ScrapeConfig v1alpha1 — monitoring.coreos.com

authorization object

authorization defines the header to use on every scrape request.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

azureSDConfigs []object

azureSDConfigs defines a list of Azure service discovery configurations.

authenticationMethod string

authenticationMethod defines the authentication method, either `OAuth` or `ManagedIdentity` or `SDK`. See https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview SDK authentication method uses environment variables by default. See https://learn.microsoft.com/en-us/azure/developer/go/azure-sdk-authentication

enum: OAuth, ManagedIdentity, SDK

authorization object

authorization defines the authorization header configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `oAuth2`, or `basicAuth`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines the information to authenticate against the target HTTP endpoint. More info: https://prometheus.io/docs/operating/configuration/#endpoints Cannot be set at the same time as `authorization`, or `oAuth2`.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientID string

clientID defines client ID. Only required with the OAuth authentication method.

minLength: 1

clientSecret object

clientSecret defines client secret. Only required with the OAuth authentication method.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

environment string

environment defines the Azure environment.

minLength: 1

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must instead be specified in the relabeling rule.

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

resourceGroup string

resourceGroup defines resource group name. Limits discovery to this resource group. Requires Prometheus v2.35.0 and above

minLength: 1

subscriptionID string required

subscriptionID defines subscription ID. Always required.

minLength: 1

tenantID string

tenantID defines tenant ID. Only required with the OAuth authentication method.

minLength: 1

tlsConfig object

tlsConfig defies the TLS configuration applying to the target HTTP endpoint.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

basicAuth object

basicAuth defines information to use on every scrape request.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

consulSDConfigs []object

consulSDConfigs defines a list of Consul service discovery configurations.

allowStale boolean

allowStale Consul results (see https://www.consul.io/api/features/consistency.html). Will reduce load on Consul. If unset, Prometheus uses its default value.

authorization object

authorization defines the header configuration to authenticate against the Consul Server. Cannot be set at the same time as `basicAuth`, or `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines the information to authenticate against the Consul Server. More info: https://prometheus.io/docs/operating/configuration/#endpoints Cannot be set at the same time as `authorization`, or `oauth2`.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

datacenter string

datacenter defines the consul Datacenter name, if not provided it will use the local Consul Agent Datacenter.

minLength: 1

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

filter string

filter defines the filter expression used to filter the catalog results. See https://www.consul.io/api-docs/catalog#list-services It requires Prometheus >= 3.0.0.

minLength: 1

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

namespace string

namespace are only supported in Consul Enterprise. It requires Prometheus >= 2.28.0.

minLength: 1

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

nodeMeta object

nodeMeta defines the node metadata key/value pairs to filter nodes for a given service. Starting with Consul 1.14, it is recommended to use `filter` with the `NodeMeta` selector instead.

oauth2 object

oauth2 defines the optional OAuth 2.0 configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `authorization`, or `basicAuth`.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

partition string

partition defines the admin Partitions are only supported in Consul Enterprise.

minLength: 1

pathPrefix string

pathPrefix defines the prefix for URIs for when consul is behind an API gateway (reverse proxy). It requires Prometheus >= 2.45.0.

minLength: 1

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

scheme string

scheme defines the HTTP Scheme.

enum: http, https, HTTP, HTTPS

server string required

server defines the consul server address. A valid string consisting of a hostname or IP followed by an optional port number.

minLength: 1

services []string

services defines a list of services for which targets are retrieved. If omitted, all services are scraped.

tagSeparator string

tagSeparator defines the string by which Consul tags are joined into the tag label. If unset, Prometheus uses its default value.

minLength: 1

tags []string

tags defines an optional list of tags used to filter nodes for a given service. Services must contain all tags in the list. Starting with Consul 1.14, it is recommended to use `filter` with the `ServiceTags` selector instead.

