GARAGENUM/prometheus-monitoring
GARAGENUM/prometheus-monitoring
15
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ajout keycloak conf

Browse Source
This commit is contained in:
Grégory Lebreton 2023-08-28 15:02:13 +02:00
parent b94fb3831d
commit 02b13f720e
1 changed files with 30 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
README.md
View File

@ -28,6 +28,36 @@ nano alertmanager/alert.rules
Pour déployer un node exporter sur un serveur distant: Pour déployer un node exporter sur un serveur distant:
> voir branche [node-exporter](https://git.legaragenumerique.fr/GARAGENUM/prometheus-monitoring/src/branch/node-exporter) > voir branche [node-exporter](https://git.legaragenumerique.fr/GARAGENUM/prometheus-monitoring/src/branch/node-exporter)
### GRAFANA SSO KEYCLOAK
- Créer un client sur keycloak en confidential pour obtenir le client-secret
- Entrer le nom de domaine de votre instance grafana
- Editer le fichier grafana/grafana.ini:
```ini
[server]
# The http port to use
http_port = 3000
# The public facing domain name used to access grafana from a browser
domain = grafana.votre-domaine.tld
...
[auth.generic_oauth]
enabled = true
scopes = openid email profile
name = Oauth
tls_skip_verify_insecure = true
allow_sign_up = true
client_id = grafana
client_secret = <client-secret-de-keycloak>
auth_url = https://votre-keycloak/auth/realms/votre-royaume/protocol/openid-connect/auth
token_url = https://votre-keycloak/auth/realms/votre-royaume/protocol/openid-connect/token
api_url = https://votre-keycloak/auth/realms/votre-royaume/protocol/openid-connect/userinfo
# Pour ne laisser que l'authentification keycloak
#disable_login_form = true
```
## TO DO ## TO DO
- [x] node exporter - [x] node exporter