant
|
|
path: limits.tenants.ingestion.maxGlobalStreamsPerTenant
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLabelNameLength defines the maximum number of characters allowed
|
|
for label keys in log streams.
|
|
displayName: Max Label Name Length
|
|
path: limits.tenants.ingestion.maxLabelNameLength
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLabelNamesPerSeries defines the maximum number of label names
|
|
per series in each log stream.
|
|
displayName: Max Labels Names per Series
|
|
path: limits.tenants.ingestion.maxLabelNamesPerSeries
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLabelValueLength defines the maximum number of characters
|
|
allowed for label values in log streams.
|
|
displayName: Max Label Value Length
|
|
path: limits.tenants.ingestion.maxLabelValueLength
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxLineSize defines the maximum line size on ingestion path.
|
|
Units in Bytes.
|
|
displayName: Max Line Size
|
|
path: limits.tenants.ingestion.maxLineSize
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxChunksPerQuery defines the maximum number of chunks that can
|
|
be fetched by a single query.
|
|
displayName: Max Chunk per Query
|
|
path: limits.tenants.queries.maxChunksPerQuery
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxEntriesLimitsPerQuery defines the maximum number of log entries
|
|
that will be returned for a query.
|
|
displayName: Max Entries Limit per Query
|
|
path: limits.tenants.queries.maxEntriesLimitPerQuery
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: MaxQuerySeries defines the the maximum of unique series that
|
|
is returned by a metric query.
|
|
displayName: Max Query Series
|
|
path: limits.tenants.queries.maxQuerySeries
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: ManagementState defines if the CR should be managed by the operator
|
|
or not. Default is managed.
|
|
displayName: Management State
|
|
path: managementState
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:select:Managed
|
|
- urn:alm:descriptor:com.tectonic.ui:select:Unmanaged
|
|
- description: ReplicationFactor defines the policy for log stream replication.
|
|
displayName: Replication Factor
|
|
path: replicationFactor
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:number
|
|
- description: Size defines one of the support Loki deployment scale out sizes.
|
|
displayName: LokiStack Size
|
|
path: size
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:select:1x.extra-small
|
|
- urn:alm:descriptor:com.tectonic.ui:select:1x.small
|
|
- urn:alm:descriptor:com.tectonic.ui:select:1x.medium
|
|
- description: Storage defines the spec for the object storage endpoint to store
|
|
logs.
|
|
displayName: Object Storage
|
|
path: storage
|
|
- description: Name of a secret in the namespace configured for object storage
|
|
secrets.
|
|
displayName: Object Storage Secret Name
|
|
path: storage.secret.name
|
|
x-descriptors:
|
|
- urn:alm:descriptor:io.kubernetes:Secret
|
|
- description: Type of object storage that should be used
|
|
displayName: Object Storage Secret Type
|
|
path: storage.secret.type
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:select:azure
|
|
- urn:alm:descriptor:com.tectonic.ui:select:gcs
|
|
- urn:alm:descriptor:com.tectonic.ui:select:s3
|
|
- urn:alm:descriptor:com.tectonic.ui:select:swift
|
|
- description: Storage class name defines the storage class for ingester/querier
|
|
PVCs.
|
|
displayName: Storage Class Name
|
|
path: storageClassName
|
|
x-descriptors:
|
|
- urn:alm:descriptor:io.kubernetes:StorageClass
|
|
- description: Template defines the resource/limits/tolerations/nodeselectors
|
|
per component
|
|
displayName: Node Placement
|
|
path: template
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:advanced
|
|
- description: Compactor defines the compaction component spec.
|
|
displayName: Compactor pods
|
|
path: template.compactor
|
|
- description: Replicas defines the number of replica pods of the component.
|
|
displayName: Replicas
|
|
path: template.compactor.replicas
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:hidden
|
|
- description: Distributor defines the distributor component spec.
|
|
displayName: Distributor pods
|
|
path: template.distributor
|
|
- description: Replicas defines the number of replica pods of the component.
|
|
displayName: Replicas
|
|
path: template.distributor.replicas
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:hidden
|
|
- description: Gateway defines the lokistack gateway component spec.
|
|
displayName: Gateway pods
|
|
path: template.gateway
|
|
- description: Replicas defines the number of replica pods of the component.
|
|
displayName: Replicas
|
|
path: template.gateway.replicas
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:hidden
|
|
- description: IndexGateway defines the index gateway component spec.
|
|
displayName: Index Gateway pods
|
|
path: template.indexGateway
|
|
- description: Replicas defines the number of replica pods of the component.
|
|
displayName: Replicas
|
|
path: template.indexGateway.replicas
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:hidden
|
|
- description: Ingester defines the ingester component spec.
