[azure logs] enable event hub processor v2#12802
Conversation
zmoog
added
enhancement
zmoog
changed the title
🚀 Benchmarks reportPackage
|
| Data stream | Previous EPS | New EPS | Diff (%) | Result |
|---|---|---|---|---|
activitylogs |
1626.02 | 1254.71 | -371.31 (-22.84%) | 💔 |
To see the full report comment with /test benchmark fullreport
zmoog
added
the
Team:Security-Service Integrations
|
Pinging @elastic/security-service-integrations (Team:Security-Service Integrations) |
| storage_account_key: {{storage_account_key}} | ||
| {{/if}} | ||
| {{#if storage_account_connection_string}} | ||
| : {{storage_account_connection_string}} |
There was a problem hiding this comment.
Are we not processing the storage_account_connection_string through user input?
If this values doesn't come as input from the user, Then we could remove the IF condition. WDYT?
There was a problem hiding this comment.
Make sense.
We can change the UI elements once when we'll add the Entra ID authentication options for the processor v2.
packages/azure/docs/events.md
Outdated
|
|
||
| The input v2 is in preview. Input v1 is still the default and is recommended for typical use cases. | ||
|
|
||
| See the "Settings" section for more details about enabling the input v2. |
There was a problem hiding this comment.
There are two different settings section, one which covers the details Event hub config and the other has Input v2 settings (advanced). Shouldn't this be input V2 setting?
There was a problem hiding this comment.
I should remove the "(advanced)" from the title, and only leave "input/processor v2" only settings.
packages/azure/docs/events.md
Outdated
| _boolean_ | ||
| (v2 only) Flag to control if the input should perform the checkpoint information migration from v1 to v2 at startup. The checkpoint migration converts the checkpoint information from the v1 format to the v2 format. | ||
|
|
||
| Default is `false`, which means the input will not perform the checkpoint migration. |
There was a problem hiding this comment.
The Default can also go as bullet point. In the document it looks as a separate section.
Please see below.
zmoog
changed the title
|
I'm also replacing "input" with "processor" in the PR description to simplify. |
|
@muthu-mps @efd6, I pushed a few changes to address the review comments. Could you take a new look at this PR, when you have time? 🙇 |
|
@efd6, could you take another look at the updates in this PR, when you have time? 🙇 |
efd6
left a comment
efd6
left a comment
There was a problem hiding this comment.
LGTM
Made suggestions that I think improve clarity (except the <blink>), but the decision is obviously up to you.
| The integration will automatically detect the log category and forward the logs to the appropriate data stream. When the integration v2 preview cannot find a matching data stream for a log category, it forwards the logs to the platform logs data stream. | ||
|
|
||
| IMPORTANT: To use the v2 preview, you must turn off all the existing v1 integrations and turn on only the v2 preview integration. | ||
| IMPORTANT: **To use the integration v2 preview, you must turn off all the existing v1 integrations and turn on only the v2 preview integration.** |
There was a problem hiding this comment.
| IMPORTANT: **To use the integration v2 preview, you must turn off all the existing v1 integrations and turn on only the v2 preview integration.** | |
| IMPORTANT: **<blink>To use the integration v2 preview, you must turn off all the existing v1 integrations and turn on only the v2 preview integration.</blink>** |
🤣
There was a problem hiding this comment.
Maybe it's a little too whimsical, but I appreciate it! 😄
Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co>
Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co>
We offer no storage_account_connection_string setting option in the UI yet. We'll revise the UI once for the upcoming Entra ID auth settings.
Introduces the concept of processor as a configurable option available starting from stack 8.15.1 and integration 1.23.0. I removed 'input' because technically, we have one input, with a a configurable internal component called 'processor.' Both legacy and modern SDKs identify the 'processor' as the internal component responsible for processing messages fetched by event hub partition consumers.
I want to simplify the mental model for the user. From their perspective, there's the integration. Then the integration now has an optional 'processor' option with v1 and v2 variants.
Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co>
Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co>
zmoog
force-pushed
the
zmoog/azure-logs-inputv2
branch
from
99d821c to
e99283f
Compare
|
@efd6, it's ready for another lap! |
zmoog
changed the title
💚 Build Succeeded
History
cc @zmoog |
|
|
Package azure - 1.23.0 containing this change is available at https://epr.elastic.co/package/azure/1.23.0/ |
* Add input v2 configuration options * Improve config option descriptions * Update docs and UI elements description * Clarify + simplify docs & UI descriptions * Apply suggestions from code review Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co> * Apply suggestions from code review Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co> * Remove storage_account_connection_string We offer no storage_account_connection_string setting option in the UI yet. We'll revise the UI once for the upcoming Entra ID auth settings. * Clarify input v2 only settings * Update rendered docs * Replace input with processor in the docs Introduces the concept of processor as a configurable option available starting from stack 8.15.1 and integration 1.23.0. I removed 'input' because technically, we have one input, with a a configurable internal component called 'processor.' Both legacy and modern SDKs identify the 'processor' as the internal component responsible for processing messages fetched by event hub partition consumers. * Minor alignment to UI descriptions * Replace all references to 'input' with 'processor' I want to simplify the mental model for the user. From their perspective, there's the integration. Then the integration now has an optional 'processor' option with v1 and v2 variants. * Apply suggestions from code review Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co> * Apply suggestions from code review Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co> * Updated rendered docs --------- Co-authored-by: Dan Kortschak <dan.kortschak@elastic.co>
5 participants
Proposed commit message
The PR adds the new
processor_versionconfiguration option (an related ones) to enable the azure-eventhub processor v2 in the Azure Logs integration v2 preview.storage_account_connection_stringconfig option (required for processor v2); the policy template builds a default value using thestorage_account_keybut also offers an override option.The processor v2 uses the modern Event Hub SDK.
Notes for reviewers
In this PR, I am adding the processor v2 settings to the advanced section of the integration v2 only (
eventsdata stream).The goal is to enable only processor v2 for the data stream that can avoid contention among event hub partition consumers.
However, nothing can stop users from enabling v2 AND one or more v1 integrations. So, adding the processor v2 settings to the global scope is better for simplicity.
I would love to hear your thoughts about placing the processor v2 settings: data stream vs. global level.
Checklist
changelog.ymlfile.Author's Checklist
How to test this PR locally
elastic-package(min stack version 8.15.1)processor_versiontov2Related issues
Screenshots