Made hard coded secrets into variables

Author: dewitt4

examples/k8s/monitoring/grafana.yaml

@@ -1,4 +1,16 @@
 apiVersion: v1
+kind: Secret
+metadata:
+  name: grafana-credentials
+  namespace: agentaflow-monitoring
+  labels:
+    app: grafana
+type: Opaque
+data:
+  admin-user: YWRtaW4=  # base64 encoded 'admin'
+  admin-password: YWdlbnRhZmxvdzEyMw==  # base64 encoded 'agentaflow123'
+---
+apiVersion: v1
 kind: ConfigMap
 metadata:
   name: grafana-config
@@ -12,9 +24,8 @@ data:
 
     [grafana_net]
     url = https://grafana.net
-
-    [log]
-    mode = console
+    [security]
+    # admin credentials are set via environment variables
 
     [paths]
     data = /var/lib/grafana/data
@@ -213,15 +224,21 @@ spec:
     spec:
       containers:
         - name: grafana
-          image: grafana/grafana:9.5.0
+          image: grafana/grafana:latest
           ports:
             - containerPort: 3000
               name: web
           env:
             - name: GF_SECURITY_ADMIN_USER
-              value: "admin"
+              valueFrom:
+                secretKeyRef:
+                  name: grafana-credentials
+                  key: admin-user
             - name: GF_SECURITY_ADMIN_PASSWORD
-              value: "agentaflow123"
+              valueFrom:
+                secretKeyRef:
+                  name: grafana-credentials
+                  key: admin-password
             - name: GF_USERS_ALLOW_SIGN_UP
               value: "false"
           volumeMounts: