video-iac/k8s/monitoring/values-production.yaml

# Helm chart values for Prometheus Operator with HTTPS and basic auth
# Explicitly enable RBAC resource creation
rbac:
  create: true

cpuThresholdMedia: 65
cpuThresholdOther: 80


kube-prometheus-stack:
  prometheus:
    prometheusSpec:
      nodeSelector:
        workload: infra
  grafana:
    nodeSelector:
      workload: infra
  alertmanager:
    alertmanagerSpec:
      nodeSelector:
        workload: infra
  crds:
    enabled: false

  # Disable the default ServiceMonitor configuration paths to prevent duplicates
  prometheus-node-exporter:
    serviceMonitor:
      enabled: false
  nodeExporter:
    serviceMonitor:
      enabled: false

  prometheus:
    ingress:
      enabled: true
      pathType: Prefix
      annotations:
        kubernetes.io/ingress.class: nginx
        #nginx.ingress.kubernetes.io/rewrite-target: /$2
        cert-manager.io/cluster-issuer: letsencrypt-nginx-production
        nginx.ingress.kubernetes.io/backend-protocol: "HTTP"
        nginx.ingress.kubernetes.io/auth-type: basic
        nginx.ingress.kubernetes.io/auth-secret: monitoring-basic-auth 
        nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'
      hosts:
      - monitoring.video.jamkazam.com
      paths:
      - /prometheus
      tls:
      - secretName: monitoring
        hosts:
        - monitoring.video.jamkazam.com
    prometheusSpec:
      retention: 60d
      retentionSize: 20GB
      routePrefix: /prometheus
      externalUrl: https://monitoring.video.jamkazam.com/prometheus
      storageSpec:
        volumeClaimTemplate:
          spec:
            storageClassName: linode-block-storage-retain
            resources:
              requests:
                storage: 30Gi
      # 2. !!! CRUCIAL: Ensure the default ServiceMonitor is ignored !!!
      # This prevents duplicate metrics by telling Prometheus to ignore the default SM.
      serviceMonitorSelector:
        matchExpressions:
          # Exclude the default node-exporter ServiceMonitor
          - key: app.kubernetes.io/name
            operator: NotIn
            values:
              # Use the label identified above
              - prometheus-node-exporter
      serviceMonitorNamespaceSelector:
        matchExpressions:
          - key: kubernetes.io/metadata.name
            operator: In
            values:
              - monitoring  # Its own namespace
              - webrtc-be   # Your app's namespace
      # Enable discovery of PrometheusRules in these namespaces
      ruleNamespaceSelector: {} # Match all namespaces (avoids dependency on namespace labels)
      ruleSelector:
        matchExpressions: [] # Match all rules in selected namespaces
      # Add the manual scrape configuration
      additionalScrapeConfigs:
        - job_name: 'node-exporter'
          kubernetes_sd_configs:
            - role: node
          
          relabel_configs:
            # 1. Pull all node labels (including workload)
            - action: labelmap
              regex: __meta_kubernetes_node_label_(.+)

            # 2. Target the node-exporter port (9100) on the node's IP.
            # role: node discovery defaults to the Kubelet port (10250).
            - source_labels: [__address__]
              regex: '(.*):10250'
              replacement: '${1}:9100'
              target_label: __address__
            
