Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Metricbeat] Add Google Cloud Platform module #14829

Merged
merged 59 commits into from
Jan 8, 2020
Merged
Show file tree
Hide file tree
Changes from 58 commits
Commits
Show all changes
59 commits
Select commit Hold shift + click to select a range
8d9ed54
Atomic commit
sayden Oct 17, 2019
9a5e4e3
add vendor
sayden Nov 13, 2019
a4969cd
Atomic commit
sayden Nov 27, 2019
1c787b1
Add google.golang.org/api/googleapi to vendoring
sayden Nov 28, 2019
410b901
Added google.golang.org/api/internal/third_party/uritemplates library
sayden Nov 28, 2019
b562f27
Added field.yml for compute and update docs
sayden Nov 28, 2019
57f956a
Add google.golang.org/genproto/googleapis/api to vendor
sayden Nov 29, 2019
e01a700
Add google.golang.org/genproto/googleapis/api/distribution to vendor
sayden Nov 29, 2019
39f9ed9
Add google.golang.org/genproto/googleapis/api/label to vendor
sayden Nov 29, 2019
af4dd18
Add google.golang.org/genproto/googleapis/type/calendarperiod to vendor
sayden Nov 29, 2019
f17f4c6
Run go vet
sayden Nov 29, 2019
3f33340
Fix unnamed variable in test
sayden Nov 29, 2019
13a00ed
Update notice
sayden Nov 29, 2019
94c2b95
Add context to the Metrics Requester
sayden Dec 11, 2019
87435f5
Separate groups of ECS fields
sayden Dec 11, 2019
c84bc76
Add machine type to the event output
sayden Dec 11, 2019
e12112f
Update vendoring with fixed version of cloud monitoring api (no changes)
sayden Dec 11, 2019
8573777
Fix version of compute google.golang.org/api/compute/v1 and update ve…
sayden Dec 11, 2019
25d1e14
Fixed version for google.golang.org/api/googleapi and update vendor f…
sayden Dec 11, 2019
906ceb4
Fix vendoring for package google.golang.org/api/internal/gensupport t…
sayden Dec 11, 2019
915bf18
Fix package google.golang.org/api/internal/third_party/uritemplates t…
sayden Dec 11, 2019
48f7ba2
Revert google.golang.org/api/googleapi to version 0.7.0 and update ve…
sayden Dec 11, 2019
154108e
Fix typo
sayden Dec 12, 2019
79d4955
Change contants to lowercase
sayden Dec 13, 2019
3191352
Changes after reviews
sayden Dec 16, 2019
33894e8
Rename some constants
sayden Dec 17, 2019
d5f93c4
Fix a couple of comments
sayden Dec 17, 2019
8d93a3d
One last comment
sayden Dec 17, 2019
24ce9c8
Address comments
sayden Dec 18, 2019
55fdb51
Merge branch 'master' into feature/xp/mb/gcp/stackdriver-compute
sayden Dec 18, 2019
d57231a
Fix behavior of exclude labels
sayden Dec 19, 2019
03d9c28
Remove services of 2nd phase
sayden Dec 19, 2019
6ad3133
Add missing comment
sayden Dec 19, 2019
8a079a0
Update notice file
sayden Dec 19, 2019
44cf435
Remove future metricsets
sayden Dec 19, 2019
6a3accf
Remove unused metricsets
sayden Dec 19, 2019
7530216
WIP add docs
sayden Dec 20, 2019
d12ae42
Fix use of HTTP client instead of gRPC
sayden Dec 31, 2019
c8a974e
Update docs and metadata
sayden Dec 31, 2019
a3e6f6a
Merge branch 'master' into feature/xp/mb/gcp/stackdriver-compute
sayden Dec 31, 2019
5fdf780
Remove storage metricset and stackdriver docs
sayden Dec 31, 2019
68b906c
Add dynamic mapping fields?
sayden Dec 31, 2019
242262c
Potential docs fix
sayden Dec 31, 2019
0c685b7
Fix incorrect vendor merge
sayden Dec 31, 2019
f61f051
Update some docs (without collect?)
sayden Jan 6, 2020
fd455c9
Fix indentation in vendor file
sayden Jan 8, 2020
bf5f06e
Store only one option and save it in New
sayden Jan 8, 2020
9edadd7
Fix and rephrasing things in docs
sayden Jan 8, 2020
f12fdc7
Regenerate docs and pass fmt
sayden Jan 8, 2020
45f33e6
Add period recommendations
sayden Jan 8, 2020
c96397a
Removed spaces from indendation
sayden Jan 8, 2020
b83ff57
Updated docs.
sayden Jan 8, 2020
5ed657f
Remove data.json from stackdriver. Update the one from compute
sayden Jan 8, 2020
242ace3
Split data.json
sayden Jan 8, 2020
71d9cff
Remove markdown from asciidocs
sayden Jan 8, 2020
07fda7c
Beautify machine type data
sayden Jan 8, 2020
5a3cac1
Merge branch 'master' into feature/xp/mb/gcp/stackdriver-compute
sayden Jan 8, 2020
edff0e9
Set the reference region to a known one by default
sayden Jan 8, 2020
6e69878
Update docs
sayden Jan 8, 2020
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
67 changes: 64 additions & 3 deletions NOTICE.txt
Original file line number Diff line number Diff line change
Expand Up @@ -5903,8 +5903,8 @@ OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

