2 files changed, 190 insertions, 0 deletions
diff --git a/roles/services/monitoring/promtail/handlers/main.yml b/roles/services/monitoring/promtail/handlers/main.yml
new file mode 100644
index 0000000..97ea7d3
--- /dev/null
+++ b/roles/services/monitoring/promtail/handlers/main.yml
@@ -0,0 +1,39 @@
+- name: update repos - debian
+  apt:
+    update_cache: yes
+- name: update repos - fedora
+  dnf:
+    name: "*"
+    state: latest
+- name: build loki-docker-driver plugin for private repo
+  become: yes
+  become_user: "{{ docker_username }}"
+  environment:
+    LOKI_DOCKER_DRIVER: "{{ docker_registry_url }}/{{ docker_registry_username }}/loki-docker-driver"
+  community.general.make:
+    chdir: "{{ docker_home }}/plugins/loki"
+    target: docker-driver-push
+- name: restart rootless docker
+  become: yes
+  become_user: "{{ docker_username }}"
+  systemd:
+    name: docker
+    enabled: yes
+    state: restarted
+    scope: user
+  environment:
+    XDG_RUNTIME_DIR: "/run/user/{{ docker_uid }}"
+- name: restart docker
+  service:
+    name: docker
+    state: restarted
+- name: restart promtail
+  when: promtail_config.changed
+  service:
+    name: promtail
+    state: restarted
diff --git a/roles/services/monitoring/promtail/tasks/main.yml b/roles/services/monitoring/promtail/tasks/main.yml
new file mode 100644
index 0000000..f8b28cc
--- /dev/null
+++ b/roles/services/monitoring/promtail/tasks/main.yml
@@ -0,0 +1,151 @@
+- name: install extrepo
+  when: ansible_facts['distribution'] == 'Debian'
+  package:
+    name: extrepo
+    state: latest
+- name: add grafana repo | debian
+  when: ansible_facts['distribution'] == 'Debian'
+  register: result
+  changed_when: result.stdout | regex_search("skipped") | bool
+  notify: update repos - debian
+  command:
+    cmd: extrepo enable grafana
+    creates: /etc/apt/sources.list.d/extrepo_grafana.sources
+- meta: flush_handlers
+- name: update grafana extrepo data | debian
+  when: ansible_facts['distribution'] == 'Debian'
+  changed_when: false
+  command:
+    cmd: extrepo update grafana
+- name: add Grafana repo | fedora
+  when: ansible_facts['distribution'] == 'Fedora'
+  notify: update repos - fedora
+  yum_repository:
+    name: grafana
+    file: grafna
+    description: "Grafana OSS Repo"
+    baseurl: "https://rpm.grafana.com"
+    repo_gpgcheck: yes
+    enabled: yes
+    gpgcheck: yes
+    gpgkey: https://rpm.grafana.com/gpg.key
+    sslverify: yes
+    sslcacert: /etc/pki/tls/certs/ca-bundle.crt
+    exclude: "*beta*"
+- name: install promtail
+  package:
+    name: promtail
+    state: latest
+- name: add promtail to adm group for log access (debian)
+  when: ansible_facts['distribution'] == 'Debian'
+  user:
+    name: promtail
+    groups: adm
+    append: yes
+- name: add promtail to systemd-journal group for journal access
+  user:
+    name: promtail
+    groups: systemd-journal
+    append: yes
+- name: create docker plugin directory
+  when: "'docker_hosts' in group_names"
+  become: yes
+  become_user: "{{ docker_username }}"
+  file:
+    path: "{{ docker_home }}/plugins"
+    state: directory
+    owner: "{{ docker_username }}"
+    group: "{{ docker_username }}"
+    mode: "0755"
+- name: clone loki repo
+  when: "'docker_hosts' in group_names"
+  become: yes
+  become_user: "{{ docker_username }}"
+  git:
+    repo: "{{ loki_repo }}"
+    dest: "{{ docker_home }}/plugins/loki"
+    version: "{{ loki_version }}"
+  register: repo
+  notify: build loki-docker-driver plugin for private repo
+- meta: flush_handlers
+- name: login to docker registry
+  when: "'docker_hosts' in group_names"
+  become: yes
+  become_user: "{{ docker_username }}"
+  environment:
+    XDG_RUNTIME_DIR: "/run/user/{{ docker_uid }}"
