nessi
834c5b42b0
Improved the layout and styling of the TargetsPage by adding structured HTML elements and new CSS classes. Key changes include adding headers to the target creation form, styling buttons with primary and danger classes, and improving the table hover effects. These updates enhance readability, usability, and visual consistency.
NexaPG - PostgreSQL Monitoring Stack
Docker-basierte Monitoring-Loesung fuer mehrere PostgreSQL-Targets mit FastAPI + React.
Features
- Multi-target PostgreSQL Monitoring (remote)
- Polling Collector fuer:
pg_stat_databasepg_stat_activitypg_stat_bgwriterpg_lockspg_stat_statements(falls auf Target aktiviert)
- Core-DB fuer:
- User/Auth/RBAC (
admin,operator,viewer) - Targets (Credentials verschluesselt via Fernet)
- Metrics / Query Stats
- Audit Logs
- User/Auth/RBAC (
- Auth mit JWT Access/Refresh Tokens
- FastAPI + SQLAlchemy async + Alembic
- React (Vite) Frontend mit:
- Login/Logout
- Dashboard
- Target Detail mit Charts
- Query Insights
- Admin User Management
- Health Endpoints:
/api/v1/healthz/api/v1/readyz
Struktur
backend/FastAPI Appfrontend/React (Vite) Appops/Scriptsdocker-compose.ymlStack.env.exampleKonfigurationsvorlage
Schnellstart
- Env-Datei erstellen:
cp .env.example .env
- Fernet Key setzen:
python -c "from cryptography.fernet import Fernet; print(Fernet.generate_key().decode())"
Wert in .env bei ENCRYPTION_KEY eintragen.
- Stack starten:
make up
- URLs:
- Frontend:
http://localhost:5173 - Backend API:
http://localhost:8000/api/v1 - OpenAPI:
http://localhost:8000/docs
Default Admin (aus .env):
- Email:
admin@example.com - Passwort:
ChangeMe123!
Commands
make up
make down
make logs
make migrate
API (Minimum)
POST /api/v1/auth/loginPOST /api/v1/auth/refreshPOST /api/v1/auth/logoutGET /api/v1/me- CRUD:
GET/POST/PUT/DELETE /api/v1/targets GET /api/v1/targets/{id}/metrics?from=&to=&metric=GET /api/v1/targets/{id}/locksGET /api/v1/targets/{id}/activityGET /api/v1/targets/{id}/top-queries- Admin-only CRUD users:
GET /api/v1/admin/usersPOST /api/v1/admin/usersPUT /api/v1/admin/users/{user_id}DELETE /api/v1/admin/users/{user_id}
Security Notes
- Keine Secrets hardcoded
- Passwoerter als Argon2 Hash
- Target-Credentials verschluesselt (Fernet)
- CORS via Env steuerbar
- Audit Logs fuer Login / Logout / Target- und User-Aenderungen
- Rate limiting: Platzhalter (kann spaeter middleware-basiert ergaenzt werden)
Wichtiger Hinweis zu pg_stat_statements
Auf jedem monitored Target muss pg_stat_statements aktiviert sein, sonst bleiben Query Insights leer.
Beispiel:
CREATE EXTENSION IF NOT EXISTS pg_stat_statements;