fluent-plugin-windows-eventlog 0.5.1 → 0.5.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +3 -0
- data/README.md +1 -1
- data/fluent-plugin-winevtlog.gemspec +2 -2
- data/lib/fluent/plugin/in_windows_eventlog2.rb +11 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 359baf1a9205ef362e4504df9408456929e11476b8b7ca8f31b930fa75f67996
|
|
4
|
+
data.tar.gz: 3022117b4b9650f09e7856cfbb82a39267818bb71b46fb016ca0f71deb26c4d9
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: c37d3b7a0a0c8b39e889efdda75fd7d22e6227b7a60eb1c47e9f2b459458c3144725a9d68f7e4ad6215315f62ce0829dde6730f7fccc4d37d93b2a47e7e8951f
|
|
7
|
+
data.tar.gz: b1cad59577bcec5188c0009545d0a89087210abf8b5bc1f946453607ab0b3f8b87aff1dfacbbf066d0d3b61c0505b9ffdde9da3ab788ca9dd2bc53be1ee65f1e
|
data/CHANGELOG.md
CHANGED
data/README.md
CHANGED
|
@@ -177,8 +177,8 @@ fluentd Input plugin for the Windows Event Log using newer Windows Event Logging
|
|
|
177
177
|
|`parse_description`| (option) parse `description` field and set parsed result into the record. `Description` and `EventData` fields are removed|
|
|
178
178
|
|`read_from_head` | **Deprecated** (option) Start to read the entries from the oldest, not from when fluentd is started. Defaults to `false`.|
|
|
179
179
|
|`read_existing_events` | (option) Read the entries which already exist before fluentd is started. Defaults to `false`.|
|
|
180
|
-
|`read_existing_events` | (option) Read the entries which already exist before fluentd is started. Defaults to `false`.|
|
|
181
180
|
|`rate_limit` | (option) Specify rate limit to consume EventLog. Default is `Winevt::EventLog::Subscribe::RATE_INFINITE`.|
|
|
181
|
+
|`read_all_channels`| (option) Read from all channels. Default is `false`|
|
|
182
182
|
|`<subscribe>` | Setting for subscribe channels. |
|
|
183
183
|
|
|
184
184
|
##### subscribe section
|
|
@@ -4,7 +4,7 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
|
|
|
4
4
|
|
|
5
5
|
Gem::Specification.new do |spec|
|
|
6
6
|
spec.name = "fluent-plugin-windows-eventlog"
|
|
7
|
-
spec.version = "0.5.
|
|
7
|
+
spec.version = "0.5.2"
|
|
8
8
|
spec.authors = ["okahashi117", "Hiroshi Hatake", "Masahiro Nakagawa"]
|
|
9
9
|
spec.email = ["naruki_okahashi@jbat.co.jp", "cosmo0920.oucc@gmail.com", "repeatedly@gmail.com"]
|
|
10
10
|
spec.summary = %q{Fluentd Input plugin to read windows event log.}
|
|
@@ -22,7 +22,7 @@ Gem::Specification.new do |spec|
|
|
|
22
22
|
spec.add_development_dependency "test-unit", "~> 3.2.0"
|
|
23
23
|
spec.add_runtime_dependency "fluentd", [">= 0.14.12", "< 2"]
|
|
24
24
|
spec.add_runtime_dependency "win32-eventlog"
|
|
25
|
-
spec.add_runtime_dependency "winevt_c", ">= 0.7.
|
|
25
|
+
spec.add_runtime_dependency "winevt_c", ">= 0.7.1"
|
|
26
26
|
spec.add_runtime_dependency "nokogiri", "~> 1.10"
|
|
27
27
|
spec.add_runtime_dependency "fluent-plugin-parser-winevt_xml", ">= 0.1.2"
|
|
28
28
|
end
|
|
@@ -40,6 +40,7 @@ module Fluent::Plugin
|
|
|
40
40
|
config_param :parse_description, :bool, default: false
|
|
41
41
|
config_param :render_as_xml, :bool, default: true
|
|
42
42
|
config_param :rate_limit, :integer, default: Winevt::EventLog::Subscribe::RATE_INFINITE
|
|
43
|
+
config_param :read_all_channels, :bool, default: false
|
|
43
44
|
|
|
44
45
|
config_section :subscribe, param_name: :subscribe_configs, required: false, multi: true do
|
|
45
46
|
config_param :channels, :array
|
|
@@ -66,9 +67,18 @@ module Fluent::Plugin
|
|
|
66
67
|
def configure(conf)
|
|
67
68
|
super
|
|
68
69
|
@chs = []
|
|
70
|
+
@all_chs = Winevt::EventLog::Channel.new
|
|
71
|
+
@all_chs.force_enumerate = false
|
|
72
|
+
|
|
73
|
+
if @read_all_channels
|
|
74
|
+
@all_chs.each do |ch|
|
|
75
|
+
uch = ch.strip.downcase
|
|
76
|
+
@chs.push([uch, @read_existing_events])
|
|
77
|
+
end
|
|
78
|
+
end
|
|
69
79
|
|
|
70
80
|
@read_existing_events = @read_from_head || @read_existing_events
|
|
71
|
-
if @channels.empty? && @subscribe_configs.empty?
|
|
81
|
+
if @channels.empty? && @subscribe_configs.empty? && !@read_all_channels
|
|
72
82
|
@chs.push(['application', @read_existing_events])
|
|
73
83
|
else
|
|
74
84
|
@channels.map {|ch| ch.strip.downcase }.uniq.each do |uch|
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: fluent-plugin-windows-eventlog
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.5.
|
|
4
|
+
version: 0.5.2
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- okahashi117
|
|
@@ -10,7 +10,7 @@ authors:
|
|
|
10
10
|
autorequire:
|
|
11
11
|
bindir: bin
|
|
12
12
|
cert_chain: []
|
|
13
|
-
date: 2020-02-
|
|
13
|
+
date: 2020-02-28 00:00:00.000000000 Z
|
|
14
14
|
dependencies:
|
|
15
15
|
- !ruby/object:Gem::Dependency
|
|
16
16
|
name: bundler
|
|
@@ -94,14 +94,14 @@ dependencies:
|
|
|
94
94
|
requirements:
|
|
95
95
|
- - ">="
|
|
96
96
|
- !ruby/object:Gem::Version
|
|
97
|
-
version: 0.7.
|
|
97
|
+
version: 0.7.1
|
|
98
98
|
type: :runtime
|
|
99
99
|
prerelease: false
|
|
100
100
|
version_requirements: !ruby/object:Gem::Requirement
|
|
101
101
|
requirements:
|
|
102
102
|
- - ">="
|
|
103
103
|
- !ruby/object:Gem::Version
|
|
104
|
-
version: 0.7.
|
|
104
|
+
version: 0.7.1
|
|
105
105
|
- !ruby/object:Gem::Dependency
|
|
106
106
|
name: nokogiri
|
|
107
107
|
requirement: !ruby/object:Gem::Requirement
|