--------------------------------------------------------------------
Dependency: google.golang.org/api
Version: v0.7.0
jsoriano marked this conversation as resolved.
Show resolved Hide resolved
Revision: 02490b97dff7cfde1995bd77de808fd27053bc87
Version: v0.14.0
Revision: 8a410c21381766a810817fd6200fce8838ecb277
License type (autodetected): BSD-3-Clause
./vendor/google.golang.org/api/LICENSE:
--------------------------------------------------------------------
Expand Down Expand Up @@ -5936,6 +5936,67 @@ THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

--------------------------------------------------------------------
Dependency: google.golang.org/api/googleapi/internal/uritemplates
Version: v0.7.0
Revision: 02490b97dff7cfde1995bd77de808fd27053bc87
License type (autodetected): MIT
./vendor/google.golang.org/api/googleapi/internal/uritemplates/LICENSE:
--------------------------------------------------------------------
Copyright (c) 2013 Joshua Tacoma

Permission is hereby granted, free of charge, to any person obtaining a copy of
this software and associated documentation files (the "Software"), to deal in
the Software without restriction, including without limitation the rights to
use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
the Software, and to permit persons to whom the Software is furnished to do so,
subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

--------------------------------------------------------------------
Dependency: google.golang.org/api/internal/third_party/uritemplates
Version: v0.14.0
Revision: 8a410c21381766a810817fd6200fce8838ecb277
License type (autodetected): BSD-3-Clause
./vendor/google.golang.org/api/internal/third_party/uritemplates/LICENSE:
--------------------------------------------------------------------
Copyright (c) 2013 Joshua Tacoma. All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are
met:

* Redistributions of source code must retain the above copyright
notice, this list of conditions and the following disclaimer.
* Redistributions in binary form must reproduce the above
copyright notice, this list of conditions and the following disclaimer
in the documentation and/or other materials provided with the
distribution.
* Neither the name of Google Inc. nor the names of its
contributors may be used to endorse or promote products derived from
this software without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

--------------------------------------------------------------------
Dependency: google.golang.org/appengine
Version: v1.6.1
Expand All @@ -5948,7 +6009,7 @@ Apache License 2.0

--------------------------------------------------------------------
Dependency: google.golang.org/genproto
Revision: fa694d86fc64c7654a660f8908de4e879866748d
Revision: 83cc0476cb11ea0da33dacd4c6354ab192de6fe6
License type (autodetected): Apache-2.0
./vendor/google.golang.org/genproto/LICENSE:
--------------------------------------------------------------------
Expand Down
15 changes: 15 additions & 0 deletions metricbeat/docs/fields.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ grouped in the following categories:
* <<exported-fields-envoyproxy>>
* <<exported-fields-etcd>>
* <<exported-fields-golang>>
* <<exported-fields-googlecloud>>
* <<exported-fields-graphite>>
* <<exported-fields-haproxy>>
* <<exported-fields-host-processor>>
Expand Down Expand Up @@ -13925,6 +13926,20 @@ format: bytes
--
[[exported-fields-googlecloud]]
== Google Cloud Platform fields
GCP module
*`googlecloud.labels`*::
+
--
type: object
--
[[exported-fields-graphite]]
== Graphite fields
Expand Down
100 changes: 100 additions & 0 deletions metricbeat/docs/modules/googlecloud.asciidoc
Original file line number Diff line number Diff line change
@@ -0,0 +1,100 @@
////
This file is generated! See scripts/mage/docs_collector.go
////

