grafana job from prometheus/26.2.0

Github source: e6dc502 or master branch

Properties¶

env¶

http_proxy¶

HTTP proxy to use

https_proxy¶

HTTPS proxy to use

no_proxy¶

List of comma-separated hosts that should skip connecting to the proxy

grafana¶

alerting¶

concurrent_render_limit¶

This limit will protect the server from render overloading and make sure notifications are sent out quickly

enabled¶

Enable alerting engine & UI featuresn

error_or_timeout¶

Default setting for new alert rules (alerting, keep_state)

evaluation_timeout_seconds¶

Default setting for alert calculation timeout

execute_alerts¶

Makes it possible to turn off alert rule execution

max_attempts¶

Default setting for max attempts to sending alert notifications

nodata_or_nullvalues¶

Default setting for how Grafana handles nodata or null values in alerting (alerting, no_data, keep_state, ok)

notification_timeout_seconds¶

Default setting for alert notification timeout

analytics¶

check_for_updates¶

Set to false to disable all checks to https://grafana.net

google_analytics_ua_id¶

Google Analytics universal tracking code, only enabled if you specify an id here

google_tag_manager_id¶

Google Tag Manager ID

reporting_enabled¶

Change this option to false to disable reporting.

app_mode¶

possible values : production, development

auth¶

anonymous¶

enabled¶

enable anonymous access

org_name¶

specify organization name that should be used for unauthenticated users

org_role¶

specify role for unauthenticated users

api_key_max_seconds_to_live¶

Limit of api_key seconds to live before expiration

basic¶

enabled¶

Auth basic enabled

disable_login_form¶

Set to true to disable (hide) the login form, useful if you use OAuth, defaults to false

disable_signout_menu¶

Set to true to disable the signout link in the side menu

generic_oauth¶

allow_sign_up¶

Generic OAuth allow sign up

allowed_domains¶

Generic OAuth allowed organizations

api_url¶

Generic OAuth api url

auth_url¶

Generic OAuth url

client_id¶

Generic OAuth client id

client_secret¶

Generic OAuth client secret

email_attribute_name¶

Generic OAuth email attribute name

email_attribute_path¶

Generic OAuth email attribute path

enabled¶

Generic OAuth enabled

name¶

Generic OAuth name

role_attribute_path¶

Generic OAuth role attribute path

scopes¶

Generic OAuth scopes

send_client_credentials_via_post¶

Genetic OAuth send client credentials via POST

team_ids¶

Generic OAuth team ids

tls_client_ca¶

Generic OAuth TLS Client CA

tls_client_cert¶

Generic OAuth TLS Client cert

tls_client_key¶

Generic OAuth TLS Client key

tls_skip_verify_insecure¶

Generic OAuth TLS skip verification

token_url¶

Generic OAuth token url

github¶

allow_sign_up¶

Github auth allow sign up

allowed_organizations¶

Github auth allowed organizations

api_url¶

Github auth api url

auth_url¶

Github auth url

client_id¶

Github auth client id

client_secret¶

Github auth client secret

enabled¶

Github auth enabled

scopes¶

Github auth scopes

team_ids¶

Github auth team ids

token_url¶

Github auth token url

gitlab¶

allow_sign_up¶

Gitlab auth allow sign up

allowed_groups¶

Gitlab auth allowed groups

api_url¶

Gitlab auth api url

auth_url¶

Gitlab auth url

client_id¶

Gitlab auth client id

client_secret¶

Gitlab auth client secret

enabled¶

Gitlab auth enabled

scopes¶

Gitlab auth scopes

token_url¶

Gitlab auth token url

google¶

allow_sign_up¶

Google auth allow sign up

allowed_domains¶

Google auth allowed organizations

api_url¶

Google auth api url

auth_url¶

Google auth url

client_id¶

Google auth client id

client_secret¶

Google auth client secret

enabled¶

Google auth enabled

hosted_domain¶

Google auth hosted domain

scopes¶

Google auth scopes

token_url¶

Google auth token url

grafanacom¶

allow_sign_up¶

Grafana.net auth allow sign up

allowed_organizations¶

Grafana.net auth allowed organizations

client_id¶

Grafana.net auth client id

client_secret¶

Grafana.net auth client secret

enabled¶

Grafana.net auth enabled

scopes¶

Grafana.net auth scopes

grafananet¶

allow_sign_up¶

Grafana.net auth allow sign up

allowed_organizations¶

Grafana.net auth allowed organizations

client_id¶

Grafana.net auth client id

client_secret¶

Grafana.net auth client secret

enabled¶

Grafana.net auth enabled

scopes¶

Grafana.net auth scopes

ldap¶

active_sync_enabled¶

LDAP backround sync (Enterprise only)

allow_sign_up¶

Auth LDAP allow sign up

config¶

LDAP configuration (toml)

enabled¶

Auth LDAP enable

sync_cron¶

LDAP backround sync (Enterprise only)”

login_cookie_name¶

Login cookie name

login_maximum_inactive_lifetime_days¶

The lifetime (days) an authenticated user can be inactive before being required to login at next visit

login_maximum_lifetime_days¶

he maximum lifetime (days) an authenticated user can be logged in since login time before being required to login

oauth_auto_login¶

Set to true to attempt login with OAuth automatically, skipping the login screen

proxy¶

auto_sign_up¶

Auth proxy auto sign up

enable_login_token¶

Auth proxy enable login token

enabled¶

Auth proxy enabled

header_name¶

Auth proxy header name

header_property¶

Auth proxy header property

headers¶

Auth proxy headers

ldap_sync_ttl¶

Auth proxy LDAP sync TTL

whitelist¶

Auth proxy whitelist

saml¶

assertion_attribute_email¶

Friendly name or name of the attribute within the SAML assertion to use as the user’s email

assertion_attribute_login¶

Friendly name or name of the attribute within the SAML assertion to use as the user’s login handle

assertion_attribute_name¶

Friendly name or name of the attribute within the SAML assertion to use as the user’s name

certificate¶

Base64-encoded public X.509 certificate. Used to sign requests to the IdP

enabled¶

Auth SAML enabled

idp_metadata¶

Base64-encoded IdP SAML metadata XML. Used to verify and obtain binding locations from the IdP

idp_metadata_url¶

URL to fetch SAML IdP metadata. Used to verify and obtain binding locations from the IdP

max_issue_delay¶

Duration, since the IdP issued a response and the SP is allowed to process it

metadata_valid_duration¶

Duration, for how long the SP’s metadata should be valid

private_key¶

Base64-encoded private key. Used to decrypt assertions from the IdP

signout_redirect_url¶

URL to redirect the user to after sign out

token_rotation_interval_minutes¶

How often should auth tokens be rotated for authenticated users when being active

dashboards¶

custom_homepage_json¶

Override the default homepage with a custom dashboard in JSON format (http://docs.grafana.org/reference/dashboard/)

versions_to_keep¶

Number dashboard versions to keep (per dashboard)

database¶

cache_mode¶

(SQLite3 only) Cache mode setting used for connecting to the database

conn_max_lifetime¶

Connection Max Lifetime

host¶

(MySQL & PostgreSQL only) Database Host. If not set, a ‘database’ link is expected

log_queries¶

Set to true to log the sql calls and execution times

max_idle_conn¶

(MySQL & PostgreSQL only) Database max idle connections

max_open_conn¶

(MySQL & PostgreSQL only) Database max open connections

name¶

(MySQL & PostgreSQL only) Database Name

password¶

(MySQL & PostgreSQL only) Database Password

port¶

(MySQL & PostgreSQL only) Database Port

server_cert_name¶

(MySQL only) The common name field of the certificate used by the mysql server. Not necessary if ssl_mode is set to ‘skip-verify’

ssl_mode¶

(MySQL & PostgreSQL only) For Postgres, use either ‘disable’, ‘require’ or ‘verify-full’. For MySQL, use either ‘true’, ‘false’, or ‘skip-verify’

tls_client_ca¶

(MySQL & PostgreSQL only) Database TLS client CA

tls_client_cert¶

(MySQL & PostgreSQL only) Database TLS client cert

tls_client_key¶

(MySQL & PostgreSQL only) Database TLS client key

type¶

Database Type, either ‘mysql’, ‘postgres’ or ‘sqlite3’

