2022-02-05 20:32:54 +00:00
|
|
|
---
|
2021-01-29 08:10:49 +00:00
|
|
|
# matrix-grafana is open source visualization and analytics software
|
|
|
|
# See: https://github.com/matrix-org/synapse/blob/master/docs/metrics-howto.md
|
|
|
|
|
|
|
|
matrix_grafana_enabled: false
|
|
|
|
|
2022-02-22 11:47:32 +00:00
|
|
|
matrix_grafana_version: 8.4.1
|
2021-04-12 12:39:16 +00:00
|
|
|
matrix_grafana_docker_image: "{{ matrix_container_global_registry_prefix }}grafana/grafana:{{ matrix_grafana_version }}"
|
2021-01-29 08:10:49 +00:00
|
|
|
matrix_grafana_docker_image_force_pull: "{{ matrix_grafana_docker_image.endswith(':latest') }}"
|
|
|
|
|
|
|
|
# Not conditional, because when someone disables metrics
|
|
|
|
# they might still want to look at the old existing data.
|
|
|
|
# So it would be silly to delete the dashboard in such case.
|
|
|
|
matrix_grafana_dashboard_download_urls:
|
2022-02-05 20:32:54 +00:00
|
|
|
- "https://raw.githubusercontent.com/matrix-org/synapse/master/contrib/grafana/synapse.json"
|
|
|
|
- "https://raw.githubusercontent.com/rfrail3/grafana-dashboards/master/prometheus/node-exporter-full.json"
|
2021-02-10 22:11:02 +00:00
|
|
|
|
2021-01-29 08:10:49 +00:00
|
|
|
matrix_grafana_base_path: "{{ matrix_base_data_path }}/grafana"
|
|
|
|
matrix_grafana_config_path: "{{ matrix_grafana_base_path }}/config"
|
|
|
|
matrix_grafana_data_path: "{{ matrix_grafana_base_path }}/data"
|
|
|
|
|
|
|
|
# Allow viewing Grafana without logging in
|
|
|
|
matrix_grafana_anonymous_access: false
|
|
|
|
|
2022-02-15 05:04:45 +00:00
|
|
|
# When `false`, sends a `X-Frame-Options: deny` HTTP header, which allows Grafana from being embeded in a frame.
|
2022-02-15 05:03:25 +00:00
|
|
|
# Read more here: https://grafana.com/docs/grafana/latest/administration/configuration/#allow_embedding
|
|
|
|
matrix_grafana_allow_embedding: false
|
|
|
|
|
2021-01-29 08:10:49 +00:00
|
|
|
# specify organization name that should be used for unauthenticated users
|
|
|
|
# if you change this in the Grafana admin panel, this needs to be updated
|
|
|
|
# to match to keep anonymous logins working
|
|
|
|
matrix_grafana_anonymous_access_org_name: 'Main Org.'
|
|
|
|
|
|
|
|
|
|
|
|
# default admin credentials, you are asked to change these on first login
|
|
|
|
matrix_grafana_default_admin_user: admin
|
|
|
|
matrix_grafana_default_admin_password: admin
|
|
|
|
|
2021-04-17 15:33:05 +00:00
|
|
|
# Set to true to add the Content-Security-Policy header to your requests.
|
2022-02-05 20:32:54 +00:00
|
|
|
# CSP allows to control resources that the user agent can load and helps
|
2021-04-17 15:33:05 +00:00
|
|
|
# prevent XSS attacks.
|
|
|
|
# [Content Security Policy](https://grafana.com/docs/grafana/latest/administration/configuration/#content_security_policy)
|
|
|
|
matrix_grafana_content_security_policy: true
|
|
|
|
|
2021-05-05 16:42:56 +00:00
|
|
|
# specify content security policy template to customized template
|
|
|
|
# added https: and http: url schemes (ignored by browsers supporting 'strict-dynamic') to be backward compatible with older browsers.
|
2021-05-05 16:55:38 +00:00
|
|
|
# [Content Security Policy Browser Test] (https://content-security-policy.com/browser-test/)
|
|
|
|
# [Content Security Policy Reference](https://content-security-policy.com/script-src/)
|
2021-06-08 19:22:52 +00:00
|
|
|
matrix_grafana_content_security_policy_customized: false
|
2021-06-08 19:18:55 +00:00
|
|
|
matrix_grafana_content_security_policy_template: "script-src 'self' 'unsafe-eval' 'unsafe-inline' http: https: 'strict-dynamic' $NONCE;object-src 'none';font-src 'self';style-src 'self' 'unsafe-inline' blob:;img-src * data:;base-uri 'self';connect-src 'self' grafana.com ws://$ROOT_PATH wss://$ROOT_PATH;manifest-src 'self';media-src 'none';form-action 'self';"
|
2021-05-05 16:42:56 +00:00
|
|
|
|
2021-01-29 08:10:49 +00:00
|
|
|
# A list of extra arguments to pass to the container
|
|
|
|
matrix_grafana_container_extra_arguments: []
|
|
|
|
|
|
|
|
# List of systemd services that matrix-grafana.service depends on
|
|
|
|
matrix_grafana_systemd_required_services_list: ['docker.service']
|
|
|
|
|
|
|
|
# List of systemd services that matrix-grafana.service wants
|
|
|
|
matrix_grafana_systemd_wanted_services_list: []
|
|
|
|
|
|
|
|
# Controls whether the matrix-grafana container exposes its HTTP port (tcp/3000 in the container).
|
|
|
|
#
|
|
|
|
# Takes an "<ip>:<port>" or "<port>" value (e.g. "127.0.0.1:3000"), or empty string to not expose.
|
|
|
|
matrix_grafana_container_http_host_bind_port: ''
|