Home Esplora Aiuto
Registrati Accedi
oscarleiva
/
energylink
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): 0280626a1e
Rami (Branch) Tag
energylink
/
dashboards
/
logstash.js

logstash.js 4.2 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171 
  1. /*
    2. 

  2.  * Complex scripted Logstash dashboard
    3. 

  3.  * This script generates a dashboard object that Kibana can load. It also takes a number of user
    4. 

  4.  * supplied URL parameters, none are required:
    5. 

  5.  *
    6. 

  6.  * index :: Which index to search? If this is specified, interval is set to 'none'
    7. 

  7.  * pattern :: Does nothing if index is specified. Set a timestamped index pattern. Default: [logstash-]YYYY.MM.DD
    8. 

  8.  * interval :: Sets the index interval (eg: day,week,month,year), Default: day
    9. 

  9.  *
    10. 

  10.  * split :: The character to split the queries on Default: ','
    11. 

  11.  * query :: By default, a comma seperated list of queries to run. Default: *
    12. 

  12.  *
    13. 

  13.  * from :: Search this amount of time back, eg 15m, 1h, 2d. Default: 15m
    14. 

  14.  * timefield :: The field containing the time to filter on, Default: @timestamp
    15. 

  15.  *
    16. 

  16.  * fields :: comma seperated list of fields to show in the table
    17. 

  17.  * sort :: comma seperated field to sort on, and direction, eg sort=@timestamp,desc
    18. 

  18.  *
    19. 

  19.  */
    20. 

  20. 

  21. var dashboard, ARGS, queries, _d_timespan;
    22. 

  22. 

  23. // Set a default timespan if one isn't specified
    24. 

  24. _d_timespan = '1h';
    25. 

  25. 

  26. // arguments[0] contains a hash of the URL parameters, make it shorter
    27. 

  27. ARGS = arguments[0];
    28. 

  28. 

  29. // Intialize a skeleton with nothing but a rows array and service object
    30. 

  30. dashboard = {
    31. 

  31.   rows : [],
    32. 

  32.   services : {}
    33. 

  33. };
    34. 

  34. 

  35. // Set a title
    36. 

  36. dashboard.title = 'Logstash Search';
    37. 

  37. 

  38. // Allow the user to set the index, if they dont, fall back to logstash.
    39. 

  39. if(!_.isUndefined(ARGS.index)) {
    40. 

  40.   dashboard.index = {
    41. 

  41.     default: ARGS.index,
    42. 

  42.     interval: 'none'
    43. 

  43.   }
    44. 

  44. } else {
    45. 

  45.   // Don't fail to default
    46. 

  46.   dashboard.failover = false;
    47. 

  47.   dashboard.index = {
    48. 

  48.     default: ARGS.index||'ADD_A_TIME_FILTER',
    49. 

  49.     pattern: ARGS.pattern||'[logstash-]YYYY.MM.DD',
    50. 

  50.     interval: ARGS.interval||'day'
    51. 

  51.   }
    52. 

  52. }
    53. 

  53. 

  54. // In this dashboard we let users pass queries as comma seperated list to the query parameter.
    55. 

  55. // Or they can specify a split character using the split aparameter
    56. 

  56. // If query is defined, split it into a list of query objects
    57. 

  57. // NOTE: ids must be integers, hence the parseInt()s
    58. 

  58. if(!_.isUndefined(ARGS.query)) {
    59. 

  59.   queries = _.object(_.map(ARGS.query.split(ARGS.split||','), function(v,k) {
    60. 

  60.     return [k,{
    61. 

  61.       query: v,
    62. 

  62.       id: parseInt(k),
    63. 

  63.       alias: v
    64. 

  64.     }];
    65. 

  65.   }));
    66. 

  66. } else {
    67. 

  67.   // No queries passed? Initialize a single query to match everything
    68. 

  68.   queries = {
    69. 

  69.     0: {
    70. 

  70.       query: '*',
    71. 

  71.       id: 0
    72. 

  72.     }
    73. 

  73.   }
    74. 

  74. }
    75. 

  75. 

  76. // Now populate the query service with our objects
    77. 

  77. dashboard.services.query = {
    78. 

  78.   list : queries,
    79. 

  79.   ids : _.map(_.keys(queries),function(v){return parseInt(v);})
    80. 

  80. }
    81. 

  81. 

  82. // Lets also add a default time filter, the value of which can be specified by the user
    83. 

  83. // This isn't strictly needed, but it gets rid of the info alert about the missing time filter
    84. 

  84. dashboard.services.filter = {
    85. 

  85.   list: {
    86. 

  86.     0: {
    87. 

  87.       from: kbn.time_ago(ARGS.from||_d_timespan),
    88. 

  88.       to: new Date(),
    89. 

  89.       field: ARGS.timefield||"@timestamp",
    90. 

  90.       type: "time",
    91. 

  91.       active: true,
    92. 

  92.       id: 0
    93. 

  93.     }
    94. 

  94.   },
    95. 

  95.   ids: [0]
    96. 

  96. }
    97. 

  97. 

  98. // Ok, lets make some rows. The Filters row is collapsed by default
    99. 

  99. dashboard.rows = [
    100. 

  100.   {
    101. 

  101.     title: "Options",
    102. 

  102.     height: "30px"
    103. 

  103.   },
    104. 

  104.   {
    105. 

  105.     title: "Query",
    106. 

  106.     height: "30px"
    107. 

  107.   },
    108. 

  108.   {
    109. 

  109.     title: "Filters",
    110. 

  110.     height: "100px",
    111. 

  111.     collapse: true
    112. 

  112.   },
    113. 

  113.   {
    114. 

  114.     title: "Chart",
    115. 

  115.     height: "300px"
    116. 

  116.   },
    117. 

  117.   {
    118. 

  118.     title: "Events",
    119. 

  119.     height: "400px"
    120. 

  120.   }
    121. 

  121. ];
    122. 

  122. 

  123. // Setup some panels. A query panel and a filter panel on the same row
    124. 

  124. dashboard.rows[0].panels = [
    125. 

  125.   {
    126. 

  126.     type: 'timepicker',
    127. 

  127.     span: 6,
    128. 

  128.     timespan: ARGS.from||_d_timespan
    129. 

  129.   },
    130. 

  130.   {
    131. 

  131.     type: 'dashcontrol',
    132. 

  132.     span: 3
    133. 

  133.   }
    134. 

  134. ];
    135. 

  135. 

  136. // Add a filtering panel to the 3rd row
    137. 

  137. dashboard.rows[1].panels = [
    138. 

  138.   {
    139. 

  139.     type: 'Query'
    140. 

  140.   }
    141. 

  141. ]
    142. 

  142. 

  143. 

  144. // Add a filtering panel to the 3rd row
    145. 

  145. dashboard.rows[2].panels = [
    146. 

  146.   {
    147. 

  147.     type: 'filtering'
    148. 

  148.   }
    149. 

  149. ]
    150. 

  150. 

  151. // And a histogram that allows the user to specify the interval and time field
    152. 

  152. dashboard.rows[3].panels = [
    153. 

  153.   {
    154. 

  154.     type: 'histogram',
    155. 

  155.     time_field: ARGS.timefield||"@timestamp",
    156. 

  156.     auto_int: true
    157. 

  157.   }
    158. 

  158. ]
    159. 

  159. 

  160. // And a table row where you can specify field and sort order
    161. 

  161. dashboard.rows[4].panels = [
    162. 

  162.   {
    163. 

  163.     type: 'table',
    164. 

  164.     fields: !_.isUndefined(ARGS.fields) ? ARGS.fields.split(',') : ['@timestamp','@message'],
    165. 

  165.     sort: !_.isUndefined(ARGS.sort) ? ARGS.sort.split(',') : [ARGS.timefield||'@timestamp','desc'],
    166. 

  166.     overflow: 'expand'
    167. 

  167.   }
    168. 

  168. ]
    169. 

  169. 

  170. // Now return the object and we're good!
    171. 

  171. return dashboard;
    172.