Default

sqlite3

user¶

(MySQL & PostgreSQL only) Database User

dataproxy¶

logging_enabled¶

Enable data proxy logging

send_user_header¶

If enabled and user is not anonymous, data proxy will add X-Grafana-User header with username into the request

timeout¶

How long the data proxy should wait before timing out

datasources¶

create¶

List of datasources in YAML format that Grafana will add or update during start up

delete¶

List of datasources in YAML format that Grafana will delete before inserting/updating those in create list

emails¶

welcome_email_on_sign_up¶

Welcome email on sign up

enterprise¶

license¶

Enterprise license

explore¶

enabled¶

Enable the Explore section

external_image_storage¶

azure¶

account_key¶

Azure account key

account_name¶

Azure account name

container_name¶

Azure container name

gcs¶

bucket¶

GCS bucket

json_key¶

GCS JSON Key

path¶

GCS path

provider¶

Used for uploading images to public servers so they can be included in slack/email messages (s3, webdav, gcs, azure_blob, local)

s3¶

access_key¶

S3 Access Key

bucket¶

S3 Bucket

bucket_url¶

S3 Bucket URL

path¶

S3 Bucket Path

region¶

S3 Region

secret_key¶

S3 Secret Key

webdav¶

password¶

Webdav Password

public_url¶

Webdav public URL

url¶

Webdav URL

username¶

Webdav Username

feature_toggles¶

enable¶

Enable features, separated by spaces

grafana_com¶

url¶

Url used to to import dashboards directly from Grafana.com

grafana_net¶

url¶

Url used to to import dashboards directly from Grafana.net

influxdb¶

database¶

InfluxDB database to configure as Grafana data source

datasource_input_name¶

Name of the InfluxDB datasource input name

Default

DS_INFLUXDB

datasource_name¶

Name of the InfluxDB datasource

Default

influxdb

password¶

InfluxDB password to configure as Grafana data source

url¶

InfluxDB URL to configure as Grafana data source

username¶

InfluxDB user to configure as Grafana data source

log¶

console¶

format¶

log line format, valid options are text, console and json

level¶

log level

file¶

daily_rotate¶

Segment log daily

format¶

log line format, valid options are text, console and json

level¶

log level

log_rotate¶

This enables automated log rotate(switch of following options)

max_days¶

Expired days of log file(delete after max days)

max_lines¶

Max line number of single file

max_size_shift¶

Max size shift of single file

filters¶

Optional settings to set different levels for specific loggers

level¶

log level. Either ‘trace’, ‘debug’, ‘info’, ‘warn’, ‘error’, ‘critical’

mode¶

Either ‘console’, ‘file’, ‘syslog’. Use space to separate multiple modes

syslog¶

address¶

Syslog address

facility¶

Syslog facility. user, daemon and local0 through local7 are valid.

format¶

log line format, valid options are text, console and json

level¶

log level

network¶

Syslog network type. This can be udp, tcp, or unix

tag¶

Syslog tag

metrics¶

basic_auth¶

password¶

Basic auth password for the metrics endpoint

username¶

Basic auth username for the metrics endpoint

disable_total_stats¶

Disable total stats (stattotals*) metrics to be generated

enabled¶

Enable internal metrics

graphite¶

address¶

Graphite address

prefix¶

Graphite prefix

interval_seconds¶

Publish interval

panels¶

disable_sanitize_html¶

Disable sanitize HTML

enable_alpha¶

Enable alpha panels

paths¶

temp_data_lifetime¶

Temporary files in data directory older than given duration will be removed

plugins¶

app_tls_skip_verify_insecure¶

Skip verify insecure for app tls

enable_alpha¶

Enable alpha plugins

prometheus¶

dashboard_files¶

Array of dashboard json file locations or glob patterns

dashboard_folders¶

Array of grafana folders and dashboard json file locations or glob patterns

Example

- disable_deletion: true
  editable: false
  files:
  - /var/vcap/packages/my_dashboards/*
  name: My Dashboards