            # 3. Set standard labels for dashboard and alert compatibility
            - source_labels: [__meta_kubernetes_node_name]
              target_label: instance
              action: replace
            - source_labels: [__meta_kubernetes_node_name]
              target_label: node
              action: replace
            - target_label: namespace
              replacement: monitoring
            - target_label: pod
              replacement: node-exporter-discovery
  alertmanager:
    ingress:
      enabled: true
      pathType: Prefix
      annotations:
        kubernetes.io/ingress.class: nginx
        #nginx.ingress.kubernetes.io/rewrite-target: /$2
        cert-manager.io/cluster-issuer: letsencrypt-nginx-production
        nginx.ingress.kubernetes.io/backend-protocol: "HTTP"
        nginx.ingress.kubernetes.io/auth-type: basic
        nginx.ingress.kubernetes.io/auth-secret: monitoring-basic-auth 
        nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'
      hosts:
      - monitoring.video.jamkazam.com
      paths:
      - /alertmanager
      tls:
      - secretName: monitoring
        hosts:
        - monitoring.video.jamkazam.com
    alertmanagerSpec:
      routePrefix: /alertmanager
      externalUrl: https://monitoring.video.jamkazam.com/alertmanager
      storage:
        volumeClaimTemplate:
          spec:
            storageClassName: linode-block-storage-retain
            resources:
              requests:
                storage: 30Gi

    config:
      global:
        resolve_timeout: 5m
        smtp_smarthost: 'email-smtp.us-east-1.amazonaws.com:587'
        smtp_from: 'support@jamkazam.com'
        smtp_auth_username: 'AKIA2SXEHOQFM326T4WJ'
        smtp_auth_password: 'BM6zKJUOWSc4XF+1dXZZlqAkbybGX+KbY+YciI7PIcsn'
        smtp_require_tls: true
      route:
        group_by: ['job']
        group_wait: 30s
        group_interval: 5m
        repeat_interval: 12h
        receiver: 'null'
        routes:
        - match:
            alertname: MediaNodeHighCPU
          receiver: 'slack-notifications'
        - match:
            alertname: NodeMissingWorkloadLabel
          receiver: 'slack-notifications'
        - match:
            alertname: NodeHighCPU
          receiver: 'slack-notifications'
        - match:
            alertname: WebrtcBeCrashed
          receiver: 'email-and-slack-notifications'
        - match:
            alertname: WebrtcBeDown
          receiver: 'email-and-slack-notifications'
        - match:
            alertname: WebrtcBeError
          receiver: 'email-and-slack-notifications'
        - match:
            alertname: PodOOMKilled
          receiver: 'slack-notifications-oom'
        - match:
            alertname: PodCrashLoopBackOff
          receiver: 'slack-notifications'
      receivers:
      - name: 'null'
      - name: 'email-alerts'
        email_configs:
        - to: 'alerts@jamkazam.com'
          send_resolved: true
      - name: 'slack-notifications'
        slack_configs:
        - api_url: 'https://hooks.slack.com/services/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'
          channel: '#video-cluster-prd-alerts'
          send_resolved: true
          title: '[PRODUCTION] [{{ .Status | toUpper }}{{ if eq .Status "firing" }}:{{ .Alerts.Firing | len }}{{ end }}] Monitoring Event Notification'
          text: >-
            {{ range .Alerts }}
              *Alert:* {{ .Annotations.summary }} - `{{ .Labels.severity }}`
              *Description:* {{ .Annotations.description }}
              *Details:*