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Consul API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenRef object

tokenRef defines the consul ACL TokenRef, if not provided it will use the ACL from the local Consul Agent.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

digitalOceanSDConfigs []object

digitalOceanSDConfigs defines a list of DigitalOcean service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the DigitalOcean API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

tlsConfig object

tlsConfig defines the TLS configuration to connect to the DigitalOcean API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

dnsSDConfigs []object

dnsSDConfigs defines a list of DNS service discovery configurations.

names []string required

names defines a list of DNS domain names to be queried.

minItems: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must Ignored for SRV records

format: int32

minimum: 0

maximum: 65535

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

type string

type defines the type of DNS query to perform. One of SRV, A, AAAA, MX or NS. If not set, Prometheus uses its default value. When set to NS, it requires Prometheus >= v2.49.0. When set to MX, it requires Prometheus >= v2.38.0

enum: A, AAAA, MX, NS, SRV

dockerSDConfigs []object

dockerSDConfigs defines a list of Docker service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the Docker daemon. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

filters []object

filters defines filters to limit the discovery process to a subset of the available resources.

name string required

name of the Filter.

minLength: 1

values []string required

values defines values to filter on.

minItems: 1

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

host string required

host defines the address of the docker daemon.

pattern: ^[a-zA-Z][a-zA-Z0-9+.-]*://.+$

minLength: 1

hostNetworkingHost string

hostNetworkingHost defines the host to use if the container is in host networking mode.

minLength: 1

matchFirstNetwork boolean

matchFirstNetwork defines whether to match the first network if the container has multiple networks defined. If unset, Prometheus uses true by default. It requires Prometheus >= v2.54.1.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Docker daemon.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

dockerSwarmSDConfigs []object

dockerSwarmSDConfigs defines a list of Dockerswarm service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the Docker Swarm API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

filters []object

filters defines the filters to limit the discovery process to a subset of available resources. The available filters are listed in the upstream documentation: Services: https://docs.docker.com/engine/api/v1.40/#operation/ServiceList Tasks: https://docs.docker.com/engine/api/v1.40/#operation/TaskList Nodes: https://docs.docker.com/engine/api/v1.40/#operation/NodeList

name string required

name of the Filter.

minLength: 1

values []string required

values defines values to filter on.

minItems: 1

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

host string required

host defines the address of the Docker daemon

pattern: ^[a-zA-Z][a-zA-Z0-9+.-]*://.+$

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the optional OAuth 2.0 configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `authorization`, or `basicAuth`.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must tasks and services that don't have published ports.

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

role string required

role of the targets to retrieve. Must be `Services`, `Tasks`, or `Nodes`.

enum: Services, Tasks, Nodes

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Docker Swarm daemon.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

ec2SDConfigs []object

ec2SDConfigs defines a list of EC2 service discovery configurations.

accessKey object

accessKey defines the AWS API key.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2. It requires Prometheus >= v2.41.0

filters []object

filters can be used optionally to filter the instance list by other criteria. Available filter criteria can be found here: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeInstances.html Filter API documentation: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_Filter.html It requires Prometheus >= v2.3.0

name string required

name of the Filter.

minLength: 1

values []string required

values defines values to filter on.

minItems: 1

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects. It requires Prometheus >= v2.41.0

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

port integer

port defines the port to scrape metrics from. If using the public IP address, this must instead be specified in the relabeling rule.

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

region string

region defines the AWS region.

minLength: 1

roleARN string

roleARN defines an alternative to using AWS API keys.

minLength: 1

secretKey object

secretKey defines the AWS API secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

tlsConfig object

tlsConfig defines the TLS configuration to connect to the EC2 API. It requires Prometheus >= v2.41.0

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

eurekaSDConfigs []object

eurekaSDConfigs defines a list of Eureka service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the Eureka server. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines the BasicAuth information to use on every scrape request.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

server string required

server defines the URL to connect to the Eureka server.

pattern: ^https?://.+$

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Eureka server.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

fileSDConfigs []object

fileSDConfigs defines a list of file service discovery configurations.

files []string required

files defines the list of files to be used for file discovery. Recommendation: use absolute paths. While relative paths work, the prometheus-operator project makes no guarantees about the working directory where the configuration file is stored. Files must be mounted using Prometheus.ConfigMaps or Prometheus.Secrets.

minItems: 1

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

gceSDConfigs []object

gceSDConfigs defines a list of GCE service discovery configurations.

filter string

filter defines the filter that can be used optionally to filter the instance list by other criteria Syntax of this filter is described in the filter query parameter section: https://cloud.google.com/compute/docs/reference/latest/instances/list

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must instead be specified in the relabeling rule.

format: int32

minimum: 0

maximum: 65535

project string required

project defines the Google Cloud Project ID

minLength: 1

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

tagSeparator string

tagSeparator defines the tag separator is used to separate the tags on concatenation

minLength: 1

zone string required

zone defines the zone of the scrape targets. If you need multiple zones use multiple GCESDConfigs.