+  docker_login:
+    docker_host: "unix://run/user/{{ docker_uid }}/docker.sock"
+    registry_url: "{{ docker_registry_url }}"
+    username: "{{ docker_registry_username }}"
+    password: "{{ docker_registry_password }}"
+# docker driver rootless
+- name: enable loki-docker-driver plugin
+  when: "'docker_hosts' in group_names"
+  become: yes
+  become_user: "{{ docker_username }}"
+  notify: restart rootless docker
+  community.docker.docker_plugin:
+    plugin_name: "{{ docker_registry_url }}/{{ docker_registry_username }}/loki-docker-driver:main"
+    state: enable
+    docker_host: "unix://run/user/{{ docker_uid }}/docker.sock"
+    alias: loki
+- name: deploy docker config
+  when: "'docker_hosts' in group_names"
+  notify: restart rootless docker
+  copy:
+    src: "{{ docker_config }}"
+    dest: "{{ docker_home }}/.config/docker/daemon.json"
+    owner: "{{ docker_username }}"
+    group: "{{ docker_username }}"
+    mode: '0644'
+# docker driver root
+- name: enable loki-docker-driver plugin
+  when: "'docker_hosts' in group_names"
+  notify: restart docker
+  community.docker.docker_plugin:
+    plugin_name: "{{ docker_registry_url }}/{{ docker_registry_username }}/loki-docker-driver:main"
+    state: enable
+    alias: loki
+- name: deploy docker config
+  when: "'docker_hosts' in group_names"
+  notify: restart docker
+  copy:
+    src: "{{ docker_config }}"
+    dest: /etc/docker/daemon.json
+    owner: root
+    group: root
+    mode: '0644'
+- name: deploy promtail configuration
+  notify: restart promtail
+  copy:
+    src: "{{ promtail_config }}"
+    dest: /etc/promtail/config.yml
+    owner: root
+    group: root
+    mode: '0644'
+- name: enable promtail
+  systemd:
+    daemon_reload: yes
+    enabled: yes
+    masked: no
+    name: promtail

diff --git a/roles/services/monitoring/promtail/handlers/main.yml b/roles/services/monitoring/promtail/handlers/main.yml new file mode 100644 index 0000000..97ea7d3 --- /dev/null +++ b/roles/services/monitoring/promtail/handlers/main.yml
@@ -0,0 +1,39 @@
	1	- name: update repos - debian
	2	apt:
	3	update_cache: yes
	4
	5	- name: update repos - fedora
	6	dnf:
	7	name: "*"
	8	state: latest
	9
	10	- name: build loki-docker-driver plugin for private repo
	11	become: yes
	12	become_user: "{{ docker_username }}"
	13	environment:
	14	LOKI_DOCKER_DRIVER: "{{ docker_registry_url }}/{{ docker_registry_username }}/loki-docker-driver"
	15	community.general.make:
	16	chdir: "{{ docker_home }}/plugins/loki"
	17	target: docker-driver-push
	18
	19	- name: restart rootless docker
	20	become: yes
	21	become_user: "{{ docker_username }}"
	22	systemd:
	23	name: docker
	24	enabled: yes
	25	state: restarted
	26	scope: user
	27	environment:
	28	XDG_RUNTIME_DIR: "/run/user/{{ docker_uid }}"
	29
	30	- name: restart docker
	31	service:
	32	name: docker
	33	state: restarted
	34
	35	- name: restart promtail
	36	when: promtail_config.changed
	37	service:
	38	name: promtail
	39	state: restarted


diff --git a/roles/services/monitoring/promtail/tasks/main.yml b/roles/services/monitoring/promtail/tasks/main.yml new file mode 100644 index 0000000..f8b28cc --- /dev/null +++ b/roles/services/monitoring/promtail/tasks/main.yml
@@ -0,0 +1,151 @@
	1	- name: install extrepo
	2	when: ansible_facts['distribution'] == 'Debian'
	3	package:
	4	name: extrepo
	5	state: latest
	6
	7	- name: add grafana repo \| debian
	8	when: ansible_facts['distribution'] == 'Debian'
	9	register: result
	10	changed_when: result.stdout \| regex_search("skipped") \| bool
	11	notify: update repos - debian
	12	command:
	13	cmd: extrepo enable grafana
	14	creates: /etc/apt/sources.list.d/extrepo_grafana.sources
	15
	16	- meta: flush_handlers
	17
	18	- name: update grafana extrepo data \| debian