|
|
displayName: Ingester pods
|
|
path: template.ingester
|
|
- description: Replicas defines the number of replica pods of the component.
|
|
displayName: Replicas
|
|
path: template.ingester.replicas
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:hidden
|
|
- description: Querier defines the querier component spec.
|
|
displayName: Querier pods
|
|
path: template.querier
|
|
- description: Replicas defines the number of replica pods of the component.
|
|
displayName: Replicas
|
|
path: template.querier.replicas
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:hidden
|
|
- description: QueryFrontend defines the query frontend component spec.
|
|
displayName: Query Frontend pods
|
|
path: template.queryFrontend
|
|
- description: Replicas defines the number of replica pods of the component.
|
|
displayName: Replicas
|
|
path: template.queryFrontend.replicas
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:hidden
|
|
- description: Tenants defines the per-tenant authentication and authorization
|
|
spec for the lokistack-gateway component.
|
|
displayName: Tenants Configuration
|
|
path: tenants
|
|
- description: Authentication defines the lokistack-gateway component authentication
|
|
configuration spec per tenant.
|
|
displayName: Authentication
|
|
path: tenants.authentication
|
|
- description: OIDC defines the spec for the OIDC tenant's authentication.
|
|
displayName: OIDC Configuration
|
|
path: tenants.authentication[0].oidc
|
|
- description: IssuerURL defines the URL for issuer.
|
|
displayName: Issuer URL
|
|
path: tenants.authentication[0].oidc.issuerURL
|
|
- description: RedirectURL defines the URL for redirect.
|
|
displayName: Redirect URL
|
|
path: tenants.authentication[0].oidc.redirectURL
|
|
- description: Secret defines the spec for the clientID, clientSecret and issuerCAPath
|
|
for tenant's authentication.
|
|
displayName: Tenant Secret
|
|
path: tenants.authentication[0].oidc.secret
|
|
- description: Name of a secret in the namespace configured for tenant secrets.
|
|
displayName: Tenant Secret Name
|
|
path: tenants.authentication[0].oidc.secret.name
|
|
x-descriptors:
|
|
- urn:alm:descriptor:io.kubernetes:Secret
|
|
- description: TenantID defines the id of the tenant.
|
|
displayName: Tenant ID
|
|
path: tenants.authentication[0].tenantId
|
|
- description: TenantName defines the name of the tenant.
|
|
displayName: Tenant Name
|
|
path: tenants.authentication[0].tenantName
|
|
- description: Authorization defines the lokistack-gateway component authorization
|
|
configuration spec per tenant.
|
|
displayName: Authorization
|
|
path: tenants.authorization
|
|
- description: OPA defines the spec for the third-party endpoint for tenant's
|
|
authorization.
|
|
displayName: OPA Configuration
|
|
path: tenants.authorization.opa
|
|
- description: URL defines the third-party endpoint for authorization.
|
|
displayName: OpenPolicyAgent URL
|
|
path: tenants.authorization.opa.url
|
|
- description: RoleBindings defines configuration to bind a set of roles to
|
|
a set of subjects.
|
|
displayName: Static Role Bindings
|
|
path: tenants.authorization.roleBindings
|
|
- description: Roles defines a set of permissions to interact with a tenant.
|
|
displayName: Static Roles
|
|
path: tenants.authorization.roles
|
|
- description: Mode defines the mode in which lokistack-gateway component will
|
|
be configured.
|
|
displayName: Mode
|
|
path: tenants.mode
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:select:static
|
|
- urn:alm:descriptor:com.tectonic.ui:select:dynamic
|
|
- urn:alm:descriptor:com.tectonic.ui:select:openshift-logging
|
|
statusDescriptors:
|
|
- description: Distributor is a map to the per pod status of the distributor
|
|
deployment
|
|
displayName: Distributor
|
|
path: components.distributor
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:podStatuses
|
|
- description: Ingester is a map to the per pod status of the ingester statefulset
|
|
displayName: Ingester
|
|
path: components.ingester
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:podStatuses
|
|
- description: Querier is a map to the per pod status of the querier deployment
|
|
displayName: Querier
|
|
path: components.querier
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:podStatuses
|
|
- description: QueryFrontend is a map to the per pod status of the query frontend
|
|
deployment
|
|
displayName: Query Frontend
|
|
path: components.queryFrontend
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:podStatuses
|
|
- description: Compactor is a map to the pod status of the compactor pod.
|
|
displayName: Compactor
|
|
path: components.compactor
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:podStatuses
|
|
- description: Gateway is a map to the per pod status of the lokistack gateway
|
|
deployment.