minLength: 1

hetznerSDConfigs []object

hetznerSDConfigs defines a list of Hetzner service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the Hetzner API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

labelSelector string

labelSelector defines the label selector used to filter the servers when fetching them from the API. It requires Prometheus >= v3.5.0.

minLength: 1

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

role string required

role defines the Hetzner role of entities that should be discovered.

enum: hcloud, Hcloud, robot, Robot

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Hetzner API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

httpSDConfigs []object

httpSDConfigs defines a list of HTTP service discovery configurations.

authorization object

authorization defines the authorization header configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `oAuth2`, or `basicAuth`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request. More info: https://prometheus.io/docs/operating/configuration/#endpoints Cannot be set at the same time as `authorization`, or `oAuth2`.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the optional OAuth 2.0 configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `authorization`, or `basicAuth`.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

tlsConfig object

tlsConfig defines the TLS configuration applying to the target HTTP endpoint.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

url string required

url defines the URL from which the targets are fetched.

pattern: ^https?://.+$

ionosSDConfigs []object

ionosSDConfigs defines a list of IONOS service discovery configurations.

authorization object required

authorization defines the header configuration to authenticate against the IONOS API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

datacenterID string required

datacenterID defines the unique ID of the IONOS data center.

minLength: 1

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

tlsConfig object

tlsConfig defines the TLS configuration to connect to the IONOS API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

kubernetesSDConfigs []object

kubernetesSDConfigs defines a list of Kubernetes service discovery configurations.

apiServer string

apiServer defines the API server address consisting of a hostname or IP address followed by an optional port number. If left empty, Prometheus is assumed to run inside of the cluster. It will discover API servers automatically and use the pod's CA certificate and bearer token file at /var/run/secrets/kubernetes.io/serviceaccount/.

minLength: 1

attachMetadata object

attachMetadata defines the metadata to attach to discovered targets. It requires Prometheus >= v2.35.0 when using the `Pod` role and Prometheus >= v2.37.0 for `Endpoints` and `Endpointslice` roles.

node boolean

node attaches node metadata to discovered targets. When set to true, Prometheus must have the `get` permission on the `Nodes` objects. Only valid for Pod, Endpoint and Endpointslice roles.

authorization object

authorization defines the authorization header to use on every scrape request. Cannot be set at the same time as `basicAuth`, or `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request. Cannot be set at the same time as `authorization`, or `oauth2`.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

namespaces object

namespaces defines the namespace discovery. If omitted, Prometheus discovers targets across all namespaces.

names []string

names defines a list of namespaces where to watch for resources. If empty and `ownNamespace` isn't true, Prometheus watches for resources in all namespaces.

ownNamespace boolean

ownNamespace includes the namespace in which the Prometheus pod runs to the list of watched namespaces.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the optional OAuth 2.0 configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `authorization`, or `basicAuth`.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

role string required

role defines the Kubernetes role of the entities that should be discovered. Role `Endpointslice` requires Prometheus >= v2.21.0

enum: Pod, Endpoints, Ingress, Service, Node, EndpointSlice

selectors []object

selectors defines the selector to select objects. It requires Prometheus >= v2.17.0

field string

field defines an optional field selector to limit the service discovery to resources which have fields with specific values. e.g: `metadata.name=foobar`

minLength: 1

label string

label defines an optional label selector to limit the service discovery to resources with specific labels and label values. e.g: `node.kubernetes.io/instance-type=master`

minLength: 1

role string required

role defines the type of Kubernetes resource to limit the service discovery to. Accepted values are: Node, Pod, Endpoints, EndpointSlice, Service, Ingress.

enum: Pod, Endpoints, Ingress, Service, Node, EndpointSlice

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Kubernetes API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

kumaSDConfigs []object

kumaSDConfigs defines a list of Kuma service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the Kuma control plane. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientID string

clientID is used by Kuma Control Plane to compute Monitoring Assignment for specific Prometheus backend. It requires Prometheus >= v2.50.0.

minLength: 1

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

fetchTimeout string

fetchTimeout defines the time after which the monitoring assignments are refreshed.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

server string required

server defines the address of the Kuma Control Plane's MADS xDS server.

pattern: ^https?://.+$

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Kuma control plane.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

lightSailSDConfigs []object

lightSailSDConfigs defines a list of Lightsail service discovery configurations.

