fluent-plugin-splunk-ex-logentries 1.0.1.logentries → 1.0.1.logentries.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +6 -3
- data/fluent-plugin-splunk-ex.gemspec +1 -1
- data/lib/fluent/plugin/out_splunk_ex.rb +3 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 339e708b89bd3905792db6c1e6329eb8c406824b383355e0348d466e3b7749ba
|
|
4
|
+
data.tar.gz: 91307694d96f04d15da06f85efbcec2baef2e0345f2beda9560869a5c272562d
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: faf7c781095248892de10ee185805f71d7887adff12d984f6580fe58d6fcd43c10742235cbd79b0748128ccaa285021fb99ca63defe5cd7586e83b823d862f6f
|
|
7
|
+
data.tar.gz: 39b5b8c8147ecb88dddfd4d807f1100acbe45b3aa60581c7c82e48150d8bba64d87743f77b4d16f71813ddabca2f18a812f0bef52fbf0667bd7556e6bc175c03
|
data/README.md
CHANGED
|
@@ -5,6 +5,9 @@
|
|
|
5
5
|
This plugin will send your fluentd logs to a splunk server. It can send the data in either
|
|
6
6
|
key/value (k1=v1 k2=v2) or json format for easy splunk parsing.
|
|
7
7
|
|
|
8
|
+
Modified the original project to enable Openshift-Logentries integration (new "output_format" setting available: "logentries").
|
|
9
|
+
The "logentries" output produces a human-readable string containing a label (for Logentries log matching), hostname, log level and log message.
|
|
10
|
+
|
|
8
11
|
|
|
9
12
|
## Installation
|
|
10
13
|
|
|
@@ -16,9 +19,9 @@ key/value (k1=v1 k2=v2) or json format for easy splunk parsing.
|
|
|
16
19
|
|
|
17
20
|
<match pattern>
|
|
18
21
|
type splunk_ex
|
|
19
|
-
host <splunk_host>
|
|
20
|
-
port <splunk_port>
|
|
21
|
-
output_format json|kv
|
|
22
|
+
host <splunk_host> # default: localhost
|
|
23
|
+
port <splunk_port> # default: 9997 - but you'll want to change this
|
|
24
|
+
output_format json|kv|logentries # default: json
|
|
22
25
|
</match>
|
|
23
26
|
|
|
24
27
|
### Splunk
|
|
@@ -96,8 +96,10 @@ class Fluent::SplunkExOutput < Fluent::Output
|
|
|
96
96
|
|
|
97
97
|
def self.format_logentries(record)
|
|
98
98
|
label = record["kubernetes"]["labels"]["logentries"]
|
|
99
|
+
host = record["kubernetes"]["host"]
|
|
100
|
+
level = record["level"]
|
|
99
101
|
message = record["message"]
|
|
100
|
-
le_out_str = label + " " + message
|
|
102
|
+
le_out_str = label + " " + host + " " + level + " " + message
|
|
101
103
|
end
|
|
102
104
|
|
|
103
105
|
def self.format_json(record)
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: fluent-plugin-splunk-ex-logentries
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.1.logentries
|
|
4
|
+
version: 1.0.1.logentries.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Trevor Gattis
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2018-03-
|
|
11
|
+
date: 2018-03-16 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: fluentd
|