PMM Server lets you visually interact with API resources representing all objects within PMM. You can browse the API using the Swagger UI, accessible at the
/swagger/ endpoint URL:
Clicking an object lets you examine objects and execute requests on them:
The objects visible are nodes, services, and agents:
A Node represents a bare metal server, a virtual machine, a Docker container, or a more specific type such as an Amazon RDS Node. A node runs zero or more Services and Agents, and has zero or more Agents providing insights for it.
A Service represents something useful running on the Node: Amazon Aurora MySQL, MySQL, MongoDB, etc. It runs on zero (Amazon Aurora Serverless), single (MySQL), or several (Percona XtraDB Cluster) Nodes. It also has zero or more Agents providing insights for it.
An Agent represents something that runs on the Node which is not useful in itself but instead provides insights (metrics, query performance data, etc.) about Nodes and/or Services. An agent always runs on the single Node (except External Exporters), and provides insights for zero or more Services and Nodes.
Nodes, Services, and Agents have Types which define specific their properties, and their specific logic.
Nodes and Services are external by nature – we do not manage them (create, destroy), but merely maintain a list of them (add to inventory, remove from inventory) in
pmm-managed. Most Agents are started and stopped by
pmm-agent. One exception is the External Exporter Type which is started externally.
API Keys and authentication
API keys are used to control access to the PMM server components and resources. With an API key, you are authenticated to the PMM server, have access to PMM server components and resources, and perform various actions on them. You can use API keys as a replacement for basic authentication.
Generate API keys
PMM uses the Grafana API keys for authentication. Following are the steps to generate the API keys:
- Login to PMM.
- From the side menu, click Configuration → API keys.
- On the Configuration page, click Add API Key.
- Add API key dialog box opens.
Enter the following to generate an API key:
- key name (you can give any desired name)
- Select the Role from the drop-down
- Enter a value in the Time to live text box (hover on the tooltip for more information).
- Click Add.
API Key Created window displays your newly created key. Make sure to copy your key and keep it secure.
You can authenticate your request using the HTTPS header.
--insecure parameter to force cURL to ignore invalid and self-signed SSL certificate errors. The option will skip the SSL verification process, and you can bypass any SSL errors while still having SSL-encrypted communication. However, using the
--insecure parameter is not recommended. Although the data transfer is encrypted, it is not entirely secure. For enhanced security of your PMM installation, you need valid SSL certificates. For information on validating SSL certificates, refer to: SSL certificates.
curl -H "Authorization: Bearer <api_key>" https://127.0.0.1/v1/version
Use an API key in basic auth
You can pass the API key into a REST API call as a query parameter in the following format. Replace
API_KEY with your API key.
curl -X GET https://api_key:API_KEY@localhost/v1/version