Grafana OnCall engine fork — self-hosted on-call scheduler and alert router

Find a file

dependabot[bot] 57f42cc66e Bump werkzeug from 3.0.3 to 3.0.6 in /engine (#5213 ) Bumps [werkzeug](https://github.com/pallets/werkzeug) from 3.0.3 to 3.0.6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pallets/werkzeug/releases">werkzeug's releases</a>.</em></p> <blockquote> <h2>3.0.6</h2> <p>This is the Werkzeug 3.0.6 security fix release, which fixes security issues but does not otherwise change behavior and should not result in breaking changes.</p> <p>PyPI: <a href="https://pypi.org/project/Werkzeug/3.0.6/">https://pypi.org/project/Werkzeug/3.0.6/</a> Changes: <a href="https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-6">https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-6</a></p> <ul> <li>Fix how <code>max_form_memory_size</code> is applied when parsing large non-file fields. <a href="https://github.com/advisories/GHSA-q34m-jh98-gwm2">GHSA-q34m-jh98-gwm2</a></li> <li><code>safe_join</code> catches certain paths on Windows that were not caught by <code>ntpath.isabs</code> on Python < 3.11. <a href="https://github.com/advisories/GHSA-f9vj-2wh5-fj8j">GHSA-f9vj-2wh5-fj8j</a></li> </ul> <h2>3.0.5</h2> <p>This is the Werkzeug 3.0.5 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.</p> <p>PyPI: <a href="https://pypi.org/project/Werkzeug/3.0.5/">https://pypi.org/project/Werkzeug/3.0.5/</a> Changes: <a href="https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-5">https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-5</a> Milestone: <a href="https://github.com/pallets/werkzeug/milestone/37?closed=1">https://github.com/pallets/werkzeug/milestone/37?closed=1</a></p> <ul> <li>The Watchdog reloader ignores file closed no write events. <a href="https://redirect.github.com/pallets/werkzeug/issues/2945">#2945</a></li> <li>Logging works with client addresses containing an IPv6 scope. <a href="https://redirect.github.com/pallets/werkzeug/issues/2952">#2952</a></li> <li>Ignore invalid authorization parameters. <a href="https://redirect.github.com/pallets/werkzeug/issues/2955">#2955</a></li> <li>Improve type annotation fore <code>SharedDataMiddleware</code>. <a href="https://redirect.github.com/pallets/werkzeug/issues/2958">#2958</a></li> <li>Compatibility with Python 3.13 when generating debugger pin and the current UID does not have an associated name. <a href="https://redirect.github.com/pallets/werkzeug/issues/2957">#2957</a></li> </ul> <h2>3.0.4</h2> <p>This is the Werkzeug 3.0.4 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.</p> <p>PyPI: <a href="https://pypi.org/project/Werkzeug/3.0.4/">https://pypi.org/project/Werkzeug/3.0.4/</a> Changes: <a href="https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-4">https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-4</a> Milestone: <a href="https://github.com/pallets/werkzeug/milestone/36?closed=1">https://github.com/pallets/werkzeug/milestone/36?closed=1</a></p> <ul> <li>Restore behavior where parsing <code>multipart/x-www-form-urlencoded</code> data with invalid UTF-8 bytes in the body results in no form data parsed rather than a 413 error. <a href="https://redirect.github.com/pallets/werkzeug/issues/2930">#2930</a></li> <li>Improve <code>parse_options_header</code> performance when parsing unterminated quoted string values. <a href="https://redirect.github.com/pallets/werkzeug/issues/2904">#2904</a></li> <li>Debugger pin auth is synchronized across threads/processes when tracking failed entries. <a href="https://redirect.github.com/pallets/werkzeug/issues/2916">#2916</a></li> <li>Dev server handles unexpected <code>SSLEOFError</code> due to issue in Python < 3.13. <a href="https://redirect.github.com/pallets/werkzeug/issues/2926">#2926</a></li> <li>Debugger pin auth works when the URL already contains a query string. <a href="https://redirect.github.com/pallets/werkzeug/issues/2918">#2918</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pallets/werkzeug/blob/main/CHANGES.rst">werkzeug's changelog</a>.</em></p> <blockquote> <h2>Version 3.0.6</h2> <p>Released 2024-10-25</p> <ul> <li>Fix how <code>max_form_memory_size</code> is applied when parsing large non-file fields. :ghsa:<code>q34m-jh98-gwm2</code></li> <li><code>safe_join</code> catches certain paths on Windows that were not caught by <code>ntpath.isabs</code> on Python < 3.11. :ghsa:<code>f9vj-2wh5-fj8j</code></li> </ul> <h2>Version 3.0.5</h2> <p>Released 2024-10-24</p> <ul> <li>The Watchdog reloader ignores file closed no write events. :issue:<code>2945</code></li> <li>Logging works with client addresses containing an IPv6 scope :issue:<code>2952</code></li> <li>Ignore invalid authorization parameters. :issue:<code>2955</code></li> <li>Improve type annotation fore <code>SharedDataMiddleware</code>. :issue:<code>2958</code></li> <li>Compatibility with Python 3.13 when generating debugger pin and the current UID does not have an associated name. :issue:<code>2957</code></li> </ul> <h2>Version 3.0.4</h2> <p>Released 2024-08-21</p> <ul> <li>Restore behavior where parsing <code>multipart/x-www-form-urlencoded</code> data with invalid UTF-8 bytes in the body results in no form data parsed rather than a 413 error. :issue:<code>2930</code></li> <li>Improve <code>parse_options_header</code> performance when parsing unterminated quoted string values. :issue:<code>2904</code></li> <li>Debugger pin auth is synchronized across threads/processes when tracking failed entries. :issue:<code>2916</code></li> <li>Dev server handles unexpected <code>SSLEOFError</code> due to issue in Python < 3.13. :issue:<code>2926</code></li> <li>Debugger pin auth works when the URL already contains a query string. :issue:<code>2918</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`5eaefc3996`"><code>5eaefc3</code></a> release version 3.0.6</li> <li><a href="`2767bcb10a`"><code>2767bcb</code></a> Merge commit from fork</li> <li><a href="`87cc78a25f`"><code>87cc78a</code></a> catch special absolute path on Windows Python < 3.11</li> <li><a href="`50cfeebcb0`"><code>50cfeeb</code></a> Merge commit from fork</li> <li><a href="`8760275afb`"><code>8760275</code></a> apply max_form_memory_size another level up in the parser</li> <li><a href="`8d6a12e2af`"><code>8d6a12e</code></a> start version 3.0.6</li> <li><a href="`a7b121abc7`"><code>a7b121a</code></a> release version 3.0.5 (<a href="https://redirect.github.com/pallets/werkzeug/issues/2961">#2961</a>)</li> <li><a href="`9caf72ac06`"><code>9caf72a</code></a> release version 3.0.5</li> <li><a href="`e28a2451e9`"><code>e28a245</code></a> catch OSError from getpass.getuser (<a href="https://redirect.github.com/pallets/werkzeug/issues/2960">#2960</a>)</li> <li><a href="`e6b4cce97e`"><code>e6b4cce</code></a> catch OSError from getpass.getuser</li> <li>Additional commits viewable in <a href="https://github.com/pallets/werkzeug/compare/3.0.3...3.0.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=werkzeug&package-manager=pip&previous-version=3.0.3&new-version=3.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/grafana/oncall/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>		2024-11-01 04:58:34 +00:00
.github	Disable e2e tests for grafana latest (#5207 )	2024-10-24 18:24:25 +00:00
.tilt	chore: serve local dist (#5021 )	2024-09-13 12:44:20 +00:00
dev	Chore: Remove `topnav` references (#5092 )	2024-09-30 16:22:04 +00:00
docs	Allow more escalation step wait times over public api (#5201 )	2024-10-23 18:19:01 +00:00
engine	Bump werkzeug from 3.0.3 to 3.0.6 in /engine (#5213 )	2024-11-01 04:58:34 +00:00
grafana-plugin	feat: add `timedeltaparse` function to the jinja template (#5142 )	2024-10-09 18:27:48 +00:00
helm	Remove "Add to docs project" workflow (#5135 )	2024-10-08 13:07:00 +00:00
terraform	Remove unnecessary team checks (#2606 )	2023-07-21 15:55:57 +01:00
tools	migration scripts: add missing arg in recursive call (#4883 )	2024-08-21 08:43:29 -04:00
.dockerignore	WIP: Direct paging improvements (#3064 )	2023-09-28 03:57:49 +00:00
.gitattributes	bump `uwsgi` to 2.0.26 + Python to 3.12.3 (#4495 )	2024-06-10 15:33:37 -04:00
.gitignore	chore: Switch to pnpm + adjust to IRM (#4969 )	2024-09-02 12:48:23 +00:00
.markdownlint.json	don't enforce line-length rule for markdownlint for code-blocks or tables (#2145 )	2023-06-09 06:57:19 +00:00
.markdownlintignore	Back merge irm (#5098 )	2024-10-01 12:59:24 +00:00
.nvmrc	fix `apps.telegram.tasks.send_log_and_actions_message` retrying tasks (#4851 )	2024-08-19 14:05:40 -04:00
.pre-commit-config.yaml	ci: update oss plugin release process (#5051 )	2024-09-23 11:56:16 -04:00
.prettierignore	Brojd/update insights docs (#3692 )	2024-01-22 11:26:07 +00:00
.prettierrc.js	Brojd/improve e2e tests dx (#3516 )	2023-12-15 08:58:25 +00:00
.yamllint.yml	chore: Switch to pnpm + adjust to IRM (#4969 )	2024-09-02 12:48:23 +00:00
CHANGELOG.md	Update CHANGELOG.md (#4041 )	2024-03-12 07:47:08 +00:00
docker-compose-developer.yml	New OnCall plugin initialization process (#4657 )	2024-08-16 16:43:52 +00:00
docker-compose-mysql-rabbitmq.yml	Update helm chart for newer grafana + enable externalServiceAccounts (#4876 )	2024-09-05 12:18:07 -06:00
docker-compose.yml	Update helm chart for newer grafana + enable externalServiceAccounts (#4876 )	2024-09-05 12:18:07 -06:00
LICENSE	scratch that.. add back `LICENSE`	2024-06-06 09:58:26 -04:00
Makefile	chore: Switch to pnpm + adjust to IRM (#4969 )	2024-09-02 12:48:23 +00:00
README.md	Update helm chart for newer grafana + enable externalServiceAccounts (#4876 )	2024-09-05 12:18:07 -06:00
Tiltfile	fix some Tilt hiccups (#5013 )	2024-09-11 12:34:53 -04:00

