User facing documentation for Logstash on ECK#6585
Closed
robbavey wants to merge 27 commits intoelastic:feature/logstashfrom
Closed
User facing documentation for Logstash on ECK#6585robbavey wants to merge 27 commits intoelastic:feature/logstashfrom
robbavey wants to merge 27 commits intoelastic:feature/logstashfrom
Conversation
kaisecheng
reviewed
Apr 3, 2023
Contributor
kaisecheng
left a comment
kaisecheng
left a comment
There was a problem hiding this comment.
I think we can update the container version in all recipes from 8.6.1 to 8.7.0, especially Logstash stack monitoring only works with 8.7+
For the todo, we will need to cover pipeline reload use case.
| } | ||
| } | ||
| output { | ||
| stdout { codec => rubydebug } |
Contributor
There was a problem hiding this comment.
As elasticsearch cluster is included in the sample, I think the pipeline can have es-output example
elasticsearch {
hosts => [ "${DEFAULT_ELASTICSEARCH_HOSTS}" ]
user => "${DEFAULT_ELASTICSEARCH_USER}"
password => "${DEFAULT_ELASTICSEARCH_PASSWORD}"
cacert => "${DEFAULT_ELASTICSEARCH_CA_CERTS}"
}
| send_to => 'prod' | ||
| } | ||
| pipeline { | ||
| send_to => 'qa' |
Contributor
There was a problem hiding this comment.
👍 nice pipeline-to-pipeline example
Member
Author
There was a problem hiding this comment.
Nearly! I forgot to remove some old pipelines 🤦
Contributor
|
need a section for es-output to point users to customize users and roles |
mashhurs
reviewed
Apr 26, 2023
Comment on lines
+449
to
+456
| === Single Pipeline defined in CRD | ||
|
|
||
| [source,sh,subs="attributes"] | ||
| ---- | ||
| kubectl apply -f {logstash_recipes}/logstash-eck.yaml | ||
| ---- | ||
|
|
||
| Deploys Logstash with a single pipeline defined in the CRD |
Contributor
There was a problem hiding this comment.
Is it intentional to repeat this Single Pipeline defined in CRD section?
mashhurs
reviewed
Apr 26, 2023
| * <<{p}-logstash-technical-preview-limitations,Technical Preview Limitations>> | ||
|
|
||
|
|
||
| NOTE: Running Logstash on ECK is compatible only with Logstash 8.7+. |
Contributor
There was a problem hiding this comment.
Do we need to remove this? I do see LS 8.6.1 versions are in settings (ex: logstash.yml) and as I understood stack monitoring for Logstash requires 8.7.0+.
Or, we can change all configs version to 8.7.0 to align with this note.
* In the init container: copy the Elasticsearch configuration, and then create links. * Set default security context for Elasticsearch containers, including the sidecars. * Add E2E check for securityContext.
…ic#6724) * Introduce HasWarnings interface * Update samples in config/recipes * Update example in docs * Update CRD/API documentation * Update Helm Charts * Add checkPolicyID for next major release
* Update module go.elastic.co/apm/v2 to v2.4.1 * Update module go.elastic.co/apm/module/apmzap/v2 to v2.4.1 * Update module go.elastic.co/apm/module/apmhttp/v2 to v2.4.1 * Update module go.elastic.co/apm/module/apmelasticsearch/v2 to v2.4.1 --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Thibault Richard <thb.krkr@gmail.com>
pebrc
reviewed
Apr 28, 2023
pebrc
reviewed
Apr 28, 2023
Collaborator
pebrc
left a comment
pebrc
left a comment
There was a problem hiding this comment.
Did a quick pass LGTM, found a few nits only.
Member
|
I referenced the new file from the Orchestrating Elastic Stack applications landing page. |
alaudazzi
reviewed
Apr 28, 2023
Member
alaudazzi
left a comment
alaudazzi
left a comment
There was a problem hiding this comment.
I had a second pass and left a few editing suggestions.
thbkrkr
reviewed
Apr 28, 2023
|
|
||
| Deploys Logstash with the pipeline defined in a secret and referred to via `pipelinesRef` | ||
|
|
||
| ===== Pipeline as mounted volume - `logstash-pipelinevolume.yaml` |
Contributor
There was a problem hiding this comment.
Proposal which implies to rename the file.
Suggested change
| ===== Pipeline as mounted volume - `logstash-pipelinevolume.yaml` | |
| ===== Pipeline as mounted volume - `logstash-pipeline-as-volume.yaml` |
This commit introduces a technical preview of the Logstash Operator for ECK The Logstash operator introduces a Logstash CRD: This operator provides support for: * Defining logstash.yml in config or configRef sections of the CRD * Integration with Elasticsearch clusters via the use of elasticsearchRefs, and environment variable substitution to introduce those elasticsearch references into logstash pipelines. * Definition of pipelines.yml in pipelines or pipelinesRef sections of the CRD with support for pipeline definition in volume mounts * Support for multiple pipeline and pipeline->pipeline configurations * Support for automatic pipeline reload in logstash pods when a pipeline change is detected without triggering a full restart of the pod. * Stack monitoring support via sending metrics and logs to a monitoring elasticsearch cluster via the use of monitoring.logs.elasticsearchRefs and monitoring.metrics.elasticsearchRefs * Support for defining multiple services for logstash plugins. Logstash nodes are created as StatefulSets - we expect in later versions of the logstash operator to support persistence in Logstash nodes, including persistent queues and dead letter queues. A work in progress PR includes documentation and recipes on how to use this logstash operator. There are also samples in this PR located under config/samples/logstash/* Co-authored-by: Michael Morello <michael.morello@gmail.com> Co-authored-by: Rob Bavey <rob.bavey@elastic.co> Co-authored-by: Kaise Cheng <kaise.cheng@elastic.co> Co-authored-by: kaisecheng <69120390+kaisecheng@users.noreply.github.com> Co-authored-by: Michael Morello <michael.morello@gmail.com> Co-authored-by: Thibault Richard <thbkrkr@users.noreply.github.com> Co-authored-by: Peter Brachwitz <peter.brachwitz@elastic.co>
This adds a new flag `--container-repository` to the operator to be able to specify a global container repository. With this it is now possible to use DockerHub images for example: `--container-registry docker.io --container-repository=elastic`. --------- Co-authored-by: Peter Brachwitz <peter.brachwitz@gmail.com>
This adjusts the number of volumes expected from Beats sidecars in the Logstash Stack Monitoring unit tests. Why? Because we don't test PRs with an automatic merge of the main branch (🐛🐞), we missed that the tests in elastic#6732 had to be updated to take into account the changes made by elastic#6703, which adds a new temp volume to the Beats sidecars.
robbavey
force-pushed
the
logstash_doc
branch
2 times, most recently
from
2d57563 to
16694f1
Compare
Still a work in progress - will need elasticsearchRef to work fully
Co-authored-by: Thibault Richard <thbkrkr@users.noreply.github.com> Co-authored-by: Arianna Laudazzi <46651782+alaudazzi@users.noreply.github.com> Co-authored-by: Peter Brachwitz <peter.brachwitz@gmail.com>
Member
Author
|
I've answered all the comments on this PR, and created a new one retargeted to the |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
7 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Work in Progress docs
Includes