              {{ range .Labels.SortedPairs }} • *{{ .Name }}:* `{{ .Value }}`
              {{ end }}
            {{ end }}
      - name: 'slack-notifications-oom'
        slack_configs:
        - api_url: 'https://hooks.slack.com/services/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'
          channel: '#video-cluster-prd-alerts'
          send_resolved: false
          title: '[PRODUCTION] [OOM KILLED] Monitoring Event Notification'
          text: >-
            {{ range .Alerts }}
              *Alert:* {{ .Annotations.summary }} - `{{ .Labels.severity }}`
              *Description:* {{ .Annotations.description }}
              *Details:*
              {{ range .Labels.SortedPairs }} • *{{ .Name }}:* `{{ .Value }}`
              {{ end }}
            {{ end }}
      - name: 'email-and-slack-notifications'
        email_configs:
        - to: 'alerts@jamkazam.com'
          send_resolved: true
          headers:
            Subject: '[PRODUCTION] {{ .Status | toUpper }} - {{ range .Alerts }}{{ .Annotations.summary }} {{ end }}'
          html: '{{ template "email.default.html" . }}<br/><hr/>View in <a href="{{ .ExternalURL }}">Alertmanager</a><br/>{{ range .Alerts }}{{ if .Annotations.loki_link }}<a href="{{ .Annotations.loki_link }}&from={{ .StartsAt.Unix | add -60 | mul 1000 }}&to={{ .StartsAt.Unix | add 60 | mul 1000 }}">View Logs in Loki</a>{{ end }}{{ end }}'
        slack_configs:
        - api_url: 'https://hooks.slack.com/services/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'
          channel: '#video-cluster-prd-alerts'
          send_resolved: true
          title: '[PRODUCTION] [{{ .Status | toUpper }}{{ if eq .Status "firing" }}:{{ .Alerts.Firing | len }}{{ end }}] Monitoring Event Notification'
          text: >-
            {{ range .Alerts }}
              *Alert:* {{ .Annotations.summary }} - `{{ .Labels.severity }}`
              *Description:* {{ .Annotations.description }}
              *Details:*
              {{ range .Labels.SortedPairs }} • *{{ .Name }}:* `{{ .Value }}`
              {{ end }}
              {{ if .Annotations.loki_link }}
              *Logs:* <{{ .Annotations.loki_link }}&from={{ .StartsAt.Unix | add -60 | mul 1000 }}&to={{ .StartsAt.Unix | add 60 | mul 1000 }}|View in Loki>
              {{ end }}
            {{ end }}
            *Source:* <{{ .ExternalURL }}|Alertmanager>
  grafana:
    persistence:
      enabled: true
      storageClassName: linode-block-storage-retain
      size: 30Gi
    ingress:
      enabled: true
      pathType: Prefix
      annotations:
        kubernetes.io/ingress.class: nginx
        #nginx.ingress.kubernetes.io/rewrite-target: /$2
        cert-manager.io/cluster-issuer: letsencrypt-nginx-production
        nginx.ingress.kubernetes.io/backend-protocol: "HTTP"
        #nginx.ingress.kubernetes.io/auth-type: basic
        #nginx.ingress.kubernetes.io/auth-secret: monitoring-basic-auth 
        #nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'
      hosts:
      - monitoring.video.jamkazam.com
      path: /grafana
      tls:
      - secretName: monitoring
        hosts:
        - monitoring.video.jamkazam.com
    grafana.ini:
      server:
        domain: monitoring.video.jamkazam.com
        root_url: "%(protocol)s://%(domain)s/grafana/"
        enable_gzip: "true"
        serve_from_sub_path: true
    sidecar:
      dashboards:
        enabled: true
        label: grafana_dashboard
        searchNamespace: ALL
    additionalDataSources:
    - name: Loki
      type: loki
      uid: loki
      url: http://loki.loki.svc:3100
      access: proxy

