X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/524d90d022751710980613df6b943291fc1498d6..bc4644e25d7ed612e18f68bc712e8f52fc51a782:/cookbooks/prometheus/resources/exporter.rb diff --git a/cookbooks/prometheus/resources/exporter.rb b/cookbooks/prometheus/resources/exporter.rb index d3652d3b8..82c2957c0 100644 --- a/cookbooks/prometheus/resources/exporter.rb +++ b/cookbooks/prometheus/resources/exporter.rb @@ -22,24 +22,36 @@ default_action :create property :exporter, :kind_of => String, :name_property => true property :port, :kind_of => Integer, :required => [:create] property :listen_switch, :kind_of => String, :default => "web.listen-address" -property :package, :kind_of => String -property :defaults, :kind_of => String -property :service, :kind_of => String +property :listen_type, :kind_of => String, :default => "address" +property :user, :kind_of => String, :default => "root" +property :options, :kind_of => [String, Array] +property :environment, :kind_of => Hash, :default => {} action :create do - package package_name - - template defaults_name do - source "defaults.erb" - owner "root" - group "root" - mode "644" - variables new_resource.to_hash.merge(:listen_address => listen_address) + systemd_service service_name do + description "Prometheus #{new_resource.exporter} exporter" + type "simple" + user new_resource.user + environment new_resource.environment + exec_start "#{executable_path} #{executable_options}" + private_tmp true + protect_system "strict" + protect_home true + no_new_privileges true end service service_name do action [:enable, :start] - subscribes :restart, "template[#{defaults_name}]" + subscribes :restart, "systemd_service[#{service_name}]" + end + + firewall_rule "accept-prometheus-#{new_resource.exporter}" do + action :accept + source "osm" + dest "fw" + proto "tcp:syn" + dest_ports new_resource.port + only_if { node[:prometheus][:mode] == "external" } end node.default[:prometheus][:exporters][new_resource.exporter] = listen_address @@ -50,25 +62,46 @@ action :delete do action [:disable, :stop] end - package package_name do - action :purge + systemd_service service_name do + action :delete + end +end + +action :restart do + service service_name do + action :restart end end action_class do - def package_name - new_resource.package || "prometheus-#{new_resource.exporter}-exporter" + def service_name + "prometheus-#{new_resource.exporter}-exporter" end - def defaults_name - new_resource.defaults || "/etc/default/prometheus-#{new_resource.exporter}-exporter" + def executable_path + "/opt/prometheus/exporters/#{new_resource.exporter}/#{new_resource.exporter}_exporter" end - def listen_address - "#{node.internal_ipaddress}:#{new_resource.port}" + def executable_options + "--#{new_resource.listen_switch}=#{listen_argument} #{Array(new_resource.options).join(' ')}" end - def service_name - new_resource.service || "prometheus-#{new_resource.exporter}-exporter" + def listen_argument + case new_resource.listen_type + when "address" then listen_address + when "url" then "http://#{listen_address}/metrics" + end end + + def listen_address + if node[:prometheus][:mode] == "wireguard" + "[#{node[:prometheus][:address]}]:#{new_resource.port}" + else + "#{node[:prometheus][:address]}:#{new_resource.port}" + end + end +end + +def after_created + subscribes :restart, "git[/opt/prometheus]" end