Version information
This version is compatible with:
- Puppet Enterprise 2023.8.x, 2023.7.x, 2023.6.x, 2023.5.x, 2023.4.x, 2023.3.x, 2023.2.x, 2023.1.x, 2023.0.x, 2021.7.x, 2021.6.x, 2021.5.x, 2021.4.x, 2021.3.x, 2021.2.x, 2021.1.x, 2021.0.x
- Puppet > 7.0.0
- Amazon, Ubuntu, RedHat, CentOS
Start using this module
Add this module to your Puppetfile:
mod 'veepshosting-cloudwatchlogs', '5.0.0'Learn more about managing modules with a PuppetfileDocumentation
cloudwatchlogs 
Table of Contents
- Overview
- Module Description - What the module does and why it is useful
- Setup - The basics of getting started with cloudwatchlogs
- Usage - Configuration options and additional functionality
- Reference - An under-the-hood peek at what the module is doing and how
- Limitations - OS compatibility, etc.
- Development - Guide for contributing to the module
Overview
This module is a fork of this repo that has been fixed to work with hiera. Examples have been adjusted to be hiera yaml examples. Otherwise the functionality is very similar. This module installs, configures and manages the service for the AWS Cloudwatch Logs Agent on Amazon Linux, Ubuntu, Red Hat & CentOS EC2 instances.
Module Description
CloudWatch Logs can be used to monitor your logs for specific phrases, values, or patterns. For example, you could set an alarm on the number of errors that occur in your system logs or view graphs of web request latencies from your application logs. You can view the original log data to see the source of the problem if needed. Log data can be stored and accessed for as long as you need using highly durable, low-cost storage so you don’t have to worry about filling up hard drives.
Setup
What cloudwatchlogs affects
- The
awslogspackage. - Configuration files under
/etc/awslogs. - The
awslogsservice.
Setup Requirements
This module does NOT manage the AWS CLI credentials. As such if you are not using an IAM role (recommended) then you will need some other way of managing the credentials.
This module by Justin Downing is recommended for this purpose.
Beginning with cloudwatchlogs
ALL EXAMPLES ARE FOR HIERA IN YAML
The minimum you need to get this module up and running is (assuming your instance is launched with a suitable IAM role):
classes:
- cloudwatchlogs
cloudwatchlogs:
Usage
On NON Amazon Linux instances you also need to provide a default region:
classes:
- cloudwatchlogs
cloudwatchlogs:
region: 'eu-west-1'
For each log you want send to Cloudwatch Logs you create a cloudwatchlogs::log resource.
This shall be set as its own item. It requires a name for each log to create so that a nested object is created.
A simple example that might be used on the RedHat ::osfamily is:
classes:
- cloudwatchlogs
cloudwatchlogs:
region: 'eu-west-1'
cloudwatchlogs::log:
'Messages':
path: '/var/log/messages'
'Node':
path: '/path/to/your/node.log'
See the examples/ directory for further examples.
Reference
cloudwatchlogs
state_file:
Defaults:
- Amazon Linux:
/var/lib/awslogs/agent-state - Other:
/var/awslogs/state/agent-state
State file for the awslogs agent.
logging_config_file:
Defaults: /etc/awslogs/awslogs_dot_log.conf
Config file for the awslogs agent logging system (http://docs.aws.amazon.com/AmazonCloudWatch/latest/DeveloperGuide/AgentReference.html).
region:
Default: undef
log_level:
Default: undef
The region your EC2 instance is running in.
NOTE: This is required for none Amazon distros.
cloudwatchlogs::log
path
Default: undef
Optional. This is the absolute path to the log file being managed. If not set the name of the resource is used instead (and must be an absolute path if that this situation occurs).
streamname
Default: {instance_id}
The name of the stream in Cloudwatch Logs. This should be a string like all the others. See the ams cloudwatch logs docs for options. One other common option is {hostname}
datetime_format
Default: %b %d %H:%M:%S
Specifies how the timestamp is extracted from logs. See the official docs for further info.
log_group_name
Default: Resource Name
Specifies the destination log group. A log group will be created automatically if it doesn't already exist.
multi_line_start_pattern
Default: undef
Optional. This is a regex string that identifies the start of a log line. See the official docs for further info.
