add Nginx getting-started catalog component for setting up fluent-bit… #166
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
… agent for collecting, transforming and shipping Nginx access logs into opensearch Signed-off-by: YANGDB <yang.db.dev@gmail.com>
YANG-DB
requested review from
bowenlan-amzn,
khushbr,
praveensameneni,
ananzh,
Swiddis and
AMoo-Miki
as code owners
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Swiddis
requested changes
Jul 2, 2024
| { | ||
| "name": "Fluent-Bit Log Converter", | ||
| "label": "Log Parsing", | ||
| "info": "<info URL>", |
There was a problem hiding this comment.
Are these supposed to still be placeholders?
There was a problem hiding this comment.
thanks - moved into draft util all the comments / questions are resolved
| ], | ||
| "liveDemo": { | ||
| "command": "docker-compose up -d", | ||
| "path": "<docker-compose-url>" |
There was a problem hiding this comment.
thanks - moved into draft util all the comments / questions are resolved
integrations/observability/nginx/getting-started/opensearch_dashboards.yml
Outdated
Show resolved
Hide resolved
| "label": "Log Parsing", | ||
| "info": "<info URL>", | ||
| "description": "Setup Fluent-Bit logs converter lua script config file converting Nginx access log into Simple schema format", | ||
| "content": "local hexCharset = \"0123456789abcdef\"\nlocal function randHex(length)\n if length > 0 then\n local index = math.random(1, #hexCharset)\n return randHex(length - 1) .. hexCharset:sub(index, index)\n else\n return \"\"\n end\nend\n\nlocal function format_apache(c)\n return string.format(\n \"%s - %s [%s] \\\"%s %s HTTP/1.1\\\" %s %s\",\n c.host,\n c.user,\n os.date(\"%d/%b/%Y:%H:%M:%S %z\"),\n c.method,\n c.path,\n c.code,\n c.size\n )\nend\n\nlocal function format_nginx(c)\n return string.format(\n \"%s %s %s [%s] \\\"%s %s HTTP/1.1\\\" %s %s \\\"%s\\\" \\\"%s\\\"\",\n c.remote,\n c.host,\n c.user,\n os.date(\"%d/%b/%Y:%H:%M:%S %z\"),\n c.method,\n c.path,\n c.code,\n c.size,\n c.referer,\n c.agent\n )\nend\n\nlocal formats = {\n [\"apache.access\"] = format_apache,\n [\"nginx.access\"] = format_nginx\n}\n\nfunction convert_to_otel(tag, timestamp, record)\n local data = {\n traceId=randHex(32),\n spanId=randHex(16),\n [\"@timestamp\"]=os.date(\"!%Y-%m-%dT%H:%M:%S.000Z\"),\n observedTimestamp=os.date(\"!%Y-%m-%dT%H:%M:%S.000Z\"),\n body=formats[tag](record),\n attributes={\n data_stream={\n dataset=tag,\n namespace=\"production\",\n type=\"logs\"\n }\n },\n event={\n category=\"web\",\n name=\"access\",\n domain=tag,\n kind=\"event\",\n result=\"success\",\n type=\"access\"\n },\n http={\n request={\n method=record.method\n },\n response={\n bytes=tonumber(record.size),\n status_code=tonumber(record.code)\n },\n flavor=\"1.1\",\n url=record.path\n },\n communication={\n source={\n address=\"127.0.0.1\",\n ip=record.remote\n }\n }\n }\n return 1, timestamp, data\nend\n" |
There was a problem hiding this comment.
I think it's better for content to be a file ref like what we have for the other long-form content in integrations. Makes the config file smaller and easier to read, and makes an easier editing experience.
There was a problem hiding this comment.
@Swiddis can u plz share an example for the above content ?
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
add getting started dashboard asset + markdown Signed-off-by: YANGDB <yang.db.dev@gmail.com>
add getting started dashboard asset + markdown Signed-off-by: YANGDB <yang.db.dev@gmail.com>
add getting started dashboard asset + markdown Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
YANG-DB
added
integration
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
- quickstart - connect to an existing collector Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
…on resource - getting started - getting_started.json - metadata - Getting-Started.md - markdown - sample.json - sample data Signed-off-by: YANGDB <yang.db.dev@gmail.com>
…on resource - getting started - getting_started.json - metadata - Getting-Started.md - markdown - data - sample data Signed-off-by: YANGDB <yang.db.dev@gmail.com>
…on resource - getting started - getting_started.json - metadata - Getting-Started.md - markdown - data - sample data Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Swiddis
reviewed
Jul 30, 2024
| @@ -44,6 +44,7 @@ | |||
| { "name": "logs", "version": "1.0.0" } | |||
| ], | |||
| "assets": [ | |||
| { "name": "getting-started-tutorial", "version": "1.0.0", "extension": "ndjson", "type": "savedObjectBundle", "workflows": ["dashboards"] }, | |||
There was a problem hiding this comment.
What is the intended flow to present this to the user? Making it a saved object bundle associated with the integration means that it won't be added to the cluster until after they set up the integration.
Swiddis
approved these changes
Jul 30, 2024
Signed-off-by: YANGDB <yang.db.dev@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
add Nginx getting-started catalog component for setting up fluent-bit agent for:
Also includes live docker compose sample to run for showcasing the instructions
The updated schema for the integration will contain an optional
getting-startedfield containing:Schema Fields :
type,content,input-paramsanddescription,info,input-paramsconsole-cmd,file-url,image,videofile-urlcase) or to additional documentation in other casesIssues Resolved
#165
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.