因此,您需要做的是创建一个 lambda,其中将事件源设置为您要为其创建指标的日志组。我创建了度量对象来检查每个日志的某些模式。下面的代码是您需要做的事情的要点。我不得不撕掉一些不适用的东西。如果有人尝试过,请告诉我是否有问题。
我创建了一个 lambda(注意指标数组):
var zlib = require('zlib');
var Q = require('q');
var cloudwatchAgent = require('cloudwatchAgent');
var metrics = [
{
"name": "SuccessfulLogins",
"patterns": ["session opened for user", "successful logon"],
"dimensionName":"HostName",
"namespace":"UserStats"
}];
exports.handler = function (event, context) {
var payload = new Buffer(event.awslogs.data, 'base64');
zlib.gunzip(payload, function (e, result) {
if (e) {
context.fail(e);
} else {
result = JSON.parse(result.toString('utf-8'));
console.log('Decoded payload: ', JSON.stringify(result));
metrics.forEach(function (metric) {
promises.push(cloudwatchAgent.processMetric(metric, result.logStream, result.logEvents));
});
Q.all(promises).fail(function (error) {
context.fail('Error processing log events: ' + error);
}).done(function () {
context.succeed('Successfully processed log events.');
});
}
});
};
那个 lambda 调用这个函数:
var sdk = require('aws-sdk');
var Q = require('q');
var cloudwatch = new sdk.CloudWatch();
function processMetric(metric, streamName, logs) {
console.log('Checking metric ' + metric.name + ' against these patterns:' + metric.patterns.toString());
var deferred = Q.defer();
var value = 0;
logs.forEach(function (logEvent) {
metric.patterns.forEach(function(pattern) {
if(logEvent.message.toLowerCase().indexOf(pattern) > -1) {
value++;
}
});
});
var params = {
MetricData: [{
MetricName: metric.name,
Dimensions: [{
Name: metric.dimensionName,
Value: streamName
}],
Timestamp: new Date(),
Value: value
}],
Namespace: metric.namespace
};
cloudwatch.putMetricData(params, function (err, data) {
if (err) {
console.log(err, err.stack);
deferred.reject(err);
} else {
console.log('Successfully created metric for ' + metric.name + ' with value ' + value);
deferred.resolve(data);
}
});
return deferred.promise;
}
module.exports.processMetric = processMetric;