-
Notifications
You must be signed in to change notification settings - Fork 488
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
elasticsearch:opensearch: add documentation for aws_service_name option #1032
Conversation
pipeline/outputs/opensearch.md
Outdated
@@ -21,10 +21,11 @@ The following instructions assumes that you have a fully operational OpenSearch | |||
| AWS\_STS\_Endpoint | Specify the custom sts endpoint to be used with STS API for Amazon OpenSearch Service | | | |||
| AWS\_Role\_ARN | AWS IAM Role to assume to put records to your Amazon cluster | | | |||
| AWS\_External\_ID | External ID for the AWS IAM Role specified with `aws_role_arn` | | | |||
| AWS\_Service\_Name | Service name to be used in AWS Sigv4 signature. For integration with Amazon OpenSearch Serverless, set to `aoss` | es | |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Can we add a serverless example?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Nit: Can you add a period
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Added an example and a period.
pipeline/outputs/opensearch.md
Outdated
@@ -157,3 +158,21 @@ Without this you will see errors like: | |||
```text | |||
{"error":{"root_cause":[{"type":"illegal_argument_exception","reason":"Action/metadata line [1] contains an unknown parameter [_type]"}],"type":"illegal_argument_exception","reason":"Action/metadata line [1] contains an unknown parameter [_type]"},"status":400} | |||
``` | |||
|
|||
### Amazon OpenSearch Serverless <a id="#aws-opensearch-serverless"></a> | |||
Amazon OpenSearch Serverless an offering that eliminates your need to manage OpenSearch clusters. All existing Fluent Bit OpenSearch output plugin options work with OpenSearch Serverless. The only difference with serverless from a Fluent Bit POV is that you must specify the service name as `aoss` (Amazon OpenSearch Serverless) when you enable `AWS_Auth`: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
*is an offering
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
updated
pipeline/outputs/opensearch.md
Outdated
@@ -157,3 +158,21 @@ Without this you will see errors like: | |||
```text | |||
{"error":{"root_cause":[{"type":"illegal_argument_exception","reason":"Action/metadata line [1] contains an unknown parameter [_type]"}],"type":"illegal_argument_exception","reason":"Action/metadata line [1] contains an unknown parameter [_type]"},"status":400} | |||
``` | |||
|
|||
### Amazon OpenSearch Serverless <a id="#aws-opensearch-serverless"></a> | |||
Amazon OpenSearch Serverless an offering that eliminates your need to manage OpenSearch clusters. All existing Fluent Bit OpenSearch output plugin options work with OpenSearch Serverless. The only difference with serverless from a Fluent Bit POV is that you must specify the service name as `aoss` (Amazon OpenSearch Serverless) when you enable `AWS_Auth`: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
For Fluent Bit, the only difference is that you must specify the service name...
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Updated
pipeline/outputs/opensearch.md
Outdated
|
||
**Data Access Permissions** | ||
|
||
When sending logs to OpenSearch Serverless, your AWS IAM entity needs [OpenSearch Serverless Data Access permisions](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-data-access.html). Give your IAM entity the following Data Access permissions to your serverless collection: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
"data access" (not capitalized)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
updated
f310b37
to
0aef94e
Compare
@@ -21,6 +21,7 @@ The **es** output plugin, allows to ingest your records into an [Elasticsearch]( | |||
| AWS\_STS\_Endpoint | Specify the custom sts endpoint to be used with STS API for Amazon OpenSearch Service | | | |||
| AWS\_Role\_ARN | AWS IAM Role to assume to put records to your Amazon cluster | | | |||
| AWS\_External\_ID | External ID for the AWS IAM Role specified with `aws_role_arn` | | | |||
| AWS\_Service\_Name | Service name to be used in AWS Sigv4 signature. For integration with Amazon OpenSearch Serverless, set to `aoss`. See the [FAQ](opensearch.md#faq) section on Amazon OpenSearch Serverless for more information. | es | |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm worried this relative FAQ link won't work but I guess it does...
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think it does work. I tried it in vscode and the reference was found. In the diff, it takes me to https://github.com/fluent/fluent-bit-docs/blob/aoss/pipeline/outputs/opensearch.md
Signed-off-by: Matthew Fala <falamatt@amazon.com>
OpenSearch Serverless Support
Added the following option to support serverless:
See the following PRs that are in review:
fluent/fluent-bit#6448
fluent/fluent-bit#6612