titan-iac/services/monitoring/postmark-exporter-deployment.yaml

# services/monitoring/postmark-exporter-deployment.yaml
apiVersion: apps/v1
kind: Deployment
metadata:
  name: postmark-exporter
spec:
  replicas: 1
  selector:
    matchLabels:
      app: postmark-exporter
  template:
    metadata:
      labels:
        app: postmark-exporter
      annotations:
        prometheus.io/scrape: "true"
        prometheus.io/port: "8000"
        prometheus.io/path: "/metrics"
        vault.hashicorp.com/agent-inject: "true"
        vault.hashicorp.com/role: "monitoring"
        vault.hashicorp.com/agent-inject-secret-postmark-env: "kv/data/atlas/shared/postmark-relay"
        vault.hashicorp.com/agent-inject-template-postmark-env: |
          {{- with secret "kv/data/atlas/shared/postmark-relay" -}}
          export POSTMARK_SERVER_TOKEN="{{ index .Data.data "apikey" }}"
          export POSTMARK_SERVER_TOKEN_FALLBACK="{{ index .Data.data "apikey" }}"
          {{- if index .Data.data "sending-limit" }}
          export POSTMARK_SENDING_LIMIT="{{ index .Data.data "sending-limit" }}"
          {{- end }}
          {{- end -}}
        bstein.dev/restarted-at: "2026-01-06T00:00:00Z"
    spec:
      affinity:
        nodeAffinity:
          requiredDuringSchedulingIgnoredDuringExecution:
            nodeSelectorTerms:
              - matchExpressions:
                  - key: kubernetes.io/hostname
                    operator: NotIn
                    values:
                      - titan-22
      serviceAccountName: monitoring-vault-sync
      containers:
        - name: exporter
          image: python:3.12-alpine
          imagePullPolicy: IfNotPresent
          command: ["/bin/sh", "-c"]
          args:
            - |
              set -euo pipefail
              . /vault/secrets/postmark-env
              pip install --no-cache-dir prometheus-client==0.22.1 requests==2.32.3
              exec python /app/monitoring_postmark_exporter.py
          env:
            - name: POSTMARK_SENDING_LIMIT_WINDOW
              value: "30d"
            - name: POLL_INTERVAL_SECONDS
              value: "60"
            - name: LISTEN_PORT
              value: "8000"
          ports:
            - name: http
              containerPort: 8000
          volumeMounts:
            - name: script
              mountPath: /app
              readOnly: true
          resources:
            requests:
              cpu: 50m
              memory: 64Mi
            limits:
              cpu: 250m
              memory: 256Mi
      volumes:
        - name: script
          configMap:
            name: postmark-exporter-script
monitoring: add Postmark bounce exporter 2026-01-05 21:44:29 -03:00			`# services/monitoring/postmark-exporter-deployment.yaml`
			`apiVersion: apps/v1`
			`kind: Deployment`
			`metadata:`
			`name: postmark-exporter`
			`spec:`
			`replicas: 1`
			`selector:`
			`matchLabels:`
			`app: postmark-exporter`
			`template:`
			`metadata:`
			`labels:`
			`app: postmark-exporter`
			`annotations:`
			`prometheus.io/scrape: "true"`
			`prometheus.io/port: "8000"`
			`prometheus.io/path: "/metrics"`
vault: inject monitoring exporter and health jobs 2026-01-14 14:49:41 -03:00			`vault.hashicorp.com/agent-inject: "true"`
			`vault.hashicorp.com/role: "monitoring"`
core: fix postmark DNS and time sync 2026-01-19 23:45:31 -03:00			`vault.hashicorp.com/agent-inject-secret-postmark-env: "kv/data/atlas/shared/postmark-relay"`
vault: inject monitoring exporter and health jobs 2026-01-14 14:49:41 -03:00			`vault.hashicorp.com/agent-inject-template-postmark-env: \|`
core: fix postmark DNS and time sync 2026-01-19 23:45:31 -03:00			`{{- with secret "kv/data/atlas/shared/postmark-relay" -}}`
monitoring: add testing dashboard and switch postmark apikey 2026-01-18 09:21:33 -03:00			`export POSTMARK_SERVER_TOKEN="{{ index .Data.data "apikey" }}"`
			`export POSTMARK_SERVER_TOKEN_FALLBACK="{{ index .Data.data "apikey" }}"`
vault: inject monitoring exporter and health jobs 2026-01-14 14:49:41 -03:00			`{{- if index .Data.data "sending-limit" }}`
			`export POSTMARK_SENDING_LIMIT="{{ index .Data.data "sending-limit" }}"`
			`{{- end }}`
			`{{- end -}}`
monitoring: restart postmark exporter 2026-01-05 22:07:52 -03:00			`bstein.dev/restarted-at: "2026-01-06T00:00:00Z"`
monitoring: add Postmark bounce exporter 2026-01-05 21:44:29 -03:00			`spec:`
monitoring: keep postmark exporter off titan-22 2026-01-18 11:52:36 -03:00			`affinity:`
			`nodeAffinity:`
			`requiredDuringSchedulingIgnoredDuringExecution:`
			`nodeSelectorTerms:`
			`- matchExpressions:`
			`- key: kubernetes.io/hostname`
			`operator: NotIn`
			`values:`
			`- titan-22`
vault: inject monitoring exporter and health jobs 2026-01-14 14:49:41 -03:00			`serviceAccountName: monitoring-vault-sync`
monitoring: add Postmark bounce exporter 2026-01-05 21:44:29 -03:00			`containers:`
			`- name: exporter`
			`image: python:3.12-alpine`
			`imagePullPolicy: IfNotPresent`
			`command: ["/bin/sh", "-c"]`
			`args:`
			`- \|`
			`set -euo pipefail`
vault: inject monitoring exporter and health jobs 2026-01-14 14:49:41 -03:00			`. /vault/secrets/postmark-env`
monitoring: add Postmark bounce exporter 2026-01-05 21:44:29 -03:00			`pip install --no-cache-dir prometheus-client==0.22.1 requests==2.32.3`
			`exec python /app/monitoring_postmark_exporter.py`
			`env:`
monitoring: refine mail stats and add send-limit usage 2026-01-06 02:06:20 -03:00			`- name: POSTMARK_SENDING_LIMIT_WINDOW`
			`value: "30d"`
monitoring: add Postmark bounce exporter 2026-01-05 21:44:29 -03:00			`- name: POLL_INTERVAL_SECONDS`
			`value: "60"`
			`- name: LISTEN_PORT`
			`value: "8000"`
			`ports:`
			`- name: http`
			`containerPort: 8000`
			`volumeMounts:`
			`- name: script`
			`mountPath: /app`
			`readOnly: true`
			`resources:`
			`requests:`
			`cpu: 50m`
			`memory: 64Mi`
			`limits:`
			`cpu: 250m`
			`memory: 256Mi`
			`volumes:`
			`- name: script`
			`configMap:`
			`name: postmark-exporter-script`