| Status | |
|---|---|
| Stability | alpha: metrics |
| Distributions | contrib |
| Issues |   |
| Code Owners | @atoulme, @michael-burt |
Emit metrics about x.509 certificates.
By default, the TLS Check Receiver will emit a single metric, tlscheck.time_left, per target. This is measured in seconds until the date and time specified in the NotAfter field of the x.509 certificate. After certificate expiration, the metric value will be a negative integer measuring the time in seconds since expiry.
Targets are
receivers:
tlscheck:
targets:
- endpoint: example.com:443
dialer:
timeout: 15s
- endpoint: foobar.com:8080
dialer:
timeout: 15s
- endpoint: localhost:10901This component does not provide hostname, validity period, path, or CRL / OCSP verification on the certificate.
Details about the metrics produced by this receiver can be found in metadata.yaml.