tpt_serverless 0.1.0 → 0.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/tpt_serverless/sumo_log_forwarder.rb +105 -0
- data/lib/tpt_serverless/version.rb +1 -1
- metadata +3 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b77f8c69c7659ad042a65c49fd24d10dce69561ad50bb5be5cc1769c10772c04
|
|
4
|
+
data.tar.gz: 9183232aa41d8575f48272ac3b9cd98f0e528e25854380eae93ea05d1d3b8b76
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 531e07d718df8e8b6d040e088bfad8798f6c259faf47c9cc77ffafee653376c07263e76f075bb65c4ee70ec9f13c44f95bba45026e9275b4ad0c5e39a9cacbd5
|
|
7
|
+
data.tar.gz: 1a08cdd1f3e073bca3517bd617eefb06cf7df36836a3d949f8a4413d794cd55859abd0a7f0032d54d0275b9cf98106eb1439915e3368d8cb00b859e95152e0b7
|
|
@@ -0,0 +1,105 @@
|
|
|
1
|
+
=begin
|
|
2
|
+
Receives logs from CloudWatch and forwards them to Sumologic.
|
|
3
|
+
|
|
4
|
+
Example of how to add this to your `serverless.yml`:
|
|
5
|
+
|
|
6
|
+
forwardLogs:
|
|
7
|
+
name: ${self:service.name}-forwardLogs-${self:provider.stage}
|
|
8
|
+
# NOTE: Ensure that you update the path below if you update the tpt_serverless gem
|
|
9
|
+
handler: /opt/ruby/2.5.0/gems/tpt_serverless-X.X.X/lib/tpt_serverless/sumo_log_forwarder.rb
|
|
10
|
+
timeout: 10 # seconds
|
|
11
|
+
environment:
|
|
12
|
+
SUMO_ENDPOINT: ${self:custom.sumoEndpoint}
|
|
13
|
+
events:
|
|
14
|
+
- cloudwatchLog: /aws/lambda/${self:service.name}-functionOne-${self:provider.stage}
|
|
15
|
+
- cloudwatchLog: /aws/lambda/${self:service.name}-functionTwo-${self:provider.stage}
|
|
16
|
+
…etc…
|
|
17
|
+
reservedConcurrency: ${self:custom.sumoConcurrency}
|
|
18
|
+
=end
|
|
19
|
+
|
|
20
|
+
require 'zlib'
|
|
21
|
+
require 'base64'
|
|
22
|
+
|
|
23
|
+
TIME_REGEX = /^20\d\d-\d\d-\d\dT\d\d:\d\d:\d\d\.\d\d\dZ/
|
|
24
|
+
|
|
25
|
+
# This handler receives CloudWatch log events, parses the events and forwards the extracted logs to
|
|
26
|
+
# Sumo Logic.
|
|
27
|
+
#
|
|
28
|
+
# It performs a few helpful cleanup/prep functions as well.
|
|
29
|
+
def handler(event: , context:)
|
|
30
|
+
sumo_endpoint = ENV['SUMO_ENDPOINT']
|
|
31
|
+
|
|
32
|
+
if sumo_endpoint.nil? || sumo_endpoint.strip.empty?
|
|
33
|
+
puts 'ERROR: SUMO_ENDPOINT is not set. Skipping log forwarding.'
