logstash-filter-geoip 7.2.3-java → 7.2.7-java

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 41186204a9754322404e62bfb7d3f6bc6c2cac0eae3d94216ca0d1d1aea2224e
-  data.tar.gz: 53c94c8805f0d75ec63da781d6aa5f5183cfd59d71b13ef91ef311bca60317e9
+  metadata.gz: 7eb0e71f8a7e34725b9ed42e5839ad7015fd53672802b01c92c5c33c3acb55ce
+  data.tar.gz: 71f871e60772fa2f21d5995ee93ac9b26d426463e4e87705e00028eb074bbe1a
 SHA512:
-  metadata.gz: 80c10a490592b1ed119439e71c9b783c8853e52849023427c3441551737460e50f0c14be40d445030804e5258a1752b5ceef0cd40f7f4107ee206c05d3f6f50a
-  data.tar.gz: e8d231040a51664a4729a5eb06947d42249b34ed8e25ae74b7ef94c5ccb9b4a14966deeb99bb731e68ea66d1eef20b7d7b71103fb5902d491d249b4e5dd5eb7d
+  metadata.gz: 1e062cbeb38a866831d9dd9c359605d3f2b883819299bffbbb685af54fb9891f6ec3d4a81cebbad357a2a0c6cecffecdc2cf2284c00b8711c5dd6283c9620702
+  data.tar.gz: f83c4acfe3d702163d284cfae089d5deddcebe9754945dee22bf760e23d8b301f7dfcd2e4b98dfa509299f3f36993977cf94ee2d82df0fdf7fb9b05e3a5da7ed

data/CHANGELOG.md

@@ -1,3 +1,16 @@
+## 7.2.7
+  - Ensure java 8 compatibility [#197](https://github.com/logstash-plugins/logstash-filter-geoip/pull/197)
+
+## 7.2.6
+  - Update Log4J dependencies [#196](https://github.com/logstash-plugins/logstash-filter-geoip/pull/196)
+
+## 7.2.5
+  - Added preview of ECS-v8 support with existing ECS-v1 implementation [#193](https://github.com/logstash-plugins/logstash-filter-geoip/pull/193)
+
+## 7.2.4
+  - Fix: update to Gradle 7 [#191](https://github.com/logstash-plugins/logstash-filter-geoip/pull/191)
+  - [DOC] Clarify CC licensed database indefinite use condition and air-gapped environment [#192](https://github.com/logstash-plugins/logstash-filter-geoip/pull/192)
+
 ## 7.2.3
   - [DOC] Add documentation for bootstrapping air-gapped environment for database auto-update [#189](https://github.com/logstash-plugins/logstash-filter-geoip/pull/189)
 

data/docs/index.asciidoc

@@ -59,13 +59,15 @@ database by default.
 ==== Database Auto-update
 
 This plugin bundles Creative Commons (CC) license databases.
-In air-gapped environments, Logstash can use CC license databases indefinitely.
 Logstash checks for database updates every day. It downloads the latest and can replace the old database
 while the plugin is running.
 After Logstash downloads EULA license databases, it will not fallback to CC license databases.
 
-If Logstash fails to download the database for 30 days, 
-the geoip filter will stop enriching events in order to maintain compliance.
+NOTE: If the database has never been updated successfully, as in air-gapped environments, Logstash can use CC license databases indefinitely.
+
+After Logstash has switched to a EULA licensed database, the geoip filter will
+stop enriching events in order to maintain compliance if Logstash fails to
+check for database updates for 30 days.
 Events will be tagged with `_geoip_expired_database` tag to facilitate the handling of this situation.
 
 TIP: When possible, allow Logstash to access the internet to download databases so that they are always up-to-date.
@@ -79,13 +81,10 @@ If you can't connect directly to the Elastic GeoIP endpoint, consider setting up
 a secure proxy. You can then specify the proxy endpoint URL in the
 `xpack.geoip.download.endpoint` setting in `logstash.yml` file.
 
-**Use a custom endpoint**
+**Use a custom endpoint (air-gapped environments)**
 
 If you work in air-gapped environment and can't update your databases from the Elastic endpoint,
-you can bootstrap the environment as follows.
-
-You can create a service that mimics the Elastic GeoIP endpoint. You can then
-get automatic updates from this service.
+You can then download databases from MaxMind and bootstrap the service.
 
 . Download your `.mmdb` database files from the
 http://dev.maxmind.com/geoip/geoip2/geolite2[MaxMind site].
@@ -112,6 +111,7 @@ docker run -p 8080:80 -v my/database/dir:/usr/share/nginx/html:ro nginx
 . Specify the service's endpoint URL using the
 `xpack.geoip.download.endpoint=http://localhost:8080/overview.json` setting in `logstash.yml`.
 
+Logstash gets automatic updates from this service.
 
 [id="plugins-{type}s-{plugin}-metrics"]
 ==== Database Metrics
@@ -284,7 +284,7 @@ For the built-in GeoLite2 City database, the following are available:
 * Value type is <<string,string>>
 * Supported values are:
 ** `disabled`: unstructured geo data added at root level
-** `v1`: uses fields that are compatible with Elastic Common Schema (for example, `[client][geo][country_name]`)
+** `v1`, `v8`: uses fields that are compatible with Elastic Common Schema (for example, `[client][geo][country_name]`)
 * Default value depends on which version of Logstash is running:
 ** When Logstash provides a `pipeline.ecs_compatibility` setting, its value is used as the default
 ** Otherwise, the default value is `disabled`.

data/lib/logstash/filters/geoip.rb

@@ -32,7 +32,7 @@ require "logstash/plugin_mixins/ecs_compatibility_support"
 # --
 
 class LogStash::Filters::GeoIP < LogStash::Filters::Base
-  include LogStash::PluginMixins::ECSCompatibilitySupport(:disabled, :v1)
+  include LogStash::PluginMixins::ECSCompatibilitySupport(:disabled, :v1, :v8 => :v1)
 
   config_name "geoip"
 

data/logstash-filter-geoip.gemspec

@@ -1,7 +1,7 @@
 Gem::Specification.new do |s|
 
   s.name            = 'logstash-filter-geoip'
-  s.version         = '7.2.3'
+  s.version         = '7.2.7'
   s.licenses        = ['Apache License (2.0)']
   s.summary         = "Adds geographical information about an IP address"
   s.description     = "This gem is a Logstash plugin required to be installed on top of the Logstash core pipeline using $LS_HOME/bin/logstash-plugin install gemname. This gem is not a stand-alone program"
@@ -22,7 +22,7 @@ Gem::Specification.new do |s|
 
   # Gem dependencies
   s.add_runtime_dependency "logstash-core-plugin-api", ">= 1.60", "<= 2.99"
-  s.add_runtime_dependency 'logstash-mixin-ecs_compatibility_support', '~>1.1'
+  s.add_runtime_dependency 'logstash-mixin-ecs_compatibility_support', '~>1.2'
   s.add_development_dependency 'logstash-devutils'
   s.add_development_dependency 'insist'
   s.add_development_dependency 'benchmark-ips'

data/spec/filters/geoip_ecs_spec.rb

@@ -14,7 +14,7 @@ describe LogStash::Filters::GeoIP do
   describe "simple ip filter", :aggregate_failures do
 
     context "when specifying the target", :ecs_compatibility_support do
-      ecs_compatibility_matrix(:disabled, :v1) do |ecs_select|
+      ecs_compatibility_matrix(:disabled, :v1, :v8 => :v1) do |ecs_select|
 
         let(:ip) { "8.8.8.8" }
         let(:event) { LogStash::Event.new("message" => ip) }

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: logstash-filter-geoip
 version: !ruby/object:Gem::Version
-  version: 7.2.3
+  version: 7.2.7
 platform: java
 authors:
 - Elastic
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-09-29 00:00:00.000000000 Z
+date: 2021-12-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
@@ -35,7 +35,7 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '1.2'
   name: logstash-mixin-ecs_compatibility_support
   prerelease: false
   type: :runtime
@@ -43,7 +43,7 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '1.2'
 - !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements: