Update docs

bonclay7 · bonclay7 · commit 60ab8b13bf23 · 2022-08-26T17:30:03.000+02:00
diff --git a/examples/existing-cluster-with-base-and-infra/README.md b/examples/existing-cluster-with-base-and-infra/README.md
@@ -1,7 +1,32 @@
-# Existing Cluster
+# Existing Cluster with the AWS Observability accelerator base module and Infrastructure monitoring
 
 ---
 
+This example demonstrates how to use the AWS Observability Accelerator Terraform
+module with Infrastructure monitoring enabled.
+The current example deploys the [AWS Distro for OpenTelemetry Operator](https://docs.aws.amazon.com/eks/latest/userguide/opentelemetry.html) for Amazon EKS with its requirements and make use of existing
+Managed Service for Prometheus and Amazon Managed Grafana workspaces.
+
+It also uses the `infrastructure monitoring`, one of our [workloads modules](../../modules/workloads/)
+to provide an existing EKS cluster with an OpenTelemetry collector,
+curated Grafana dashboards, Prometheus alerting and recording rules with multiple
+configuration options.
+
+#### ⚠️ Grafana API Key
+
+
+## Prerequisites
+
+1. EKS cluster
+2. Prometheus
+3. Grafana
+
+## Deploy
+
+```sh
+terraform apply
+```
+
 <!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
 ## Requirements
 
diff --git a/examples/existing-cluster-with-base-and-infra/main.tf b/examples/existing-cluster-with-base-and-infra/main.tf
@@ -102,6 +102,7 @@ module "workloads_infra" {
   managed_prometheus_workspace_endpoint = module.eks_observability_accelerator.managed_prometheus_workspace_endpoint
   managed_prometheus_workspace_region   = module.eks_observability_accelerator.managed_prometheus_workspace_region
 
+  enable_alerting_rules = false
   # module custom configuration, check module documentation
   # config               = {}
 
diff --git a/modules/workloads/infra/README.md b/modules/workloads/infra/README.md
@@ -35,12 +35,27 @@ It provides the following resources:
 | [aws_prometheus_rule_group_namespace.api-availability](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.apibr](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.apihg](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.apislos](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.etcd](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.generic](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubeapps](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.kubelet](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.kubeprom-recording](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.kubepromnr](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kuberesources](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.kubescheduler](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubestm](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubestorage](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubesys](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubesysapi](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubesyschdlr](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubesyscm](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubesyskblt](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.kubesyskbpxy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.kubprom](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.ne](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.nodeexporter](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
+| [aws_prometheus_rule_group_namespace.nodenw](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [aws_prometheus_rule_group_namespace.noderules](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/prometheus_rule_group_namespace) | resource |
 | [grafana_dashboard.alertmanager](https://registry.terraform.io/providers/grafana/grafana/1.25.0/docs/resources/dashboard) | resource |
 | [grafana_dashboard.apis](https://registry.terraform.io/providers/grafana/grafana/1.25.0/docs/resources/dashboard) | resource |
@@ -79,9 +94,14 @@ It provides the following resources:
 
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
-| <a name="input_config"></a> [config](#input\_config) | n/a | <pre>object({<br>    helm_config = map(any)<br><br>    enable_kube_state_metrics = bool<br>    kms_create_namespace      = bool<br>    ksm_k8s_namespace         = string<br>    ksm_helm_chart_name       = string<br>    ksm_helm_chart_version    = string<br>    ksm_helm_release_name     = string<br>    ksm_helm_repo_url         = string<br>    ksm_helm_settings         = map(string)<br>    ksm_helm_values           = map(any)<br><br>    enable_node_exporter  = bool<br>    ne_create_namespace   = bool<br>    ne_k8s_namespace      = string<br>    ne_helm_chart_name    = string<br>    ne_helm_chart_version = string<br>    ne_helm_release_name  = string<br>    ne_helm_repo_url      = string<br>    ne_helm_settings      = map(string)<br>    ne_helm_values        = map(any)<br><br>    enable_dashboards = bool<br><br>    enable_recording_rules = bool<br>  })</pre> | <pre>{<br>  "enable_dashboards": true,<br>  "enable_kube_state_metrics": true,<br>  "enable_node_exporter": true,<br>  "enable_recording_rules": true,<br>  "helm_config": {},<br>  "kms_create_namespace": true,<br>  "ksm_helm_chart_name": "kube-state-metrics",<br>  "ksm_helm_chart_version": "4.9.2",<br>  "ksm_helm_release_name": "kube-state-metrics",<br>  "ksm_helm_repo_url": "https://prometheus-community.github.io/helm-charts",<br>  "ksm_helm_settings": {},<br>  "ksm_helm_values": {},<br>  "ksm_k8s_namespace": "kube-system",<br>  "ne_create_namespace": true,<br>  "ne_helm_chart_name": "prometheus-node-exporter",<br>  "ne_helm_chart_version": "2.0.3",<br>  "ne_helm_release_name": "prometheus-node-exporter",<br>  "ne_helm_repo_url": "https://prometheus-community.github.io/helm-charts",<br>  "ne_helm_settings": {},<br>  "ne_helm_values": {},<br>  "ne_k8s_namespace": "prometheus-node-exporter"<br>}</pre> | no |
+| <a name="input_config"></a> [config](#input\_config) | n/a | <pre>object({<br>    helm_config = map(any)<br><br>    kms_create_namespace   = bool<br>    ksm_k8s_namespace      = string<br>    ksm_helm_chart_name    = string<br>    ksm_helm_chart_version = string<br>    ksm_helm_release_name  = string<br>    ksm_helm_repo_url      = string<br>    ksm_helm_settings      = map(string)<br>    ksm_helm_values        = map(any)<br><br>    ne_create_namespace   = bool<br>    ne_k8s_namespace      = string<br>    ne_helm_chart_name    = string<br>    ne_helm_chart_version = string<br>    ne_helm_release_name  = string<br>    ne_helm_repo_url      = string<br>    ne_helm_settings      = map(string)<br>    ne_helm_values        = map(any)<br><br>  })</pre> | <pre>{<br>  "enable_kube_state_metrics": true,<br>  "enable_node_exporter": true,<br>  "helm_config": {},<br>  "kms_create_namespace": true,<br>  "ksm_helm_chart_name": "kube-state-metrics",<br>  "ksm_helm_chart_version": "4.9.2",<br>  "ksm_helm_release_name": "kube-state-metrics",<br>  "ksm_helm_repo_url": "https://prometheus-community.github.io/helm-charts",<br>  "ksm_helm_settings": {},<br>  "ksm_helm_values": {},<br>  "ksm_k8s_namespace": "kube-system",<br>  "ne_create_namespace": true,<br>  "ne_helm_chart_name": "prometheus-node-exporter",<br>  "ne_helm_chart_version": "2.0.3",<br>  "ne_helm_release_name": "prometheus-node-exporter",<br>  "ne_helm_repo_url": "https://prometheus-community.github.io/helm-charts",<br>  "ne_helm_settings": {},<br>  "ne_helm_values": {},<br>  "ne_k8s_namespace": "prometheus-node-exporter"<br>}</pre> | no |
 | <a name="input_dashboards_folder_id"></a> [dashboards\_folder\_id](#input\_dashboards\_folder\_id) | n/a | `string` | n/a | yes |
 | <a name="input_eks_cluster_id"></a> [eks\_cluster\_id](#input\_eks\_cluster\_id) | EKS Cluster Id | `string` | n/a | yes |
+| <a name="input_enable_alerting_rules"></a> [enable\_alerting\_rules](#input\_enable\_alerting\_rules) | n/a | `bool` | `true` | no |
+| <a name="input_enable_dashboards"></a> [enable\_dashboards](#input\_enable\_dashboards) | n/a | `bool` | `true` | no |
+| <a name="input_enable_kube_state_metrics"></a> [enable\_kube\_state\_metrics](#input\_enable\_kube\_state\_metrics) | n/a | `bool` | `true` | no |
+| <a name="input_enable_node_exporter"></a> [enable\_node\_exporter](#input\_enable\_node\_exporter) | n/a | `bool` | `true` | no |
+| <a name="input_enable_recording_rules"></a> [enable\_recording\_rules](#input\_enable\_recording\_rules) | n/a | `bool` | `true` | no |
 | <a name="input_helm_config"></a> [helm\_config](#input\_helm\_config) | Helm Config for Prometheus | `any` | `{}` | no |
 | <a name="input_irsa_iam_permissions_boundary"></a> [irsa\_iam\_permissions\_boundary](#input\_irsa\_iam\_permissions\_boundary) | IAM permissions boundary for IRSA roles | `string` | `""` | no |
 | <a name="input_irsa_iam_role_path"></a> [irsa\_iam\_role\_path](#input\_irsa\_iam\_role\_path) | IAM role path for IRSA roles | `string` | `"/"` | no |
diff --git a/modules/workloads/infra/dashboards.tf b/modules/workloads/infra/dashboards.tf
@@ -1,155 +1,155 @@
 resource "grafana_dashboard" "alertmanager" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/alertmanager.json")
 }
 
