about summary refs log tree commit diff
path: root/modules/loki.nix
blob: 44e663f9566c2776229f994e696bf340253ec682 (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138

{
  config,
  lib,
  libNginx,
  this,
  ...
}:
let
  cfg = config.nixfiles.modules.loki;
in
{
  options.nixfiles.modules.loki = {
    enable = lib.mkEnableOption "Loki";

    port = lib.mkOption {
      description = "Port.";
      type = lib.types.port;
      default = 30171;
    };

    domain = lib.mkOption {
      description = "Domain name sans protocol scheme.";
      type = lib.types.str;
      default = "loki.${config.networking.domain}";
    };
  };

  config = lib.mkIf cfg.enable {
    ark.directories = [ config.services.loki.configuration.common.path_prefix ];

    nixfiles.modules.nginx = {
      enable = true;
      upstreams.loki.servers."127.0.0.1:${toString cfg.port}" = { };
      virtualHosts.${cfg.domain} = {
        locations = {
          "/".proxyPass = "http://loki";
          # "/loki".extraConfig = ''
          #   rewrite ^/loki/(.*)$ /$1 break;
          # '';
        };
        extraConfig = libNginx.config.internalOnly;
      };
    };

    services.loki = {
      enable = true;

      configuration = rec {
        auth_enabled = false;

        server = {
          http_listen_address = "127.0.0.1";
          http_listen_port = cfg.port;

          grpc_listen_address = "0.0.0.0";
          grpc_listen_port = server.http_listen_port + 1;

          log_format = "logfmt";
          log_level = "warn";
          log_source_ips_enabled = true;
        };

        common = {
          path_prefix = config.services.loki.dataDir;
          storage.filesystem = {
            chunks_directory = "${common.path_prefix}/chunks";
            rules_directory = "${common.path_prefix}/rules";
          };
          replication_factor = 1;
          ring = {
            instance_addr = "127.0.0.1";
            kvstore.store = "memberlist";
          };
        };

        memberlist = {
          bind_port = 7946;
          message_history_buffer_bytes = lib.pow 2 13;
        };

        compactor = {
          working_directory = "${common.path_prefix}/compactor";
          retention_enabled = true;
          retention_delete_delay = "1h";
          retention_delete_worker_count = 64;
          delete_request_store = "filesystem";
        };

        ruler = {
          enable_api = true;
          storage = {
            type = "local";
            local.directory = common.storage.filesystem.rules_directory;
          };
        };

        limits_config = {
          max_streams_per_user = 0;
          max_global_streams_per_user = 0;
          max_query_series = 4096;
          retention_period = "14d";
          deletion_mode = "filter-and-delete";
        };

        schema_config.configs = [
          {
            from = "2025-01-01";
            object_store = "filesystem";
            store = "tsdb";
            schema = "v13";
            index = {
              prefix = "index_";
              period = "24h";
            };
          }
        ];

        analytics.reporting_enabled = false;
      };
    };

    environment.etc."alloy/loki.alloy".text = ''
      prometheus.scrape "loki" {
        targets = [
          {
            __address__ = "127.0.0.1:${toString cfg.port}",
            instance    = "${config.networking.hostName}",
          },
        ]
        forward_to = [prometheus.relabel.default.receiver]
      }
    '';

    systemd.services.alloy.reloadTriggers = [ config.environment.etc."alloy/loki.alloy".source ];

    topology.nodes.${this.hostname}.services.loki.info = cfg.domain;
  };
}

Consider giving Nix/NixOS a try! <3