UNPKG

bunyan-stream-elasticsearch

Version:

A Bunyan stream for sending log data to Elasticsearch with custom entry function

github.com/bloublou2014/bunyan-stream-elasticsearch

bloublou2014/bunyan-stream-elasticsearch

131 lines (105 loc) 3.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
'use strict'; const Writable = require('stream').Writable; const elasticsearch = require('elasticsearch'); const moment = require('moment'); const defaultTemplate = require('./template.json'); const _ = require('lodash'); const levels = { 10: 'trace', 20: 'debug', 30: 'info', 40: 'warn', 50: 'error', 60: 'fatal' }; function generateIndexName(pattern, entry) { return moment.utc(entry.timestamp).format(pattern); } function callOrString(value, entry) { if (typeof (value) === 'function') { return value(entry); } return value; } function generateRawTemplateName(pattern) { // get only part between [] let re = /(\[([^\]]+)])/g; let match; let names = []; while (match = re.exec(pattern)) { names.push(match[2]); } if (names.length < 1) { names = [pattern]; } return { template: names[0] + '*', name: 'template-' + names.join('-') }; } class ElasticsearchStream extends Writable { constructor(options) { super(options); options = options || {}; this._client = options.client || new elasticsearch.Client(options); this._type = options.type || 'logs'; let indexPattern = options.indexPattern || '[logstash-]YYYY.MM.DD'; this._index = options.index || generateIndexName.bind(null, indexPattern); this._writeCallback = options.writeCallback; this._template = !options.template || options.template === true ? defaultTemplate : options.template; // async this.initTemplate(options.index || indexPattern, this._template); } initTemplate(name, template) { if (template === false) return; let tpl = generateRawTemplateName(name); template.template = tpl.template; return this._client.indices.putTemplate({ name: tpl.name, create: false, // can replace a previous one body: template }); } _write(entry, encoding, callback) { const client = this._client; const index = this._index; const type = this._type; const input = JSON.parse(entry.toString('utf8')); // Reassign these fields so them match what the default Kibana dashboard // expects to see. let output = { // The _timestamp field is deprecated. Instead, use a normal date field and set its value explicitly. 'date': input.time, 'level_int': input.level, 'level': levels[input.level], 'message': input.msg, 'datestamp': moment(input.time).format('YYYY.MM.DD'), }; // merge output = _.defaults(output, input); delete output.msg; delete output.v; delete output.time; if (input.err) { output.error = input.err; if (!output.message) output.message = output.error.message; } if (this._writeCallback) { output = this._writeCallback(output, input) || output; } const options = { index: callOrString(index, entry), type: callOrString(type, entry), body: output }; const self = this; client.index(options, function (err) { if (err) { self.emit('error', err); } callback(); }); } } module.exports = ElasticsearchStream;