[[metricbeat-module-googlecloud]]
[role="xpack"]
== Google Cloud Platform module

beta[]

This module periodically fetches monitoring metrics from Google Cloud Platform using
https://cloud.google.com/monitoring/api/metrics_gcp[Stackdriver Monitoring API] for Google Cloud Platform services.
Note: extra GCP charges on Stackdriver Monitoring API requests will be generated by this module.

[float]
== Module config and parameters
This is a list of the possible module parameters you can tune:

* *zone*: A single string with the zone you want to monitor like "us-central1-a". If you need to fetch from multiple regions, you have to setup a different configuration for each (but you don't need a new instance of Metricbeat running)
* *project_id*: A single string with your GCP Project ID
* *credentials_file_path*: A single string pointing to the JSON file path reachable by Metricbeat that you have created using IAM.
* *exclude_labels*: (`true`/`false` default `false`) Do not extract extra labels and metadata information from Metricsets and fetch metrics onlly. At the moment, *labels and metadata extraction is only supported* in Compute Metricset.

[float]
== Authentication, authorization and permissions.
Authentication and authorization in Google Cloud Platform can be achieved in many ways. For the current version of the Google Cloud Platform module for Metricbeat, the only supported method is using Service Account JSON files. A typical JSON with a private key looks like this:

[float]
==== Example Credentials
[source,json]
----
{
"type": "service_account",
"project_id": "your-project-id",
"private_key_id": "a_private_key_id",
"private_key": "-----BEGIN PRIVATE KEY-----your private key\n-----END PRIVATE KEY-----\n",
"client_email": "some-email@your-project-id.iam.gserviceaccount.com",
"client_id": "123456",
"auth_uri": "https://accounts.google.com/o/oauth2/auth",
"token_uri": "https://oauth2.googleapis.com/token",
"auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
"client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/metricbeat-testing%40your-project-id.iam.gserviceaccount.com"
}
----

Generally, you have to create a Service Account and assign it the following roles or the permissions described on each role:

* `Compute Viewer` (1 permission in use of 138):
- `monitoring.metricDescriptors.list`
- `monitoring.timeSeries.list`

* `Monitoring Viewer` (2 permissions in use of 13)
- `compute.instances.get`

You can play in IAM pretty much with your service accounts and Instance level access to your resources (for example, allowing that everything running in an Instance is authorized to use the Compute API). The module uses Google Cloud Platform libraries for authentication so many possibilities are open but the Module is only supported by using the method mentioned above.

[float]
== Google Cloud Platform module: Under the hood

Google Cloud Platform offers the https://cloud.google.com/monitoring/api/metrics_gcp[Stackdriver Monitoring API] to fetch metrics from its services. *Those metrics are retrieved one by one*.

If you also want to *extract service metadata and labels* (by setting `exclude_labels` to false, which is the default state). You also make a new API check on the corresponding service. Service labels requires a new API call to extract those metrics. In the worst case the number of API calls will be doubled. In the best case, all metrics come from the same GCP entity and 100% of the required information is included in the first API call (which is cached for subsequent calls).

A recommended `period` value between fetches is between 5 and 10 minutes, depending on how granular you want your metrics. GCP restricts information for less than 5 minutes.

[float]
=== Rough estimation of the number of API Calls
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for adding this section, this is something usually asked.
Would it make sense to mention something about the recommended periods, or about how GCP charges the requests?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I added a short section about periods but I think it's better to not mention many things that appear directly (and better explained) in GCP docs because we risk to get our docs outdated. I feel like it's safe to assume that if they are worried about how GCP charges them, they'll check GCP and the "under the hood" section will gives them the overall idea of how it might impact them

Google Cloud Platform pricing depends of the number of requests you do to their API's. Here you have some information that you can use to make an estimation of the pricing you should expect. For example, imagine that you have a Compute Metricset activated and you don't want to exclude labels. You have a total of 20 instances running in a particular GCP project, region and zone.

