fluent-plugin-papertrail 0.2.4 → 0.2.5.pre.dev

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 3413dd7623c0aab24484393559a57199331c9830
-  data.tar.gz: 0f21d2987c62bc31dd38c35bcec83dcce3bc6821
+  metadata.gz: 297b4941b70100a4be1be6fb5e35f14263553202
+  data.tar.gz: 80fccb4690f183f69aabc9da7a793fbbe357e19d
 SHA512:
-  metadata.gz: f31eab178bfbed278862bbc68e18f2493e1fc9ab60b84a8f2dbb67ed4a3f8a0b74cb1587c5111cae65ebc14ad9d351731a37eb86178ab06ba366402d41ef7156
-  data.tar.gz: 33eec86f6cbee0ff4f0bdc91c41028f3d3371aece5b71c6b82d8dcfc8db9c61e8248d0556f692e347c05055e4ee77976bcea9631bc91e987e5a68e24d647b519
+  metadata.gz: 4ed8cae9ae77236c3c64d3f4537e2a5274a67050bcf5478a5d60a90a0ac9cc795cb54c79936eb5ec0a6459c1825a8ff5fe2981e1ac9fbd1f482b1f7f9545ccea
+  data.tar.gz: 9a575ad74e1759185008d11196d712f010f954ba9467ea2829668c461b712790fc99cc4c7f0d439eb23a5f18f2cfff96e7bb3ea24c5db8444bfd12160e223a4f

data/Makefile

@@ -10,7 +10,3 @@ release: bundle
 	rm -rf ${REPO_NAME}-*.gem
 	bundle exec gem build ${REPO_NAME}.gemspec
 	bundle exec gem push ${REPO_NAME}-*.gem
-
-release-docker:
-	cd docker; docker build -t quay.io/solarwinds/fluentd-kubernetes:$(TAG) .
-	docker push quay.io/solarwinds/fluentd-kubernetes:$(TAG)

data/README.md

@@ -1,10 +1,10 @@
 # Fluent::Plugin::Papertrail
 
-[![Gem Version](https://badge.fury.io/rb/fluent-plugin-papertrail.svg)](https://badge.fury.io/rb/fluent-plugin-papertrail) [![Docker Repository on Quay](https://quay.io/repository/solarwinds/fluentd-kubernetes/status "Docker Repository on Quay")](https://quay.io/repository/solarwinds/fluentd-kubernetes) [![CircleCI](https://circleci.com/gh/solarwinds/fluent-plugin-papertrail/tree/master.svg?style=shield)](https://circleci.com/gh/solarwinds/fluent-plugin-papertrail/tree/master)
+[![Gem Version](https://badge.fury.io/rb/fluent-plugin-papertrail.svg)](https://badge.fury.io/rb/fluent-plugin-papertrail) [![CircleCI](https://circleci.com/gh/solarwinds/fluent-plugin-papertrail/tree/master.svg?style=shield)](https://circleci.com/gh/solarwinds/fluent-plugin-papertrail/tree/master)
 
 ## Description
 
-This repository contains the Fluentd Papertrail Output Plugin and the Docker and Kubernetes assets for deploying that combined Fluentd, Papertrail, Kubernetes log aggregation toolset to your cluster.
+This repository contains the Fluentd Papertrail Output Plugin.
 
 ## Installation
 
@@ -42,7 +42,7 @@ This plugin expects the following fields to be set for each Fluent record:
     hostname  The source hostname for papertrail logging
 ```
 
-The following example is a `record_transformer` filter, from the [Kubernetes assets](docker/conf/kubernetes.conf) in this repo, that is used along with the [fluent-plugin-kubernetes_metadata_filter](https://github.com/fabric8io/fluent-plugin-kubernetes_metadata_filter) to populate the required fields for our plugin:
+The following example is a `record_transformer` filter, from the Kubernetes assets [in the Solarwinds fluentd-deployment repo](https://github.com/solarwinds/fluentd-deployment/blob/master/docker/conf/kubernetes.conf), that is used along with the [fluent-plugin-kubernetes_metadata_filter](https://github.com/fabric8io/fluent-plugin-kubernetes_metadata_filter) to populate the required fields for our plugin:
 ```yaml
 <filter kubernetes.**>
   type kubernetes_metadata
@@ -81,21 +81,9 @@ If you want to change any of these parameters simply add them to a match stanza.
 </match>
 ```
 
-## Kubernetes
+## Kubernetes Annotations
 
-This repo includes a Kubernetes DaemonSet and accompanying Docker container which will stream all of your Kubernetes logs, containers and services, to Papertrail.
-
-To deploy this plugin as a DaemonSet to your Kubernetes cluster, just adjust the `FLUENT_*` environment variables in `kubernetes/fluentd-daemonset-papertrail.yaml` and push it to your cluster with:
-
-```
-kubectl apply -f kubernetes/fluentd-daemonset-papertrail.yaml
-```
-
-The Dockerfile that generates [the image used in this DaemonSet](https://quay.io/repository/solarwinds/fluentd-kubernetes), can be found at `docker/Dockerfile`.
-
-### Annotations
-
-You can redirect logs to alternate Papertrail destinations by adding annotations to your Pods or Namespaces:
+If you're running this plugin in Kubernetes with the kubernetes_metadata_filter plugin enabled you can redirect logs to alternate Papertrail destinations by adding annotations to your Pods or Namespaces:
 
