https://github.com/cloud-gov/deploy-logsearch
Concourse pipeline and manifests for the cloud.gov ELK deployment.
https://github.com/cloud-gov/deploy-logsearch
Last synced: 6 months ago
JSON representation
Concourse pipeline and manifests for the cloud.gov ELK deployment.
- Host: GitHub
- URL: https://github.com/cloud-gov/deploy-logsearch
- Owner: cloud-gov
- License: other
- Created: 2016-03-01T16:28:33.000Z (over 10 years ago)
- Default Branch: main
- Last Pushed: 2025-12-11T20:37:10.000Z (7 months ago)
- Last Synced: 2025-12-13T01:01:08.586Z (7 months ago)
- Language: Shell
- Homepage:
- Size: 1.22 MB
- Stars: 1
- Watchers: 9
- Forks: 3
- Open Issues: 5
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE.md
- Codeowners: CODEOWNERS
- Security: SECURITY.md
Awesome Lists containing this project
README
# 18F cloud.gov ELK deployment
This repo contains the pipeline and [BOSH](https://bosh.io) manifests for deploying cloud.gov [ELK](https://www.elastic.co/videos/introduction-to-the-elk-stack) implementation.
### Admin Setup
For admins to access all logs, membership in the [System Organization](https://github.com/18F/cg-deploy-logsearch/blob/cf9271ae1ff2bc0464ca57a87b76e9ffc7ce01ab/logsearch-jobs.yml#L201) is required.
### UAA Setup
To set up the UAA client, add the following to the CF secrets:
```yaml
properties:
uaa:
clients:
kibana_oauth2_client:
secret: CHANGEME
scope: scim.userids,cloud_controller.read,openid,oauth.approvals
authorized-grant-types: refresh_token,authorization_code
redirect-uri: https://CHANGEME/login
autoapprove: true
logsearch_firehose_ingestor:
secret: CHANGEME
authorized-grant-types: client_credentials
authorities: doppler.firehose,cloud_controller.admin
override: true
```