Thanos query instances are proxied by apache on the machine it is running on. At the moment the way to access the native interface (e.g. for easier data/query exploration) is through an ssh tunnel (e.g. ssh thanos-fe1001.eqiad.wmnet -L8000:localhost:80 and then http://localhost:8000) but it'd be more convenient to expose the web interface behind frontend layer and SSO instead.
- Setup apache SSO auth for NDA access
- Setup external DNS names
- Setup HTTP routing