  # Disable control plane metrics
  kubeEtcd:
    enabled: false

  kubeControllerManager:
    enabled: false

  kubeScheduler:
    enabled: false
      
  kubelet:
    serviceMonitor:
      trackTimestampsStaleness: false
add production values 2021-11-18 07:15:38 +00:00			`# Helm chart values for Prometheus Operator with HTTPS and basic auth`
healthcheck and monitoring 2025-10-05 22:43:16 +00:00			`# Explicitly enable RBAC resource creation`
			`rbac:`
			`create: true`

remove internal alert 2026-01-09 00:24:29 +00:00			`cpuThresholdMedia: 65`
Update thresholds to vet production 2026-01-08 12:12:36 +00:00			`cpuThresholdOther: 80`

healthcheck and monitoring 2025-10-05 22:43:16 +00:00
add production values 2021-11-18 07:15:38 +00:00			`kube-prometheus-stack:`
matching prod to staging 2026-01-08 10:55:26 +00:00			`prometheus:`
			`prometheusSpec:`
			`nodeSelector:`
			`workload: infra`
			`grafana:`
			`nodeSelector:`
			`workload: infra`
			`alertmanager:`
			`alertmanagerSpec:`
			`nodeSelector:`
			`workload: infra`
Try to sync crds always with pre-commit 2025-12-12 21:31:23 +00:00			`crds:`
			`enabled: false`
healthcheck and monitoring 2025-10-05 22:43:16 +00:00
			`# Disable the default ServiceMonitor configuration paths to prevent duplicates`
			`prometheus-node-exporter:`
			`serviceMonitor:`
			`enabled: false`
pause 2025-08-02 16:42:45 +00:00			`nodeExporter:`
			`serviceMonitor:`
healthcheck and monitoring 2025-10-05 22:43:16 +00:00			`enabled: false`

add production values 2021-11-18 07:15:38 +00:00			`prometheus:`
			`ingress:`
			`enabled: true`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`pathType: Prefix`
add production values 2021-11-18 07:15:38 +00:00			`annotations:`
			`kubernetes.io/ingress.class: nginx`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`#nginx.ingress.kubernetes.io/rewrite-target: /$2`
add production values 2021-11-18 07:15:38 +00:00			`cert-manager.io/cluster-issuer: letsencrypt-nginx-production`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`nginx.ingress.kubernetes.io/backend-protocol: "HTTP"`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`nginx.ingress.kubernetes.io/auth-type: basic`
			`nginx.ingress.kubernetes.io/auth-secret: monitoring-basic-auth`
			`nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'`
add production values 2021-11-18 07:15:38 +00:00			`hosts:`
			`- monitoring.video.jamkazam.com`
			`paths:`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`- /prometheus`
add production values 2021-11-18 07:15:38 +00:00			`tls:`
			`- secretName: monitoring`
			`hosts:`
			`- monitoring.video.jamkazam.com`
			`prometheusSpec:`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`retention: 60d`
			`retentionSize: 20GB`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`routePrefix: /prometheus`
add production values 2021-11-18 07:15:38 +00:00			`externalUrl: https://monitoring.video.jamkazam.com/prometheus`
			`storageSpec:`
			`volumeClaimTemplate:`
			`spec:`
			`storageClassName: linode-block-storage-retain`
			`resources:`
			`requests:`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`storage: 30Gi`
healthcheck and monitoring 2025-10-05 22:43:16 +00:00			`# 2. !!! CRUCIAL: Ensure the default ServiceMonitor is ignored !!!`
			`# This prevents duplicate metrics by telling Prometheus to ignore the default SM.`
			`serviceMonitorSelector:`
			`matchExpressions:`
			`# Exclude the default node-exporter ServiceMonitor`
			`- key: app.kubernetes.io/name`
			`operator: NotIn`
			`values:`
			`# Use the label identified above`
			`- prometheus-node-exporter`
scrap metrics for webrtc-be 2025-11-17 00:03:34 +00:00			`serviceMonitorNamespaceSelector:`
			`matchExpressions:`
			`- key: kubernetes.io/metadata.name`
			`operator: In`
			`values:`
			`- monitoring # Its own namespace`
			`- webrtc-be # Your app's namespace`
Let's see if this causes the alert 2025-12-14 05:31:41 +00:00			`# Enable discovery of PrometheusRules in these namespaces`
Still working on alerts 2025-12-14 13:39:53 +00:00			`ruleNamespaceSelector: {} # Match all namespaces (avoids dependency on namespace labels)`
Let's see if this causes the alert 2025-12-14 05:31:41 +00:00			`ruleSelector:`
			`matchExpressions: [] # Match all rules in selected namespaces`
healthcheck and monitoring 2025-10-05 22:43:16 +00:00			`# Add the manual scrape configuration`
			`additionalScrapeConfigs:`
			`- job_name: 'node-exporter'`
			`kubernetes_sd_configs:`
mroe changes 2026-01-08 21:57:28 +00:00			`- role: node`
healthcheck and monitoring 2025-10-05 22:43:16 +00:00
			`relabel_configs:`
mroe changes 2026-01-08 21:57:28 +00:00			`# 1. Pull all node labels (including workload)`
			`- action: labelmap`
			`regex: __meta_kubernetes_node_label_(.+)`
Big change to how we monitor. let's see 2026-01-08 12:50:30 +00:00
mroe changes 2026-01-08 21:57:28 +00:00			`# 2. Target the node-exporter port (9100) on the node's IP.`
			`# role: node discovery defaults to the Kubelet port (10250).`
			`- source_labels: [__address__]`
			`regex: '(.*):10250'`
			`replacement: '${1}:9100'`
			`target_label: __address__`

