RubyGems - fluent-plugin-splunk-ex-logentries - Versions diffs - 1.0.1.logentries → 1.0.1.logentries.1 - Mend

fluent-plugin-splunk-ex-logentries 1.0.1.logentries → 1.0.1.logentries.1

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: df18337f5895e02bcafd8d9926082575d6ba5234a4b343db4da3bff10efa7678
-  data.tar.gz: 6f7e8e2b4c06a27e04c7fc7bb0d62a6c4fab71b483cfa72663b2e12c5f418440
+  metadata.gz: 339e708b89bd3905792db6c1e6329eb8c406824b383355e0348d466e3b7749ba
+  data.tar.gz: 91307694d96f04d15da06f85efbcec2baef2e0345f2beda9560869a5c272562d
 SHA512:
-  metadata.gz: 591ca52932934d84a350f5b90f3a358e6250777ea798b79cc15107a81d1146de283419d89243c64a2428c78c85f0e813748a88e25b3e86327d552586658ac4f1
-  data.tar.gz: cac585a169d1b687e96914dbe320e65106814637681ea78d6a2199b8996e95208790f0cbef3d7c41d3cb3591730b4b64b8ad7cd99a202eb64f2def2630943189
+  metadata.gz: faf7c781095248892de10ee185805f71d7887adff12d984f6580fe58d6fcd43c10742235cbd79b0748128ccaa285021fb99ca63defe5cd7586e83b823d862f6f
+  data.tar.gz: 39b5b8c8147ecb88dddfd4d807f1100acbe45b3aa60581c7c82e48150d8bba64d87743f77b4d16f71813ddabca2f18a812f0bef52fbf0667bd7556e6bc175c03

data/README.md CHANGED Viewed

@@ -5,6 +5,9 @@
 This plugin will send your fluentd logs to a splunk server.  It can send the data in either
 key/value (k1=v1 k2=v2) or json format for easy splunk parsing.
+Modified the original project to enable Openshift-Logentries integration (new "output_format" setting available: "logentries").
+The "logentries" output produces a human-readable string containing a label (for Logentries log matching), hostname, log level and log message.
 ## Installation
@@ -16,9 +19,9 @@ key/value (k1=v1 k2=v2) or json format for easy splunk parsing.
     <match pattern>
       type splunk_ex
-      host <splunk_host>          # default: localhost
-      port <splunk_port>          # default: 9997 - but you'll want to change this
-      output_format json|kv       # default: json
+      host <splunk_host>                 # default: localhost
+      port <splunk_port>                 # default: 9997 - but you'll want to change this
+      output_format json|kv|logentries   # default: json
     </match>
 ### Splunk

data/fluent-plugin-splunk-ex.gemspec CHANGED Viewed

@@ -2,7 +2,7 @@
 Gem::Specification.new do |gem|
   gem.name         = "fluent-plugin-splunk-ex-logentries"
-  gem.version      = "1.0.1.logentries"
+  gem.version      = "1.0.1.logentries.1"
   gem.authors      = ["Trevor Gattis"]
   gem.email        = "github@trevorgattis.com"

data/lib/fluent/plugin/out_splunk_ex.rb CHANGED Viewed

@@ -96,8 +96,10 @@ class Fluent::SplunkExOutput < Fluent::Output
   def self.format_logentries(record)
     label = record["kubernetes"]["labels"]["logentries"]
+	host = record["kubernetes"]["host"]
+	level = record["level"]
     message = record["message"]
-    le_out_str = label + " " + message
+    le_out_str = label + " " + host + " " + level + " " + message
   end
   def self.format_json(record)

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: fluent-plugin-splunk-ex-logentries
 version: !ruby/object:Gem::Version
-  version: 1.0.1.logentries
+  version: 1.0.1.logentries.1
 platform: ruby
 authors:
 - Trevor Gattis
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-03-15 00:00:00.000000000 Z
+date: 2018-03-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: fluentd