Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/heroku/log-iss

logplex HTTP input to TCP forwarder
https://github.com/heroku/log-iss

Last synced: 3 months ago
JSON representation

logplex HTTP input to TCP forwarder

Awesome Lists containing this project

README 

          
# log-iss



log-iss offers a

[logplex HTTP input](https://github.com/heroku/logplex/blob/master/doc/README.http_input.md)-compatible

endpoint and forwards received logs to a TCP port, where syslog-ng or similar

might be listening.



An example submitter to log-iss is [log-shuttle](http://github.com/heroku/log-shuttle).



Log delivery is synchronous, with a five second timeout. If log-iss is unable to

write `POST`ed messages to the backend TCP connection within the timeout it will

respond with status 504.



Upon receiving `SIGTERM` or `SIGINT` log-iss will stop ingesting logs, respond to

all `POST`s with status 503, wait for pending deliveries (subject to the five

second timeout) to drain, then exit.



log-iss will use four persistent connections per process to the destination

configured in `FORWARD_DEST`.



log-iss uses the `X-Request-ID` header, such as supported by the

[Heroku router](https://devcenter.heroku.com/articles/http-request-id), in its logging

to group operations by request.



log-iss emits metrics using the [l2met convention](https://github.com/ryandotsmith/l2met/wiki/Usage#logging-convention).



## Configuration



log-iss is configured via the environment.



* `DEPLOY`: A label naming this instance of log-iss. Used as the `source` value for [l2met](https://github.com/ryandotsmith/l2met/wiki/Usage#logging-convention)-compatible log lines.

* `PORT`: TCP port number to make the endpoint available on. Given `PORT=5000`, the endpoint will be at `http://:5000/logs`

* `FORWARD_DEST`: TCP host and port to forward received logs to. Example: `FORWARD_DEST=127.0.0.1:5001`

* `FORWARD_DEST_CONNECT_TIMEOUT`: Time in seconds to wait for a connection to `FORWARD_DEST`, default is `10`

* `TOKEN_MAP`: A `,`-separated, `:`-separated list of usernames and tokens to accept. Example: `TOKEN_MAP=dan:logthis,system:islogging`

* `ENFORCE_SSL`: If set to `1`, respond with 400 to any `POST`s where the `X-Forwarded-Proto` request header is not `https`. Note this setting affects receiving logs, not sending logs. To enable TLS for sending logs, set `PEMFILE`

* `PEMFILE`: Location of a .pem bundle to use for sending logs via TLS. If unset, TLS is not used



## Development



### Local



Assumes working [Go](http://golang.org/doc/install) installation with

`$GOPATH/bin` in `$PATH` as well as something listening at port 5001 (could be

`nc -l -k 5001` for very simple testing).



```bash

$ go get github.com/heroku/log-iss

$ DEPLOY=local PORT=5000 FORWARD_DEST=localhost:5001 TOKEN_MAP=test:token log-iss

# in another shell

$ echo "64 <13>1 2013-06-07T13:17:49.468822+00:00 host heroku web.7 - - hi" | curl -v -u test:token -H "Content-Type: application/logplex-1" --data-binary @/dev/stdin http://localhost:5000/logs

```



### Platform



```bash

$ DEPLOY=`whoami`

$ heroku create log-iss-$DEPLOY -r $DEPLOY --buildpack heroku/go

$ heroku config:set -r $DEPLOY DEPLOY=$DEPLOY ENFORCE_SSL=1 FORWARD_DEST=my-syslog-host.com:601 TOKEN_MAP=syslog:$(openssl rand -hex 20)

$ heroku labs:enable -r $DEPLOY http-request-id

$ heroku labs:enable -r $DEPLOY log-runtime-metrics

# optional but ideal

$ heroku drains:add -r $DEPLOY https://l2met.com/...

$ git push $DEPLOY master

$ echo "64 <13>1 2013-06-07T13:17:49.468822+00:00 host heroku web.7 - - hi" | curl -v -u syslog: -H "Content-Type: application/logplex-1" --data-binary @/dev/stdin https://log-iss-$DEPLOY.herokuapp.com/logs

```