Activity Logging
This applies to: Visual Data Discovery
The Symphony server records user and server-based activities in log files. These files can be used by Symphony administrators to troubleshoot issues that may occur with the Symphony server (for example, activities related to setting up data sources or creating visuals and dashboards).
Symphony logs activities in zoomdata-activity.log. By default, logging to this file is enabled. Some activity types are not automatically logged. To determine which activities are logged by default, see the Activities Log Reference Sheet.
Important:
Activity logging in zoomdata-activity.log is deprecated and will be removed in a future release.
Information previously captured in zoomdata-activity.log can be found in other log files such as access.log, service.log, and by using Symphony's User Auditing feature.
This page covers the following topics:
If you want to use unified logging, see Set Up Unified Logging Using Fluentd. Fluentd unified logging is not enabled by default.
Configure the Symphony Activity Log
The Symphony activity log defaults can be configured through properties set in the zoomdata.properties file. See Configure Symphony for more information about modifying property files.
| Property | Description | Default |
|---|---|---|
log.file.count |
Number of log files to keep |
1 |
activity.log.file.size |
Maximum log file size in Mb |
10 |
activity.logs.dir |
File path to store log files. Verify that this log directory has all the necessary permissions and that the owner of the directory is set to The |
Linux: /opt/zoomdata/logs/ Windows: <install-path>/logs/ |
Enable or Disable the Logging of Specific Activities
Enabling or disabling the logging of specific activities is performed via a series of REST API calls or by directly updating the appropriate activity property in the zoomdata.properties file. For a list of the activities that can be logged and the file in which they can be logged, see the Activities Log Reference Sheet.
To enable or disable logging for a specific activity using the REST API, run the following cURL command:
<host>:<port>- Specify the host IP address and port of the Symphony instance.<activityType>- Specify the name of selected activity (for example,AUTHENTICATIONorUSER).<option>- Specify eithertrueorfalse. Set the value totrueto enable the selected activity output orfalseto disable it.
To enable or disable logging for a specific activity by changing the appropriate activity property in the properties file:
Locate the
zoomdata.propertiesfile. For information about accessing Symphony configuration (properties) files, see Configure Symphony.-
Add or edit the appropriate activity property in the file using the following format:
activity.<activity-name>=<option>Activity names (
<activity-name>) are listed in the Activities Log Reference Sheet.For
<option>, specify eithertrueorfalse. Set the value totrueto enable the selected activity output orfalseto disable it. Save the properties file.
Restart Symphony microservices. See Restart Symphony Microservices.
Determine Whether an Activity Is Being Logged
To determine whether a specific activity type is being logged in the log file, run the following cURL commsand:
<host>:<port>- Specify the address of the instance on which Symphony is installed.<activityType>- Specify the type of selected activity (for example,AUTHENTICATIONorUSER). For a list of the activities that can be logged, see the Activities Log Reference Sheet.
Example of Symphony Activity Logging Monitored by Fluentd
This example shows how to set up Fluentd to monitor Symphony activity log files. It does not show how to connect your Fluentd service to an external data store or how to pipe the log information to the external data store.
Before you use this example, make sure Fluentd is installed. Next, create a log file and grant the td-agent service permissions to write to it. Finally, modify the td-agent.conf file.
Linux
Create the file /opt/zoomdata/logs/zoomdata-activity.log.pos and run the following command to grant the td-agent service permissions to write to it:
chmod 777 /opt/zoomdata/logs/zoomdata-activity.log.pos
Finally, modify the td-agent.conf file in the /etc/td-agent folder using the template below.
Windows
Create the file <install-path>/logs/zoomdata-activity.log.pos. Grant the td-agent service permissions to read, write and execute permission to the owner, group and public.
Finally, modify the td-agent.conf file in the /etc/td-agent folder using the template below. Replace pattern /zoomdata/service/health with <install-path>/service/health.
Template
Substitute Symphony fully qualified log file name for
<logfile>and<logfilen>(for example,opt/zoomdata/logs/zoomdata-activity.log) for Linux, or<install-path>/logs/zoomdata-activity.logfor Windows. Symphony log files names are provided in Symphony Log Files Reference.For each log file you select, specify rules in
<rule>sections for the information you want to extract from the Symphony log files.
@type forward @id input1 port 24224 </source> <source> @type tail path
<logfile>[,<logfilen>]...
pos_file zoomdata-activity.log.pos
tag all.activity
format json
refresh_interval 1
</source>
<match all.activity>
@type rewrite_tag_filter
<rule>
key activityType
pattern ^ACCOUNT$
tag account_logs
</rule>
<rule>
key activityType
pattern ^AUTHENTICATION$
tag authentication_logs
</rule>
<rule>
key activityType
pattern ^SOURCE$
tag source_logs
</rule>
<rule>
key activityType
pattern ^RAW_DATA_EXPORT$
tag raw_data_export_logs
</rule>
<rule>
key activityType
pattern ^RAW_DATA_EXPORT_CSV$
tag raw_data_export_csv_logs
</rule>
<rule>
key activityType
pattern ^UPLOAD$
tag upload_logs
</rule>
<rule>
key activityType
pattern ^USER$
tag user_logs
</rule>
<rule>
key activityType
pattern ^VIS$
tag vis_logs
</rule>
<rule>
key activityType
pattern ^GROUP$
tag group_logs
</rule>
</match>
### Uncomment the section below to shift Zoomdata eventDates (UTC by default) to another timezone
### Adjust the quoted value in `Time.zone_offset("EDT")` below to the desired timezone value
### Additional details: https://docs.ruby-lang.org/en/2.4.0/Time.html#method-c-zone_offset
#<filter *_logs>
# @type record_transformer
# enable_ruby true
# <record>
# eventDate ${(Time.parse(record["eventDate"]).utc + Time.zone_offset("EDT")).strftime("%Y-%m-%d %H:%M:%S.%L")}
# </record>
#</filter>
#type topology timeline data as json
<filter topology_performance_logs>
@type record_transformer
enable_ruby true
<record>
timeline ${record["timeline"].to_json}
</record>
</filter>
#expand topology timeline json to new keys (attributes)
<filter topology_performance_logs>
@type parser
key_name timeline
reserve_data true
<parse>
@type json
</parse>
</filter>
#derive source information from the request payload
<filter vis_command_logs>
@type record_transformer
enable_ruby true
<record>
source_id ${if record["status"] == "STARTED" then JSON.parse(record["request"])["source"]["id"] end}
source_name ${if record["status"] == "STARTED" then JSON.parse(record["request"])["source"]["name"] end}
source_type ${if record["status"] == "STARTED" then JSON.parse(record["request"])["source"]["subStorageType"] end}
source_schema ${if record["status"] == "STARTED" then JSON.parse(record["request"])["source"]["storageConfiguration"]["schema"] end}
source_collection ${if record["status"] == "STARTED" then JSON.parse(record["request"])["source"]["storageConfiguration"]["collection"] end}
connection_id ${if record["status"] == "STARTED" then JSON.parse(record["request"])["source"]["storageConfiguration"]["connectionId"] end}
</record>
</filter>
#exclude health check requests
#<filter request_logs>
# @type grep
# <exclude>
# key uri
# pattern /zoomdata/service/health
# </exclude>
#</filter>
#send fluent log entries to stdout
<match fluent.**>
@type stdout
</match>
Comments
0 comments
Please sign in to leave a comment.