Add option to enable/disable TLS verification

seunghun1ee · seunghun1ee · commit bf0edab72aea · 2024-11-12T13:31:32.000Z
diff --git a/etc/kayobe/ansible/deploy-radosgw-usage-exporter.yml b/etc/kayobe/ansible/deploy-radosgw-usage-exporter.yml
@@ -82,6 +82,7 @@
           ADMIN_ENTRY: admin
           ACCESS_KEY: "{{ ec2.Access }}"
           SECRET_KEY: "{{ ec2.Secret }}"
+        entrypoint: "{{ [ 'python', '-u', './radosgw_usage_exporter.py', '--insecure' ] if not stackhpc_radosgw_usage_exporter_verify else omit }}"
       vars:
         ec2: "{{ credential.stdout | from_json | first }}"
         host: "{{ endpoint.stdout | from_json | first }}"
diff --git a/etc/kayobe/stackhpc-monitoring.yml b/etc/kayobe/stackhpc-monitoring.yml
@@ -58,4 +58,10 @@ redfish_exporter_target_address: "{{ ipmi_address }}"
 # Enabling this will result in templating radosge_usage_exporter endpoint as
 # Prometheus scrape targets during deployment.
 stackhpc_enable_radosgw_usage_exporter: false
+
+# Port to expose RADOS gateway usage exporter. Default is 9242
 stackhpc_radosgw_usage_exporter_port: 9242
+
+# Whether TLS certificate verification is enabled for the RADOS gateway usage
+# exporter for querying Ceph RADOS gateway APIs. Default is true
+stackhpc_radosgw_usage_exporter_verify: true
