Home Explore Help
Register Sign In
oscarleiva
/
energylink
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 4b0678542c
Branches Tags
energylink
/
dashboards
/
logstash.js

logstash.js 4.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170 
  1. /*
    2. 

  2.  * Complex scripted Logstash dashboard
    3. 

  3.  * This script generates a dashboard object that Kibana can load. It also takes a number of user
    4. 

  4.  * supplied URL parameters, none are required:
    5. 

  5.  *
    6. 

  6.  * index :: Which index to search? If this is specified, interval is set to 'none'
    7. 

  7.  * pattern :: Does nothing if index is specified. Set a timestamped index pattern. Default: [logstash-]YYYY.MM.DD
    8. 

  8.  * interval :: Sets the index interval (eg: day,week,month,year), Default: day
    9. 

  9.  *
    10. 

  10.  * split :: The character to split the queries on Default: ','
    11. 

  11.  * query :: By default, a comma seperated list of queries to run. Default: *
    12. 

  12.  *
    13. 

  13.  * from :: Search this amount of time back, eg 15m, 1h, 2d. Default: 15m
    14. 

  14.  * timefield :: The field containing the time to filter on, Default: @timestamp
    15. 

  15.  *
    16. 

  16.  * fields :: comma seperated list of fields to show in the table
    17. 

  17.  * sort :: comma seperated field to sort on, and direction, eg sort=@timestamp,desc
    18. 

  18.  *
    19. 

  19.  */
    20. 

  20. 

  21. 'use strict';
    22. 

  22. 

  23. // Setup some variables
    24. 

  24. var dashboard, queries, _d_timespan;
    25. 

  25. 

  26. // All url parameters are available via the ARGS object
    27. 

  27. var ARGS;
    28. 

  28. 

  29. // Set a default timespan if one isn't specified
    30. 

  30. _d_timespan = '1h';
    31. 

  31. 

  32. // Intialize a skeleton with nothing but a rows array and service object
    33. 

  33. dashboard = {
    34. 

  34.   rows : [],
    35. 

  35.   services : {}
    36. 

  36. };
    37. 

  37. 

  38. // Set a title
    39. 

  39. dashboard.title = 'Logstash Search';
    40. 

  40. 

  41. // Allow the user to set the index, if they dont, fall back to logstash.
    42. 

  42. if(!_.isUndefined(ARGS.index)) {
    43. 

  43.   dashboard.index = {
    44. 

  44.     default: ARGS.index,
    45. 

  45.     interval: 'none'
    46. 

  46.   };
    47. 

  47. } else {
    48. 

  48.   // Don't fail to default
    49. 

  49.   dashboard.failover = false;
    50. 

  50.   dashboard.index = {
    51. 

  51.     default: ARGS.index||'ADD_A_TIME_FILTER',
    52. 

  52.     pattern: ARGS.pattern||'[logstash-]YYYY.MM.DD',
    53. 

  53.     interval: ARGS.interval||'day'
    54. 

  54.   };
    55. 

  55. }
    56. 

  56. 

  57. // In this dashboard we let users pass queries as comma seperated list to the query parameter.
    58. 

  58. // Or they can specify a split character using the split aparameter
    59. 

  59. // If query is defined, split it into a list of query objects
    60. 

  60. // NOTE: ids must be integers, hence the parseInt()s
    61. 

  61. if(!_.isUndefined(ARGS.query)) {
    62. 

  62.   queries = _.object(_.map(ARGS.query.split(ARGS.split||','), function(v,k) {
    63. 

  63.     return [k,{
    64. 

  64.       query: v,
    65. 

  65.       id: parseInt(k,10),
    66. 

  66.       alias: v
    67. 

  67.     }];
    68. 

  68.   }));
    69. 

  69. } else {
    70. 

  70.   // No queries passed? Initialize a single query to match everything
    71. 

  71.   queries = {
    72. 

  72.     0: {
    73. 

  73.       query: '*',
    74. 

  74.       id: 0
    75. 