 ```
 solarwinds.io/papertrail_host: 'logs0.papertrailapp.com'
@@ -104,21 +92,6 @@ solarwinds.io/papertrail_port: '12345'
 
 If both the Pod and Namespace have annotations for any running Pod, the Pod's annotation is used.
 
-### Audit Logs
-
-If you'd like to redirect Kubernetes API Server Audit logs to a seperate Papertrail destination, add the following to your `fluent.conf`:
-```
-<match kube-apiserver-audit>
-    type papertrail
-    num_threads 4
-
-    papertrail_host "#{ENV['FLUENT_PAPERTRAIL_AUDIT_HOST']}"
-    papertrail_port "#{ENV['FLUENT_PAPERTRAIL_AUDIT_PORT']}"
-</match>
-```
-
-This requires you to configure an [audit policy file](https://kubernetes.io/docs/tasks/debug-application-cluster/audit/) on your cluster.
-
 ## Development
 
 This plugin is targeting Ruby 2.4 and Fluentd v1.0, although it should work with older versions of both.
@@ -136,10 +109,6 @@ To release a new version, update the version number in the [GemSpec](fluent-plug
 
 `make release`
 
-### Release in [Quay.io](https://quay.io/repository/solarwinds/fluentd-kubernetes)
-
-`make release-docker TAG=$(VERSION)`
-
 ## Contributing
 
 Bug reports and pull requests are welcome on GitHub at: https://github.com/solarwinds/fluent-plugin-papertrail

data/fluent-plugin-papertrail.gemspec

@@ -4,7 +4,7 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 
 Gem::Specification.new do |spec|
   spec.name          = "fluent-plugin-papertrail"
-  spec.version       = "0.2.4"
+  spec.version       = "0.2.5-dev"
   spec.authors       = ["Jonathan Lozinski", "Alex Ouzounis", "Chris Rust"]
   spec.email         = ["jonathan.lozinski@solarwinds.com", "alex.ouzounis@solarwinds.com", "chris.rust@solarwinds.com"]
 

data/lib/fluent/plugin/out_papertrail.rb

@@ -12,10 +12,14 @@ module Fluent
     config_param :default_hostname, :string, default: 'unidentified'
     # overriding default flush_interval (60 sec) from Fluent::BufferedOutput
     config_param :flush_interval, :time, default: 1
+    config_param :discard_unannotated_pod_logs, :bool, default: false
 
     # register as 'papertrail' fluent plugin
     Fluent::Plugin.register_output('papertrail', self)
 
+    # declare const string for nullifying token if we decide to discard records
+    DISCARD_STRING = 'DISCARD'
+
     def configure(conf)
       super
       # create initial sockets hash and socket based on config param
@@ -33,8 +37,10 @@ module Fluent
     def write(chunk)
       chunk.msgpack_each {|(tag, time, record)|
         socket_key = pick_socket(record)
-        packet = create_packet(tag, time, record)
-        send_to_papertrail(packet, socket_key)
+        unless socket_key.eql? "#{DISCARD_STRING}:#{DISCARD_STRING}"
+          packet = create_packet(tag, time, record)
+          send_to_papertrail(packet, socket_key)
+        end
       }
     end
 
