You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: enhancements/monitoring/user-workload-monitoring.md
+9-7
Original file line number
Diff line number
Diff line change
@@ -251,20 +251,22 @@ OpenShift console executes queries against `/query` endpoint of Thanos Querier t
251
251
252
252
Access to this endpoint is gated by the permission to `get pods.metrics.k8s.io` in the requested namespace.
253
253
254
-
#### Available Rules and declared alerts
254
+
#### Available Rules and alerts
255
255
256
256
OpenShift console executes queries against the `/rules` and `/alerts` endpoint of Prometheus and Thanos Ruler
257
-
to retrieve a list of declared alerts and recording rules. Recording rules as well as alerting rules deployed via user workload monitoring are having enforced namespace labels set. The list of rules and alerts is being filtered by prom-label-proxy based on the tenant namespace label.
257
+
to retrieve a list of declared alerting/recording rules and a list of active alerts. Recording rules as well as alerting rules deployed via user workload monitoring are having enforced namespace labels set. The list of rules and alerts is being filtered by prom-label-proxy based on the tenant namespace label.
258
258
259
-
Access to this endpoint is gated by the permission to `get prometheusrules.monitoring.coreos.com` in the requested namespace.
259
+
Access to these endpoints is gated by the permission to `get prometheusrules.monitoring.coreos.com` in the requested namespace.
260
260
261
-
#### Alertmanager alerts and silences
261
+
#### Alertmanager silences
262
262
263
-
OpenShift console executes requests against the `/alerts` endpoint of Alertmanager to retrieve the list of currently firing alerts and to silence alerts. Firing alerts originating from user workload monitoring are having enforced namespace labels set. A user can only createand update silences as well as get alerts and silences filtered by the namespace label in flight.
263
+
OpenShift console executes requests against the `/silences` endpoint of Alertmanager to retrieve the list of silences and to silence alerts. A user can only create, delete and update silences as well as get silences filtered by the namespace label in flight.
264
264
265
-
Access to read the list of currently firing alerts is gated by the permission to `get prometheusrules.monitoring.coreos.com` in the requested namespace.
265
+
Access to list the silences is gated by the permission to `get prometheusrules.monitoring.coreos.com` in the requested namespace.
266
266
267
-
Access to post a new silence or update an existing silence is gated by the permission to `create prometheusrules.monitoring.coreos.com`.
267
+
Access to create a new silence or update an existing silence is gated by the permission to `create prometheusrules.monitoring.coreos.com` in the requested namespace.
268
+
269
+
Access to delete an existing silence is gated by the permission to `delete prometheusrules.monitoring.coreos.com` in the requested namespace.
0 commit comments