Parameters

The parent key for all of the following parameters is pkg.monitoring.

`images`

type	dictionary

Dictionary containing the container images directly used by this package. The dictionary doesn’t contain images managed by included components

`prometheus`

`prometheus.ingress.enabled`

type	boolean
default	`true`

Whether to deploy an ingress for Prometheus. The ingress will be protected by an OAuth2 proxy configured by the field prometheus.proxy. Prometheus won’t be exposed directly.

`prometheus.ingress.host`

type	string
default	`prometheus.example.com`

The hostname of the ingress.

`prometheus.ingress.annotations`

type	dictionary
default

cert-manager.io/cluster-issuer: letsencrypt-production

`prometheus.ingress.tls.enabled`

type	boolean
default	`true`

Whether to enable TLS for the ingress.

`prometheus.ingress.tls.secretName`

type	string
default	`null`

The name of the secret containing the TLS certificate. If left empty the name will be generated from the ingress name by appending -tls.

`prometheus.proxy`

type	dictionary
default

proxy:
  provider: keycloak-oidc
  provider-display-name: "Keycloak"
  client-id: syn_monitoring_${cluster:name}_prometheus
  email-domain: example.com
  oidc-issuer-url: https://id.example.com/auth/realms/example-realm
  custom-sign-in-logo: https://example.com/logo.png
  real-client-ip-header: X-Forwarded-For

A dictionary of arguments to pass to the OAuth2 Proxy.

`prometheus.thanos.objectStorageConfig`

type	dictionary
default

objectStorageConfig:
  bucket: '${cluster:name}-thanos'
  endpoint: objects.example.com
  region: eu-east
  access_key: '?{vaultkv:${cluster:tenant}/${cluster:name}/syn-monitoring/prometheus/s3_access_key}'
  secret_key: '?{vaultkv:${cluster:tenant}/${cluster:name}/syn-monitoring/prometheus/s3_secret_key}'

The Thanos sidecar S3 configuration. Consult the upsteam documentation on the available options.