|
|
displayName: Gateway
|
|
path: components.gateway
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:podStatuses
|
|
- description: IndexGateway is a map to the per pod status of the index gateway
|
|
statefulset
|
|
displayName: IndexGateway
|
|
path: components.indexGateway
|
|
x-descriptors:
|
|
- urn:alm:descriptor:com.tectonic.ui:podStatuses
|
|
- description: Conditions of the Loki deployment health.
|
|
displayName: Conditions
|
|
path: conditions
|
|
x-descriptors:
|
|
- urn:alm:descriptor:io.kubernetes.conditions
|
|
version: v1beta1
|
|
description: |
|
|
The Loki Operator for OCP provides a means for configuring and managing a Loki stack for cluster logging.
|
|
## Prerequisites and Requirements
|
|
### Loki Operator Namespace
|
|
The Loki Operator must be deployed to the global operator group namespace `openshift-logging`.
|
|
### Memory Considerations
|
|
Loki is a memory intensive application. The initial
|
|
set of OCP nodes may not be large enough to support the Loki cluster. Additional OCP nodes must be added
|
|
to the OCP cluster if you desire to run with the recommended (or better) memory.
|
|
displayName: Loki Operator
|
|
icon:
|
|
- base64data: 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
|
|
mediatype: image/svg+xml
|
|
install:
|
|
spec:
|
|
clusterPermissions:
|
|
- rules:
|
|
- apiGroups:
|
|
- ""
|
|
resources:
|
|
- configmaps
|
|
- endpoints
|
|
- nodes
|
|
- pods
|
|
- serviceaccounts
|
|
- services
|
|
verbs:
|
|
- create
|
|
- delete
|
|
- get
|
|
- list
|
|
- patch
|
|
- update
|
|
- watch
|
|
- apiGroups:
|
|
- ""
|
|
resources:
|
|
- secrets
|
|
verbs:
|
|
- get
|
|
- list
|
|
- watch
|
|
- apiGroups:
|
|
- apps
|
|
resources:
|
|
- deployments
|
|
- statefulsets
|
|
verbs:
|
|
- create
|
|
- delete
|
|
- get
|
|
- list
|
|
- patch
|
|
- update
|
|
- watch
|
|
- apiGroups:
|
|
- config.openshift.io
|
|
resources:
|
|
- dnses
|
|
verbs:
|
|
- get
|
|
- list
|
|
- watch
|
|
- apiGroups:
|
|
- coordination.k8s.io
|
|
resources:
|
|
- leases
|
|
verbs:
|
|
- create
|
|
- get
|
|
- update
|
|
- apiGroups:
|
|
- loki.grafana.com
|
|
resources:
|
|
- lokistacks
|
|
verbs:
|
|
- create
|
|
- delete
|
|
- get
|
|
- list
|
|
- patch
|
|
- update
|
|
- watch
|
|
- apiGroups:
|
|
- loki.grafana.com
|
|
resources:
|
|
- lokistacks/finalizers
|
|
verbs:
|
|
- update
|
|
- apiGroups:
|
|
- loki.grafana.com
|
|
resources:
|
|
- lokistacks/status
|
|
verbs:
|
|
- get
|
|
- patch
|
|
- update
|
|
- apiGroups:
|
|
- monitoring.coreos.com
|
|
resources:
|
|
- prometheusrules
|
|
- servicemonitors
|
|
verbs:
|
|
- create
|
|
- get
|
|
- list
|
|
- update
|
|
- watch
|
|
- apiGroups:
|
|
- networking.k8s.io
|
|
resources:
|
|
- ingresses
|
|
verbs:
|
|
- create
|
|
- get
|
|
- list
|
|
- update
|
|
- watch
|
|
- apiGroups:
|
|
- rbac.authorization.k8s.io
|
|
resources:
|
|
- clusterrolebindings
|
|
- clusterroles
|
|
- rolebindings
|
|
- roles
|
|
verbs:
|
|
- create
|
|
- delete
|
|
- get
|
|
- list
|
|
- patch
|
|
- update
|
|
- watch
|
|
- apiGroups:
|
|
- route.openshift.io
|
|
resources:
|
|
- routes
|
|
verbs:
|
|
- create
|
|
- get
|
|
- list
|
|
- update
|
|
- watch
|
|
- apiGroups:
|
|
- authentication.k8s.io
|
|
resources:
|
|
- tokenreviews
|
|
verbs:
|
|
- create
|
|
- apiGroups:
|
|
- authorization.k8s.io
|
|
resources:
|
|
- subjectaccessreviews
|
|
verbs:
|
|
- create
|
|
serviceAccountName: default
|
|
deployments:
|
|