README.md

Grafana OnCall

Developer-friendly incident response with brilliant Slack integration.

Android & iOS:

Collect and analyze alerts from multiple monitoring systems
On-call rotations based on schedules
Automatic escalations
Phone calls, SMS, Slack, Telegram notifications

Getting Started

Important

These instructions are for using Grafana 11 or newer. You must enable the feature toggle for externalServiceAccounts. This is already done for the docker files and helm charts. If you are running Grafana separately see the Grafana documentation on how to enable this.

We prepared multiple environments:

production
developer
hobby (described in the following steps)

Download docker-compose.yml:

curl -fsSL https://raw.githubusercontent.com/grafana/oncall/dev/docker-compose.yml -o docker-compose.yml

Set variables:

echo "DOMAIN=http://localhost:8080
# Remove 'with_grafana' below if you want to use existing grafana
# Add 'with_prometheus' below to optionally enable a local prometheus for oncall metrics
# e.g. COMPOSE_PROFILES=with_grafana,with_prometheus
COMPOSE_PROFILES=with_grafana
# to setup an auth token for prometheus exporter metrics:
# PROMETHEUS_EXPORTER_SECRET=my_random_prometheus_secret
# also, make sure to enable the /metrics endpoint:
# FEATURE_PROMETHEUS_EXPORTER_ENABLED=True
SECRET_KEY=my_random_secret_must_be_more_than_32_characters_long" > .env

(Optional) If you want to enable/setup the prometheus metrics exporter (besides the changes above), create a prometheus.yml file (replacing my_random_prometheus_secret accordingly), next to your docker-compose.yml:

echo "global:
  scrape_interval:     15s
  evaluation_interval: 15s

scrape_configs:
  - job_name: prometheus
    metrics_path: /metrics/
    authorization:
      credentials: my_random_prometheus_secret
    static_configs:
      - targets: [\"host.docker.internal:8080\"]" > prometheus.yml

NOTE: you will need to setup a Prometheus datasource using http://prometheus:9090 as the URL in the Grafana UI.

Launch services:

docker-compose pull && docker-compose up -d

Provision the plugin (If you run Grafana outside the included docker files install the plugin before these steps):

If you are using the included docker compose file use admin/admin credentials and localhost:3000 to perform this task. If you have configured Grafana differently adjust your credentials and hostnames accordingly.

# Note: onCallApiUrl 'engine' and grafanaUrl 'grafana' use the name from the docker compose file.  If you are 
# running your grafana or oncall engine instance with another hostname adjust accordingly. 
curl -X POST 'http://admin:admin@localhost:3000/api/plugins/grafana-oncall-app/settings' -H "Content-Type: application/json" -d '{"enabled":true, "jsonData":{"stackId":5, "orgId":100, "onCallApiUrl":"http://engine:8080", "grafanaUrl":"http://grafana:3000"}}'
curl -X POST 'http://admin:admin@localhost:3000/api/plugins/grafana-oncall-app/resources/plugin/install'

Start using OnCall, log in to Grafana with credentials as defined above: admin/admin
Enjoy! Check our OSS docs if you want to set up Slack, Telegram, Twilio or SMS/calls through Grafana Cloud.

Troubleshooting

Here are some API calls that can be made to help if you are having difficulty connecting Grafana and OnCall. (Modify parameters to match your credentials and environment)

# Use this to get more information about the connection between Grafana and OnCall
curl -X GET 'http://admin:admin@localhost:3000/api/plugins/grafana-oncall-app/resources/plugin/status'

# If you added a user or changed permissions and don't see it show up in OnCall you can manually trigger sync.
# Note: This is called automatically when the app is loaded (page load/refresh) but there is a 5 min timeout so 
# that it does not generate unnecessary activity.
curl -X POST 'http://admin:admin@localhost:3000/api/plugins/grafana-oncall-app/resources/plugin/sync'

Update version

To update your Grafana OnCall hobby environment:

# Update Docker image
docker-compose pull engine

# Re-deploy
docker-compose up -d

After updating the engine, you'll also need to click the "Update" button on the plugin version page. See Grafana docs for more info on updating Grafana plugins.

Join community

Have a question, comment or feedback? Don't be afraid to open an issue!