			`# 3. Set standard labels for dashboard and alert compatibility`
			`- source_labels: [__meta_kubernetes_node_name]`
healthcheck and monitoring 2025-10-05 22:43:16 +00:00			`target_label: instance`
			`action: replace`
mroe changes 2026-01-08 21:57:28 +00:00			`- source_labels: [__meta_kubernetes_node_name]`
Big change to how we monitor. let's see 2026-01-08 12:50:30 +00:00			`target_label: node`
			`action: replace`
mroe changes 2026-01-08 21:57:28 +00:00			`- target_label: namespace`
			`replacement: monitoring`
			`- target_label: pod`
			`replacement: node-exporter-discovery`
add production values 2021-11-18 07:15:38 +00:00			`alertmanager:`
			`ingress:`
			`enabled: true`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`pathType: Prefix`
add production values 2021-11-18 07:15:38 +00:00			`annotations:`
			`kubernetes.io/ingress.class: nginx`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`#nginx.ingress.kubernetes.io/rewrite-target: /$2`
add production values 2021-11-18 07:15:38 +00:00			`cert-manager.io/cluster-issuer: letsencrypt-nginx-production`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`nginx.ingress.kubernetes.io/backend-protocol: "HTTP"`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`nginx.ingress.kubernetes.io/auth-type: basic`
			`nginx.ingress.kubernetes.io/auth-secret: monitoring-basic-auth`
			`nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'`
add production values 2021-11-18 07:15:38 +00:00			`hosts:`
			`- monitoring.video.jamkazam.com`
			`paths:`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`- /alertmanager`
add production values 2021-11-18 07:15:38 +00:00			`tls:`
			`- secretName: monitoring`
			`hosts:`
			`- monitoring.video.jamkazam.com`
			`alertmanagerSpec:`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`routePrefix: /alertmanager`
			`externalUrl: https://monitoring.video.jamkazam.com/alertmanager`
add production values 2021-11-18 07:15:38 +00:00			`storage:`
			`volumeClaimTemplate:`
			`spec:`
			`storageClassName: linode-block-storage-retain`
			`resources:`
			`requests:`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`storage: 30Gi`
add production values 2021-11-18 07:15:38 +00:00
Attem to deploy loki and promtail 2025-12-06 23:42:59 +00:00			`config:`
			`global:`
			`resolve_timeout: 5m`
			`smtp_smarthost: 'email-smtp.us-east-1.amazonaws.com:587'`
			`smtp_from: 'support@jamkazam.com'`
Fix prod creds 2025-12-14 16:58:46 +00:00			`smtp_auth_username: 'AKIA2SXEHOQFM326T4WJ'`
			`smtp_auth_password: 'BM6zKJUOWSc4XF+1dXZZlqAkbybGX+KbY+YciI7PIcsn'`
Attem to deploy loki and promtail 2025-12-06 23:42:59 +00:00			`smtp_require_tls: true`
			`route:`
			`group_by: ['job']`
			`group_wait: 30s`
			`group_interval: 5m`
			`repeat_interval: 12h`
			`receiver: 'null'`
			`routes:`
Test alert 2026-01-08 14:34:48 +00:00			`- match:`
			`alertname: MediaNodeHighCPU`
			`receiver: 'slack-notifications'`
			`- match:`
			`alertname: NodeMissingWorkloadLabel`
			`receiver: 'slack-notifications'`
Let's check high cpu 2026-01-06 13:53:33 +00:00			`- match:`
			`alertname: NodeHighCPU`
			`receiver: 'slack-notifications'`
fix nesting 2025-12-13 21:08:44 +00:00			`- match:`
Attem to deploy loki and promtail 2025-12-06 23:42:59 +00:00			`alertname: WebrtcBeCrashed`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`receiver: 'email-and-slack-notifications'`
