centralcloud/oncall-engine
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
oncall-engine/dev/helm-local.yml
Dominik Broj df6bb69d29
fix: disable accessControlOnCall for Grafana 11.3 (#5245) 
# What this PR does

Disable accessControlOnCall for Grafana 11.3

<!--
*Note*: If you want the issue to be auto-closed once the PR is merged,
change "Related to" to "Closes" in the line above.
If you have more than one GitHub issue that this PR closes, be sure to
preface
each issue link with a [closing
keyword](https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/using-keywords-in-issues-and-pull-requests#linking-a-pull-request-to-an-issue).
This ensures that the issue(s) are auto-closed once the PR has been
merged.
-->

## Checklist

- [ ] Unit, integration, and e2e (if applicable) tests updated
- [x] Documentation added (or `pr:no public docs` PR label added if not
required)
- [x] Added the relevant release notes label (see labels prefixed w/
`release:`). These labels dictate how your PR will
    show up in the autogenerated release notes.
2024-11-12 15:48:47 +00:00

161 lines
4.5 KiB
YAML
Raw Blame History

base_url: localhost:8080
base_url_protocol: http
env:
- name: GRAFANA_CLOUD_NOTIFICATIONS_ENABLED
value: "False"
- name: FEATURE_PROMETHEUS_EXPORTER_ENABLED
value: "True"
- name: DJANGO_SETTINGS_MODULE
value: "settings.dev"
- name: FEATURE_TELEGRAM_INTEGRATION_ENABLED
value: "True"
- name: FEATURE_SLACK_INTEGRATION_ENABLED
value: "True"
- name: SLACK_SLASH_COMMAND_NAME
value: "/oncall"
# enabled to be able to test docker.host.internal in the webhook e2e tests
- name: DANGEROUS_WEBHOOKS_ENABLED
value: "True"
image:
repository: localhost:63628/oncall/engine
tag: dev
pullPolicy: IfNotPresent
broker:
type: redis
redis:
architecture: standalone # don't run replicas, just eats up resources
image:
repository: redis # the default, bitnami/redis does not support ARM64
tag: 7.0.5
auth:
password: oncallpassword
master:
disableCommands: []
rabbitmq:
enabled: false
oncall:
devMode: true
engine:
replicaCount: 1
celery:
replicaCount: 1
worker_beat_enabled: false
externalGrafana:
url: http://grafana:3000
grafana:
enabled: false
grafana.ini:
feature_toggles:
accessControlOnCall: false
server:
domain: localhost:3000
root_url: "%(protocol)s://%(domain)s"
replicas: 1
extraInitContainers:
- name: create-db-if-not-exists
image: mysql:8.0.32
command:
# yamllint disable rule:line-length
[
"bash",
"-c",
'while ! mysqladmin ping -h "$DATABASE_HOST" --silent; do echo ''awaiting mysql db to be available'' && sleep 1; done && mysql -h "$DATABASE_HOST" -u "$DATABASE_USER" -p"$DATABASE_PASSWORD" -e ''CREATE DATABASE IF NOT EXISTS grafana CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci;''',
]
# yamllint enable rule:line-length
env:
- name: DATABASE_HOST
value: oncall-dev-mariadb
- name: DATABASE_USER
value: root
- name: DATABASE_PASSWORD
value: oncallpassword
env:
GF_FEATURE_TOGGLES_ENABLE: externalServiceAccounts
GF_AUTH_MANAGED_SERVICE_ACCOUNTS_ENABLED: true
GF_SECURITY_ADMIN_PASSWORD: oncall
GF_SECURITY_ADMIN_USER: oncall
GF_PLUGINS_ALLOW_LOADING_UNSIGNED_PLUGINS: grafana-oncall-app
GF_DATABASE_TYPE: mysql
GF_DATABASE_HOST: oncall-dev-mariadb:3306
GF_DATABASE_USER: root
GF_DATABASE_SSL_MODE: disable
GF_DATABASE_PASSWORD: oncallpassword
# by settings grafana.plugins to [] and configuring grafana.extraVolumeMounts we are using the locally built
# OnCall plugin rather than the latest published version
plugins: []
# hostPaths are defined in dev/kind.yml
extraVolumeMounts:
- name: plugins
mountPath: /var/lib/grafana/plugins/grafana-plugin
hostPath: /oncall-plugin
readOnly: true
- name: configuration-file
mountPath: /var/lib/grafana/grafana.ini
hostPath: /dev-config/grafana/grafana.dev.ini
readOnly: true
- name: provisioning
mountPath: /var/lib/grafana/provisioning
hostPath: /dev-config/grafana/provisioning
readOnly: true
service:
type: NodePort
nodePort: 30002
database:
type: mysql
mariadb:
enabled: true
primary:
service:
type: NodePort
nodePort: 30003
extraEnvVars:
# See "Passing extra command line flags to mysqld startup" section
# https://hub.docker.com/r/bitnami/mariadb
#
# max_allowed_packet is set to 128mb in bytes
#
# this avoids "Got an error reading communication packets" errors that arise from the grafana container
# apparently sending too much data to mariadb at once
# https://mariadb.com/docs/skysql-dbaas/ref/mdb/system-variables/max_allowed_packet/
- name: MARIADB_EXTRA_FLAGS
value: "--max_allowed_packet=134217728 --max_connections=1024"
- name: MARIADB_CHARACTER_SET
value: utf8mb4
- name: MARIADB_COLLATE
value: utf8mb4_unicode_ci
auth:
rootPassword: oncallpassword
ingress:
enabled: false
ingress-nginx:
enabled: false
cert-manager:
enabled: false
service:
enabled: true
type: NodePort
port: 8080
nodePort: 30001
prometheus:
enabled: true
alertmanager:
enabled: false
kube-state-metrics:
enabled: false
prometheus-node-exporter:
enabled: false
prometheus-pushgateway:
enabled: false
server:
global:
scrape_interval: 10s
extraScrapeConfigs: |
- job_name: 'oncall-exporter'
metrics_path: /metrics/
static_configs:
- targets:
- oncall-dev-engine.default.svc.cluster.local:8080
Reference in a new issue View git blame Copy permalink