Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Using GitOps with Grafana Operator to create Grafana Dashboard with Flux. #164

Merged
merged 23 commits into from
Jun 5, 2023
Merged

Using GitOps with Grafana Operator to create Grafana Dashboard with Flux. #164

merged 23 commits into from
Jun 5, 2023

Conversation

elamaran11
Copy link
Contributor

What does this PR do?

🛑 Please open an issue first to discuss any significant work and flesh out details/direction - we would hate for your time to be wasted. Consult the CONTRIBUTING guide for submitting pull-requests.

Motivation

Using GitOps with Grafana Operator to create Grafana Dashboard with Flux.

More

  • Yes, I have tested the PR using my local account setup (Provide any test evidence report under Additional Notes)
  • Yes, I ran pre-commit run -a with this PR
  • Yes, I have added a new example under examples to support my PR (when applicable)
  • Yes, I have updated the Pages for this feature

Note: Not all the PRs required examples and docs.

For Moderators

  • E2E Test successfully complete before merge?

Additional Notes

@elamaran11 elamaran11 temporarily deployed to Observability Test May 25, 2023 18:06 — with GitHub Actions Inactive
@elamaran11 elamaran11 requested review from bonclay7 and lewinkedrs May 25, 2023 18:06
@elamaran11 elamaran11 temporarily deployed to Observability Test May 25, 2023 18:29 — with GitHub Actions Inactive
@bonclay7
Copy link
Member

This looks good @elamaran11, how do we validate this?

@elamaran11
Copy link
Contributor Author

This looks good @elamaran11, how do we validate this?

@bonclay7 Just run it as is. It will work and you can validate a new dashboard getting created.

@bonclay7 bonclay7 temporarily deployed to Observability Test May 31, 2023 15:37 — with GitHub Actions Inactive
@bonclay7 bonclay7 temporarily deployed to Observability Test June 1, 2023 09:39 — with GitHub Actions Inactive
@elamaran11 elamaran11 temporarily deployed to Observability Test June 2, 2023 14:35 — with GitHub Actions Inactive
@bonclay7 bonclay7 temporarily deployed to Observability Test June 2, 2023 15:15 — with GitHub Actions Inactive
@bonclay7 bonclay7 temporarily deployed to Observability Test June 2, 2023 17:46 — with GitHub Actions Inactive
@bonclay7
Copy link
Member

bonclay7 commented Jun 2, 2023
edited
Loading

@elamaran11 To fully validate this, maybe we should drop this in terraform? so we are sure the operator set it up correctly?

And this too?

@bonclay7
Copy link
Member

bonclay7 commented Jun 2, 2023

So I went ahead and did it, I dropped the dashboard provided by Terraform but for some reason the operator can't renew my API key, maybe i'm doing something wrong?

1.6857285045139527e+09	INFO	found matching Grafana instances for datasource	{"controller": "grafanadatasource", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDatasource", "GrafanaDatasource": {"name":"grafanadatasource-sample-amp","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "grafanadatasource-sample-amp", "reconcileID": "72cfd60c-a255-44a1-bfbd-88b0cbc4f90c", "count": 1}
1.6857285045445938e+09	INFO	found matching Grafana instances for dashboard	{"controller": "grafanadashboard", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDashboard", "GrafanaDashboard": {"name":"external-grafanadashboard-url","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "external-grafanadashboard-url", "reconcileID": "5a07e7b0-d200-4223-94bc-a2fe6e6009db", "count": 1}
1.6857285045556655e+09	ERROR	error reconciling datasource	{"controller": "grafanadatasource", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDatasource", "GrafanaDatasource": {"name":"grafanadatasource-sample-amp","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "grafanadatasource-sample-amp", "reconcileID": "72cfd60c-a255-44a1-bfbd-88b0cbc4f90c", "datasource": "grafanadatasource-sample-amp", "grafana": "external-grafana", "error": "status: 401, body: {\"message\":\"Expired API key\"}\n"}
github.com/grafana-operator/grafana-operator/controllers.(*GrafanaDatasourceReconciler).Reconcile
	github.com/grafana-operator/grafana-operator/controllers/datasource_controller.go:209
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Reconcile
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:121
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:320
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:273
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func2.2
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:234
1.6857285046102674e+09	ERROR	error reconciling dashboard	{"controller": "grafanadashboard", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDashboard", "GrafanaDashboard": {"name":"external-grafanadashboard-url","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "external-grafanadashboard-url", "reconcileID": "5a07e7b0-d200-4223-94bc-a2fe6e6009db", "dashboard": "external-grafanadashboard-url", "grafana": "external-grafana", "error": "status: 401, body: {\"message\":\"Expired API key\"}\n"}
github.com/grafana-operator/grafana-operator/controllers.(*GrafanaDashboardReconciler).Reconcile
	github.com/grafana-operator/grafana-operator/controllers/dashboard_controller.go:216
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Reconcile
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:121
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:320
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:273
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func2.2
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:234