- name: loki-operator-controller-manager
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app.kubernetes.io/managed-by: operator-lifecycle-manager
|
|
app.kubernetes.io/name: loki-operator
|
|
app.kubernetes.io/part-of: cluster-logging
|
|
name: loki-operator-controller-manager
|
|
strategy: {}
|
|
template:
|
|
metadata:
|
|
annotations:
|
|
kubectl.kubernetes.io/default-container: manager
|
|
labels:
|
|
app.kubernetes.io/managed-by: operator-lifecycle-manager
|
|
app.kubernetes.io/name: loki-operator
|
|
app.kubernetes.io/part-of: cluster-logging
|
|
name: loki-operator-controller-manager
|
|
spec:
|
|
containers:
|
|
- args:
|
|
- --with-lokistack-gateway
|
|
- --with-lokistack-gateway-route
|
|
- --with-cert-signing-service
|
|
- --with-service-monitors
|
|
- --with-tls-service-monitors
|
|
- --with-prometheus-alerts
|
|
command:
|
|
- /manager
|
|
env:
|
|
- name: RELATED_IMAGE_LOKI
|
|
value: quay.io/openshift-logging/loki:v2.5.0
|
|
- name: RELATED_IMAGE_GATEWAY
|
|
value: quay.io/observatorium/api:latest
|
|
- name: RELATED_IMAGE_OPA
|
|
value: quay.io/observatorium/opa-openshift:latest
|
|
image: quay.io/openshift-logging/loki-operator:v0.0.1
|
|
imagePullPolicy: IfNotPresent
|
|
livenessProbe:
|
|
httpGet:
|
|
path: /healthz
|
|
port: 8081
|
|
initialDelaySeconds: 15
|
|
periodSeconds: 20
|
|
name: manager
|
|
ports:
|
|
- containerPort: 8080
|
|
name: metrics
|
|
readinessProbe:
|
|
httpGet:
|
|
path: /readyz
|
|
port: 8081
|
|
initialDelaySeconds: 5
|
|
periodSeconds: 10
|
|
resources: {}
|
|
securityContext:
|
|
allowPrivilegeEscalation: false
|
|
- args:
|
|
- --secure-listen-address=0.0.0.0:8443
|
|
- --upstream=http://127.0.0.1:8080/
|
|
- --logtostderr=true
|
|
- --tls-cert-file=/var/run/secrets/serving-cert/tls.crt
|
|
- --tls-private-key-file=/var/run/secrets/serving-cert/tls.key
|
|
- --v=0
|
|
image: quay.io/openshift/origin-kube-rbac-proxy:latest
|
|
name: kube-rbac-proxy
|
|
ports:
|
|
- containerPort: 8443
|
|
name: https
|
|
resources: {}
|
|
volumeMounts:
|
|
- mountPath: /var/run/secrets/serving-cert
|
|
name: loki-operator-metrics-cert
|
|
nodeSelector:
|
|
kubernetes.io/os: linux
|
|
terminationGracePeriodSeconds: 10
|
|
volumes:
|
|
- name: loki-operator-metrics-cert
|
|
secret:
|
|
defaultMode: 420
|
|
optional: true
|
|
secretName: loki-operator-metrics
|
|
permissions:
|
|
- rules:
|
|
- apiGroups:
|
|
- ""
|
|
- coordination.k8s.io
|
|
resources:
|
|
- configmaps
|
|
- leases
|
|
verbs:
|
|
- get
|
|
- list
|
|
- watch
|
|
- create
|
|
- update
|
|
- patch
|
|
- delete
|
|
- apiGroups:
|
|
- ""
|
|
resources:
|
|
- events
|
|
verbs:
|
|
- create
|
|
- patch
|
|
serviceAccountName: default
|
|
strategy: deployment
|
|
installModes:
|
|
- supported: true
|
|
type: OwnNamespace
|
|
- supported: false
|
|
type: SingleNamespace
|
|
- supported: false
|
|
type: MultiNamespace
|
|
- supported: true
|
|
type: AllNamespaces
|
|
keywords:
|
|
- logging
|
|
- loki
|
|
links:
|
|
- name: Loki Operator
|
|
url: https://github.com/grafana/loki
|
|
maintainers:
|
|
- email: loki-operator-team@googlegroups.com
|
|
name: Grafana Loki SIG Operator
|
|
maturity: alpha
|
|
minKubeVersion: 1.21.1
|
|
provider:
|
|
name: Grafana.com
|
|
relatedImages:
|
|
- image: quay.io/observatorium/opa-openshift:latest
|
|
name: opa
|
|
- image: quay.io/openshift-logging/loki:v2.5.0
|
|
name: loki
|
|
- image: quay.io/observatorium/api:latest
|
|
name: gateway
|
|
version: 0.0.1
|
|
|