	19	when: ansible_facts['distribution'] == 'Debian'
	20	changed_when: false
	21	command:
	22	cmd: extrepo update grafana
	23
	24	- name: add Grafana repo \| fedora
	25	when: ansible_facts['distribution'] == 'Fedora'
	26	notify: update repos - fedora
	27	yum_repository:
	28	name: grafana
	29	file: grafna
	30	description: "Grafana OSS Repo"
	31	baseurl: "https://rpm.grafana.com"
	32	repo_gpgcheck: yes
	33	enabled: yes
	34	gpgcheck: yes
	35	gpgkey: https://rpm.grafana.com/gpg.key
	36	sslverify: yes
	37	sslcacert: /etc/pki/tls/certs/ca-bundle.crt
	38	exclude: "beta"
	39
	40	- name: install promtail
	41	package:
	42	name: promtail
	43	state: latest
	44
	45	- name: add promtail to adm group for log access (debian)
	46	when: ansible_facts['distribution'] == 'Debian'
	47	user:
	48	name: promtail
	49	groups: adm
	50	append: yes
	51
	52	- name: add promtail to systemd-journal group for journal access
	53	user:
	54	name: promtail
	55	groups: systemd-journal
	56	append: yes
	57
	58	- name: create docker plugin directory
	59	when: "'docker_hosts' in group_names"
	60	become: yes
	61	become_user: "{{ docker_username }}"
	62	file:
	63	path: "{{ docker_home }}/plugins"
	64	state: directory
	65	owner: "{{ docker_username }}"
	66	group: "{{ docker_username }}"
	67	mode: "0755"
	68
	69	- name: clone loki repo
	70	when: "'docker_hosts' in group_names"
	71	become: yes
	72	become_user: "{{ docker_username }}"
	73	git:
	74	repo: "{{ loki_repo }}"
	75	dest: "{{ docker_home }}/plugins/loki"
	76	version: "{{ loki_version }}"
	77	register: repo
	78	notify: build loki-docker-driver plugin for private repo
	79
	80	- meta: flush_handlers
	81
	82	- name: login to docker registry
	83	when: "'docker_hosts' in group_names"
	84	become: yes
	85	become_user: "{{ docker_username }}"
	86	environment:
	87	XDG_RUNTIME_DIR: "/run/user/{{ docker_uid }}"
	88	docker_login:
	89	docker_host: "unix://run/user/{{ docker_uid }}/docker.sock"
	90	registry_url: "{{ docker_registry_url }}"
	91	username: "{{ docker_registry_username }}"
	92	password: "{{ docker_registry_password }}"
	93
	94	# docker driver rootless
	95
	96	- name: enable loki-docker-driver plugin
	97	when: "'docker_hosts' in group_names"
	98	become: yes
	99	become_user: "{{ docker_username }}"
	100	notify: restart rootless docker
	101	community.docker.docker_plugin:
	102	plugin_name: "{{ docker_registry_url }}/{{ docker_registry_username }}/loki-docker-driver:main"
	103	state: enable
	104	docker_host: "unix://run/user/{{ docker_uid }}/docker.sock"
	105	alias: loki
	106
	107	- name: deploy docker config
	108	when: "'docker_hosts' in group_names"
	109	notify: restart rootless docker
	110	copy:
	111	src: "{{ docker_config }}"
	112	dest: "{{ docker_home }}/.config/docker/daemon.json"
	113	owner: "{{ docker_username }}"
	114	group: "{{ docker_username }}"
	115	mode: '0644'
	116
	117	# docker driver root
	118
	119	- name: enable loki-docker-driver plugin
	120	when: "'docker_hosts' in group_names"
	121	notify: restart docker
	122	community.docker.docker_plugin:
	123	plugin_name: "{{ docker_registry_url }}/{{ docker_registry_username }}/loki-docker-driver:main"
	124	state: enable
	125	alias: loki
	126
	127	- name: deploy docker config
	128	when: "'docker_hosts' in group_names"
	129	notify: restart docker
	130	copy:
	131	src: "{{ docker_config }}"
	132	dest: /etc/docker/daemon.json
	133	owner: root
	134	group: root
	135	mode: '0644'
	136
	137	- name: deploy promtail configuration
	138	notify: restart promtail
	139	copy:
	140	src: "{{ promtail_config }}"
	141	dest: /etc/promtail/config.yml
	142	owner: root
	143	group: root
	144	mode: '0644'
	145
	146	- name: enable promtail
	147	systemd:
	148	daemon_reload: yes
	149	enabled: yes
	150	masked: no
	151	name: promtail