@elamaran11
Copy link
Contributor Author

@elamaran11 To fully validate this, maybe we should drop this in terraform? so we are sure the operator set it up correctly?

And this too?

@bonclay7 Dropping is not required both boards can coexist for now.

@elamaran11
Copy link
Contributor Author

elamaran11 commented Jun 2, 2023
edited
Loading

So I went ahead and did it, I dropped the dashboard provided by Terraform but for some reason the operator can't renew my API key, maybe i'm doing something wrong?

1.6857285045139527e+09	INFO	found matching Grafana instances for datasource	{"controller": "grafanadatasource", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDatasource", "GrafanaDatasource": {"name":"grafanadatasource-sample-amp","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "grafanadatasource-sample-amp", "reconcileID": "72cfd60c-a255-44a1-bfbd-88b0cbc4f90c", "count": 1}
1.6857285045445938e+09	INFO	found matching Grafana instances for dashboard	{"controller": "grafanadashboard", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDashboard", "GrafanaDashboard": {"name":"external-grafanadashboard-url","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "external-grafanadashboard-url", "reconcileID": "5a07e7b0-d200-4223-94bc-a2fe6e6009db", "count": 1}
1.6857285045556655e+09	ERROR	error reconciling datasource	{"controller": "grafanadatasource", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDatasource", "GrafanaDatasource": {"name":"grafanadatasource-sample-amp","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "grafanadatasource-sample-amp", "reconcileID": "72cfd60c-a255-44a1-bfbd-88b0cbc4f90c", "datasource": "grafanadatasource-sample-amp", "grafana": "external-grafana", "error": "status: 401, body: {\"message\":\"Expired API key\"}\n"}
github.com/grafana-operator/grafana-operator/controllers.(*GrafanaDatasourceReconciler).Reconcile
	github.com/grafana-operator/grafana-operator/controllers/datasource_controller.go:209
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Reconcile
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:121
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:320
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:273
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func2.2
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:234
1.6857285046102674e+09	ERROR	error reconciling dashboard	{"controller": "grafanadashboard", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDashboard", "GrafanaDashboard": {"name":"external-grafanadashboard-url","namespace":"grafana-operator"}, "namespace": "grafana-operator", "name": "external-grafanadashboard-url", "reconcileID": "5a07e7b0-d200-4223-94bc-a2fe6e6009db", "dashboard": "external-grafanadashboard-url", "grafana": "external-grafana", "error": "status: 401, body: {\"message\":\"Expired API key\"}\n"}
github.com/grafana-operator/grafana-operator/controllers.(*GrafanaDashboardReconciler).Reconcile
	github.com/grafana-operator/grafana-operator/controllers/dashboard_controller.go:216
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Reconcile
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:121
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:320
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:273
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func2.2
	sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:234

