Project

logstash-output-awslogs

0.0
Low commit activity in last 3 years
No release in over a year
logstash-output-awslogsanarhyst266/logstash-output-awslogsHomepageDocumentationSource CodeBug TrackerWiki
Writes events to AWS CloudWatch logs.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
52,035
Stars
0
Forks
1
Watchers
0
 Releases
Current version
1.1.5
Total releases
38
First release
2020-06-16
Latest release
2024-01-26
 Development
Primary Language
Ruby
Licenses
Apache-2.0
Average date of last 50 commits
2021-07-15
Reverse Dependencies
0

 Dependencies

Development

logstash-devutils
>= 0

Runtime

aws-sdk-cloudwatchlogs
~> 1
logstash-codec-plain
>= 0
logstash-core-plugin-api
>= 2.1.12, <= 2.99
json
>= 0
logstash-integration-aws
>= 0
 Project Readme

Logstash Output Plugin for AWS CloudWatch Logs

This plugin for Logstash allows you to send events to AWS CloudWatch Logs.

Installation

The plugin is published on RubyGems. You can install it directly using the logstash-plugin command:

logstash-plugin install logstash-output-awslogs

Ensure that you have Logstash installed and properly configured before proceeding.

Usage

After installing the plugin, add it to your Logstash configuration file:

output {
  awslogs {
    access_key_id => "YOUR_ACCESS_KEY_ID"
    secret_access_key => "YOUR_SECRET_ACCESS_KEY"
    region => "us-east-1"
    log_group_name => "your_log_group_name"
    log_stream_name => "your_log_stream_name"
  }
}

Alternative Configuration Options

  1. Using AWS Session Token: If your environment requires temporary credentials with a session token, you can include it as follows:

    output {
  awslogs {
    access_key_id => "YOUR_ACCESS_KEY_ID"
    secret_access_key => "YOUR_SECRET_ACCESS_KEY"
    session_token => "YOUR_SESSION_TOKEN"
    region => "us-east-1"
    log_group_name => "your_log_group_name"
    log_stream_name => "your_log_stream_name"
  }
}

  2. Using IRSA (IAM Roles for Service Accounts): If you are running Logstash in an environment like Amazon EKS or EC2, where IAM roles are available, you can omit access_key_id, secret_access_key, and session_token. The plugin will automatically use the IAM role assigned to the service account or instance.

    output {
  awslogs {
    region => "us-east-1"
    log_group_name => "your_log_group_name"
    log_stream_name => "your_log_stream_name"
  }
}

    Ensure that the IAM role has the necessary permissions to write to CloudWatch Logs.

Parameters:

  • access_key_id: Your AWS Access Key ID.
  • secret_access_key: Your AWS Secret Access Key.
  • session_token: (Optional) Your AWS session token for temporary credentials.
  • region: AWS Region (e.g., us-east-1).
  • log_group_name: The name of the CloudWatch Logs group.
  • log_stream_name: The name of the CloudWatch Logs stream.

Make sure the provided AWS credentials or IAM roles have sufficient permissions to write to CloudWatch Logs.

Development

  1. Clone the repository:

    git clone https://github.com/Anarhyst266/logstash-output-awslogs.git

  2. Navigate to the plugin directory:

    cd logstash-output-awslogs

  3. Install dependencies:

    bundle install

  4. For local testing with Logstash:

    • Clone the Logstash repository.

    • In the Gemfile of Logstash, add the following line:

      gem "logstash-output-awslogs", :path => "/path/to/your/plugin"

    • Install the plugin:

      bin/logstash-plugin install --no-verify

    • Start Logstash with your configuration.

Contribution

Contributions are welcome! Please create issues or submit pull requests to help improve the project.

License

This project is licensed under the Apache 2.0 License. See the LICENSE file for details.

Acknowledgments

This plugin is based on the work by RickyCook.