Example
classes:
- cloudwatchlogs
cloudwatchlogs:
region: 'eu-west-1'
cloudwatchlogs::log:
'node':
path: '/path/to/your/logfile.log'
streamname: '{hostname}'
datetime_format: '%Y-%m-%dT%H:%M:%S%z'
log_group_name: 'my-node-project'
'Messages':
path: '/var/log/messages'
streamname: '{hostname}'
log_group_name: 'system-messages'
Http Proxy Usage
If you have a http_proxy or https_proxy then run the following puppet code after calling cloudwatchlogs to modify the launcher script as a workaround bcause awslogs python code currently doesn't have http_proxy support:
$launcher = "#!/bin/sh
# Version: 1.3.5
echo -n $$ > /var/awslogs/state/awslogs.pid
/usr/bin/env -i AWS_CONFIG_FILE=/var/awslogs/etc/awscli.conf HOME=\$HOME HTTPS_PROXY=${http_proxy} HTTP_PROXY=${http_proxy} NO_PROXY=169.254.169.254 /bin/nice -n 4 /var/awslogs/bin/aws logs push --config-file /var/awslogs/etc/awslogs.conf >> /var/log/awslogs.log 2>&1
"
file { '/var/awslogs/bin/awslogs-agent-launcher.sh':
ensure => file,
owner => root,
group => root,
mode => '0755',
content => $launcher,
require => Class['cloudwatchlogs'],
}
Limitations
This module is currently only compatible with:
- Amazon Linux AMI 2014.09 or later.
- Ubuntu
- Red Hat
- CentOS
More information on support as well as information in general about the set-up of the Cloudwatch Logs agent can be found here.
Development
Contributions are welcome via pull requests.
To test and build:
Download the Puppet Development Kit from [https://puppet.com/download-puppet-development-kit]
To build run pdk build from terminal in project folder
To run lint and validator pdk validate
To run unit tests pdk test unit
Contributors
Authors:
Original Repo Authors:
All other contributions: https://github.com/Veeps-Hosting/puppet-cloudwatchlogs/graphs/contributors
2022-12-09 - Release 4.0.2
Summary
Minor bugfix.
Bugfixes
- Remove notify on each Puppet run, normally only used for debugging
- Bump dependencies to latest compatible versions
2022-12-09 - Release 4.0.0
Summary
Specify python2 execution to achieve functionality with Ubuntu 20.04 and later, including 22.04.
Bugfixes
- Specify python2 binary for execution, includgin regression testing back to Ubuntu 18.04.
- Bump dependencies to latest compatible versions
2016-12-04 - Release 3.2.1
Summary
Small bugfix release.
Bugfixes
- Force creation of symlink at
/var/awslogs/etc/confto prevent issues during upgrades. - Add appropriate
requiresbased on OS for the main config.
2016-07-12 - Release 2.3.0
Summary
Large feature and bug fix release.
Bugfixes
- Ensure config is concated before installation.
- Various linting & test fixes.
Features
- Support for setting
cloudwatchlogs::logsvia a Hiera hash. - Support setting the
regionin the mainawscliconfig file. - Support for setting the
log_levelfor logs. - Add support for
cloudwatchlogs::compartment_log.
2016-03-22 - Release 2.2.0
Summary
Support additional CloudWatch Logs functionality & small bigfixes.
Bugfixes
- Ensure
wgetis installed.
Features
- Now supports the
multi_line_start_patternfor each log. - Logs can now be defined as a hash as a part fo the main class.
2015-09-15 - Release 2.1.0
Summary
Now able to additionally set an additional config line for logs.
Features
- You can now specify the
log_group_nameexplicitly, otherwise it defaults to the resource name as per the previous behaviour.
2015-06-09 - Release 2.0.0
Summary
Major release switching to using puppetlabs/concat to build config files and various other breaking changes.
Features
- Moved to using puppetlabs/concat for each log file entry. This allows use of more customizable entries more easily down the road.
- Removed management of AWS CLI keys, this should be done by mdoules designed for this purpose.
- Documented usage of using a http_proxy on instances that might require it.
- Provided examples of IAM role for Cloudwatch Logs & of various ways to specify log entries.
2015-06-04 - Release 1.1.2
Summary
Small bugfix release.
Bugfixes
- Fixed default stream name.
- Only install
wgetpackage if not defined else where in catalogue.
2015-05-26 - Release 1.1.1
Summary
Minor bugfix release.
Bugfixes
- Fix metadata requirement for puppetlabs/stdlib.
- Fix
streamnamevariable format.
2015-04-30 - Release 1.1.0
Summary
Small feature release supporting slightly more fine grained log config.
Features
- Make credentials optional, creating only if info is provided. Otherwise, assume an IAM role is present to use.
- Add
streamnamevariable.
2015-04-18 - Release 1.0.0
Summary
Initial release.
Dependencies
- puppetlabs/stdlib (> 9.0.0)
- puppetlabs/concat (> 1.0.0)
Copyright (c) 2015, Danny Roberts & Russ McKendrick All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. 2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.