nixos/modules/services/logging/journaldriver.nix at 24.11-pre · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs
lol
nixpkgs / nixos / modules / services / logging / journaldriver.nix
at 24.11-pre 3.6 kB view raw
  1# This module implements a systemd service for running journaldriver,
  2# a log forwarding agent that sends logs from journald to Stackdriver
  3# Logging.
  4#
  5# It can be enabled without extra configuration when running on GCP.
  6# On machines hosted elsewhere, the other configuration options need
  7# to be set.
  8#
  9# For further information please consult the documentation in the
 10# upstream repository at: https://github.com/tazjin/journaldriver/
 11
 12{ config, lib, pkgs, ...}:
 13
 14with lib; let cfg = config.services.journaldriver;
 15in {
 16  options.services.journaldriver = {
 17    enable = mkOption {
 18      type        = types.bool;
 19      default     = false;
 20      description = ''
 21        Whether to enable journaldriver to forward journald logs to
 22        Stackdriver Logging.
 23      '';
 24    };
 25
 26    logLevel = mkOption {
 27      type        = types.str;
 28      default     = "info";
 29      description = ''
 30        Log level at which journaldriver logs its own output.
 31      '';
 32    };
 33
 34    logName = mkOption {
 35      type        = with types; nullOr str;
 36      default     = null;
 37      description = ''
 38        Configures the name of the target log in Stackdriver Logging.
 39        This option can be set to, for example, the hostname of a
 40        machine to improve the user experience in the logging
 41        overview.
 42      '';
 43    };
 44
 45    googleCloudProject = mkOption {
 46      type        = with types; nullOr str;
 47      default     = null;
 48      description = ''
 49        Configures the name of the Google Cloud project to which to
 50        forward journald logs.
 51
 52        This option is required on non-GCP machines, but should not be
 53        set on GCP instances.
 54      '';
 55    };
 56
 57    logStream = mkOption {
 58      type        = with types; nullOr str;
 59      default     = null;
 60      description = ''
 61        Configures the name of the Stackdriver Logging log stream into
 62        which to write journald entries.
 63
 64        This option is required on non-GCP machines, but should not be
 65        set on GCP instances.
 66      '';
 67    };
 68
 69    applicationCredentials = mkOption {
 70      type        = with types; nullOr path;
 71      default     = null;
 72      description = ''
 73        Path to the service account private key (in JSON-format) used
 74        to forward log entries to Stackdriver Logging on non-GCP
 75        instances.
 76
 77        This option is required on non-GCP machines, but should not be
 78        set on GCP instances.
 79      '';
 80    };
 81  };
 82
 83  config = mkIf cfg.enable {
 84    systemd.services.journaldriver = {
 85      description = "Stackdriver Logging journal forwarder";
 86      script      = "${pkgs.journaldriver}/bin/journaldriver";
 87      wants       = [ "network-online.target" ];
 88      after       = [ "network-online.target" ];
 89      wantedBy    = [ "multi-user.target" ];
 90
 91      serviceConfig = {
 92        Restart        = "always";
 93        DynamicUser    = true;
 94
 95        # This directive lets systemd automatically configure
 96        # permissions on /var/lib/journaldriver, the directory in
 97        # which journaldriver persists its cursor state.
 98        StateDirectory = "journaldriver";
 99
100        # This group is required for accessing journald.
101        SupplementaryGroups = "systemd-journal";
102      };
103
104      environment = {
105        RUST_LOG                       = cfg.logLevel;
106        LOG_NAME                       = cfg.logName;
107        LOG_STREAM                     = cfg.logStream;
108        GOOGLE_CLOUD_PROJECT           = cfg.googleCloudProject;
109        GOOGLE_APPLICATION_CREDENTIALS = cfg.applicationCredentials;
110      };
111    };
112  };
113}