To deploy Grafana using the Helm Chart, follow these steps:

  1. Navigate to the Grafana helm chart directory:
 $ cd helm_charts/grafana_chart
  1. Add the Grafana Helm repository:
 $ helm repo add grafana
  1. Install Grafana using the Helm Chart. We provided a customized grafana_values.yaml file for our specific needs, but you can modify it according to your preferences.
 helm install Grafana grafana/grafana -f grafana_values.yaml
  1. After the installation is complete, you can access the Grafana dashboard using the IP address or hostname of the Kubernetes cluster along with the port number. I set it, to Grafana service IP.

Integrate Keycloak with Grafana

  1. Create a “grafana” Realm using Keycloak’s web interface.

  2. Navigate to the location where the Keycloak Terraform file is stored:

 $ cd infrastructure/modules/keycloak
  1. Modify the default values of the variables.tf file to match the IP or domain of your Keycloak and Grafana services:
# ip or hostname of the keycloak server
variable "keycloak" {
  type        = string 
  description = "keycloak ip or hostname"
  default     = "http://<put here the ip or the domain of keycloak service>"
}
# grafana ip or hostname
variable "grafana" {
  type        = string 
  description = "grafana redirect uri ip or hostname"
  default     = "http://<put here the ip or the domain of grafana service>/login/generic_oauth"
}
  1. Run the following command to create the configuration and users:
 $ terraform init
 $ terraform apply --auto-aprouve

  1. In Keycloak, go to your newly created Realm and add a password for your user and admin.

  2. In Grafana_values.yaml, update the IP address in the grafana.ini section.

# go to the line  692
grafana.ini:
  auth.generic_oauth:
      enabled: true
      name: Keycloak
      allow_sign_up: true
      scopes: profile,email,groups
      auth_url: <Keycloak service ip or domain>/auth/realms/grafana/protocol/openid-connect/auth
      token_url: <Keycloak service ip or domain>/auth/realms/grafana/protocol/openid-connect/token
      api_url: <Keycloak service ip or domain>/auth/realms/grafana/protocol/openid-connect/userinfo
      client_id: grafana
      client_secret: grafana-client-secret
      role_attribute_path: contains(groups[*], 'grafana-admin') && 'Admin' || contains(groups[*], 'grafana-dev') && 'Editor' || 'Viewer'
  server:
  # this is for grafana url
      root_url: <grafana ip or domain name>
  1. Navigate back to Grafana Chart and Upgrade the changes you made
helm upgrade grafana grafana/grafana -f grafana_values.yaml