accessKey object

accessKey defines the AWS API key.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

authorization object

authorization defines the header configuration to authenticate against the Lightsail API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request. Cannot be set at the same time as `authorization`, or `oauth2`.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

endpoint string

endpoint defines the custom endpoint to be used.

minLength: 1

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the optional OAuth 2.0 configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `authorization`, or `basicAuth`.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

region string

region defines the AWS region.

minLength: 1

roleARN string

roleARN defines the AWS Role ARN, an alternative to using AWS API keys.

secretKey object

secretKey defines the AWS API secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Lightsail API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

linodeSDConfigs []object

linodeSDConfigs defines a list of Linode service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the Linode API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the optional OAuth 2.0 configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `authorization`, or `basicAuth`.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

region string

region defines the region to filter on.

minLength: 1

tagSeparator string

tagSeparator defines the string by which Linode Instance tags are joined into the tag label.el.

minLength: 1

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Linode API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

metricRelabelings []object

metricRelabelings defines the metricRelabelings to apply to samples before ingestion.

minItems: 1

action string

action to perform based on the regex matching. `Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0. `DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0. Default: "Replace"

enum:

replace, Replace, keep, Keep, drop, Drop, hashmod, HashMod, labelmap, LabelMap, labeldrop, LabelDrop, labelkeep, LabelKe...

replace, Replace, keep, Keep, drop, Drop, hashmod, HashMod, labelmap, LabelMap, labeldrop, LabelDrop, labelkeep, LabelKeep, lowercase, Lowercase, uppercase, Uppercase, keepequal, KeepEqual, dropequal, DropEqual

modulus integer

modulus to take of the hash of the source label values. Only applicable when the action is `HashMod`.

format: int64

regex string

regex defines the regular expression against which the extracted value is matched.

replacement string

replacement value against which a Replace action is performed if the regular expression matches. Regex capture groups are available.

separator string

separator defines the string between concatenated SourceLabels.

sourceLabels []string

sourceLabels defines the source labels select values from existing labels. Their content is concatenated using the configured Separator and matched against the configured regular expression.

targetLabel string

targetLabel defines the label to which the resulting string is written in a replacement. It is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`, `KeepEqual` and `DropEqual` actions. Regex capture groups are available.

nomadSDConfigs []object

nomadSDConfigs defines a list of Nomad service discovery configurations.

allowStale boolean

allowStale defines the information to access the Nomad API. It is to be defined as the Nomad documentation requires.

authorization object

authorization defines the header configuration to authenticate against the Nomad API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

namespace string

namespace defines the Nomad namespace to query for service discovery. When specified, only resources within this namespace will be discovered.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

region string

region defines the Nomad region to query for service discovery. When specified, only resources within this region will be discovered.

server string required

server defines the Nomad server address to connect to for service discovery. This should be the full URL including protocol (e.g., "https://nomad.example.com:4646").

pattern: ^https?://.+$

tagSeparator string

tagSeparator defines the separator used to join multiple tags. This determines how Nomad service tags are concatenated into Prometheus labels.

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Nomad API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

oauth2 object

oauth2 defines the configuration to use on every scrape request.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

openstackSDConfigs []object

openstackSDConfigs defines a list of OpenStack service discovery configurations.

allTenants boolean

allTenants defines whether the service discovery should list all instances for all projects. It is only relevant for the 'instance' role and usually requires admin permissions.

applicationCredentialId string

applicationCredentialId defines the OpenStack applicationCredentialId.

applicationCredentialName string

applicationCredentialName defines the ApplicationCredentialID or ApplicationCredentialName fields are required if using an application credential to authenticate. Some providers allow you to create an application credential to authenticate rather than a password.

minLength: 1

applicationCredentialSecret object

applicationCredentialSecret defines the required field if using an application credential to authenticate.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

availability string

availability defines the availability of the endpoint to connect to.

enum: Public, public, Admin, admin, Internal, internal

domainID string

domainID defines The OpenStack domainID.

minLength: 1

domainName string

domainName defines at most one of domainId and domainName that must be provided if using username with Identity V3. Otherwise, either are optional.

minLength: 1

identityEndpoint string

identityEndpoint defines the HTTP endpoint that is required to work with the Identity API of the appropriate version.

pattern: ^https?://.+$

password object

password defines the password for the Identity V2 and V3 APIs. Consult with your provider's control panel to discover your account's preferred method of authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

port integer

port defines the port to scrape metrics from. If using the public IP address, this must instead be specified in the relabeling rule.

