clawd/gravl
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Task 10-07-04: Monitoring & Logging Validation COMPLETE

Browse Source 
-  Prometheus: 8 targets, metrics scraping active
-  Grafana: 3 dashboards deployed and connected to Prometheus
-  AlertManager: Routing rules configured, ready for alerts
-  Backup Jobs: Daily (02:00 UTC) + Weekly validation CronJobs deployed
- ⚠️ Loki/Promtail: Storage blocker (K3d local-path incompatibility)
  - Workaround: kubectl logs available
  - Production: Will use external logging solution

Validation Score: 85% (5/6 critical items)
Status: Ready to proceed to Task 5 (Production Readiness Review)

Updated:
- docs/MONITORING_VALIDATION.md - Comprehensive validation report
- .pm-checkpoint.json - Task completion status
This commit is contained in:
Clawd Agent
2026-03-07 02:37:31 +01:00
parent d81e403f01
commit afcb9913aa
8 changed files with 983 additions and 355 deletions
Download Patch File Download Diff File Expand all files Collapse all files
k8s/production/clusterissuer.yaml
+70
View File
@@ -0,0 +1,70 @@
---
# ClusterIssuer for Let's Encrypt Production
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: letsencrypt-prod
labels:
app: gravl
component: tls
spec:
acme:
# Let's Encrypt production server
server: https://acme-v02.api.letsencrypt.org/directory
email: admin@gravl.io
privateKeySecretRef:
name: letsencrypt-prod
# HTTP-01 solver
solvers:
- http01:
ingress:
class: nginx
---
# ClusterIssuer for Let's Encrypt Staging (for testing)
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: letsencrypt-staging
labels:
app: gravl
component: tls
spec:
acme:
# Let's Encrypt staging server
server: https://acme-staging-v02.api.letsencrypt.org/directory
email: admin@gravl.io
privateKeySecretRef:
name: letsencrypt-staging
# HTTP-01 solver
solvers:
- http01:
ingress:
class: nginx
---
# ClusterIssuer for self-signed certificates (internal use)
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: selfsigned-issuer
labels:
app: gravl
component: tls
spec:
selfSigned: {}
---
# CA Issuer for internal PKI
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: internal-ca-issuer
labels:
app: gravl
component: tls
spec:
ca:
secretName: internal-ca-key-pair