Skip to content

Latest commit

 

History

History
122 lines (92 loc) · 6.8 KB

File metadata and controls

122 lines (92 loc) · 6.8 KB

Log HTTP Source

This is a source plugin that supports HTTP protocol. Currently ONLY support Json UTF-8 codec for incoming request, e.g. [{"key1": "value1"}, {"key2": "value2"}].

Usages

To get started with HTTP source, create the following pipeline.yaml configuration:

source:
   http:

Response status

  • 200: the request data has been successfully written into the buffer.
  • 400: the request data is either in mal-format or unsupported codec.
  • 408: the request data fails to be written into the buffer within the timeout.
  • 413: the request data size is larger than the configured capacity.
  • 429: the request has been rejected due to the HTTP source executor being in full capacity.

Configurations

  • port (Optional) => An int between 0 and 65535 represents the port source is running on. Default is 2021.
  • path (Optional) => A string which represents the URI path for log ingestion. It should start with / and length should be at least 1. Path can contain ${pipelineName} placeholder which will be replaced with pipeline name. Default value is /log/ingest.
  • health_check_service (Optional) => A boolean that determines if a /health endpoint on the defined port will be home to a health check. Default is false
  • unauthenticated_health_check (Optional) => A boolean that determines if the health endpoint will require authentication. This option is ignored if no authentication is defined. Default is false
  • request_timeout (Optional) => An int larger than 0 represents request timeout in millis. Default is 10_000.
  • thread_count (Optional) => An int larger than 0 represents the number of threads to keep in the ScheduledThreadPool. Default is 200.
  • max_connection_count (Optional) => An int larger than 0 represents the maximum allowed number of open connections. Default is 500.
  • max_pending_requests (Optional) => An int larger than 0 represents the maximum allowed number of tasks in the ScheduledThreadPool work queue. Default is 1024.
  • authentication (Optional) => An authentication configuration. By default, this runs an unauthenticated server. See below for more information.
  • compression (Optional) : The compression type applied on the client request payload. Defaults to none. Supported values are:
    • none: no compression
    • gzip: apply GZip de-compression on the incoming request.

Authentication Configurations

By default, the HTTP source input is unauthenticated.

The following is an example of how to run the server with HTTP Basic authentication:

source:
  http:
    authentication:
      http_basic:
        username: my-user
        password: my_s3cr3t

You can also explicitly disable authentication with:

source:
  http:
    authentication:
      unauthenticated:

This plugin uses pluggable authentication for HTTP servers. To provide custom authentication, create a plugin which implements ArmeriaHttpAuthenticationProvider

SSL

  • ssl(Optional) => A boolean that enables TLS/SSL. Default is false.
  • ssl_certificate_file(Optional) => A String that represents the SSL certificate chain file path or AWS S3 path. S3 path example s3://<bucketName>/<path>. Required if ssl is set to true and use_acm_certificate_for_ssl is set to false.
  • ssl_key_file(Optional) => A String that represents the SSL key file path or AWS S3 path. S3 path example s3://<bucketName>/<path>. Only decrypted key file is supported. Required if ssl is set to true and use_acm_certificate_for_ssl is set to false.
  • use_acm_certificate_for_ssl(Optional) : A boolean that enables TLS/SSL using certificate and private key from AWS Certificate Manager (ACM). Default is false.
  • acm_certificate_arn(Optional) : A String that represents the ACM certificate ARN. ACM certificate take preference over S3 or local file system certificate. Required if use_acm_certificate_for_ssl is set to true.
  • acm_private_key_password(Optional): A String that represents the ACM private key password which that will be used to decrypt the private key. If it's not provided, a random password will be generated.
  • acm_certificate_timeout_millis(Optional) : An int that represents the timeout in milliseconds for ACM to get certificates. Default value is 120000.
  • aws_region(Optional) : A String that represents the AWS region to use ACM, S3. Required if use_acm_certificate_for_ssl is set to true or ssl_certificate_file and ssl_key_file is AWS S3.

Example to enable SSL using OpenSSL

Create the following http source configuration in your pipeline.yaml.

source:
   http:
       ssl: true
       ssl_certificate_file: "/full/path/to/certfile.crt"
       ssl_key_file: "/full/path/to/keyfile.key"

Generate a private key named keyfile.key, along with a self-signed certificate file named certfile.crt.

openssl req  -nodes -new -x509  -keyout keyfile.key -out certfile.crt -subj "/L=test/O=Example Com Inc./OU=Example Com Inc. Root CA/CN=Example Com Inc. Root CA"

Make sure to replace the paths for the ssl_certificate_file and ssl_key_file for the http source configuration with the actual paths of the files.

Send a sample log with the following https curl command

curl -k -XPOST -H "Content-Type: application/json" -d '[{"log": "sample log"}]' https://localhost:2021/log/ingest

Metrics

Counter

  • requestsReceived: measures total number of requests received by /log/ingest endpoint.
  • requestsRejected: measures total number of requests rejected (429 response status code) by HTTP source plugin.
  • successRequests: measures total number of requests successfully processed (200 response status code) by HTTP source plugin.
  • badRequests: measures total number of requests with invalid content type or format processed by HTTP source plugin (400 response status code).
  • requestTimeouts: measures total number of requests that time out in the HTTP source server (415 response status code).
  • requestsTooLarge: measures total number of requests of which the events size in the content is larger than the buffer capacity (413 response status code).
  • internalServerError: measures total number of requests processed by the HTTP source with custom exception type (500 response status code).

Timer

  • requestProcessDuration: measures latency of requests processed by the HTTP source plugin in seconds.

Distribution Summary

  • payloadSize: measures the distribution of incoming requests payload sizes in bytes.

Developer Guide

This plugin is compatible with Java 14. See