Grafana Loki

TomsFreitas · Feb 10, 2023, 6:57 PM

@doodlemania2 Hello, do you have any plans to add authentication to this app?

doodlemania2 · Feb 10, 2023, 10:28 PM

@TomsFreitas haven't had the need what's the scenario?

TomsFreitas · Feb 10, 2023, 10:40 PM

@doodlemania2 I have several servers that need to push logs to loki so it must be exposed to the internet and I wanted it to be secure. Protecting it with cloudron auth would make it so that loki could be exposed and not have to worry about someone fetching all my logs using loki's API

girish · Feb 11, 2023, 1:16 PM

How do servers send their logs to Loki? With a token? Wouldn't putting basic auth affect the API?

TomsFreitas · Feb 12, 2023, 6:52 PM

@girish Well, the most used setup with Loki is using it with promtail. Promtail resides in your agents and it pushes the logs to loki. Grafana then fetches the logs from loki. It's my understanding that both promtail and grafana support basic auth when interacting with loki

doodlemania2 · Feb 13, 2023, 11:13 AM

@TomsFreitas yeah, i think that's right - I've never done it because it's always just been me pushing to it from a tailscale endpoint but I can see the value there.

@girish - I think the best approach would be to leave it open (but behind SSL) and let Loki handle the auth.

No?

girish · Feb 13, 2023, 11:52 AM

@doodlemania2 agree, but apparently loki doesn't have any auth of it's own - https://grafana.com/docs/loki/latest/operations/authentication/ . I guess this is why @TomsFreitas wants Cloudron to provide the auth.

TomsFreitas · Feb 13, 2023, 7:55 PM

@girish Yes, if we could place cloudron in the middle doing authentication it would be incredible

doodlemania2 · wrote on Feb 13, 2023, 7:55 PM

rats - I thought it would. Putting CR auth in front of Loki may be problematic - how would a payload or client that is pushing data to loki know that it's cloudron asking and not loki. if loki has no knowledge of auth, the inverse is problematic too.

perler · wrote on May 23, 2023, 7:57 AM

ok, is this still on a roadmap? I could set up loki and promtail on a seperate docker server, but really would like to have this integrated into cloudron..

ioctl · wrote on Dec 4, 2023, 3:00 PM

I would love to have some solution for logging aggregation in my cloudron. I see some of the projects here have been deleted. Any plans to add official support for Loki or some alternative?

girish · wrote on Dec 4, 2023, 3:07 PM

Not sure what the status of https://git.cloudron.io/doodlemania2/loki is . @doodlemania2 any update?

I haven't used Loki myself but is it actually a web app?

doodlemania2 · wrote on Dec 4, 2023, 4:52 PM

It's not - it's really just an endpoint. I have used it as is for many moons and is rock solid. That said, it definitely needs an update. One of the challenges I faced is there's a LOT of changes under the covers, so I've stayed with this older version and it serves me well.

Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.

Cloudron Forum

Grafana Loki