  75.     }
    76. 

  76.   };
    77. 

  77. }
    78. 

  78. 

  79. // Now populate the query service with our objects
    80. 

  80. dashboard.services.query = {
    81. 

  81.   list : queries,
    82. 

  82.   ids : _.map(_.keys(queries),function(v){return parseInt(v,10);})
    83. 

  83. };
    84. 

  84. 

  85. // Lets also add a default time filter, the value of which can be specified by the user
    86. 

  86. // This isn't strictly needed, but it gets rid of the info alert about the missing time filter
    87. 

  87. dashboard.services.filter = {
    88. 

  88.   list: {
    89. 

  89.     0: {
    90. 

  90.       from: kbn.time_ago(ARGS.from||_d_timespan),
    91. 

  91.       to: new Date(),
    92. 

  92.       field: ARGS.timefield||"@timestamp",
    93. 

  93.       type: "time",
    94. 

  94.       active: true,
    95. 

  95.       id: 0
    96. 

  96.     }
    97. 

  97.   },
    98. 

  98.   ids: [0]
    99. 

  99. };
    100. 

  100. 

  101. // Ok, lets make some rows. The Filters row is collapsed by default
    102. 

  102. dashboard.rows = [
    103. 

  103.   {
    104. 

  104.     title: "Options",
    105. 

  105.     height: "30px"
    106. 

  106.   },
    107. 

  107.   {
    108. 

  108.     title: "Query",
    109. 

  109.     height: "30px"
    110. 

  110.   },
    111. 

  111.   {
    112. 

  112.     title: "Filters",
    113. 

  113.     height: "100px",
    114. 

  114.     collapse: true
    115. 

  115.   },
    116. 

  116.   {
    117. 

  117.     title: "Chart",
    118. 

  118.     height: "300px"
    119. 

  119.   },
    120. 

  120.   {
    121. 

  121.     title: "Events",
    122. 

  122.     height: "400px"
    123. 

  123.   }
    124. 

  124. ];
    125. 

  125. 

  126. // Setup some panels. A query panel and a filter panel on the same row
    127. 

  127. dashboard.rows[0].panels = [
    128. 

  128.   {
    129. 

  129.     type: 'timepicker',
    130. 

  130.     span: 6,
    131. 

  131.     timespan: ARGS.from||_d_timespan
    132. 

  132.   }
    133. 

  133. ];
    134. 

  134. 

  135. // Add a filtering panel to the 3rd row
    136. 

  136. dashboard.rows[1].panels = [
    137. 

  137.   {
    138. 

  138.     type: 'Query'
    139. 

  139.   }
    140. 

  140. ];
    141. 

  141. 

  142. 

  143. // Add a filtering panel to the 3rd row
    144. 

  144. dashboard.rows[2].panels = [
    145. 

  145.   {
    146. 

  146.     type: 'filtering'
    147. 

  147.   }
    148. 

  148. ];
    149. 

  149. 

  150. // And a histogram that allows the user to specify the interval and time field
    151. 

  151. dashboard.rows[3].panels = [
    152. 

  152.   {
    153. 

  153.     type: 'histogram',
    154. 

  154.     time_field: ARGS.timefield||"@timestamp",
    155. 

  155.     auto_int: true
    156. 

  156.   }
    157. 

  157. ];
    158. 

  158. 

  159. // And a table row where you can specify field and sort order
    160. 

  160. dashboard.rows[4].panels = [
    161. 

  161.   {
    162. 

  162.     type: 'table',
    163. 

  163.     fields: !_.isUndefined(ARGS.fields) ? ARGS.fields.split(',') : [],
    164. 

  164.     sort: !_.isUndefined(ARGS.sort) ? ARGS.sort.split(',') : [ARGS.timefield||'@timestamp','desc'],
    165. 

  165.     overflow: 'expand'
    166. 

  166.   }
    167. 

  167. ];
    168. 

  168. 

  169. // Now return the object and we're good!
    170. 

  170. return dashboard;
    171.