Install

Prometheus Operator

The following Helm/Helmfile snippet with deploy a minimal monitoring stack including grafana.

  - name: monitoring-stack
    namespace: kosmos-monitoring
    chart: ../../monitoring/kube-prometheus-stack
    wait: true
    waitForJobs: true
    skipDeps: true
    labels:
      app: monitoring
    values:
      - ../../monitoring/values.yaml
      - grafana:
          ingress:
            hosts:
              - grafana.{{.StateValues.domain }}
            tls:
              - secretName: grafana-general-tls
                hosts:
                  - grafana.{{.StateValues.domain }}
          grafana.ini:
            server:
              root_url: https://grafana.{{.StateValues.domain }}
            auth.generic_oauth:
              auth_url: https://auth.{{.StateValues.domain }}/realms/kosmos/protocol/openid-connect/auth
              signout_redirect_url: https://auth.{{.StateValues.domain }}/realms/kosmos/protocol/openid-connect/logout?post_logout_redirect_uri=https%3A%2F%2Fgrafana.{{.StateValues.domain }}%2Flogin

  # Create the keycloak resources for OIDC purposes
  - name: keycloakimporter-import-grafana
    needs:
        - kosmos-iam/keycloakimporter-init-realm-kosmos
    namespace: kosmos-monitoring
    chart: ../../keycloakimporter/keycloakimporter
    labels:
        app: monitoring
    values:
        - ./values_templates/grafana/import-grafana.yaml.gotmpl

info

For more information on Keycloak Importer see here

Test

Go to the application to confirm than everything is OK.

Grab admin credentials from monitoring-stack-grafana kubernetes secret.

or use:

kubectl get secret monitoring-stack-grafana -n kosmos-monitoring -o jsonpath='{.data.admin-password}' | base64 --decode