Zabbix role fixes #61

Merged

mconway merged 5 commits from zabbix_fixes into main 2026-05-16 19:57:20 +00:00

Conversation 0 Commits 5 Files changed 7 +32 -88

mconway commented 2026-05-16 19:51:48 +00:00

Owner

Copy link

Summary

• Fix SAML user directory condition (or False) that prevented it ever running (closes #56)
• Fix Matrix media type macro interpolation — username was a literal string not a variable (closes #57)
• Set static pod hostname to suppress years-old System name changed noise on Zabbix server restarts (closes #59)
• Remove httpapi connection vars from vars/main.yml — they were bleeding into subsequent roles, causing postgresql-backup to connect to zabbix.conways.info instead of the k3s node (closes #60)
• Reset connection after httpapi tasks as a secondary guard against var bleed
• Comment out legacy ingress host discovery in zabbix-sites.yml — superseded by zabbix_ingress_monitor
• Add postgresql_setup, postgresql_db, and postgresql_backup tags to postgresql-backup tasks for selective skipping during testing

Test plan

• Run ansible-playbook playbook.yml --limit k3s_server --tags zabbix and confirm no SSL or connection errors
• Confirm subsequent roles (e.g. k8s-alerta) run successfully in the same play
• Confirm Zabbix SAML user directory is reconciled
• Confirm Matrix alert user is updated correctly

## Summary - Fix SAML user directory condition (`or False`) that prevented it ever running (closes #56) - Fix Matrix media type macro interpolation — username was a literal string not a variable (closes #57) - Set static pod hostname to suppress years-old `System name changed` noise on Zabbix server restarts (closes #59) - Remove httpapi connection vars from `vars/main.yml` — they were bleeding into subsequent roles, causing `postgresql-backup` to connect to `zabbix.conways.info` instead of the k3s node (closes #60) - Reset connection after httpapi tasks as a secondary guard against var bleed - Comment out legacy ingress host discovery in `zabbix-sites.yml` — superseded by `zabbix_ingress_monitor` - Add `postgresql_setup`, `postgresql_db`, and `postgresql_backup` tags to `postgresql-backup` tasks for selective skipping during testing ## Test plan - [ ] Run `ansible-playbook playbook.yml --limit k3s_server --tags zabbix` and confirm no SSL or connection errors - [ ] Confirm subsequent roles (e.g. k8s-alerta) run successfully in the same play - [ ] Confirm Zabbix SAML user directory is reconciled - [ ] Confirm Matrix alert user is updated correctly

mconway added 5 commits 2026-05-16 19:51:49 +00:00

fix: SAML user directory condition always evaluates false ... 8dbd8998d1

The `or False` short-circuited the when condition, preventing the
Authentik SAML user directory from ever being created via Ansible.

Closes #56

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

fix: correct Matrix media type macro interpolation ... 9a31ed1243

username was missing Jinja2 braces entirely, sending a literal
string to the Zabbix API instead of the variable value.

Closes #57

fix: set static pod hostname to suppress System name changed noise ... 37bfbe5f63

Zabbix server pod restarts in K8s result in a new pod name being
used as the system hostname, firing an Info trigger continuously
since 2023. Setting a fixed hostname via extraPodSpecs ensures
system.hostname is always 'zabbix-server' across restarts.

Closes #59

fix: reset connection after httpapi tasks to prevent var bleed ... 8ba1787725

httpapi connection vars (ansible_connection, ansible_host) were
leaking into subsequent roles in the same play, causing postgresql-
backup to connect to zabbix.conways.info instead of the k3s node.

Closes #60

fix zabbix vars overriding others ... aed92066eb

Add tags to postgres to allow skipping

mconway merged commit b6d58ca851 into main 2026-05-16 19:57:20 +00:00

mconway referenced this pull request from a commit 2026-05-16 19:57:23 +00:00

Merge pull request 'Zabbix role fixes' (#61) from zabbix_fixes into main

mconway deleted branch zabbix_fixes 2026-05-16 19:57:34 +00:00

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

mconway/Homelab!61

No description provided.