@@ -78,6 +84,10 @@ module Fluent
             record.dig('kubernetes', 'namespace_annotations', 'solarwinds_io/papertrail_port')
         host = record['kubernetes']['namespace_annotations']['solarwinds_io/papertrail_host']
         port = record['kubernetes']['namespace_annotations']['solarwinds_io/papertrail_port']
+      # else if it is a kubernetes log and we're discarding unannotated logs
+      elsif record.dig('kubernetes') && @discard_unannotated_pod_logs
+        host = DISCARD_STRING
+        port = DISCARD_STRING
       # else use pre-configured destination
       else
         host = @papertrail_host
@@ -92,7 +102,6 @@ module Fluent
     def send_to_papertrail(packet, socket_key)
       if @sockets[socket_key].nil?
         err_msg = "Unable to create socket with #{socket_key}"
-        log.error err_msg
         raise SocketFailureError, err_msg
       else
         begin
@@ -100,7 +109,6 @@ module Fluent
           @sockets[socket_key].puts packet.assemble
         rescue => e
           err_msg = "Error writing to #{socket_key}: #{e}"
-          log.error err_msg
           # socket failed, reset to nil to recreate for the next write
           @sockets[socket_key] = nil
           raise SocketFailureError, err_msg, e.backtrace

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: fluent-plugin-papertrail
 version: !ruby/object:Gem::Version
-  version: 0.2.4
+  version: 0.2.5.pre.dev
 platform: ruby
 authors:
 - Jonathan Lozinski
@@ -10,7 +10,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2018-05-09 00:00:00.000000000 Z
+date: 2018-07-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: fluentd
@@ -132,13 +132,7 @@ files:
 - Makefile
 - README.md
 - Rakefile
-- docker/Dockerfile
-- docker/conf/fluent.conf
-- docker/conf/kubernetes.conf
-- docker/conf/systemd.conf
-- docker/plugins/parser_kubernetes.rb
 - fluent-plugin-papertrail.gemspec
-- kubernetes/fluentd-daemonset-papertrail.yaml
 - lib/fluent/plugin/out_papertrail.rb
 homepage: https://github.com/solarwinds/fluent-plugin-papertrail
 licenses:
@@ -155,9 +149,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ">"
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
 rubyforge_project: 
 rubygems_version: 2.5.2.2

data/docker/Dockerfile

@@ -1,45 +0,0 @@
-FROM fluent/fluentd:v1.1.1-debian
-
-USER root
-WORKDIR /home/fluent
-ENV PATH /home/fluent/.gem/ruby/2.3.0/bin:$PATH
-ENV BUILDDEPS="sudo make gcc g++ libc-dev ruby-dev libffi-dev"
-
-RUN apt-get update \
-    && apt-get upgrade -y \
-    && apt-get install -y --no-install-recommends \
-    $BUILDDEPS
-
-RUN echo 'gem: --no-document' >> /etc/gemrc \
-    && gem install fluent-plugin-systemd -v 0.3.1 \
-    && gem install fluent-plugin-rewrite-tag-filter -v 2.0.2 \
-    && gem install fluent-plugin-papertrail -v 0.2.3 \
-    && gem install fluent-plugin-loggly-anno -v 0.0.2 \
-    && gem install fluent-plugin-kubernetes_metadata_input -v 0.21.11 \
-    && gem install fluent-plugin-kubernetes_metadata_filter -v 2.0.0
-
-RUN SUDO_FORCE_REMOVE=yes \
-    apt-get purge -y --auto-remove \
-                  -o APT::AutoRemove::RecommendsImportant=false \
-                  $BUILDDEPS \
-    && rm -rf /var/lib/apt/lists/* \
-    && gem sources --clear-all \
-    && rm -rf /tmp/* /var/tmp/* /usr/lib/ruby/gems/*/cache/*.gem
-
-# Copy configuration files
-COPY ./conf/fluent.conf /fluentd/etc/
-COPY ./conf/systemd.conf /fluentd/etc/
-COPY ./conf/kubernetes.conf /fluentd/etc/
-
-# Copy plugins
-COPY plugins /fluentd/plugins/
-
-# Environment variables
-ENV FLUENTD_OPT=""
-ENV FLUENTD_CONF="fluent.conf"
-
-# Overriding entrypoint, otherwise parent image causes to run as user fluent
-ENTRYPOINT []
-
-# Run Fluentd
-CMD exec fluentd -c /fluentd/etc/$FLUENTD_CONF -p /fluentd/plugins $FLUENTD_OPT

