Giters

giantswarm / cert-exporter

The cert-exporter walks a directory path it has gotten as input and emits all NotAfter timestamps as metrics for TLS certificates and Vault tokens. It also emits NotAfter timestamps as metrics for TLS certificates stored in Kubernetes secrets.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

prometheusprometheus-exporterx509certificatescore-component

CircleCI

cert-exporter

Exposes three metrics to Prometheus regarding certificates/tokens:

cert_exporter_not_after

Timestamp after which the cert is invalid (for certificate files mounted from the host filesystem).

cert_exporter_secret_not_after

Timestamp after which the cert is invalid (for certificates stored in Kubernetes secrets).

cert_exporter_token_not_after

Timestamp after which the Vault token is expired.

Deployment

Installing the Chart

To install the chart locally:

$ git clone https://github.com/giantswarm/cert-exporter.git
$ cd cert-exporter
$ helm install helm/cert-exporter

Provide a custom values.yaml:

$ helm install cert-exporter -f values.yaml

Release Process

  • Ensure CHANGELOG.md is up to date.
  • Create a new GitHub release with the version e.g. v0.1.0 and link the changelog entry.
  • This will push a new git tag and trigger a new tarball to be pushed to the default-catalog.
  • Update cluster-operator with the new version.

About

The cert-exporter walks a directory path it has gotten as input and emits all NotAfter timestamps as metrics for TLS certificates and Vault tokens. It also emits NotAfter timestamps as metrics for TLS certificates stored in Kubernetes secrets.

prometheusprometheus-exporterx509certificatescore-component

License:Apache License 2.0

Languages

Language:Go 54.6%Language:Python 26.0%Language:Makefile 14.2%Language:Smarty 4.7%Language:Dockerfile 0.4%