fluent-plugin-azuremonitorlog/README.md

# fluent-plugin-azuremonitorlog, a plugin for [Fluentd](http://fluentd.org) 
## Overview

***Azure Monitor log*** input plugin.

This plugin gets the monitor activity logs from Azure Monitor API to fluentd.

## Installation

Install from RubyGems:
```
$ gem install fluent-plugin-azuremonitorlog
```

To use this plugin, you need to have Azure Service Principal.<br/>
Create an Azure Service Principal through [Azure CLI](https://docs.microsoft.com/en-us/cli/azure/create-an-azure-service-principal-azure-cli?toc=%2fazure%2fazure-resource-manager%2ftoc.json) or [Azure portal](https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-create-service-principal-portal).

## Configuration

```config
<source>
  @type azuremonitorlog
  tag azuremonitorlog
  tenant_id [Azure_Tenant_ID]
  subscription_id [Azure_Subscription_Id]
  client_id [Azure_Client_Id]
  client_secret [Azure_Client_Secret]
  
  select [selected fields to query]
  filter [filter the query query] (default: eventChannels eq 'Admin, Operation')
  interval [interval in seconds] (default: 300)
  api_version [api version] (default: 2015-04-01)
</source>
```

Documentation for select and filter can be found [here](https://docs.microsoft.com/en-us/rest/api/monitor/ActivityLogs/List#activitylogs_list_uri_parameters)

### Example for source config

```config
<source>
    @type azuremonitorlog
    tag azuremonitorlog
    tenant_id [Azure_Tenant_ID]
    subscription_id [Azure_Subscription_Id]
    client_id [Azure_Client_Id]
    client_secret [Azure_Client_Secret]
    select_filter eventName,id,resourceGroupName,resourceProviderName,operationName,status,eventTimestamp,correlationId,submissionTimestamp,level
</source>

```

## Contributing

1. Fork it
2. Create your feature branch (`git checkout -b my-new-feature`)
3. Commit your changes (`git commit -am 'Added some feature'`)
4. Push to the branch (`git push origin my-new-feature`)
5. Create new Pull Request
Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`# fluent-plugin-azuremonitorlog, a plugin for [Fluentd](http://fluentd.org)`
initial commit 2017-10-17 16:22:05 +03:00			`## Overview`

Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`*Azure Monitor log* input plugin.`
initial commit 2017-10-17 16:22:05 +03:00
Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`This plugin gets the monitor activity logs from Azure Monitor API to fluentd.`
Update README.md 2017-10-19 11:49:59 +03:00
Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`## Installation`
Update README.md 2017-10-19 11:49:59 +03:00
Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`Install from RubyGems:`
			```
			`$ gem install fluent-plugin-azuremonitorlog`
			```

			`To use this plugin, you need to have Azure Service Principal.<br/>`
			`Create an Azure Service Principal through [Azure CLI](https://docs.microsoft.com/en-us/cli/azure/create-an-azure-service-principal-azure-cli?toc=%2fazure%2fazure-resource-manager%2ftoc.json) or [Azure portal](https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-create-service-principal-portal).`
initial commit 2017-10-17 16:22:05 +03:00
			`## Configuration`

			```config
			`<source>`
Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`@type azuremonitorlog`
			`tag azuremonitorlog`
initial commit 2017-10-17 16:22:05 +03:00			`tenant_id [Azure_Tenant_ID]`
			`subscription_id [Azure_Subscription_Id]`
			`client_id [Azure_Client_Id]`
			`client_secret [Azure_Client_Secret]`

Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`select [selected fields to query]`
			`filter [filter the query query] (default: eventChannels eq 'Admin, Operation')`
initial commit 2017-10-17 16:22:05 +03:00			`interval [interval in seconds] (default: 300)`
Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`api_version [api version] (default: 2015-04-01)`
initial commit 2017-10-17 16:22:05 +03:00			`</source>`
			```

Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`Documentation for select and filter can be found [here](https://docs.microsoft.com/en-us/rest/api/monitor/ActivityLogs/List#activitylogs_list_uri_parameters)`

initial commit 2017-10-17 16:22:05 +03:00			`### Example for source config`

			```config
			`<source>`
Fix code review comments and rename solution 2017-10-23 18:07:08 +03:00			`@type azuremonitorlog`
			`tag azuremonitorlog`
initial commit 2017-10-17 16:22:05 +03:00			`tenant_id [Azure_Tenant_ID]`
			`subscription_id [Azure_Subscription_Id]`
			`client_id [Azure_Client_Id]`
			`client_secret [Azure_Client_Secret]`
			`select_filter eventName,id,resourceGroupName,resourceProviderName,operationName,status,eventTimestamp,correlationId,submissionTimestamp,level`
			`</source>`

			```

			`## Contributing`

			`1. Fork it`
			2. Create your feature branch (`git checkout -b my-new-feature`)
			3. Commit your changes (`git commit -am 'Added some feature'`)
			4. Push to the branch (`git push origin my-new-feature`)
			`5. Create new Pull Request`