data/docker/conf/fluent.conf

@@ -1,18 +0,0 @@
-@include systemd.conf
-@include kubernetes.conf
-
-## Capture audit logs
-#<match kube-apiserver-audit>
-#  @type papertrail
-#
-#  papertrail_host "#{ENV['FLUENT_PAPERTRAIL_AUDIT_HOST']}"
-#  papertrail_port "#{ENV['FLUENT_PAPERTRAIL_AUDIT_PORT']}"
-#</match>
-
-<match **>
-  @type papertrail
-
-  papertrail_host "#{ENV['FLUENT_PAPERTRAIL_HOST']}"
-  papertrail_port "#{ENV['FLUENT_PAPERTRAIL_PORT']}"
-
-</match>

data/docker/conf/kubernetes.conf

@@ -1,171 +0,0 @@
-<match fluent.**>
-  @type null
-</match>
-
-<source>
-  @type tail
-  path /var/log/containers/*.log
-  pos_file /var/log/fluentd-containers.log.pos
-  time_format %Y-%m-%dT%H:%M:%S.%NZ
-  tag kubernetes.*
-  format json
-  read_from_head true
-</source>
-
-<source>
-  @type tail
-  format /^(?<time>[^ ]* [^ ,]*)[^\[]*\[[^\]]*\]\[(?<severity>[^ \]]*) *\] (?<message>.*)$/
-  time_format %Y-%m-%d %H:%M:%S
-  path /var/log/salt/minion
-  pos_file /var/log/fluentd-salt.pos
-  tag salt
-</source>
-
-<source>
-  @type tail
-  format syslog
-  path /var/log/startupscript.log
-  pos_file /var/log/fluentd-startupscript.log.pos
-  tag startupscript
-</source>
-
-<source>
-  @type tail
-  format /^time="(?<time>[^)]*)" level=(?<severity>[^ ]*) msg="(?<message>[^"]*)"( err="(?<error>[^"]*)")?( statusCode=($<status_code>\d+))?/
-  path /var/log/docker.log
-  pos_file /var/log/fluentd-docker.log.pos
-  tag docker
-</source>
-
-<source>
-  @type tail
-  format none
-  path /var/log/etcd.log
-  pos_file /var/log/fluentd-etcd.log.pos
-  tag etcd
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/kubelet.log
-  pos_file /var/log/fluentd-kubelet.log.pos
-  tag kubelet
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/kube-proxy.log
-  pos_file /var/log/fluentd-kube-proxy.log.pos
-  tag kube-proxy
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/kube-apiserver.log
-  pos_file /var/log/fluentd-kube-apiserver.log.pos
-  tag kube-apiserver
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/kube-controller-manager.log
-  pos_file /var/log/fluentd-kube-controller-manager.log.pos
-  tag kube-controller-manager
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/kube-scheduler.log
-  pos_file /var/log/fluentd-kube-scheduler.log.pos
-  tag kube-scheduler
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/rescheduler.log
-  pos_file /var/log/fluentd-rescheduler.log.pos
-  tag rescheduler
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/glbc.log
-  pos_file /var/log/fluentd-glbc.log.pos
-  tag glbc
-</source>
-
-<source>
-  @type tail
-  format kubernetes
-  multiline_flush_interval 5s
-  path /var/log/cluster-autoscaler.log
-  pos_file /var/log/fluentd-cluster-autoscaler.log.pos
-  tag cluster-autoscaler
-</source>
-
-# Example:
-# 2017-02-09T00:15:57.992775796Z AUDIT: id="90c73c7c-97d6-4b65-9461-f94606ff825f" ip="104.132.1.72" method="GET" user="kubecfg" as="<self>" asgroups="<lookup>" namespace="default" uri="/api/v1/namespaces/default/pods"
-# 2017-02-09T00:15:57.993528822Z AUDIT: id="90c73c7c-97d6-4b65-9461-f94606ff825f" response="200"
-<source>
-  @type tail
-  format multiline
-  multiline_flush_interval 5s
-  format_firstline /^\S+\s+AUDIT:/
-  # Fields must be explicitly captured by name to be parsed into the record.
-  # Fields may not always be present, and order may change, so this just looks
-  # for a list of key="\"quoted\" value" pairs separated by spaces.
-  # Unknown fields are ignored.
-  # Note: We can't separate query/response lines as format1/format2 because
-  #       they don't always come one after the other for a given query.
-  format1 /^(?<time>\S+) AUDIT:(?: (?:id="(?<id>(?:[^"\\]|\\.)*)"|ip="(?<ip>(?:[^"\\]|\\.)*)"|method="(?<method>(?:[^"\\]|\\.)*)"|user="(?<user>(?:[^"\\]|\\.)*)"|groups="(?<groups>(?:[^"\\]|\\.)*)"|as="(?<as>(?:[^"\\]|\\.)*)"|asgroups="(?<asgroups>(?:[^"\\]|\\.)*)"|namespace="(?<namespace>(?:[^"\\]|\\.)*)"|uri="(?<uri>(?:[^"\\]|\\.)*)"|response="(?<response>(?:[^"\\]|\\.)*)"|\w+="(?:[^"\\]|\\.)*"))*/
-  time_format %FT%T.%L%Z
-  path /var/log/kubernetes/kube-apiserver-audit.log
-  pos_file /var/log/kube-apiserver-audit.log.pos
-  tag kube-apiserver-audit
-</source>
-
-<filter kubernetes.**>
-  @type kubernetes_metadata
-  annotation_match ["solarwinds.io/*"]
-</filter>
-
-<filter kube-apiserver-audit>
-  @type record_transformer
-  enable_ruby true
-  <record>
-    hostname #{ENV['FLUENT_HOSTNAME']}
-    program kube-apiserver-audit
-    severity info
-    facility local0
-    message ${record}
-  </record>
-</filter>
-
-# append namespace and pod name to hostname, so that logs in Papertrail are filterable by each
-# use container name as program name, but trim it to 32 characters to match remote_syslog spec
-<filter kubernetes.**>
-  @type record_transformer
-  enable_ruby true
-  <record>
-    hostname #{ENV['FLUENT_HOSTNAME']}-${record["kubernetes"]["namespace_name"]}-${record["kubernetes"]["pod_name"]}
-    program ${record["kubernetes"]["container_name"][0..31]}
-    severity info
-    facility local0
-    message ${record['log']}
-  </record>
-  remove_keys ["log"]
-</filter>

