[10k]: Logging and Monitoring

[coilysiren]

Definition

The goal for this 10k is to define the steps towards getting simpler.grants.gov a highly effective logging and monitoring solution. We want our logging and monitoring to be high coverage, easy to access, and well understood by our team.

High Level Goals

• The majority of our application logs are being imported into a highly usable monitoring platform
• The majority of our metrics are being imported into a high usable monitoring platform
• We have telemetry / APM across sections of our application that are critical to user experience (like search)
• All of the above is supported for both frontend and backend applications

Project Phases

Phase 1 - Choose Monitoring Platform

• https://github.com/HHS/simpler-grants-gov/issues/630

Phase 2 - Provision Monitoring Platform

• https://github.com/HHS/simpler-grants-gov/issues/1276
• https://github.com/HHS/simpler-grants-gov/issues/1404
• https://github.com/HHS/simpler-grants-gov/issues/1403

Phase 2 - Configure Monitoring Platform

• https://github.com/HHS/simpler-grants-gov/issues/1405
• https://github.com/HHS/simpler-grants-gov/issues/1406
• https://github.com/HHS/simpler-grants-gov/issues/1407
• https://github.com/HHS/simpler-grants-gov/issues/1408

Phase 3 - Training and Documentation

• https://github.com/HHS/simpler-grants-gov/issues/1409
• https://github.com/HHS/simpler-grants-gov/issues/1412

Term Definitions

Logs - Single lines of data, usually a string, emitted by an application at a single point in time. An example log line is "search complete, returned 24 results".

Metrics - Aggregations of numerical data points, emitted by an application over a period of time. Metrics are usually attached to engineering signals, or high level product signals. An example metric is (translated into a sentence) "the search endpoint returned 200 status in 99.5% of requests over the last 24 hours"

Telemetry Telemetry is generally represented by "traces" and "spans", which are high signal key value data sources that focus on the behavior of a specific slice of code in an application. A span for a given endpoint can combine all of the information you would find inside of simple logs or metrics, in addition in any surrounding metadata about the execution, most notably the execution times of your functions. Telemetry is often captured inside of a product called "APM" or "Application Performance Monitoring". A well instrumented telemetry span might look like (translated into a sentence) "the search function getSearchResults ran for 200ms, spent 150ms waiting for the database, returned a 200 status, and returned 24 results"

More information about Telemetry, as viewed from the POV of OpenTelemetry specifically, can be found here: 1, 2, 3

In scope

• {Item that is in scope for this work}

Out of scope

• {Item that is out of scope for this work}

Tasks

[coilysiren]

TODO: create architecture diagram that displays how New Relic connects to our system

[coilysiren]

TODO: SIA (security impact assessment)