fluent-plugin-moogaiops 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: d3ae0568e4bf9b9678a1daca39e7dea95730df9b
+  data.tar.gz: b09c5048b93059361c78fba4acb86e0413ff522c
+SHA512:
+  metadata.gz: c43e78cf7ad52ab60c3dc56ccfcaaae40961912cce98890775f81b3c350ef1b0dd38627ac68b19021b41d9b69307941cd9e467bcae906a5ff4d2c52cfc65ffc3
+  data.tar.gz: b3d9a4727c1a11b142ab35c53e153c06299ca17f8817d64315a0b173aafa27524a2d6026186c65b51bcae20ba2876b754865e48f397809e1a9be3e8c293dc7ec

data/.gitignore

@@ -0,0 +1,11 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+/vendor/
+/*.gem

data/Gemfile

@@ -0,0 +1,5 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in fluent-plugin-moogaiops.gemspec
+gem 'fluentd', '~> 0.12.0'
+gemspec

data/LICENSE.txt

@@ -0,0 +1,23 @@
+The MIT License (MIT)
+
+Copyright (c) 2017 Moogsoft
+
+Moog AIOps is a trademark of Moogsoft Inc. All rights reserved.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,59 @@
+# fluent-plugin-moogaiops
+
+This GEM will add an output plugin for Moog AIOps.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'fluent-plugin-moogaiops'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install fluent-plugin-moogaiops
+
+## Usage
+
+Example matcher to add to your fulend.conf
+
+```
+<match system.** *.access.* error.**>
+  @type moogaiops
+  uri https://<YOUR MOOGAIOPS>.moogsoft.com/events/generic_generic1
+  auth <YOUR USER>:<YOUR PASSWORD>
+  sourcetype fluentd
+  location london
+  severity 3
+</match>
+```
+ *uri*
+ Is the published endpoint accepting fluent events see your integrations and select the fluent tile to install.
+
+ *auth*
+ Is the username and password provided by Moogaiops when you install the REST connector for fluent
+
+ *sourcetype*
+ Some text to define the manager attribute in the event
+
+ *location*
+ Some text to identify the agent_location in the events
+
+ *severity*
+ A default severity (0-5) for the events produced by this matcher
+
+The Gem will also add the **hostname** where the matcher is running and some other default information. The *tag* will be used to populate the **class** and **type**, all three are used in the signature.
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/moog-stephen/fluent-plugin-moogaiops.
+
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).

data/Rakefile

@@ -0,0 +1,2 @@
+require "bundler/gem_tasks"
+task :default => :spec

data/fluent-plugin-moogaiops.gemspec

@@ -0,0 +1,31 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+
+Gem::Specification.new do |spec|
+  spec.name          = "fluent-plugin-moogaiops"
+  spec.authors       = ["stephen"]
+  spec.email         = ["stephen@moogsoftcom"]
+
+  spec.summary       = %q{Send Fluentd output to the Moog AIOps REST LAM}
+  spec.description   = %q{Matcher (Output plugin) to send Fluentd events to the Moog AIOps REST LAM}
+  spec.homepage      = "https://github.com/moog-stephen/fluent-plugin-moogaiops"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files`.split($\)
+  spec.name          = "fluent-plugin-moogaiops"
+  spec.version       = '0.1.0'
+  spec.required_ruby_version = ">= 2.1.0"
+
+  spec.add_runtime_dependency "fluentd", [">= 0.12", "< 0.14"]
+  spec.add_runtime_dependency 'rest-client', "~> 2.0"
+  spec.add_runtime_dependency 'json', "~> 2.0"
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.bindir        = "exe"
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.14"
+  spec.add_development_dependency "rake", "~> 10.0"
+end