data/docker/conf/systemd.conf

@@ -1,61 +0,0 @@
-<source>
-  @type systemd
-  tag systemd
-  read_from_head true
-  <storage>
-    @type local
-    persistent true
-    path /var/log/fluentd-journald-systemd.pos
-  </storage>
-</source>
-
-# rewrite tags as systemd.* for the specefic SYSTEMD_UNIT, then we can filter specifically on kubelet and docker below
-<match systemd>
-  @type rewrite_tag_filter
-  <rule>
-    key SYSTEMD_UNIT
-    pattern /^kubelet.service$/
-    tag systemd.kubelet
-  </rule>
-  <rule>
-    key SYSTEMD_UNIT
-    pattern /^docker.service$/
-    tag systemd.docker
-  </rule>
-</match>
-
-# toss all other systemd logs in the bin
-<match systemd>
-  @type null
-</match>
-
-# transform systemd logs to Papertrail format
-<filter systemd.kubelet>
-  @type record_transformer
-  enable_ruby true
-  <record>
-    hostname "#{ENV['FLUENT_HOSTNAME']}-${record['HOSTNAME']}"
-    program kubelet
-    severity info
-    facility local0
-    message ${record['MESSAGE']}
-  </record>
-</filter>
-
-<filter systemd.docker>
-  @type parser
-  format /^time="(?<time>[^)]*)" level=(?<severity>[^ ]*) msg="(?<message>[^"]*)"( err="(?<error>[^"]*)")?( statusCode=($<status_code>\d+))?/
-  reserve_data true
-  key_name MESSAGE
-</filter>
-
-<filter systemd.docker>
-  @type record_transformer
-  enable_ruby true
-  <record>
-    hostname "#{ENV['FLUENT_HOSTNAME']}-${record['HOSTNAME']}"
-    program docker
-    severity info
-    facility local0
-  </record>
-</filter>

