Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/utilitywarehouse/thanos-manifests

Kustomize base manifests for Thanos
https://github.com/utilitywarehouse/thanos-manifests

prometheus uw-dep-prometheus uw-dep-thanos uw-owner-system

Last synced: about 19 hours ago
JSON representation

Kustomize base manifests for Thanos

Host: GitHub
URL: https://github.com/utilitywarehouse/thanos-manifests
Owner: utilitywarehouse
License: mit
Created: 2019-02-13T07:34:45.000Z (almost 6 years ago)
Default Branch: master
Last Pushed: 2024-12-04T15:54:32.000Z (23 days ago)
Last Synced: 2024-12-04T16:38:51.552Z (23 days ago)
Topics: prometheus, uw-dep-prometheus, uw-dep-thanos, uw-owner-system
Language: Shell
Homepage:
Size: 244 KB
Stars: 15
Watchers: 12
Forks: 4
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE
- Codeowners: CODEOWNERS

Awesome Lists containing this project

README

# Thanos Manifests

This repository provides [Kustomize][1] base to deploy [Prometheus][2] +
[Thanos][3] and example overlays for general deployment in either AWS or GCP.

Using https://github.com/thanos-io/kube-thanos/tree/main/examples/all/manifests
as upstream inspiration.

## Usage

To use the base, reference the remote in your `kustomization.yaml`

```
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- github.com/utilitywarehouse/thanos-manifests/base?ref=master
```

You then MUST patch the following resources:

- Prometheus `PROMETHEUS_URL` envvar
- Thanos Rule `ALERTMANAGER_URL` envvar
- Thanos Rule `THANOS_QUERY_URL` envvar

You MUST provide the following ConfigMaps:

- `alerts`
- `prometheus`
- `thanos-rule-alerts`
- `thanos-rule`
- `thanos-storage`
- `thanos-query`

Alert files MUST have `.yaml` extension.

Refer to [AWS Configuration](#aws-configuration) and [GCP
Configuration](#gcp-configuration) for provider specific requirements.

### Additional Components

You will find that the base actually pulls each individual component as a sub-
base. The reason for this is so that we can add additional components without
having to deploy the entire stack.

The prime example of this is adding an extra set of a `prometheus`,
`thanos-storage` and `thanos-compact` stack which can be used with a separate
configuration. You can reference the more specific bases:

```
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- github.com/utilitywarehouse/thanos-manifests/base/prometheus?ref=master
- github.com/utilitywarehouse/thanos-manifests/base/thanos-store?ref=master
- github.com/utilitywarehouse/thanos-manifests/base/thanos-compact?ref=master
```

Note that in this case you must still follow the configuration instructions in
the previous section, ignoring any parts for `thanos-rule` and `thanos-query`.

#### Enabling remote-write with thanos-receive

The other optional component is thanos-receive, that provides a prometheus'
remote-write endpoint.

To deploy it, add the `thanos-receive` sub-base to your kustomize, and apply
any patches that may be needed (in UW's case, the SA and STS labels to get S3
credentials from vault)

### AWS configuration (UW specifc)

Patch the following to provide AWS credentials via Vault as outlined in
[vault-aws.md](https://github.com/utilitywarehouse/documentation/blob/master/infra/vault/vault-aws.md):

- Prometheus `ServiceAccount` and `StatefulSet`
- Thanos Compact `ServiceAccount` and `Deployment`
- Thanos Store `ServiceAccount` and `StatefulSet`

For a full example of a Kustomize overlay please refer to the
[example](example/aws/kustomization.yaml).

### GCP configuration

- A secret `thanos-storage` containing `credentials.json`
- Patch Prometheus, Thanos Compact and Thanos Store with a volume and volumeMount, to
provide `credentials.json` from the `thanos-storage` secret.

For a full example of a Kustomize overlay please refer to the
[example](example/gcp/kustomization.yaml).

## Requires

- https://github.com/kubernetes-sigs/kustomize

```
go get -u sigs.k8s.io/kustomize
```

## Migration to v0.4.0 notes

On migration to v0.4.0 run thanos compact with
`--index.generate-missing-cache-file`, it will make your Thanos Store start up
blazingly fast.

> New Compactor flag: --index.generate-missing-cache-file was added to allow
quicker addition of index cache files. If enabled it precomputes missing files
on compactor startup. Note that it will take time and it's only one-off step
per bucket.

Also make sure to adjust:

```
--index-cache-size
--chunk-pool-size
```

Previously Cache limiting wasn't working properly and in v0.4.0 it's fixed and
by default limits to 250MB.

[1]: https://kustomize.io/
[2]: https://prometheus.io/
[3]: https://thanos.io/