ansible-collection-prometheus/roles/node_exporter
Christian Brabandt c1a80960f6
enhancement(node_exporter): add skip_install variable
This is similar to prometheus_skip_install variable and does what the
name says: when set, it won't try to re-download the node exporter
binary

Signed-off-by: Christian Brabandt <cb@256bit.org>
2023-03-21 15:54:17 +01:00
..
defaults enhancement(node_exporter): add skip_install variable 2023-03-21 15:54:17 +01:00
handlers fix(lint): warning lint errors 2022-11-25 15:39:18 +00:00
meta enhancement(node_exporter): add skip_install variable 2023-03-21 15:54:17 +01:00
molecule fix: future-import-boilerplate and metaclass-boilerplate 2023-01-11 19:50:51 +00:00
tasks enhancement(node_exporter): add skip_install variable 2023-03-21 15:54:17 +01:00
templates fix: correct quotation of flags in systemd config file 2023-03-20 12:27:42 +00:00
vars Fixup version bumper job 2023-03-14 07:19:57 +01:00
README.md enhancement(node_exporter): add skip_install variable 2023-03-21 15:54:17 +01:00
test-requirements.txt fix: role test requirements 2023-01-11 19:45:10 +00:00
TROUBLESHOOTING.md initial migration of roles from cloudalchemy 2022-09-23 13:29:55 +02:00

graph logo

Ansible Role: node exporter

Description

Deploy prometheus node exporter using ansible.

Requirements

  • Ansible >= 2.7 (It might work on previous versions, but we cannot guarantee it)
  • gnu-tar on Mac deployer host (brew install gnu-tar)
  • Passlib is required when using the basic authentication feature (pip install passlib[bcrypt])

Role Variables

All variables which can be overridden are stored in defaults/main.yml and are listed in the table below.

Name Default Value Description
node_exporter_version 1.1.2 Node exporter package version. Also accepts latest as parameter.
node_exporter_skip_install false Node exporter installation tasks gets skipped when set to true.
node_exporter_binary_local_dir "" Enables the use of local packages instead of those distributed on github. The parameter may be set to a directory where the node_exporter binary is stored on the host where ansible is run. This overrides the node_exporter_version parameter
node_exporter_binary_url https://github.com/prometheus/node_exporter/releases/download/v{{ node_exporter_version }}/node_exporter-{{ node_exporter_version }}.linux-{{ go_arch }}.tar.gz URL of the node exporter binaries .tar.gz file
node_exporter_checksums_url https://github.com/prometheus/node_exporter/releases/download/v{{ node_exporter_version }}/sha256sums.txt URL of the node exporter checksums file
node_exporter_web_listen_address "0.0.0.0:9100" Address on which node exporter will listen
node_exporter_web_telemetry_path "/metrics" Path under which to expose metrics
node_exporter_enabled_collectors ["systemd",{textfile: {directory: "{{node_exporter_textfile_dir}}"}}] List of dicts defining additionally enabled collectors and their configuration. It adds collectors to those enabled by default.
node_exporter_disabled_collectors [] List of disabled collectors. By default node_exporter disables collectors listed here.
node_exporter_textfile_dir "/var/lib/node_exporter" Directory used by the Textfile Collector. To get permissions to write metrics in this directory, users must be in node-exp system group. Note: More information in TROUBLESHOOTING.md guide.
node_exporter_tls_server_config {} Configuration for TLS authentication. Keys and values are the same as in node_exporter docs.
node_exporter_http_server_config {} Config for HTTP/2 support. Keys and values are the same as in node_exporter docs.
node_exporter_basic_auth_users {} Dictionary of users and password for basic authentication. Passwords are automatically hashed with bcrypt.

Example

Playbook

Use it in a playbook as follows:

- hosts: all
  roles:
    - prometheus.prometheus.node_exporter

TLS config

Before running node_exporter role, the user needs to provision their own certificate and key.

- hosts: all
  pre_tasks:
    - name: Create node_exporter cert dir
      file:
        path: "/etc/node_exporter"
        state: directory
        owner: root
        group: root

    - name: Create cert and key
      openssl_certificate:
        path: /etc/node_exporter/tls.cert
        csr_path: /etc/node_exporter/tls.csr
        privatekey_path: /etc/node_exporter/tls.key
        provider: selfsigned
  roles:
    - prometheus.prometheus.node_exporter
  vars:
    node_exporter_tls_server_config:
      cert_file: /etc/node_exporter/tls.cert
      key_file: /etc/node_exporter/tls.key
    node_exporter_basic_auth_users:
      randomuser: examplepassword

Demo site

We provide an example site that demonstrates a full monitoring solution based on prometheus and grafana. The repository with code and links to running instances is available on github and the site is hosted on DigitalOcean.

Local Testing

The preferred way of locally testing the role is to use Docker and molecule (v3.x). You will have to install Docker on your system. See "Get started" for a Docker package suitable for your system. Running your tests is as simple as executing molecule test.

Continuous Integration

Combining molecule and circle CI allows us to test how new PRs will behave when used with multiple ansible versions and multiple operating systems. This also allows use to create test scenarios for different role configurations. As a result we have quite a large test matrix which can take more time than local testing, so please be patient.

Contributing

See contributor guideline.

Troubleshooting

See troubleshooting.

License

This project is licensed under MIT License. See LICENSE for more details.