Julien
Julien
for now, I silenced alerts at alertmanager level ``` routes: [...] - receiver: "null" match: alertname: HostOutOfMemory nodename: hostname1 continue: false ```
work in progress python export (functions/pipelines/dashboards/alerts/users) https://github.com/juju4/python-openobserve/blob/devel-all/python_openobserve/openobserve.py#L197 import issues with content type error as per https://github.com/openobserve/openobserve/discussions/6070
It would be interesting to have a tag/checkbox that automatically fetch feed through this specific pseudo-proxy (as not an HTTP proxy without extra) vs default fetch (direct or global proxy)....
imho, this kind of feature is to reduce ingestion/storage aka not store what is not matching expected schema and to reduce complexity aka not having pipeline controls to enforce (more...
I did use mtls=false too. forgot to include in the list and it returns same error "error renewing certificate: failed decoding CA error response: invalid character '
``` # journalctl -u cert-renewer@nginx -l --since yesterday [...] Jan 24 13:32:18 MYHOST step[50147]: certificate does not need renewal Jan 24 13:32:18 MYHOST systemd[1]: [email protected]: Skipped due to 'exec-condition'. Jan...
same ``` # export CERT_LOCATION=/etc/ssl/certs/MYHOST.internal.crt KEY_LOCATION=/etc/ssl/private/MYHOST.internal.key STEPDEBUG=1 GODEBUG=http2debug=2 # /usr/bin/step ca renew --ca-url=https://certs.internal --root=/usr/share/ca-certificates/stepca-internal-roots.pem --mtls=false --force ${CERT_LOCATION} ${KEY_LOCATION} failed decoding CA error response: invalid character '
> ``` > # curl -X POST https://certs.internal/renew > {"status":400,"message":"The request could not be completed: missing client certificate."} > # curl -X POST https://certs.internal/renew -d @/etc/ssl/certs/myhost.crt > {"status":400,"message":"The request could...
``` # curl -H "Authorization: Bearer invalid" -X POST https://certs.internal/renew {"status":401,"message":"error validating renew token"} ```
any other idea? works fine in direct access :(