apitech
/
loki
mirror of https://github.com/grafana/loki
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Like Prometheus, but for logs.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1824 Commits
849 Branches
312 Tags
686 MiB
 
 
 
 
 
 
Tag: Branch: Tree: cb383d6906
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'cb383d6906'
${ noResults }
loki/production/ksonnet/loki/gateway.libsonnet

103 lines
3.3 KiB
Raw Blame History

{
_config+:: {
htpasswd_contents: error 'must specify htpasswd contents',
},
_images+:: {
nginx: 'nginx:1.15.1-alpine',
},
local secret = $.core.v1.secret,
gateway_secret:
secret.new('gateway-secret', {
'.htpasswd': std.base64($._config.htpasswd_contents),
}),
local configMap = $.core.v1.configMap,
gateway_config:
configMap.new('gateway-config') +
configMap.withData({
'nginx.conf': |||
worker_processes 5; ## Default: 1
error_log /dev/stderr;
pid /tmp/nginx.pid;
worker_rlimit_nofile 8192;
events {
worker_connections 4096; ## Default: 1024
}
http {
default_type application/octet-stream;
log_format main '$remote_addr - $remote_user [$time_local] $status '
'"$request" $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /dev/stderr main;
sendfile on;
tcp_nopush on;
resolver kube-dns.kube-system.svc.cluster.local;
server {
listen 80;
auth_basic “Prometheus”;
auth_basic_user_file /etc/nginx/secrets/.htpasswd;
proxy_set_header X-Scope-OrgID 1;
location = /api/prom/push {
proxy_pass http://distributor.%(namespace)s.svc.cluster.local:%(http_listen_port)s$request_uri;
}
location = /api/prom/tail {
proxy_pass http://querier.%(namespace)s.svc.cluster.local:%(http_listen_port)s$request_uri;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
location ~ /api/prom/.* {
proxy_pass http://query-frontend.%(namespace)s.svc.cluster.local:%(http_listen_port)s$request_uri;
}
location = /loki/api/v1/push {
proxy_pass http://distributor.%(namespace)s.svc.cluster.local:%(http_listen_port)s$request_uri;
}
location = /loki/api/v1/tail {
proxy_pass http://querier.%(namespace)s.svc.cluster.local:%(http_listen_port)s$request_uri;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
location ~ /loki/api/.* {
proxy_pass http://query-frontend.%(namespace)s.svc.cluster.local:%(http_listen_port)s$request_uri;
}
}
}
||| % $._config,
}),
local container = $.core.v1.container,
local containerPort = $.core.v1.containerPort,
gateway_container::
container.new('nginx', $._images.nginx) +
container.withPorts($.core.v1.containerPort.new(name='http', port=80)) +
$.util.resourcesRequests('50m', '100Mi'),
local deployment = $.apps.v1.deployment,
gateway_deployment:
deployment.new('gateway', 3, [
$.gateway_container,
]) +
deployment.mixin.spec.template.metadata.withAnnotationsMixin({
config_hash: std.md5(std.toString($.gateway_config)),
}),
$.util.configVolumeMount('gateway-config', '/etc/nginx') +
$.util.secretVolumeMount('gateway-secret', '/etc/nginx/secrets', defaultMode=420) +
$.util.antiAffinity,
gateway_service:
$.util.serviceFor($.gateway_deployment),
}