Add Thanos tenancy proxy for rules #5897

simonpasquier · 2020-07-06T15:18:08Z

The Thanos querier deployment exposes a tenancy-aware service for
recording and alerting rules. It is exposed via a different port than
the existing tenancy-aware service for queries because it requires
different permissions to be granted.

This change modifies the console bridge to make this service available
to the console users.

cc @kyoto @vikram-raj

The Thanos querier deployment exposes a tenancy-aware service for recording and alerting rules. It is exposed via a different port than the existing tenancy-aware service for queries because it requires different permissions to be granted. This change modifies the console bridge to make this service available to the console users. Signed-off-by: Simon Pasquier <spasquie@redhat.com>

vikram-raj

Thanks @simonpasquier,

I verified the changes and in in-cluster mode and for endpoint /api/prometheus-tenancy/api/v1/rules?namespace=ns1 we get response as below as expected

{
  status: 'success',
  data: {
    groups: [
      {
        name: 'example',
        file: '/etc/thanos/rules/thanos-ruler-user-workload-rulefiles-0/ns1-example-alert.yaml',
        rules: [
          {
            name: 'VersionAlert',
            query: 'version{job="prometheus-example-app",namespace="ns1"} == 0',
            duration: 1,
            labels: {
              namespace: 'ns1',
            },
            annotations: {},
            alerts: [
              {
                labels: {
                  alertname: 'VersionAlert',
                  endpoint: 'web',
                  instance: '10.129.2.10:8080',
                  job: 'prometheus-example-app',
                  namespace: 'ns1',
                  pod: 'prometheus-example-app-57d8c46fb9-2w8fw',
                  prometheus: 'openshift-user-workload-monitoring/user-workload',
                  service: 'prometheus-example-app',
                  version: 'v0.1.0',
                },
                annotations: {},
                state: 'FIRING',
                activeAt: '2020-07-07T15:32:45.389025513Z',
                value: '0e+00',
              },
            ],
            health: 'ok',
            type: 'alerting',
          },
          {
            name: 'VersionRule',
            query: 'version{job="prometheus-example-app",namespace="ns1"}',
            labels: {
              namespace: 'ns1',
            },
            health: 'ok',
            type: 'recording',
          },
        ],
        interval: 15,
      },
    ],
  },
}

however in off-cluster i:e localhost this endpoint api/prometheus-tenancy/api/v1/rules?namespace=ns1 return cluster wide rules instead of per namespace.

vikram-raj · 2020-07-07T16:19:42Z

We need this service for Monitoring work for 4.6.

/cc @christianvogt @abhi-kn

simonpasquier · 2020-07-07T17:18:56Z

cc @paulfantom for a review from the monitoring team.

paulfantom · 2020-07-08T14:20:14Z

LGTM, leaving final /approve to the console team.

paulfantom · 2020-07-08T14:22:06Z

/lgtm

invincibleJai · 2020-07-08T14:58:59Z

Thanks @paulfantom , @spadgett needed your help with review

cc @vikram-raj

invincibleJai · 2020-07-09T05:24:36Z

/assign @spadgett

spadgett

/approve
/lgtm

openshift-ci-robot · 2020-07-09T13:25:10Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: paulfantom, simonpasquier, spadgett

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

~~OWNERS~~ [spadgett]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

openshift-ci-robot requested review from rhamilto and spadgett July 6, 2020 15:18

openshift-ci-robot added the component/backend Related to backend label Jul 6, 2020

vikram-raj reviewed Jul 7, 2020

View reviewed changes

openshift-ci-robot requested review from abhi-kn and christianvogt July 7, 2020 16:19

debsmita1 mentioned this pull request Jul 8, 2020

Show alert icon on topology workloads and associated alerts in sidebar #5919

Merged

vikram-raj mentioned this pull request Jul 8, 2020

Add Alerts tab in devconsole monitoring #5785

Merged

openshift-ci-robot assigned paulfantom Jul 8, 2020

openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Jul 8, 2020

openshift-ci-robot assigned spadgett Jul 9, 2020

spadgett approved these changes Jul 9, 2020

View reviewed changes

openshift-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jul 9, 2020

openshift-merge-robot merged commit 96d02b4 into openshift:master Jul 9, 2020

spadgett added this to the v4.6 milestone Jul 14, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add Thanos tenancy proxy for rules #5897

Add Thanos tenancy proxy for rules #5897

simonpasquier commented Jul 6, 2020

vikram-raj left a comment •

edited

vikram-raj commented Jul 7, 2020

simonpasquier commented Jul 7, 2020

paulfantom commented Jul 8, 2020 •

edited

paulfantom commented Jul 8, 2020

invincibleJai commented Jul 8, 2020

invincibleJai commented Jul 9, 2020

spadgett left a comment

openshift-ci-robot commented Jul 9, 2020

Add Thanos tenancy proxy for rules #5897

Add Thanos tenancy proxy for rules #5897

Conversation

simonpasquier commented Jul 6, 2020

vikram-raj left a comment • edited

Choose a reason for hiding this comment

vikram-raj commented Jul 7, 2020

simonpasquier commented Jul 7, 2020

paulfantom commented Jul 8, 2020 • edited

paulfantom commented Jul 8, 2020

invincibleJai commented Jul 8, 2020

invincibleJai commented Jul 9, 2020

spadgett left a comment

Choose a reason for hiding this comment

openshift-ci-robot commented Jul 9, 2020

vikram-raj left a comment •

edited

paulfantom commented Jul 8, 2020 •

edited