format: int32

minimum: 0

maximum: 65535

projectID string

projectID defines the OpenStack projectID.

minLength: 1

projectName string

projectName defines an optional field for the Identity V2 API. Some providers allow you to specify a ProjectName instead of the ProjectId. Some require both. Your provider's authentication policies will determine how these fields influence authentication.

minLength: 1

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

region string required

region defines the OpenStack Region.

minLength: 1

role string required

role defines the OpenStack role of entities that should be discovered. Note: The `LoadBalancer` role requires Prometheus >= v3.2.0.

enum: Instance, Hypervisor, LoadBalancer

tlsConfig object

tlsConfig defines the TLS configuration applying to the target HTTP endpoint.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

userid string

userid defines the OpenStack userid.

minLength: 1

username string

username defines the username required if using Identity V2 API. Consult with your provider's control panel to discover your account's username. In Identity V3, either userid or a combination of username and domainId or domainName are needed

minLength: 1

ovhcloudSDConfigs []object

ovhcloudSDConfigs defines a list of OVHcloud service discovery configurations.

applicationKey string required

applicationKey defines the access key to use for OVHCloud API authentication. This is obtained from the OVHCloud API credentials at https://api.ovh.com.

minLength: 1

applicationSecret object required

applicationSecret defines the secret key for OVHCloud API authentication. This contains the application secret obtained during OVHCloud API credential creation.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

consumerKey object required

consumerKey defines the consumer key for OVHCloud API authentication. This is the third component of OVHCloud's three-key authentication system.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpoint string

endpoint defines a custom API endpoint to be used. When not specified, defaults to the standard OVHCloud API endpoint for the region.

minLength: 1

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

service string required

service defines the service type of the targets to retrieve. Must be either `VPS` or `DedicatedServer` to specify which OVHCloud resources to discover.

enum: VPS, DedicatedServer

puppetDBSDConfigs []object

puppetDBSDConfigs defines a list of PuppetDB service discovery configurations.

authorization object

authorization defines the header configuration to authenticate against the PuppetDB API. Cannot be set at the same time as `oauth2`.

credentials object

credentials defines a key of a Secret in the namespace that contains the credentials for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

type string

type defines the authentication type. The value is case-insensitive. "Basic" is not a supported value. Default: "Bearer"

basicAuth object

basicAuth defines information to use on every scrape request. Cannot be set at the same time as `authorization`, or `oauth2`.

password object

password defines a key of a Secret containing the password for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

username object

username defines a key of a Secret containing the username for authentication.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

includeParameters boolean

includeParameters defines whether to include the parameters as meta labels. Note: Enabling this exposes parameters in the Prometheus UI and API. Make sure that you don't have secrets exposed as parameters if you enable this.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

oauth2 object

oauth2 defines the optional OAuth 2.0 configuration to authenticate against the target HTTP endpoint. Cannot be set at the same time as `authorization`, or `basicAuth`.

clientId object required

clientId defines a key of a Secret or ConfigMap containing the OAuth2 client's ID.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

clientSecret object required

clientSecret defines a key of a Secret containing the OAuth2 client's secret.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

endpointParams object

endpointParams configures the HTTP parameters to append to the token URL.

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

scopes []string

scopes defines the OAuth2 scopes used for the token request.

tlsConfig object

tlsConfig defines the TLS configuration to use when connecting to the OAuth2 server. It requires Prometheus >= v2.43.0.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

tokenUrl string required

tokenUrl defines the URL to fetch the token from.

minLength: 1

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

query string required

query defines the Puppet Query Language (PQL) query. Only resources are supported. https://puppet.com/docs/puppetdb/latest/api/query/v4/pql.html

minLength: 1

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

tlsConfig object

tlsConfig defines the TLS configuration to connect to the PuppetDB server.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

url string required

url defines the URL of the PuppetDB root query endpoint.

pattern: ^https?://.+$

relabelings []object

relabelings defines how to rewrite the target's labels before scraping. Prometheus Operator automatically adds relabelings for a few standard Kubernetes fields. The original scrape job's name is available via the `__tmp_prometheus_job_name` label. More info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config

minItems: 1

action string

action to perform based on the regex matching. `Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0. `DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0. Default: "Replace"

enum:

replace, Replace, keep, Keep, drop, Drop, hashmod, HashMod, labelmap, LabelMap, labeldrop, LabelDrop, labelkeep, LabelKe...

