|
21 | 21 | "--no-proxy": { |
22 | 22 | "set_if": "$haproxy_status_no_proxy$" |
23 | 23 | }, |
24 | | - "--password": { |
25 | | - "value": "$haproxy_status_password$" |
26 | | - }, |
27 | 24 | "--timeout": { |
28 | 25 | "value": "$haproxy_status_timeout$" |
29 | 26 | }, |
30 | 27 | "--url": { |
31 | 28 | "value": "$haproxy_status_url$" |
32 | 29 | }, |
33 | | - "--username": { |
34 | | - "value": "$haproxy_status_username$" |
35 | | - }, |
36 | 30 | "--warning": { |
37 | 31 | "value": "$haproxy_status_warning$" |
38 | 32 | } |
|
84 | 78 | "datafield_id": 9, |
85 | 79 | "is_required": "n", |
86 | 80 | "var_filter": null |
87 | | - }, |
88 | | - { |
89 | | - "datafield_id": 10, |
90 | | - "is_required": "n", |
91 | | - "var_filter": null |
92 | | - }, |
93 | | - { |
94 | | - "datafield_id": 11, |
95 | | - "is_required": "n", |
96 | | - "var_filter": null |
97 | 81 | } |
98 | 82 | ], |
99 | 83 | "imports": [], |
|
137 | 121 | "tpl-service-generic" |
138 | 122 | ], |
139 | 123 | "max_check_attempts": 5, |
140 | | - "notes": "Monitors HAProxy performance and health via the stats endpoint. Reports frontend and backend session usage, request rates, response times, error rates, and server states. Alerts when session usage exceeds the configured thresholds. Proxies, frontends, backends or individual servers can be filtered out with --ignore (e.g. an on-demand certbot backend that is only UP during cert renewal). Supports extended reporting via --lengthy.", |
| 124 | + "notes": "Monitors HAProxy performance and health via the stats endpoint. Reports frontend and backend session usage, request rates, response times, error rates, and server states. Alerts when session usage exceeds the configured thresholds. Proxies, frontends, backends or individual servers can be filtered out with --ignore (e.g. an on-demand certbot backend that is only UP during cert renewal). HTTP basic auth is supplied through the URL itself (`https://user:secret@host/server-status`); the credentials are stripped from the URL before the request is sent and instead carried in an `Authorization: Basic` header so they never reach the request line or any proxy access log. Supports extended reporting via --lengthy.", |
141 | 125 | "notes_url": "https://linuxfabrik.github.io/monitoring-plugins/check-plugins/haproxy-status/", |
142 | 126 | "object_name": "tpl-service-haproxy-status", |
143 | 127 | "object_type": "template", |
|
156 | 140 | "haproxy_status_no_proxy": false, |
157 | 141 | "haproxy_status_timeout": 3, |
158 | 142 | "haproxy_status_url": "unix:///run/haproxy.sock", |
159 | | - "haproxy_status_username": "haproxy-stats", |
160 | 143 | "haproxy_status_warning": 80 |
161 | 144 | }, |
162 | 145 | "volatile": null, |
|
224 | 207 | "uuid": "a309e05c-4de7-443e-9c0e-a5ffb0f7c017" |
225 | 208 | }, |
226 | 209 | "7": { |
227 | | - "varname": "haproxy_status_password", |
228 | | - "caption": "HAProxy Status: Password", |
229 | | - "description": "HAProxy stats auth password. Not needed for socket access.", |
230 | | - "datatype": "Icinga\\Module\\Director\\DataType\\DataTypeString", |
231 | | - "format": null, |
232 | | - "settings": { |
233 | | - "visibility": "hidden" |
234 | | - }, |
235 | | - "uuid": "faf92ec9-694a-49e8-bbab-2c926539dfd6" |
236 | | - }, |
237 | | - "8": { |
238 | 210 | "varname": "haproxy_status_timeout", |
239 | 211 | "caption": "HAProxy Status: Timeout", |
240 | 212 | "description": "Network timeout in seconds.", |
|
245 | 217 | }, |
246 | 218 | "uuid": "803a48ca-c842-48b7-8c06-ab626230eadb" |
247 | 219 | }, |
248 | | - "9": { |
| 220 | + "8": { |
249 | 221 | "varname": "haproxy_status_url", |
250 | 222 | "caption": "HAProxy Status: URL", |
251 | | - "description": "HAProxy stats URI. Accepts `unix:///path/to/haproxy.sock` or an HTTP(S) URL. Example: `--url https://webserver:8443/server-status`.", |
| 223 | + "description": "HAProxy stats URI. Accepts `unix:///path/to/haproxy.sock` or an HTTP(S) URL. For HTTP basic auth, embed the credentials in the URL itself; the plugin strips them from the netloc before the request is sent and carries them in an `Authorization: Basic` header. Example: `--url https://webserver:8443/server-status`. Example: `--url https://stats:s3cret@webserver:8443/server-status`.", |
252 | 224 | "datatype": "Icinga\\Module\\Director\\DataType\\DataTypeString", |
253 | 225 | "format": null, |
254 | 226 | "settings": { |
255 | 227 | "visibility": "visible" |
256 | 228 | }, |
257 | 229 | "uuid": "9a5bdff2-0b2c-4a02-a478-9723f60ea9cd" |
258 | 230 | }, |
259 | | - "10": { |
260 | | - "varname": "haproxy_status_username", |
261 | | - "caption": "HAProxy Status: Username", |
262 | | - "description": "HAProxy stats auth username. Not needed for socket access.", |
263 | | - "datatype": "Icinga\\Module\\Director\\DataType\\DataTypeString", |
264 | | - "format": null, |
265 | | - "settings": { |
266 | | - "visibility": "visible" |
267 | | - }, |
268 | | - "uuid": "e1afab75-bc8a-4c88-915b-fe423c9fd19d" |
269 | | - }, |
270 | | - "11": { |
| 231 | + "9": { |
271 | 232 | "varname": "haproxy_status_warning", |
272 | 233 | "caption": "HAProxy Status: Warning", |
273 | 234 | "description": "WARN threshold in percent.", |
|
0 commit comments