Down match/receiver 2025-12-14 13:26:36 +00:00			`- match:`
			`alertname: WebrtcBeDown`
			`receiver: 'email-and-slack-notifications'`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`- match:`
			`alertname: WebrtcBeError`
			`receiver: 'email-and-slack-notifications'`
CrashLoopBackOff events + OOMKiller 2026-01-06 12:30:31 +00:00			`- match:`
			`alertname: PodOOMKilled`
			`receiver: 'slack-notifications-oom'`
			`- match:`
			`alertname: PodCrashLoopBackOff`
			`receiver: 'slack-notifications'`
Attem to deploy loki and promtail 2025-12-06 23:42:59 +00:00			`receivers:`
			`- name: 'null'`
			`- name: 'email-alerts'`
			`email_configs:`
			`- to: 'alerts@jamkazam.com'`
			`send_resolved: true`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`- name: 'slack-notifications'`
			`slack_configs:`
Try new email settings 2025-12-14 14:51:59 +00:00			`- api_url: 'https://hooks.slack.com/services/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'`
			`channel: '#video-cluster-prd-alerts'`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`send_resolved: true`
CrashLoopBackOff events + OOMKiller 2026-01-06 12:30:31 +00:00			`title: '[PRODUCTION] [{{ .Status \| toUpper }}{{ if eq .Status "firing" }}:{{ .Alerts.Firing \| len }}{{ end }}] Monitoring Event Notification'`
			`text: >-`
			`{{ range .Alerts }}`
			Alert: {{ .Annotations.summary }} - `{{ .Labels.severity }}`
			`Description: {{ .Annotations.description }}`
			`Details:`
			{{ range .Labels.SortedPairs }} • {{ .Name }}: `{{ .Value }}`
			`{{ end }}`
			`{{ end }}`
			`- name: 'slack-notifications-oom'`
			`slack_configs:`
			`- api_url: 'https://hooks.slack.com/services/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'`
			`channel: '#video-cluster-prd-alerts'`
			`send_resolved: false`
			`title: '[PRODUCTION] [OOM KILLED] Monitoring Event Notification'`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`text: >-`
			`{{ range .Alerts }}`
			Alert: {{ .Annotations.summary }} - `{{ .Labels.severity }}`
			`Description: {{ .Annotations.description }}`
			`Details:`
			{{ range .Labels.SortedPairs }} • {{ .Name }}: `{{ .Value }}`
			`{{ end }}`
			`{{ end }}`
			`- name: 'email-and-slack-notifications'`
			`email_configs:`
			`- to: 'alerts@jamkazam.com'`
			`send_resolved: true`
			`headers:`
			`Subject: '[PRODUCTION] {{ .Status \| toUpper }} - {{ range .Alerts }}{{ .Annotations.summary }} {{ end }}'`
Bump webrtc and the crash log reporter link for loki to have a time range 2026-01-13 03:48:08 +00:00			`html: '{{ template "email.default.html" . }}<br/><hr/>View in <a href="{{ .ExternalURL }}">Alertmanager</a><br/>{{ range .Alerts }}{{ if .Annotations.loki_link }}<a href="{{ .Annotations.loki_link }}&from={{ .StartsAt.Unix \| add -60 \| mul 1000 }}&to={{ .StartsAt.Unix \| add 60 \| mul 1000 }}">View Logs in Loki</a>{{ end }}{{ end }}'`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`slack_configs:`
Try new email settings 2025-12-14 14:51:59 +00:00			`- api_url: 'https://hooks.slack.com/services/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'`
Update all webhooks 2025-12-14 04:57:18 +00:00			`channel: '#video-cluster-prd-alerts'`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`send_resolved: true`
