Giters

bakavets / tekton-s3-log-reader

Reader for long-term logs stored on S3 for Tekton Dashboard

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

tekton-s3-log-reader

The aim of this project is to read long term logs used by Tekton Dashboard so we will be able to release resources in your Kubernetes Cluster.

Architecture

architecture

Deploy tekton-s3-log-reader

This application needs AWS SDK Authentication to run. In our case, we use a ServiceAccount with eks.amazonaws.com/role-arn annotation to authenticate with AWS services from EKS cluster.

In addition, you can use S3_BUCKET_NAME where the application will find the logs or one of the following arguments and AWS_REGION to get the session:

Usage of ./tekton-s3-log-reader:
  -b string
    	Bucket name or S3_BUCKET_NAME env var
  -cert string
    	TLS Certificate
  -containerd
    	Use containerd log format
  -key string
    	TLS Key
  -p string
    	Port (default ":5001")
  -r string
    	AWS Region or AWS_REGION env var
  -tls
    	Use TLS to expose endpoint

Observability

tekton-s3-log-reader has /metrics endpoint to monitor the behaviour using Prometheus.

Sample stack configuration

FluentBit Configuration

Docker

customParsers: |
    [PARSER]
        Name kubernetes-tag
        Format regex
        Regex (?<namespace_name>.+)\.(?<pod_name>.+)\.(?<container_name>.+)
filters: |
    [FILTER]
        Name                kubernetes
        Match               kube.tekton.*
        Merge_Log           Off
        K8S-Logging.Parser  On
        K8S-Logging.Exclude On
        Buffer_Size         64K
        Kube_Tag_Prefix     kube.tekton.
        Regex_Parser        kubernetes-tag
input: |
    [INPUT]
        Name              tail
        Alias             tekton-semantic
        Path              /var/log/containers/*tekton-space*
        Exclude_Path      /var/log/containers/*fluent-bit*
        Parser            docker
        Tag               kube.tekton.<namespace_name>.<pod_name>.<container_name>
        Tag_Regex         (?<pod_name>[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*)_(?<namespace_name>[^_]+)_(?<container_name>.+)-
        Mem_Buf_Limit     100MB
        Refresh_Interval  60
        DB                /var/log/fluentbit_tail.db
        DB.locking        true
outputs: |
    [OUTPUT]
        Name                         s3
        Alias                        s3_tekton_logs
        Match                        kube.tekton.*
        bucket                       fluentbit-to-s3-bucket
        region                       eu-central-1
        total_file_size              250M
        upload_timeout               1m
        s3_key_format                /$TAG[2]/$TAG[3]/$TAG[4]/%Y%m%d%H%M%S.log
        s3_key_format_tag_delimiters .

Docker build

docker build -t bakavets/tekton-s3-log-reader:0.0.1 .

Deploy tekton-s3-log-reader to Kubernetes

kubectl create ns tekton-space
kubectl apply -f k8s

Tekton Dashboard Configuration

Add the following flag pointing to the endpoint tekton-s3-log-reader:

--external-logs=http://tekton-s3-log-reader.tekton-space:5001/logs

About

Reader for long-term logs stored on S3 for Tekton Dashboard

License:MIT License

Languages

Language:Go 59.9%Language:Smarty 34.9%Language:Dockerfile 5.2%