data/docker/plugins/parser_kubernetes.rb

@@ -1,65 +0,0 @@
-#
-# Fluentd
-#
-#    Licensed under the Apache License, Version 2.0 (the "License");
-#    you may not use this file except in compliance with the License.
-#    You may obtain a copy of the License at
-#
-#        http://www.apache.org/licenses/LICENSE-2.0
-#
-#    Unless required by applicable law or agreed to in writing, software
-#    distributed under the License is distributed on an "AS IS" BASIS,
-#    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#    See the License for the specific language governing permissions and
-#    limitations under the License.
-#
-
-# The following Fluentd parser plugin, aims to simplify the parsing of multiline
-# logs found in Kubernetes nodes. Since many log files shared the same format and
-# in order to simplify the configuration, this plugin provides a 'kubernetes' format
-# parser (built on top of MultilineParser).
-#
-# When tailing files, this 'kubernetes' format should be applied to the following
-# log file sources:
-#
-#  - /var/log/kubelet.log
-#  - /var/log/kube-proxy.log
-#  - /var/log/kube-apiserver.log
-#  - /var/log/kube-controller-manager.log
-#  - /var/log/kube-scheduler.log
-#  - /var/log/rescheduler.log
-#  - /var/log/glbc.log
-#  - /var/log/cluster-autoscaler.log
-#
-# Usage:
-#
-# ---- fluentd.conf ----
-#
-# <source>
-#    type tail
-#    format kubernetes
-#    path ./kubelet.log
-#    read_from_head yes
-#    tag kubelet
-# </source>
-#
-# ----   EOF       ---
-
-require 'fluent/parser'
-
-module Fluent
-  class KubernetesParser < Fluent::TextParser::MultilineParser
-    Fluent::Plugin.register_parser("kubernetes", self)
-
-    CONF_FORMAT_FIRSTLINE = %q{/^\w\d{4}/}
-    CONF_FORMAT1 = %q{/^(?<severity>\w)(?<time>\d{4} [^\s]*)\s+(?<pid>\d+)\s+(?<source>[^ \]]+)\] (?<message>.*)/}
-    CONF_TIME_FORMAT = "%m%d %H:%M:%S.%N"
-
-    def configure(conf)
-      conf['format_firstline'] = CONF_FORMAT_FIRSTLINE
-      conf['format1'] = CONF_FORMAT1
-      conf['time_format'] = CONF_TIME_FORMAT
-      super
-    end
-  end
-end

data/kubernetes/fluentd-daemonset-papertrail.yaml

@@ -1,85 +0,0 @@
-apiVersion: extensions/v1beta1
-kind: DaemonSet
-metadata:
-  name: fluentd-papertrail-global-logging
-  namespace: kube-system
-  labels:
-    k8s-app: fluentd-logging
-    version: v1
-    kubernetes.io/cluster-service: "true"
-spec:
-  updateStrategy:
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        k8s-app: fluentd-logging
-        version: v1
-        kubernetes.io/cluster-service: "true"
-    spec:
-      tolerations:
-      - key: node-role.kubernetes.io/master
-        effect: NoSchedule
-      containers:
-      - name: fluentd
-        image: quay.io/solarwinds/fluentd-kubernetes:v1.1.1-debian-papertrail-0.2.3
-        imagePullPolicy: Always
-        env:
-          - name: FLUENT_PAPERTRAIL_HOST
-            value: 'logsN.papertrailapp.com'
-          - name: FLUENT_PAPERTRAIL_PORT
-            value: 'NNNNN'
-          - name: FLUENT_HOSTNAME
-            value: 'my-cluster-name'
-          - name: K8S_NODE_NAME
-            valueFrom:
-              fieldRef:
-                fieldPath: spec.nodeName
-        resources:
-          limits:
-            cpu: 200m
-            memory: 400Mi
-          requests:
-            cpu: 200m
-            memory: 400Mi
-        volumeMounts:
-        - name: varlog
-          mountPath: /var/log
-        - name: varlibdockercontainers
-          mountPath: /var/lib/docker/containers
-          readOnly: true
-        - name: config
-          mountPath: /fluentd/etc/fluent.conf
-          subPath: fluent.conf
-      terminationGracePeriodSeconds: 30
-      volumes:
-      - name: varlog
-        hostPath:
-          path: /var/log
-      - name: varlibdockercontainers
-        hostPath:
-          path: /var/lib/docker/containers
-      - name: config
-        configMap:
-          name: fluentd-papertrail-global-logging-config
-          items:
-          - key: fluent.conf
-            path: fluent.conf
----
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: fluentd-papertrail-global-logging-config
-  namespace: kube-system
-data:
-  fluent.conf: |-
-    @include kubernetes.conf
-    @include systemd.conf
-
-    <match **>
-      type papertrail
-      num_threads 4
-
-      papertrail_host "#{ENV['FLUENT_PAPERTRAIL_HOST']}"
-      papertrail_port "#{ENV['FLUENT_PAPERTRAIL_PORT']}"
-    </match>