fluent-plugin-druid-log 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: eaeeb7452e8a97475581d23b54cc06261c5d75077a73ab01c23a1488d0d643eb
+  data.tar.gz: a6ae4ea44c456ee0111a214bafc4b7194cdb2b60da97e5c17efdbfde00f3b1af
+SHA512:
+  metadata.gz: 594d6853d057efd9059429465702b35c7804fd94e833995c8c2d8ad7f756957de3c91fa31744a4fc6c4ce8ce4e19d1ad75cee9cf7b0a10423af2aae1de1a39a3
+  data.tar.gz: d8ba20909a2b005b6b9e9835f99a5a47079219106aeb1daa5bfc8b48d2b3374bdec933df85cbd2e1c2c4f7605ba7ffcc4419453257e3274912040f200c90627b

data/.rubocop.yml

@@ -0,0 +1,37 @@
+---
+
+plugins:
+  - rubocop-rake
+
+AllCops:
+  TargetRubyVersion: 3.2
+  NewCops: enable
+  Exclude: []
+
+Gemspec/DevelopmentDependencies:
+  EnforcedStyle: gemspec
+
+Metrics/AbcSize:
+  Max: 20
+
+Metrics/BlockLength:
+  Exclude:
+    - fluent-plugin-druid-log.gemspec
+    - test/**/*.rb
+
+Metrics/ClassLength:
+  Exclude:
+    - test/**/*.rb
+
+Metrics/MethodLength:
+  Max: 20
+
+Metrics/ParameterLists:
+  Exclude:
+    - test/helper.rb
+
+Naming/MethodParameterName:
+  Exclude: []
+
+Style/Documentation:
+  Enabled: false

data/README.md

@@ -0,0 +1,62 @@
+# fluent-plugin-druid-log
+
+[Fluentd](https://fluentd.org/) plugin for Apache Druid.
+
+## plugins
+
+### format-druid-audit-log-1 (filter)
+
+Filter plugin to reformat Druid audit log
+
+Example:
+
+``` text
+<source>
+  @type tail
+  path /.../log/audit.log
+  pos_file /.../audit_log.pos
+  read_from_head true
+  tag druid_audit_log
+
+  <parse>
+    @type regexp
+	expression /^(?<timestamp>[^\t]+)\t(?<remote_addr>[^\t]*)\t{1,2}(?<query_result>[^\t]+)\t(?<raw_query>.*)$/
+	time_key timestamp
+	keep_time_key true
+  </parse>
+</source>
+
+<filter druid_audit_log>
+  @type format_druid_audit_log_1
+</filter>
+
+<match druid_audit_log>
+  @type stdout
+</match>
+```
+
+## Installation
+
+### RubyGems
+
+```
+$ gem install fluent-plugin-druid-log
+```
+
+### Bundler
+
+Add following line to your Gemfile:
+
+```ruby
+gem "fluent-plugin-druid-log"
+```
+
+And then execute:
+
+```
+$ bundle
+```
+
+## Copyright
+
+* Copyright(c) 2026- Thomas Tych

data/Rakefile

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+
+require 'bundler'
+Bundler::GemHelper.install_tasks
+
+require 'rake/testtask'
+
+Rake::TestTask.new(:test) do |t|
+  t.libs.push('lib', 'test')
+  t.test_files = FileList['test/**/test_*.rb', 'test/**/*_test.rb']
+  t.verbose = true
+  t.warning = true
+end
+
+require 'rubocop/rake_task'
+RuboCop::RakeTask.new
+
+require 'bump/tasks'
+
+task default: %i[test rubocop]

data/lib/fluent/plugin/filter_format_druid_audit_log_1.rb

@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+require 'fluent/plugin/filter'
+
+module Fluent
+  module Plugin
+    class FormatDruidAuditLog1Filter < Fluent::Plugin::Filter
+      NAME = 'format_druid_audit_log_1'
+      Fluent::Plugin.register_filter(NAME, self)
+
+      helpers :event_emitter, :timer
+
+      DEFAULT_QUERY_KEY = 'query'
+
+      desc 'Query key'
+      config_param :query_key, :string, default: DEFAULT_QUERY_KEY
+
+      def configure(conf)
+        super
+
+        return unless query_key.nil?
+
+        raise Fluent::ConfigError, 'query_key should be specified'
+      end
+
+      def multi_workers_ready?
+        true
+      end
+
+      def filter(_tag, _time, record)
+        query_type = guess_query_type(record)
+
+        new_record = record.except(query_key)
+        new_record['query_type'] = query_type
+        new_record["#{query_type}_query".downcase] = record[query_key]
+        new_record
+      end
+
+      def guess_query_type(record)
+        record.dig(query_key,
+                   'queryType') || (record.dig('query_result',
+                                               'sqlQuery/time') && 'sql') || (record.dig(query_key,
+                                                                                         'query') && 'sql') || 'unknown'
+      end
+    end
+  end
+end

metadata

@@ -0,0 +1,236 @@
+--- !ruby/object:Gem::Specification
+name: fluent-plugin-druid-log
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Thomas Tych
+bindir: bin
+cert_chain: []
+date: 1980-01-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bump
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.10.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.10.0
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.0.13
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.0.13
+- !ruby/object:Gem::Dependency
+  name: byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+- !ruby/object:Gem::Dependency
+  name: mocha
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 13.4.2
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 13.4.2
+- !ruby/object:Gem::Dependency
+  name: reek
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.5'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.5'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.87'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.87'
+- !ruby/object:Gem::Dependency
+  name: rubocop-rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.7.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.7.1
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.22'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.22'
+- !ruby/object:Gem::Dependency
+  name: test-unit
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.7'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.7.8
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.7'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.7.8
+- !ruby/object:Gem::Dependency
+  name: timecop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.9'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.9'
+- !ruby/object:Gem::Dependency
+  name: fluentd
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.14.10
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.14.10
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '2'
+email:
+- thomas.tych@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".rubocop.yml"
+- README.md
+- Rakefile
+- lib/fluent/plugin/filter_format_druid_audit_log_1.rb
+homepage: https://gitlab.com/ttych/fluent-plugin-druid-log
+licenses:
+- Apache-2.0
+metadata:
+  rubygems_mfa_required: 'true'
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 3.2.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 4.0.13
+specification_version: 4
+summary: fluentd plugins for Apache Druid
+test_files: []