devops folders consolidate

2026-01-25 23:27:41 +02:00
parent 6e687b523a
commit a743bb9a1d
613 changed files with 8611 additions and 41846 deletions
--- a/devops/telemetry/storage/README.md
+++ b/devops/telemetry/storage/README.md
@@ -1,36 +0,0 @@
-# Telemetry Storage Stack
-
-Configuration snippets for the default StellaOps observability backends used in
-staging and production environments. The stack comprises:
-
- **Prometheus** for metrics (scraping the collector's Prometheus exporter)
- **Tempo** for traces (OTLP ingest via mTLS)
- **Loki** for logs (HTTP ingest with tenant isolation)
-
-## Files
-
-| Path | Description |
-| ---- | ----------- |
-| `prometheus.yaml` | Scrape configuration for the collector (mTLS + bearer token placeholder). |
-| `tempo.yaml` | Tempo configuration with multitenancy enabled and local storage paths. |
-| `loki.yaml` | Loki configuration enabling per-tenant overrides and boltdb-shipper storage. |
-| `tenants/tempo-overrides.yaml` | Example tenant overrides for Tempo (retention, limits). |
-| `tenants/loki-overrides.yaml` | Example tenant overrides for Loki (rate limits, retention). |
-| `auth/` | Placeholder directory for Prometheus bearer token files (e.g., `token`). |
-
-These configurations are referenced by the Docker Compose overlay
-(`deploy/compose/docker-compose.telemetry-storage.yaml`) and the staging rollout documented in
-`docs/modules/telemetry/operations/storage.md`. Adjust paths, credentials, and overrides before running in
-connected environments. Place the Prometheus bearer token in `auth/token` when using the
-Compose overlay (the directory contains a `.gitkeep` placeholder and is gitignored by default).
-
-Run `python ops/devops/telemetry/validate_storage_stack.py` after editing any of these files to
-ensure TLS, multitenancy, and override references remain intact.
-
-## Security
-
- Both Tempo and Loki require mutual TLS.
- Prometheus uses mTLS plus a bearer token that should be minted by Authority.
- Update the overrides files to enforce per-tenant retention/ingestion limits.
-
-For comprehensive deployment steps see `docs/modules/telemetry/operations/storage.md`.
--- a/devops/telemetry/storage/auth/.gitkeep
+++ b/devops/telemetry/storage/auth/.gitkeep
--- a/devops/telemetry/storage/tenants/loki-overrides.yaml
+++ b/devops/telemetry/storage/tenants/loki-overrides.yaml
@@ -1,19 +0,0 @@
-# Example Loki per-tenant overrides
-# Adjust according to https://grafana.com/docs/loki/latest/configuration/#limits_config
-
-stellaops-dev:
-  ingestion_rate_mb: 10
-  ingestion_burst_size_mb: 20
-  max_global_streams_per_user: 5000
-  retention_period: 168h
-
-stellaops-stage:
-  ingestion_rate_mb: 20
-  ingestion_burst_size_mb: 40
-  max_global_streams_per_user: 10000
-  retention_period: 336h
-
-__default__:
-  ingestion_rate_mb: 5
-  ingestion_burst_size_mb: 10
-  retention_period: 72h
--- a/devops/telemetry/storage/tenants/tempo-overrides.yaml
+++ b/devops/telemetry/storage/tenants/tempo-overrides.yaml
@@ -1,16 +0,0 @@
-# Example Tempo per-tenant overrides
-# Consult https://grafana.com/docs/tempo/latest/configuration/#limits-configuration
-# before applying in production.
-
-stellaops-dev:
-  traces_per_second_limit: 100000
-  max_bytes_per_trace: 10485760
-  max_search_bytes_per_trace: 20971520
-
-stellaops-stage:
-  traces_per_second_limit: 200000
-  max_bytes_per_trace: 20971520
-
-__default__:
-  traces_per_second_limit: 50000
-  max_bytes_per_trace: 5242880