gitea-admin
/
hetzner-ansible
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

DEV-476: consolidate dev-blackbox-01 on digitalocean platform

Browse Source
feature/DEV-470_2nd
friedrich goerz 4 years ago
parent 2cf1d8b9dc
commit 9d418ccf11
5 changed files with 35 additions and 7 deletions
Show Stats Download Patch File Download Diff File

20
.gitlab-ci.yml
Unescape Escape View File

@ -14,6 +14,7 @@ stages:
- lint - lint
- ansible-builder - ansible-builder
- run-setup - run-setup
- run-setup-digitalocean
- run-kubernetes - run-kubernetes
- run-management-update - run-management-update
- run-patchday - run-patchday
@ -89,6 +90,25 @@ builder-job:
after_script: after_script:
- rm /tmp/vault-pass - rm /tmp/vault-pass
run-setup-digitalocean:
extends: .run-ansible
stage: run-setup
script:
- 'command -v ssh-agent >/dev/null || ( apt-get update -y && apt-get install openssh-client -y )'
- eval $(ssh-agent -s)
- 'echo "$GITLAB_SSH_KEY" | tr -d "\r" | ssh-add -'
- mkdir -p ~/.ssh
- chmod 0700 ~/.ssh
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" >> ~/.ssh/config'
- ssh-add -L
- ansible-playbook -i stage-digitalocean setup.yml --vault-password-file /tmp/vault-pass -t common -u gitlabci
after_script:
- rm /tmp/vault-pass
only:
- main
run-setup-dev: run-setup-dev:
extends: .run-setup extends: .run-setup
resource_group: dev resource_group: dev

4
external_monitoring.yml
Unescape Escape View File

@ -46,10 +46,6 @@
tags: tags:
- ssh_hardening - ssh_hardening
- name: "Install node-exporter via include_role"
include_role:
name: cloudalchemy.node-exporter
- name: "Install blackbox-exporter via include_role" - name: "Install blackbox-exporter via include_role"
include_role: include_role:
name: cloudalchemy.blackbox-exporter name: cloudalchemy.blackbox-exporter

7
host_vars/dev-blackbox-01.yml
Unescape Escape View File

@ -0,0 +1,7 @@
---
docker_enabled: false
traefik_enabled: false
filebeat_enabled: false
metricbeat_enabled: false
monitor_port_system: 9100

5
roles/node_exporter/handlers/main.yml
Unescape Escape View File

@ -0,0 +1,5 @@
---
- name: "restart node-exporter"
service:
name: prometheus-node-exporter.service
state: restarted

6
roles/node_exporter/tasks/main.yml
Unescape Escape View File

@ -13,9 +13,9 @@
path: /etc/default/prometheus-node-exporter path: /etc/default/prometheus-node-exporter
regex: "^ARGS=" regex: "^ARGS="
line: "ARGS=\"--web.listen-address='{{ stage_private_server_ip }}:{{ monitor_port_system }}'\"" line: "ARGS=\"--web.listen-address='{{ stage_private_server_ip }}:{{ monitor_port_system }}'\""
register: node_exporter notify: restart node-exporter
- name: "Restart prometheus-node-exporter if needed" - name: "Ensure prometheus-node-exporter is running"
service: service:
name: prometheus-node-exporter name: prometheus-node-exporter
state: restarted state: started

Write Preview
Loading…
Cancel
Save