datasource_input_name¶

Name of the Prometehus datasource input name

Default

DS_PROMETHEUS

datasource_name¶

Name of the Prometheus datasource

Default

prometheus

tls_skip_verify¶

Skip TLS verification

use_external_url¶

If true and prometheus provides one, use the external url to reach prometheus

Default

true

quota¶

enabled¶

Enable Usage Quotas

global_api_key¶

global limit of api_keys

global_dashboard¶

global limit of dashboards

global_org¶

global limit of orgs

global_session¶

global limit on number of logged in users

global_user¶

Global limit of users

org_api_key¶

limit number of api_keys per Org

org_dashboard¶

limit number of dashboards per Org

org_data_source¶

limit number of data_sources per Org

org_user¶

limit number of users per Org

user_org¶

limit number of orgs a user can create

remote_cache¶

connstr¶

Connection string

type¶

Either ‘redis’, ‘memcached’, ‘database’

Default

database

rendering¶

callback_url¶

External image rendering callback URL

server_url¶

External image rendering server URL

security¶

admin_password¶

default admin password

admin_user¶

default admin user

Default

admin

allow_embedding¶

Set to true if you want to allow browsers to render Grafana in a

cookie_samesite¶

Set cookie SameSite attribute (lax, strict and none)

cookie_secure¶

Set to true if you host Grafana behind HTTPS

cstrict_transport_security_max_age_seconds¶

Sets how long a browser should cache HSTS. Only applied if strict_transport_security is enabled

data_source_proxy_whitelist¶

data source proxy whitelist (ip_or_domain:port separated by spaces)

disable_brute_force_login_protection¶

disable protection against brute force login attempts

disable_gravatar¶

disable gravatar profile images

disable_initial_admin_creation¶

Disable creation of admin user on first start of grafana

secret_key¶

used for signing

strict_transport_security¶

Set to true if you want to enable http strict transport security (HSTS) response header

strict_transport_security_preload¶

Set to true if to enable HSTS preloading option. Only applied if strict_transport_security is enabled

strict_transport_security_subdomains¶

Set to true if to enable the HSTS includeSubDomains option. Only applied if strict_transport_security is enabled

x_content_type_options¶

Set to true to enable the X-Content-Type-Options response header

x_xss_protection¶

Set to true to enable the X-XSS-Protection header, which tells browsers to stop pages from loadingwhen they detect reflected cross-site scripting (XSS) attacks

server¶

domain¶

The public facing domain name used to access grafana from a browser

enable_gzip¶

Enable gzip

enforce_domain¶

Redirect to correct domain if host header does not match domain

http_addr¶

The ip address to bind to, empty will bind to all interfaces

http_port¶

The http port to bind to

Default

3000

protocol¶

Protocol (http or https)

root_url¶

The full public facing url

router_logging¶

Log web requests

serve_from_sub_path¶

Serve Grafana from subpath specified in root_url setting

ssl_cert¶

SSL certificate (PEM encoded)

ssl_key¶

SSL private key (PEM encoded)

static_root_path¶

The relative working path

smtp¶

ehlo_identity¶

EHLO identity in SMTP dialog (defaults to instance_name)

enabled¶

SMTP enabled

from_address¶

SMTP from address

from_name¶

SMTP from name

host¶

SMTP host

password¶

SMTP password

skip_verify¶

SMTP skip SSL verification

ssl_cert¶

SMTP SSL certificate

ssl_key¶

SMTP SSL private key

user¶

SMTP user

snapshots¶

external_enabled¶

Extenal snaphot enabled

external_snapshot_name¶

External snapshot name

external_snapshot_url¶

External snapshot URL

public_mode¶

Set to true to enable this Grafana instance act as an external snapshot server and allow unauthenticated requests for creating and deleting snapshots

remove_expired¶

Remove expired snapshots

tracing¶

jaeger¶

address¶

jaeger destination (ex localhost:6831)

