https://github.com/saumya40-codes/logsgo

A very minimal standalone log ingestion and querying platform with builtin client library for instrumentation.
https://github.com/saumya40-codes/logsgo

badgerdb go grpc logging minio observability rabbitmq reactjs s3-storage typescript

Last synced: 11 months ago
JSON representation

A very minimal standalone log ingestion and querying platform with builtin client library for instrumentation.

• Host: GitHub
• URL: https://github.com/saumya40-codes/logsgo
• Owner: Saumya40-codes
• License: mit
• Created: 2025-05-19T13:19:01.000Z (about 1 year ago)
• Default Branch: main
• Last Pushed: 2025-08-04T09:29:13.000Z (11 months ago)
• Last Synced: 2025-08-04T13:26:20.968Z (11 months ago)
• Topics: badgerdb, go, grpc, logging, minio, observability, rabbitmq, reactjs, s3-storage, typescript
• Language: Go
• Homepage:
• Size: 28.5 MB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 4
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# LogsGo



  



**LogsGo** is a standalone, scalable log ingestion and querying service designed for maximum log retention. It features a multi-tiered store architecture, pluggable backends, and a web-based dashboard. Logs are ingested via gRPC and flushed across configured stores based on a customizable time interval.

---

> Checkout [/docs](https://github.com/Saumya40-codes/LogsGO/tree/main/docs) to see the arch design, auth flows and several other brainstorming made for this project :)

## Features

-  **Push-based log ingestion** using a lightweight gRPC client.

-  **Multi-tiered store architecture**:

    - **In-memory store** → for fast ingestion and short-term access.

    - **Local store** → persistent storage by [BadgerDB](https://github.com/dgraph-io/badger).

    - **Cloud store** → support for S3-compatible services like AWS S3 or MinIO.

-  **Chained store design**: Each store passes query and flush operations to its `.next` store for transparent fallbacks and deep queries.

-  **Custom query language**: Enables querying logs with `AND`/`OR` operators. Example:

  

    ```

    service=ap-south-1&level=warn

    ```

    ```

    service=ap-south-1|service="us-west-1"

    ```

- **JWT based authentication support**: If public key info to decode incoming jwt token on REST and gRPC token is specified. (check `logGo -help`)

- **Support for TLS**: On REST and gRPC endpoints, if corresponding configuration file containing secret and cert file location is provided (for e.g. while running `./logsGo --tls-config-path="auth.yaml"`, check `./examples/tls-config.yaml` for more info)

- **Web dashboard**: Simple UI to query and visualize logs.

- **Client library**: Embed the LogsGo client into your service and send logs using `UploadLogs()` over gRPC. Example:

  ```

    import "github.com/Saumya40-codes/LogsGO/client/go/logclient"

    

    c := logclient.NewLogClient(ctx, my_logsGo_endpoint_url)

    c.UploadLog(&logclient.Opts{

        {

            Service: "apsouth-1",

            Level: "warn",

            Message: "Disk usage high",

            Timestamp: time.Now(),

        },

    })

  ```

- **Configurable flush intervals** for controlling when logs are forwarded from one store to the next.

- **Support to upload logs to Message Queue(RabbitMQ) First**: You can opt-in to upload batches of your logs to message queue which later gets picked up by `N` logsGo ingestion workers in default *round-robin* manner, as configured. 

  Here is how an ideal flow *can* look:

  ![Queueing Model](docs/logs-queueing.png)

- **Compaction support**: The blocks in s3 (if used) can be compacted to smaller blocks for better performance (for e.g. 6, 2hour blocks can compacted to one 12 hour block), checkout [config](https://github.com/Saumya40-codes/LogsGO/blob/0a1ae7755504a966fd039bd78e024ea1d112b1c8/pkg/store/compact.go#L16C1-L30C2) for more info 

---

## Architecture Overview

![Architecture Diagram](docs/archv1.png)

1. Logs are received via the gRPC client.

2. They are stored first in an in-memory buffer.

3. At regular intervals, logs are flushed to:

 - Local store (BadgerDB)

 - Then to S3-compatible object store (e.g., AWS S3, MinIO)

4. Queries traverse through each store using a `.next` store in chain until results are found.

---

## DataModel Overview

![Data Model](docs/data_model.png)

---

## Query Execution Overview

![Querying Execution](docs/query-execution.png)

## Current State

![LogsGo Current State](docs/v0.2.0-instant-query.png)

The output you see is an instant query, many of the logs you see were first uploaded to s3 and local storage, the count you see is an aggregation and timestamp is the time at which this was found in latest

![LogsGo Query Range State](docs/v0.2.0-range-query.png)

This starts from start timestamp and moves by 'resolution' amount till end timestamp, the count is the number of logs found in that range, currently if no logs are found in that range, the value at that timestamp isn't shown.

## Running interactive example

You can run an interactive examples from /examples folder, just navigate there and run

```

docker compose up

```