Vault: Add a 'sealed-status' gauge to telemetry

Created on 14 Dec 2017  路  5Comments  路  Source: hashicorp/vault

Feature Request:
Add a telemetry option to report current sealed status of the Vault instance.

I am running a Vault HA deployment in Kubernetes. Using a statsd_exporter side-car to collect metrics from each instance and expose them to Prometheus for monitoring.

With the vault.core.seal and vault.core.unseal metrics, I can perform calculations to get the vault status, until a vault instance restarts (since this is a 'seal' operation without a metric).

A new telemetry point that can just give the current sealedunsealed status as a gauge at vault.core.unsealed_status can be 0 when sealed (set at start-up and with any seal operation) and 1 after a successful unseal operation.

cormetric feature-request
Source
picture TimJones
👍13

Most helpful comment

+1 to this, related having a leadership status gauge would be similarly useful. Today I don't see a way to determine if the vault cluster has exactly 1 leader.

picture seanjfellows on 12 Feb 2018
👍6

All 5 comments

Or thinking about it another way, maybe on start-up a vault instance should emit the telemetry for seal operations and unseal operations at 0...

TimJones picture TimJones on 14 Dec 2017
👍1

+1 to this, related having a leadership status gauge would be similarly useful. Today I don't see a way to determine if the vault cluster has exactly 1 leader.

seanjfellows picture seanjfellows on 12 Feb 2018
👍6

+1 on adding sealed and leader info added to vault telemetry

richard-mauri picture richard-mauri on 23 Oct 2019

+1

anthosz picture anthosz on 5 Jan 2020

+1
What is the ETA?

jayshah11 picture jayshah11 on 10 Jun 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

frntn picture frntn  路  3Comments
trodemaster picture trodemaster  路  3Comments
dwdraju picture dwdraju  路  3Comments
singuliere picture singuliere  路  3Comments
weisinc picture weisinc  路  3Comments