@bonclay7 The Grafana Key is in the Secrets Manager which is expired. Operator wont renew keys with AMG. The external secrets will take care of refreshing secrets manager key with k8s secret for grafana operator but operator has to take care of refreshing grafana keys with below :

export GO_AMG_API_KEY=$(aws grafana create-workspace-api-key \
  --key-name "grafana-operator-key" \
  --key-role "ADMIN" \
  --seconds-to-live 432000 \
  --workspace-id <YOUR_WORKSPACE_ID> \
  --query key \
  --output text)
  
export GO_API_KEY_SECRET_NAME=$(aws secretsmanager list-secrets \
    --query 'SecretList[1].Name' | tr -d '"')

aws secretsmanager update-secret \
    --secret-id $GO_API_KEY_SECRET_NAME \
    --secret-string "${GO_AMG_API_KEY}" \
    --region $GO_AWS_REGION

@bonclay7
Copy link
Member

bonclay7 commented Jun 2, 2023

Did I miss these instructions in the docs, or we are waiting for the full move to make it clear?

@bonclay7
Copy link
Member

bonclay7 commented Jun 2, 2023

Dropping is not required both boards can coexist for now

Yes, but for customers using latest, they would be quite confused that we have two data sources and duplicates dashboards. I would suggest that we make it more seamless

@elamaran11 elamaran11 temporarily deployed to Observability Test June 2, 2023 18:43 — with GitHub Actions Inactive
@elamaran11
Copy link
Contributor Author

Did I miss these instructions in the docs, or we are waiting for the full move to make it clear?

This is same as how you upgrade the Grafana Keys today. We can add these instructions after full move

@elamaran11 elamaran11 temporarily deployed to Observability Test June 2, 2023 21:22 — with GitHub Actions Inactive
@elamaran11 elamaran11 temporarily deployed to Observability Test June 2, 2023 21:24 — with GitHub Actions Inactive
@elamaran11
Copy link
Contributor Author

@bonclay7 Now i have all dashboards in the mix with Grafana Operator and commented out all dashboards in dashboard.tf. We are dependent on the GrafanaFolder feature from the ticket i previously mentioned and also dependent on this PR.

@elamaran11 elamaran11 temporarily deployed to Observability Test June 3, 2023 13:17 — with GitHub Actions Inactive
@elamaran11 elamaran11 temporarily deployed to Observability Test June 3, 2023 13:28 — with GitHub Actions Inactive
@elamaran11
Copy link
Contributor Author

@bonclay7 Grafana Folder works now with Grafana Operator. So i have migrated all the 6 dashboards for EKS Monitoring Module to Grafana Operator and Flux with GitOps. I think we can seamlessly move other pattern dashboards and cleanup as subsequent work in future PRs. Please take this forward and let me know if you have questions.

@elamaran11 elamaran11 temporarily deployed to Observability Test June 3, 2023 13:43 — with GitHub Actions Inactive
@elamaran11 elamaran11 temporarily deployed to Observability Test June 3, 2023 13:49 — with GitHub Actions Inactive
@elamaran11 elamaran11 temporarily deployed to Observability Test June 3, 2023 15:53 — with GitHub Actions Inactive
@elamaran11
Copy link
Contributor Author

Added an operational procedure as well under Troubleshooting on how to replace the expired Grafana API Keys in AWS Secrets Manager.

@elamaran11
Copy link
Contributor Author

image image

@elamaran11 elamaran11 temporarily deployed to Observability Test June 3, 2023 16:09 — with GitHub Actions Inactive
@elamaran11 elamaran11 temporarily deployed to Observability Test June 3, 2023 16:41 — with GitHub Actions Inactive
bonclay7
bonclay7 approved these changes Jun 5, 2023
View reviewed changes
Copy link
Member

@bonclay7 bonclay7 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Awesome job @elamaran11. There is a few cleanup to do after this one, and docs updates

@bonclay7 bonclay7 merged commit 0392f5b into main Jun 5, 2023
@bonclay7 bonclay7 deleted the feature/gitopsWithGrafana branch June 5, 2023 09:11
@bonclay7 bonclay7 mentioned this pull request Jun 6, 2023
Merged
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bonclay7 bonclay7 bonclay7 approved these changes

@lewinkedrs lewinkedrs Awaiting requested review from lewinkedrs

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@elamaran11 @bonclay7