Splunk Connect for Docker is a Docker logging plugin that allows docker containers to send their logs directly to Splunk Enterprise or a Splunk Cloud deployment.
This allows containers to output logs in the JSON format as expected by the Splunk HEC endpoint (https://docs.splunk.com/Documentation/Splunk/9.0.0/Data/FormateventsforHTTPEventCollector) and the logging driver will parse these correctly. Applications running in containers will be able to control which index, source, sourcetype etc. log events should be set to within Splunk.
Also replaces the CircleCI integration for testing with Github Actions. Unfortunately this has not fixed issue https://github.com/splunk/docker-logging-plugin/issues/45 and functional tests still intermittently fail. A fully successful run has been completed with the current changes.
Minor changes; uplift Go version to 1.19.0 and switch to go modules instead of dep (which has been deprecated since 2020). Uplift Python version used for functional tests to 3.8 (needed due to updated Python dependencies), this also required a rebuild of the python protobuf file.
Types of changes
What types of changes does your code introduce?
Put an x in the boxes that apply
[ ] Bugfix (non-breaking change which fixes an issue)
[X] New feature (non-breaking change which adds functionality)
[ ] Breaking change (fix or feature that would cause existing functionality to not work as expected)
Proposed changes
Introduce a new splunk-format named "hec" which fixes issue https://github.com/splunk/docker-logging-plugin/issues/48
This allows containers to output logs in the JSON format as expected by the Splunk HEC endpoint (https://docs.splunk.com/Documentation/Splunk/9.0.0/Data/FormateventsforHTTPEventCollector) and the logging driver will parse these correctly. Applications running in containers will be able to control which index, source, sourcetype etc. log events should be set to within Splunk.
Also replaces the CircleCI integration for testing with Github Actions. Unfortunately this has not fixed issue https://github.com/splunk/docker-logging-plugin/issues/45 and functional tests still intermittently fail. A fully successful run has been completed with the current changes.
Minor changes; uplift Go version to 1.19.0 and switch to go modules instead of dep (which has been deprecated since 2020). Uplift Python version used for functional tests to 3.8 (needed due to updated Python dependencies), this also required a rebuild of the python protobuf file.
Types of changes
What types of changes does your code introduce? Put an
xin the boxes that applyChecklist
Put an
xin the boxes that apply.