replace, Replace, keep, Keep, drop, Drop, hashmod, HashMod, labelmap, LabelMap, labeldrop, LabelDrop, labelkeep, LabelKeep, lowercase, Lowercase, uppercase, Uppercase, keepequal, KeepEqual, dropequal, DropEqual

modulus integer

modulus to take of the hash of the source label values. Only applicable when the action is `HashMod`.

format: int64

regex string

regex defines the regular expression against which the extracted value is matched.

replacement string

replacement value against which a Replace action is performed if the regular expression matches. Regex capture groups are available.

separator string

separator defines the string between concatenated SourceLabels.

sourceLabels []string

sourceLabels defines the source labels select values from existing labels. Their content is concatenated using the configured Separator and matched against the configured regular expression.

targetLabel string

targetLabel defines the label to which the resulting string is written in a replacement. It is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`, `KeepEqual` and `DropEqual` actions. Regex capture groups are available.

scalewaySDConfigs []object

scalewaySDConfigs defines a list of Scaleway instances and baremetal service discovery configurations.

accessKey string required

accessKey defines the access key to use. https://console.scaleway.com/project/credentials

minLength: 1

apiURL string

apiURL defines the API URL to use when doing the server listing requests.

pattern: ^https?://.+$

enableHTTP2 boolean

enableHTTP2 defines whether to enable HTTP2.

followRedirects boolean

followRedirects defines whether HTTP requests follow HTTP 3xx redirects.

nameFilter string

nameFilter defines a name filter (works as a LIKE) to apply on the server listing request.

minLength: 1

noProxy string

noProxy defines a comma-separated string that can contain IPs, CIDR notation, domain names that should be excluded from proxying. IP and domain names can contain port numbers. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

port integer

port defines the port to scrape metrics from. If using the public IP address, this must

format: int32

minimum: 0

maximum: 65535

projectID string required

projectID defines the Project ID of the targets.

minLength: 1

proxyConnectHeader object

proxyConnectHeader optionally specifies headers to send to proxies during CONNECT requests. It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyFromEnvironment boolean

proxyFromEnvironment defines whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY). It requires Prometheus >= v2.43.0, Alertmanager >= v0.25.0 or Thanos >= v0.32.0.

proxyUrl string

proxyUrl defines the HTTP proxy server to use.

pattern: ^(http|https|socks5)://.+$

refreshInterval string

refreshInterval defines the time after which the provided names are refreshed. If not set, Prometheus uses its default value.

pattern: ^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$

role string required

role defines the service of the targets to retrieve. Must be `Instance` or `Baremetal`.

enum: Instance, Baremetal

secretKey object required

secretKey defines the secret key to use when listing targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

tagsFilter []string

tagsFilter defines a tag filter (a server needs to have all defined tags to be listed) to apply on the server listing request.

minItems: 1

tlsConfig object

tlsConfig defines the TLS configuration to connect to the Scaleway API.

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.

zone string

zone defines the availability zone of your targets (e.g. fr-par-1).

minLength: 1

staticConfigs []object

staticConfigs defines a list of static targets with a common label set.

labels object

labels defines labels assigned to all metrics scraped from the targets.

targets []string required

targets defines the list of targets for this static configuration.

minItems: 1

tlsConfig object

tlsConfig defines the TLS configuration to use on every scrape request

ca object

ca defines the Certificate authority used when verifying server certificates.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

cert object

cert defines the Client certificate to present when doing client-authentication.

configMap object

configMap defines the ConfigMap containing data to use for the targets.

key string required

The key to select.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the ConfigMap or its key must be defined

secret object

secret defines the Secret containing data to use for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

insecureSkipVerify boolean

insecureSkipVerify defines how to disable target certificate validation.

keySecret object

keySecret defines the Secret containing the client key file for the targets.

key string required

The key of the secret to select from. Must be a valid secret key.

name string

Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names

optional boolean

Specify whether the Secret or its key must be defined

maxVersion string

maxVersion defines the maximum acceptable TLS version. It requires Prometheus >= v2.41.0 or Thanos >= v0.31.0.

enum: TLS10, TLS11, TLS12, TLS13

minVersion string

minVersion defines the minimum acceptable TLS version. It requires Prometheus >= v2.35.0 or Thanos >= v0.28.0.

enum: TLS10, TLS11, TLS12, TLS13

serverName string

serverName is used to verify the hostname for the targets.