data/lib/fulent/plugin/out_moogaiops.rb

@@ -0,0 +1,153 @@
+require 'fluent/output'
+
+module Fluent
+  require 'rest-client'
+  require 'json'
+  
+  class MoogAIOpsOutput < BufferedOutput
+    # First, register the plugin. NAME is the name of this plugin
+    # and identifies the plugin in the configuration file.
+    Fluent::Plugin.register_output('moogaiops', self)
+
+    config_param :uri, :string, :default => 'http://localhost:8888'
+    config_param :auth, :string, :default => 'graze:graze', secret: true
+    config_param :source, :string, :default => '{TAG}'
+    config_param :sourcetype, :string, :default => 'fluentd'
+    config_param :location, :string, :default => 'local'
+    config_param :severity, :integer, :default => 1
+
+    # This method is called before starting.
+    # 'conf' is a Hash that includes configuration parameters.
+    # If the configuration is invalid, raise Fluent::ConfigError.
+    def configure(conf)
+      super
+
+      require 'socket'
+      @hostname = Socket.gethostname
+
+      # You can also refer raw parameter via conf[name].
+      @uri = conf['uri']
+      $log.debug "Config URI #{@uri}"
+      @manager = conf['sourcetype']
+
+      case @source
+      when '{TAG}'
+        @source_formatter = lambda { |tag| tag }
+      else
+        @source_formatter = lambda { |tag| @source.sub('{TAG}', tag) }
+      end
+
+      @formatter = lambda { |record|
+          record.to_json
+      }
+
+    end
+
+    # This method is called when starting.
+    # Open sockets or files here.
+    def start
+      super
+      $log.debug "initialized for moogaiops"
+    end
+
+    # This method is called when shutting down.
+    # Shutdown the thread and close sockets or files here.
+    def shutdown
+      super
+      $log.debug "shutdown from moogaiops"
+    end
+
+    # This method is called when an event reaches to Fluentd.
+    # Convert the event to a raw string.
+    def format(tag, time, record)
+      newrecord = {}
+
+      begin
+        if record['severity']
+          newrecord['severity'] = Integer(record['severity'])
+        else
+          newrecord['severity'] = @severity
+        end
+      rescue
+        newrecord['severity'] = @severity
+      end
+
+      newrecord['type'] = tag.to_s
+      newrecord['agent_time'] = time.to_s
+      newrecord['manager'] = @manager
+      newrecord['class'] = @source
+      newrecord['source'] = @hostname
+      newrecord['description'] = record['message']
+      newrecord['custom_info'] = record
+
+      newrecord.to_msgpack
+    end
+
+    def chunk_to_buffers(chunk)
+      buffers = []
+      buffer = {}
+      events = []
+    	chunk.msgpack_each do |event|
+        $log.debug "Buffering event = #{event}"
+    	  events << event
+    	end
+      buffer['events'] = events
+      $log.debug "Return buffer #{buffer}"
+      buffers << buffer
+      return buffers
+    end
+
+    # This method is called every flush interval. Write the buffer chunk
+    # to files or databases here.
+    # 'chunk' is a buffer chunk that includes multiple formatted
+    # events. You can use 'data = chunk.read' to get all events and
+    # 'chunk.open {|io| ... }' to get IO objects.
+    #
+    # NOTE! This method is called by internal thread, not Fluentd's main thread. So IO wait doesn't affect other plugins.
+    def write(chunk)
+      #data = chunk.read
+      #print data
+      #$log.debug "Data #{data}"
+
+      username, password = @auth.split(':')
+      $log.debug "#{username} : #{password}"
+
+      chunk_to_buffers(chunk).each do |buffer|
+
+        bufj = buffer.to_json
+        $log.debug "Buffer #{bufj}"
+
+        re = RestClient::Resource.new(@uri, {:user => username, :password => password,:verify_ssl => 0})
+
+        response = re.post bufj, :content_type => 'application/json'
+        $log.debug "POST #{@uri}"
+        jr = JSON.parse(response.body)
+        $log.debug "=> #{response.code} (#{response.body})"
+        if response.code == 200
+          if jr['success']
+            # success
+            log.info "200 Ok!"
+            break
+          else
+            $log.error "Error 200 returned with message #{response.body}"
+          end
+        elsif response.code.match(/^40/)
+          # user error
+          $log.error "#{uri}: #{response.code} \n#{response.body}"
+          break
+        else
+          # other errors. fluentd will retry processing on exception
+          # FIXME: this may duplicate logs when using multiple buffers
+          raise "#{uri}: #{response.body}"
+        end
+      end
+    end
+
+    ## Optionally, you can use chunk.msgpack_each to deserialize objects.
+    #def write(chunk)
+    #  chunk.msgpack_each {|(tag,time,record)|
+    #  }
+    #end
+
+  end
+end

metadata

@@ -0,0 +1,128 @@
+--- !ruby/object:Gem::Specification
+name: fluent-plugin-moogaiops
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- stephen
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2017-03-17 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: fluentd
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.12'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '0.14'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0.12'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '0.14'
+- !ruby/object:Gem::Dependency
+  name: rest-client
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.14'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.14'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+description: Matcher (Output plugin) to send Fluentd events to the Moog AIOps REST
+  LAM
+email:
+- stephen@moogsoftcom
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- fluent-plugin-moogaiops.gemspec
+- lib/fulent/plugin/out_moogaiops.rb
+homepage: https://github.com/moog-stephen/fluent-plugin-moogaiops
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.1.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: Send Fluentd output to the Moog AIOps REST LAM
+test_files: []