|
|
34
|
+
return
|
|
35
|
+
end
|
|
36
|
+
|
|
37
|
+
sumo_url = URI.parse(sumo_endpoint)
|
|
38
|
+
raw_data = event.fetch('awslogs').fetch('data')
|
|
39
|
+
unzipped_data = Zlib::GzipReader.new(StringIO.new(Base64.decode64(raw_data))).read
|
|
40
|
+
data = JSON.parse(unzipped_data)
|
|
41
|
+
|
|
42
|
+
message_type = data.fetch('messageType')
|
|
43
|
+
log_group = data.fetch('logGroup')
|
|
44
|
+
log_stream = data.fetch('logStream')
|
|
45
|
+
log_events = data.fetch('logEvents')
|
|
46
|
+
|
|
47
|
+
if message_type === 'CONTROL_MESSAGE'
|
|
48
|
+
puts 'skipping control message'
|
|
49
|
+
return
|
|
50
|
+
end
|
|
51
|
+
|
|
52
|
+
puts "message_count=#{log_events.length}"
|
|
53
|
+
|
|
54
|
+
messages_data = extract_messages(log_events).map do |message|
|
|
55
|
+
# AWS replaces newlines with carriage returns in Lambda logs
|
|
56
|
+
message.gsub(/\r(?!\n)/, "\n")
|
|
57
|
+
end.join('')
|
|
58
|
+
|
|
59
|
+
send_to_sumo(sumo_url, log_group, log_stream, messages_data)
|
|
60
|
+
end
|
|
61
|
+
|
|
62
|
+
private
|
|
63
|
+
|
|
64
|
+
def extract_messages(log_events)
|
|
65
|
+
log_events.map do |log_event|
|
|
66
|
+
message = log_event.fetch('message')
|
|
67
|
+
timestamp = Integer(log_event.fetch('timestamp'))
|
|
68
|
+
|
|
69
|
+
# Ensure the message starts with a time.
|
|
70
|
+
# E.g. START/END/REPORT log events don't.
|
|
71
|
+
if TIME_REGEX !~ message
|
|
72
|
+
time_string = Time.at(timestamp/1000.0).utc.strftime('%Y-%m-%dT%H:%M:%S.%LZ')
|
|
73
|
+
message = "#{time_string} #{message}"
|
|
74
|
+
end
|
|
75
|
+
|
|
76
|
+
message
|
|
77
|
+
end
|
|
78
|
+
end
|
|
79
|
+
|
|
80
|
+
def send_to_sumo(sumo_url, log_group, log_stream, data)
|
|
81
|
+
response = Net::HTTP.start(sumo_url.host, sumo_url.port, use_ssl: sumo_url.scheme == 'https') do |http|
|
|
82
|
+
http.open_timeout = 3
|
|
83
|
+
http.read_timeout = 3
|
|
84
|
+
|
|
85
|
+
req = Net::HTTP::Post.new(
|
|
86
|
+
sumo_url,
|
|
87
|
+
{
|
|
88
|
+
'X-Sumo-Category' => log_group,
|
|
89
|
+
'X-Sumo-Client' => 'cwl-aws-lambda',
|
|
90
|
+
'X-Sumo-Host' => log_group,
|
|
91
|
+
'X-Sumo-Name' => log_stream,
|
|
92
|
+
'Accept' => 'application/json',
|
|
93
|
+
'Content-Type' => 'application/json'
|
|
94
|
+
}
|
|
95
|
+
)
|
|
96
|
+
|
|
97
|
+
req.body = data.to_json
|
|
98
|
+
|
|
99
|
+
http.request(req)
|
|
100
|
+
end
|
|
101
|
+
|
|
102
|
+
if response.code != '200'
|
|
103
|
+
response.error!
|
|
104
|
+
end
|
|
105
|
+
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: tpt_serverless
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.2.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- TpT
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-02-
|
|
11
|
+
date: 2020-02-25 00:00:00.000000000 Z
|
|
12
12
|
dependencies: []
|
|
13
13
|
description:
|
|
14
14
|
email:
|
|
@@ -17,6 +17,7 @@ extensions: []
|
|
|
17
17
|
extra_rdoc_files: []
|
|
18
18
|
files:
|
|
19
19
|
- lib/tpt_serverless.rb
|
|
20
|
+
- lib/tpt_serverless/sumo_log_forwarder.rb
|
|
20
21
|
- lib/tpt_serverless/version.rb
|
|
21
22
|
homepage: https://github.com/TeachersPayTeachers/tpt_serverless-ruby
|
|
22
23
|
licenses: []
|