The page returns 502

Not able to deploy. I got errors. Please help.

ansible-playbook -i hosts site.yml --vault-password-file group_vars/grafana/vault --check -vvvvv

I got errors as follows:

fatal: [10.10.2.19]: FAILED! => {
    "changed": false,
    "invocation": {
        "module_args": {
            "daemon_reexec": false,
            "daemon_reload": true,
            "enabled": true,
            "force": null,
            "masked": null,
            "name": "blackbox_exporter",
            "no_block": false,
            "scope": "system",
            "state": "started"
        }
    },
    "msg": "Could not find the requested service blackbox_exporter: host"
}

ansible all -m ping

10.10.2.19 | SUCCESS => {
    "ansible_facts": {
        "discovered_interpreter_python": "/usr/bin/python3"
    },
    "changed": false,
    "ping": "pong"
}

cat hosts:

10.10.2.19 ansible_host=10.10.2.19 ansible_user=root

[prometheus]
10.10.2.19

[alertmanager]
10.10.2.19

[grafana]
10.10.2.19

[exporters]
10.10.2.19

[web]
10.10.2.19

Issue:
The ansible playbook fails a condition check while installing 'git' using apt on Ubuntu 20.04 LTS.

Error:
TASK [caddy_ansible.caddy_ansible : Install git] ************************************************************************************************************************
fatal: [demo]: FAILED! => {"msg": "The conditional check 'caddy_features | search('git')' failed. The error was: template error while templating string: no filter named 'search'. String: {% if caddy_features | search('git') %} True {% else %} False {% endif %}\n\nThe error appears to be in '/home/npathak/sonic-jobs/ansible/demo-site/roles/caddy_ansible.caddy_ansible/tasks/packages-apt.yml': line 8, column 3, but may\nbe elsewhere in the file depending on the exact syntax problem.\n\nThe offending line appears to be:\n\n\n- name: Install git\n ^ here\n"}

Details:

• The failing condition is set in caddy_ansible role in a file roles/caddy_ansible.caddy_ansible/tasks/packages-apt.yml.
• Commenting the condition check #when: caddy_features | search('git')works.

It would be fancy to monitor https://api.github.com/repos/prometheus/prometheus/releases using the json_exporter.

It would be nice to have an additional Prometheus instance that deploys from main, both to demo features that haven't made a release yet, and to act as a more up-to-date backend for the Netlify deploy previews.

run deploy.sh, then above error message occur

Issue:
Unable to start/restart caddy service on Ubuntu 20.04 LTS

Error:
RUNNING HANDLER [caddy_ansible.caddy_ansible : reload caddy] ************************************************************************************************************
fatal: [demo]: FAILED! => {"changed": false, "msg": "Unable to start service caddy: Job for caddy.service failed because the control process exited with error code.\nSee "systemctl status caddy.service" and "journalctl -xe" for details.\n"}

Details:

• The permission of the directory /var/www is set to 750 after OS hardening.
• Manually changing the permission of the directory /var/www to 755 works.

I made the change in group_vars/grafana/vault as follows:

vault_grafana_password: demo12345678

I got errors when I ran,

ansible-playbook site.yml

TASK [dev-sec.ssh-hardening : create sshd_config and set permissions to root/600] ********************
fatal: [demo]: FAILED! => {"changed": false, "checksum": "87a17b21ccd22636f3845dd92fb311551c1fd0ba", "exit_status": 255, "msg": "failed to validate", "stderr": "Unsupported KEX algorithm \"[email protected]\"\r\n/root/.ansible/tmp/ansible-tmp-1681618592.8951068-527499-95013378172142/source line 73: Bad SSH2 KexAlgorithms '[email protected],[email protected],diffie-hellman-group-exchange-sha256'.\r\n", "stderr_lines": ["Unsupported KEX algorithm \"[email protected]\"", "/root/.ansible/tmp/ansible-tmp-1681618592.8951068-527499-95013378172142/source line 73: Bad SSH2 KexAlgorithms '[email protected],[email protected],diffie-hellman-group-exchange-sha256'."], "stdout": "", "stdout_lines": []}

I reverted my changes in group_vars/grafana/vault to the original values of group_vars/grafana/vault I got from github. Then I got errors as follows:

ansible-playbook site.yml

PLAY [Install python] ******************************************************************************** ERROR! Attempting to decrypt but no vault secrets found

It might be nice to add a role to configure unattended-upgrades.

Current demo site presents prometheus in version 1.7.1 which is a little bit old. Maybe it would be nice to upgrade it to 2.x ?

Can I help somehow to get this repo to power demo.prometheus.io site?

As per team sync call.

Issue:
The ansible playbook fails to copy random export binary.

Error:
TASK [Copy random_exporter binary] **************************************************************************************************************************************
An exception occurred during task execution. To see the full traceback, use -vvv. The error was: If you are using a module and expect the file to exist on the remote, see the remote_src option
fatal: [demo]: FAILED! => {"changed": false, "msg": "Could not find or access 'random'\nSearched in:\n\t/home/ubuntu/demo-site/playbooks/files/random\n\t/home/ubuntu/demo-site/playbooks/random\n\t/home/ubuntu/demo-site/playbooks/files/random\n\t/home/ubuntu/demo-site/playbooks/random on the Ansible Controller.\nIf you are using a module and expect the file to exist on the remote, see the remote_src option"}

Details:

• How does it download the random export binary?
• The 'golang' is installed on my deployer system.
  $ go version
go version go1.13.8 linux/amd64
$ which go
/usr/bin/go