| 
									
										
										
										
											2025-04-12 14:06:50 +01:00
										 |  |  | envFromSecret: grafana-admin
 | 
					
						
							|  |  |  | nodeSelector:
 | 
					
						
							|  |  |  |   kubernetes.io/hostname: master.tail2fe2d.ts.net
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | admin:
 | 
					
						
							|  |  |  |   existingSecret: grafana-admin
 | 
					
						
							|  |  |  |   userKey: username
 | 
					
						
							|  |  |  |   passwordKey: password
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | grafana.ini:
 | 
					
						
							|  |  |  |   auth:
 | 
					
						
							|  |  |  |     signout_redirect_url: https://idm.hexor.cy/application/o/grafana/end-session/
 | 
					
						
							| 
									
										
										
										
											2025-10-06 13:07:16 +00:00
										 |  |  |     # oauth_auto_login: true
 | 
					
						
							| 
									
										
										
										
											2025-04-12 14:06:50 +01:00
										 |  |  |   auth.generic_oauth:
 | 
					
						
							|  |  |  |     name: authentik
 | 
					
						
							|  |  |  |     enabled: true
 | 
					
						
							|  |  |  |     scopes: "openid profile email"
 | 
					
						
							|  |  |  |     auth_url: https://idm.hexor.cy/application/o/authorize/
 | 
					
						
							|  |  |  |     token_url: https://idm.hexor.cy/application/o/token/
 | 
					
						
							|  |  |  |     api_url: https://idm.hexor.cy/application/o/userinfo/
 | 
					
						
							|  |  |  |     role_attribute_path: >-
 | 
					
						
							|  |  |  |       contains(groups, 'Grafana Admin') && 'Admin' ||
 | 
					
						
							|  |  |  |       contains(groups, 'Grafana Editors') && 'Editor' ||
 | 
					
						
							|  |  |  |       contains(groups, 'Grafana Viewer') && 'Viewer'
 | 
					
						
							|  |  |  |   database:
 | 
					
						
							|  |  |  |     type: postgres
 | 
					
						
							|  |  |  |     host: psql.psql.svc:5432
 | 
					
						
							|  |  |  |     name: grafana
 | 
					
						
							|  |  |  |     user: grafana
 | 
					
						
							|  |  |  |     ssl_mode: disable
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | datasources:
 | 
					
						
							|  |  |  |   datasources.yaml:
 | 
					
						
							|  |  |  |     apiVersion: 1
 | 
					
						
							|  |  |  |     datasources:
 | 
					
						
							|  |  |  |       - name: Prometheus Local
 | 
					
						
							|  |  |  |         type: prometheus
 | 
					
						
							|  |  |  |         url: http://prometheus-kube-prometheus-prometheus.prometheus.svc:9090
 | 
					
						
							|  |  |  |         access: proxy
 | 
					
						
							|  |  |  |         isDefault: true
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | ingress:
 | 
					
						
							|  |  |  |   enabled: true
 | 
					
						
							|  |  |  |   ingressClassName: traefik
 | 
					
						
							|  |  |  |   annotations:
 | 
					
						
							|  |  |  |     cert-manager.io/cluster-issuer: letsencrypt
 | 
					
						
							|  |  |  |     traefik.ingress.kubernetes.io/router.middlewares: kube-system-https-redirect@kubernetescrd
 | 
					
						
							|  |  |  |   hosts:
 | 
					
						
							|  |  |  |     - gf.hexor.cy
 | 
					
						
							|  |  |  |   tls:
 | 
					
						
							|  |  |  |     - secretName: grafana-tls
 | 
					
						
							|  |  |  |       hosts:
 | 
					
						
							|  |  |  |         - '*.hexor.cy'
 | 
					
						
							|  |  |  | 
 |