nrabulinski/settei
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

treewide: monitoring init

Browse source
This commit is contained in:
Nikodem Rabuliński 2024-07-28 19:36:30 +02:00
parent 26206aabc2
commit 6424f8e7b1
4 changed files with 70 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
hosts/hijiri-vm/default.nix
View file

@ -22,5 +22,7 @@
networking.domain = "hijiri"; networking.domain = "hijiri";
networking.hostName = "vm"; networking.hostName = "vm";
services.prometheus.exporters.node.enable = lib.mkForce false;
}; };
} }

1
hosts/kazuki/default.nix
View file

@ -19,6 +19,7 @@
./ntfy.nix ./ntfy.nix
./zitadel.nix ./zitadel.nix
./forgejo.nix ./forgejo.nix
./prometheus.nix
]; ];
nixpkgs.hostPlatform = "aarch64-linux"; nixpkgs.hostPlatform = "aarch64-linux";

62
hosts/kazuki/prometheus.nix Normal file
View file

@ -0,0 +1,62 @@
{
config,
lib,
inputs,
...
}:
{
age.secrets.rab-lol-cf = {
file = ../../secrets/rab-lol-cf.age;
owner = config.services.nginx.user;
};
services.prometheus = {
enable = true;
scrapeConfigs =
let
nodeExporter = nixos: nixos.config.services.prometheus.exporters.node;
configurations = lib.filterAttrs (
_: nixos: (nodeExporter nixos).enable
) inputs.settei.nixosConfigurations;
in
lib.mapAttrsToList (name: nixos: {
job_name = "${name}-node";
static_configs = [ { targets = [ "${name}:${toString (nodeExporter nixos).port}" ]; } ];
}) configurations;
};
services.grafana = {
enable = true;
settings.server.http_port = 3030;
};
services.nginx = {
enable = true;
recommendedProxySettings = true;
recommendedGzipSettings = true;
recommendedOptimisation = true;
recommendedTlsSettings = true;
virtualHosts."monitor.rab.lol" = {
forceSSL = true;
enableACME = true;
acmeRoot = null;
locations."/" = {
proxyPass = "http://grafana";
proxyWebsockets = true;
};
};
upstreams.grafana.servers =
let
inherit (config.services.grafana.settings.server) http_addr http_port;
in
{
"${http_addr}:${toString http_port}" = { };
};
};
security.acme.certs."monitor.rab.lol" = {
dnsProvider = "cloudflare";
credentialsFile = config.age.secrets.rab-lol-cf.path;
};
}

5
modules/system/common/default.nix
View file

@ -52,6 +52,11 @@ let
settei.user.config = { settei.user.config = {
services.ssh-agent.enable = true; services.ssh-agent.enable = true;
}; };
services.prometheus.exporters.node = {
enable = true;
enabledCollectors = [ "systemd" ];
};
}; };
darwinConfig = lib.optionalAttrs (!isLinux) { darwinConfig = lib.optionalAttrs (!isLinux) {