 resource "grafana_dashboard" "workloads" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/workloads.json")
 }
 
 resource "grafana_dashboard" "scheduler" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/scheduler.json")
 }
 
 resource "grafana_dashboard" "proxy" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/proxy.json")
 }
 
 resource "grafana_dashboard" "prometheus" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/prometheus.json")
 }
 
 resource "grafana_dashboard" "podnetwork" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/pods-networking.json")
 }
 
 resource "grafana_dashboard" "pods" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/pods.json")
 }
 
 resource "grafana_dashboard" "pv" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/pesistentvolumes.json")
 }
 
 resource "grafana_dashboard" "nodes" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/nodes.json")
 }
 
 resource "grafana_dashboard" "necluster" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/nodeexpoter-use-cluster.json")
 }
 
 resource "grafana_dashboard" "nenodeuse" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/nodeexporter-use-node.json")
 }
 
 resource "grafana_dashboard" "nenode" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/nodeexporter-nodes.json")
 }
 
 resource "grafana_dashboard" "nwworload" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/networking-workloads.json")
 }
 
 resource "grafana_dashboard" "nsworkload" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/namespace-workloads.json")
 }
 
 resource "grafana_dashboard" "nspods" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/namespace-pods.json")
 }
 
 resource "grafana_dashboard" "nsnwworkload" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/namespace-nw-workloads.json")
 }
 
 resource "grafana_dashboard" "nsnw" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/namespace-networking.json")
 }
 
 resource "grafana_dashboard" "macos" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/macos.json")
 }
 
 resource "grafana_dashboard" "kubelet" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/kubelet.json")
 }
 
 resource "grafana_dashboard" "grafana" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/grafana.json")
 }
 
 resource "grafana_dashboard" "etcd" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/etcd.json")
 }
 
 resource "grafana_dashboard" "coredns" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/coredns.json")
 }
 
 resource "grafana_dashboard" "controller" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/controller.json")
 }
 
 resource "grafana_dashboard" "clusternw" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/cluster-networking.json")
 }
 
 resource "grafana_dashboard" "cluster" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/cluster.json")
 }
 
 resource "grafana_dashboard" "apis" {
-  count       = var.config.enable_dashboards ? 1 : 0
+  count       = var.enable_dashboards ? 1 : 0
   folder      = var.dashboards_folder_id
   config_json = file("${path.module}/dashboards/apiserver.json")
 }
diff --git a/modules/workloads/infra/main.tf b/modules/workloads/infra/main.tf
@@ -8,7 +8,7 @@ terraform {
 }
 
 resource "helm_release" "kube_state_metrics" {
-  count            = var.config.enable_kube_state_metrics ? 1 : 0
+  count            = var.enable_kube_state_metrics ? 1 : 0
   chart            = var.config.ksm_helm_chart_name
   create_namespace = var.config.kms_create_namespace
   namespace        = var.config.ksm_k8s_namespace
@@ -26,7 +26,7 @@ resource "helm_release" "kube_state_metrics" {
 }
 
 resource "helm_release" "prometheus_node_exporter" {
-  count            = var.config.enable_node_exporter ? 1 : 0
+  count            = var.enable_node_exporter ? 1 : 0
   chart            = var.config.ne_helm_chart_name
   create_namespace = var.config.ne_create_namespace
   namespace        = var.config.ne_k8s_namespace
diff --git a/modules/workloads/infra/rules.tf b/modules/workloads/infra/rules.tf
diff --git a/modules/workloads/infra/variables.tf b/modules/workloads/infra/variables.tf
