This is a source plugin that supports HTTP protocol. Currently ONLY support Json UTF-8 codec for incoming request, e.g.
[{"key1": "value1"}, {"key2": "value2"}].
To get started with HTTP source, create the following pipeline.yaml configuration:
source:
http:200: the request data has been successfully written into the buffer.400: the request data is either in mal-format or unsupported codec.408: the request data fails to be written into the buffer within the timeout.413: the request data size is larger than the configured capacity.429: the request has been rejected due to the HTTP source executor being in full capacity.
- port (Optional) => An
intbetween 0 and 65535 represents the port source is running on. Default is2021. - path (Optional) => A
stringwhich represents the URI path for log ingestion. It should start with/and length should be at least 1. Path can contain${pipelineName}placeholder which will be replaced with pipeline name. Default value is/log/ingest. - health_check_service (Optional) => A
booleanthat determines if a/healthendpoint on the defined port will be home to a health check. Default isfalse - unauthenticated_health_check (Optional) => A
booleanthat determines if the health endpoint will require authentication. This option is ignored if no authentication is defined. Default isfalse - request_timeout (Optional) => An
intlarger than 0 represents request timeout in millis. Default is10_000. - thread_count (Optional) => An
intlarger than 0 represents the number of threads to keep in the ScheduledThreadPool. Default is200. - max_connection_count (Optional) => An
intlarger than 0 represents the maximum allowed number of open connections. Default is500. - max_pending_requests (Optional) => An
intlarger than 0 represents the maximum allowed number of tasks in the ScheduledThreadPool work queue. Default is1024. - authentication (Optional) => An authentication configuration. By default, this runs an unauthenticated server. See below for more information.
- compression (Optional) : The compression type applied on the client request payload. Defaults to
none. Supported values are:none: no compressiongzip: apply GZip de-compression on the incoming request.
By default, the HTTP source input is unauthenticated.
The following is an example of how to run the server with HTTP Basic authentication:
source:
http:
authentication:
http_basic:
username: my-user
password: my_s3cr3tYou can also explicitly disable authentication with:
source:
http:
authentication:
unauthenticated:This plugin uses pluggable authentication for HTTP servers. To provide custom authentication,
create a plugin which implements ArmeriaHttpAuthenticationProvider
- ssl(Optional) => A
booleanthat enables TLS/SSL. Default isfalse. - ssl_certificate_file(Optional) => A
Stringthat represents the SSL certificate chain file path or AWS S3 path. S3 path examples3://<bucketName>/<path>. Required ifsslis set totrueanduse_acm_certificate_for_sslis set tofalse. - ssl_key_file(Optional) => A
Stringthat represents the SSL key file path or AWS S3 path. S3 path examples3://<bucketName>/<path>. Only decrypted key file is supported. Required ifsslis set totrueanduse_acm_certificate_for_sslis set tofalse. - use_acm_certificate_for_ssl(Optional) : A
booleanthat enables TLS/SSL using certificate and private key from AWS Certificate Manager (ACM). Default isfalse. - acm_certificate_arn(Optional) : A
Stringthat represents the ACM certificate ARN. ACM certificate take preference over S3 or local file system certificate. Required ifuse_acm_certificate_for_sslis set totrue. - acm_private_key_password(Optional): A
Stringthat represents the ACM private key password which that will be used to decrypt the private key. If it's not provided, a random password will be generated. - acm_certificate_timeout_millis(Optional) : An
intthat represents the timeout in milliseconds for ACM to get certificates. Default value is120000. - aws_region(Optional) : A
Stringthat represents the AWS region to useACM,S3. Required ifuse_acm_certificate_for_sslis set totrueorssl_certificate_fileandssl_key_fileisAWS S3.
Create the following http source configuration in your pipeline.yaml.
source:
http:
ssl: true
ssl_certificate_file: "/full/path/to/certfile.crt"
ssl_key_file: "/full/path/to/keyfile.key"Generate a private key named keyfile.key, along with a self-signed certificate file named certfile.crt.
openssl req -nodes -new -x509 -keyout keyfile.key -out certfile.crt -subj "/L=test/O=Example Com Inc./OU=Example Com Inc. Root CA/CN=Example Com Inc. Root CA"
Make sure to replace the paths for the ssl_certificate_file and ssl_key_file for the http source configuration with the actual paths of the files.
Send a sample log with the following https curl command
curl -k -XPOST -H "Content-Type: application/json" -d '[{"log": "sample log"}]' https://localhost:2021/log/ingest
requestsReceived: measures total number of requests received by/log/ingestendpoint.requestsRejected: measures total number of requests rejected (429 response status code) by HTTP source plugin.successRequests: measures total number of requests successfully processed (200 response status code) by HTTP source plugin.badRequests: measures total number of requests with invalid content type or format processed by HTTP source plugin (400 response status code).requestTimeouts: measures total number of requests that time out in the HTTP source server (415 response status code).requestsTooLarge: measures total number of requests of which the events size in the content is larger than the buffer capacity (413 response status code).internalServerError: measures total number of requests processed by the HTTP source with custom exception type (500 response status code).
requestProcessDuration: measures latency of requests processed by the HTTP source plugin in seconds.
payloadSize: measures the distribution of incoming requests payload sizes in bytes.
This plugin is compatible with Java 14. See