Skip to content
This repository has been archived by the owner on Jul 19, 2023. It is now read-only.

Support multiline logs from multiple log groups #76

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Support multiline logs from multiple log groups #76

wants to merge 1 commit into from

Conversation

feltech
Copy link

@feltech feltech commented Apr 26, 2019

  • The logstash multiline codec plugin cannot, by default, differentiate
    between log lines from different sources. This means child lines could
    be grouped under the wrong parent line if multiple streams (CloudWatch
    log groups) are interleaved.
  • However, the multiline plugin provides a barely-documented
    pseudo-codec wrapper, which augments a given underlying codec with an
    "identity map".
  • So use this wrapper, passing the CloudWatch log group as the
    identity.

@feltech
[RD-34614] Support multiline logs from multiple log groups
618f727 
* The logstash multiline codec plugin cannot, by default, differentiate
between log lines from different sources.  This means child lines could
be grouped under the wrong parent line if multiple streams (CloudWatch
log groups) are interleaved.
* However, the multiline plugin provides a barely-documented
pseudo-codec wrapper, which augments a given underlying codec with an
"identity map".
* So use this wrapper, passing the CloudWatch log group as the
`identity`.
@feltech
Copy link
Author

feltech commented Apr 29, 2019

Travis seems to have failed for some unrelated reason

Gem::RuntimeRequirementNotMetError: rake requires Ruby version >= 2.0.0. The current ruby version is 1.9.
An error occurred while installing rake (12.3.2), and Bundler cannot continue.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@feltech