always_included_tag¶

tag that will always be included in when creating new spans

disable_shared_zipkin_spans¶

Setting this to true disables shared RPC spans

sampler_param¶

jaeger samplerconfig param

sampler_type¶

Type specifies the type of the sampler: const, probabilistic, rateLimiting, or remote

zipkin_propagation¶

Whether or not to use Zipkin span propagation (x-b3- HTTP headers)

users¶

allow_org_create¶

Allow non admin users to create organizations

allow_sign_up¶

disable user signup / registration

auto_assign_org¶

Set to true to automatically assign new users to the default organization (id 1)

auto_assign_org_id¶

Set this value to automatically add new users to the provided organization (if auto_assign_org above is set to true)

auto_assign_org_role¶

Default role new users will be automatically assigned (if disabled above is set to true)

default_theme¶

Default UI theme (‘dark’ or ‘light’)

editors_can_admin¶

Editors can administrate dashboard, folders and teams they create

external_manage_info¶

External user management info

external_manage_link_name¶

External user management link name

external_manage_link_url¶

External user management link URL

login_hint¶

Background text for the user field on the login page

password_hint¶

Background text for the password field on the login page

seeded_global_users¶

Array of Grafana users to be seeded

Default

[]

Example

- email: user@example.com
  login: user
  name: user name
  password: userpassword

verify_email_enabled¶

Require email validation before sign up completes

viewers_can_edit¶

Viewers can edit/inspect dashboard settings in the browser but not save the dashboard

Templates¶

Templates are rendered and placed onto corresponding instances during the deployment process. This job's templates will be placed into /var/vcap/jobs/grafana/ directory (learn more).

• bin/grafana-admin-password (from bin/grafana-admin-password)
• bin/grafana-homepage (from bin/grafana-homepage)
• bin/grafana-users (from bin/grafana-users)
• bin/grafana_ctl (from bin/grafana_ctl)
• bin/post-start (from bin/post-start)
• bin/pre-start (from bin/pre-start)
• bin/prometheus-dashboards (from bin/prometheus-dashboards)
• config/database_tls_client_ca.pem (from config/database_tls_client_ca.pem)
• config/database_tls_client_cert.pem (from config/database_tls_client_cert.pem)
• config/database_tls_client_key.pem (from config/database_tls_client_key.pem)
• config/gcs_key.json (from config/gcs_key.json)
• config/generic_oauth_tls_client_ca.pem (from config/generic_oauth_tls_client_ca.pem)
• config/generic_oauth_tls_client_cert.pem (from config/generic_oauth_tls_client_cert.pem)
• config/generic_oauth_tls_client_key.pem (from config/generic_oauth_tls_client_key.pem)
• config/grafana.ini (from config/grafana.ini)
• config/ldap.toml (from config/ldap.toml)
• config/license.jwt (from config/license.jwt)
• config/provisioning/dashboards/default.yml (from config/provisioning/dashboards/default.yml)
• config/provisioning/dashboards/folders.yml (from config/provisioning/dashboards/folders.yml)
• config/provisioning/datasources/custom.yml (from config/provisioning/datasources/custom.yml)
• config/provisioning/datasources/influxdb.yml (from config/provisioning/datasources/influxdb.yml)
• config/provisioning/datasources/prometheus.yml (from config/provisioning/datasources/prometheus.yml)
• config/saml_certificate.pem (from config/saml_certificate.pem)
• config/saml_ipd_metadata.xml (from config/saml_ipd_metadata.xml)
• config/saml_private_key.pem (from config/saml_private_key.pem)
• config/smtp_cert.pem (from config/smtp_cert.pem)
• config/smtp_key.pem (from config/smtp_key.pem)
• config/ssl_cert.pem (from config/ssl_cert.pem)
• config/ssl_key.pem (from config/ssl_key.pem)

Packages¶

Packages are compiled and placed onto corresponding instances during the deployment process. Packages will be placed into /var/vcap/packages/ directory.

• grafana
• grafana_jq
• grafana_plugins