			`title: '[PRODUCTION] [{{ .Status \| toUpper }}{{ if eq .Status "firing" }}:{{ .Alerts.Firing \| len }}{{ end }}] Monitoring Event Notification'`
			`text: >-`
			`{{ range .Alerts }}`
			Alert: {{ .Annotations.summary }} - `{{ .Labels.severity }}`
			`Description: {{ .Annotations.description }}`
			`Details:`
			{{ range .Labels.SortedPairs }} • {{ .Name }}: `{{ .Value }}`
			`{{ end }}`
			`{{ if .Annotations.loki_link }}`
Bump webrtc and the crash log reporter link for loki to have a time range 2026-01-13 03:48:08 +00:00			`Logs: <{{ .Annotations.loki_link }}&from={{ .StartsAt.Unix \| add -60 \| mul 1000 }}&to={{ .StartsAt.Unix \| add 60 \| mul 1000 }}\|View in Loki>`
Preparing for webrtc-be crash alerts 2025-12-13 20:53:22 +00:00			`{{ end }}`
			`{{ end }}`
			`Source: <{{ .ExternalURL }}\|Alertmanager>`
add production values 2021-11-18 07:15:38 +00:00			`grafana:`
			`persistence:`
			`enabled: true`
			`storageClassName: linode-block-storage-retain`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`size: 30Gi`
add production values 2021-11-18 07:15:38 +00:00			`ingress:`
			`enabled: true`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`pathType: Prefix`
add production values 2021-11-18 07:15:38 +00:00			`annotations:`
			`kubernetes.io/ingress.class: nginx`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`#nginx.ingress.kubernetes.io/rewrite-target: /$2`
add production values 2021-11-18 07:15:38 +00:00			`cert-manager.io/cluster-issuer: letsencrypt-nginx-production`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`nginx.ingress.kubernetes.io/backend-protocol: "HTTP"`
Update rewrite rules to allow public access to grafana 2025-08-02 16:33:06 +00:00			`#nginx.ingress.kubernetes.io/auth-type: basic`
			`#nginx.ingress.kubernetes.io/auth-secret: monitoring-basic-auth`
			`#nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'`
add production values 2021-11-18 07:15:38 +00:00			`hosts:`
			`- monitoring.video.jamkazam.com`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`path: /grafana`
add production values 2021-11-18 07:15:38 +00:00			`tls:`
			`- secretName: monitoring`
			`hosts:`
			`- monitoring.video.jamkazam.com`
			`grafana.ini:`
			`server:`
			`domain: monitoring.video.jamkazam.com`
			`root_url: "%(protocol)s://%(domain)s/grafana/"`
			`enable_gzip: "true"`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00			`serve_from_sub_path: true`
Apply grafana dashboard sidecare 2025-12-07 21:37:46 +00:00			`sidecar:`
			`dashboards:`
			`enabled: true`
			`label: grafana_dashboard`
			`searchNamespace: ALL`
Bump webrtc to have crash guarding 2025-12-04 03:10:21 +00:00			`additionalDataSources:`
			`- name: Loki`
			`type: loki`
Adding loki support 2025-12-12 04:57:03 +00:00			`uid: loki`
Bump webrtc to have crash guarding 2025-12-04 03:10:21 +00:00			`url: http://loki.loki.svc:3100`
			`access: proxy`
add production values 2021-11-18 07:15:38 +00:00
			`# Disable control plane metrics`
			`kubeEtcd:`
			`enabled: false`

			`kubeControllerManager:`
			`enabled: false`

			`kubeScheduler:`
			`enabled: false`
Update prometheus and nginx ingress versions 2025-07-19 21:54:52 +00:00
tricking to make track timessatpms staleness go away 2025-12-12 22:05:34 +00:00			`kubelet:`
			`serviceMonitor:`
			`trackTimestampsStaleness: false`