For example, if Compute Metricset fetches 14 metrics (which is the number of metrics fetched in the early beta version). Each of those metrics will attempt an API call to Compute API to retrieve also their metadata. Because you have 20 different instances, the total number of API calls that will be done on each refresh period are: 14 metrics + 20 instances = 34 API requests every 5 minutes if that is your current Period. 9792 API requests per day with one zone. If you add 2 zones more with the same amount of instances you'll have 19584 API requests per day (9792 on each zone) or around 587520 per month for the Compute Metricset. This maths must be done for each different Metricset with slight variations.


[float]
=== Example configuration

The Google Cloud Platform module supports the standard configuration options that are described
in <<configuration-metricbeat>>. Here is an example configuration:

[source,yaml]
----
metricbeat.modules:
- module: googlecloud
metricsets:
- compute
zone: "your zone"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can we specify more than one zone here?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good question. We can't specify it right now. The idea was to maintain first version as simple as possible. It's actually possible to request all metrics for a project without zone filter or even request various zones but we are moving slow yet and see how it goes because the code to request metrics and convert them using lightweight modules is pretty complex already.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

perhaps it would be interesting to put a real zone here so things won't fail if they start the module out of the box?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I prefer that things do fail explicitly so that a user with machines in Europe that runs Metricbeat will have an specific error saying zone "your zone" not found instead of silent errors of simply not sending any event because there are no machines in that zone/region which may lead to think that Metricbeat is not working properly (it's your fault because you didn't set the correct zone, but that's implicit)

project_id: "your project id"
credentials_file_path: "your JSON credentials file path"
jsoriano marked this conversation as resolved.
Show resolved Hide resolved
exclude_labels: false
period: 300s
----

[float]
=== Metricsets

The following metricsets are available:

* <<metricbeat-metricset-googlecloud-compute,compute>>

include::googlecloud/compute.asciidoc[]

18 changes: 18 additions & 0 deletions metricbeat/docs/modules/googlecloud/compute.asciidoc
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
////
This file is generated! See scripts/mage/docs_collector.go
////

[[metricbeat-metricset-googlecloud-compute]]
=== Google Cloud Platform compute metricset

beta[]

include::../../../../x-pack/metricbeat/module/googlecloud/compute/_meta/docs.asciidoc[]

This is a default metricset. If the host module is unconfigured, this metricset is enabled by default.

==== Fields

For a description of each field in the metricset, see the
<<exported-fields-googlecloud,exported fields>> section.

3 changes: 3 additions & 0 deletions metricbeat/docs/modules_list.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -88,6 +88,8 @@ This file is generated! See scripts/mage/docs_collector.go
|<<metricbeat-module-golang,Golang>> |image:./images/icon-yes.png[Prebuilt dashboards are available] |
.2+| .2+| |<<metricbeat-metricset-golang-expvar,expvar>>
|<<metricbeat-metricset-golang-heap,heap>>
|<<metricbeat-module-googlecloud,Google Cloud Platform>> beta[] |image:./images/icon-no.png[No prebuilt dashboards] |
.1+| .1+| |<<metricbeat-metricset-googlecloud-compute,compute>> beta[]
|<<metricbeat-module-graphite,Graphite>> |image:./images/icon-no.png[No prebuilt dashboards] |
.1+| .1+| |<<metricbeat-metricset-graphite-server,server>>
|<<metricbeat-module-haproxy,HAProxy>> |image:./images/icon-yes.png[Prebuilt dashboards are available] |
Expand Down Expand Up @@ -246,6 +248,7 @@ include::modules/elasticsearch.asciidoc[]
include::modules/envoyproxy.asciidoc[]
include::modules/etcd.asciidoc[]
include::modules/golang.asciidoc[]
include::modules/googlecloud.asciidoc[]
include::modules/graphite.asciidoc[]
include::modules/haproxy.asciidoc[]
include::modules/http.asciidoc[]
Expand Down
Loading