Configuring github URL when enabling add-ons


I have some servers that are mandatorily not allowed to connect to the internet either directly or via a proxy. We have internal GitHub and Docker registry services and I have been able to pull all required images via the containerd registry mirrors.

I now need to enable prometheus and I can see that it tries to pull the repo from

[root@server1:current/]# microk8s enable prometheus
Addon dns is already enabled.
Fetching kube-prometheus version v0.8.0.
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (6) Could not resolve host:
[root@server1:current/]# pwd

I can see this is configured in a RO file here:

[root@server1:actions/]# ls -lah /var/lib/snapd/snap/microk8s/2399/actions/
-rwxr-xr-x. 1 root root 3.2K Aug 12 19:55 /var/lib/snapd/snap/microk8s/2399/actions/

I can see in /var/log/secure the curl command:

[root@server1:actions/]# grep curl /var/log/secure | tail -1
2021-08-24T10:32:58.928693+10:00 server1 sudo:     root : TTY=pts/0 ; PWD=/opt/apps/snap/microk8s/2399 ; USER=root ; ENV=LD_LIBRARY_PATH=/snap/microk8s/2399/lib:/snap/microk8s/2399/usr/lib:/snap/microk8s/2399/lib/x86_64-linux-gnu:/snap/microk8s/2399/usr/lib/x86_64-linux-gnu ; COMMAND=/snap/microk8s/2399/usr/bin/curl --cacert /snap/core18/current/etc/ssl/certs/ca-certificates.crt -L -o /var/snap/microk8s/2399/tmp/kube-prometheus/kube-prometheus.tar.gz

I did try to manually put the file into /var/snap/microk8s/2399/tmp/kube-prometheus/kube-prometheus.tar.gz and then enabling, but that didn’t see to help.

Is there any way to override the URL it pulls from or other way to manually install prometheus in an air-gapped scenario?

Right now, there’s no way to do that.
The addons are there to easily add them into the cluster. If the version that comes with the addon doesn’t fit your need, you can go to the upstream repo.

I managed to figure out that manually pre downloading and manually running the install steps in the enable script (tar, mv) and finally running the microk8s enable step again manages to enable this.