Application developers can view the logs of the projects for which they have view access. The EFK stack aggregates logs from hosts and applications, whether coming from multiple containers or even deleted pods.
The EFK stack is a modified version of the ELK stack and is comprised of:
-
Elasticsearch: An object store where all logs are stored.
-
Fluentd: Gathers logs from nodes and feeds them to Elasticsearch.
-
Kibana: A web UI for Elasticsearch.
First create the user and assign the right permissions, to all the components of the stack.
# Remember to change the project names to reflect the yours.
sh scripts/pre-deploymentProceed to execute the script to install all the deployment, but before this make sure you install the origin-aggregated-logging.
$ oc apply -n openshift -f https://raw.githubusercontent.com/openshift/origin-aggregated-logging/master/deployer/deployer.yamlThen execute the installation script
sh scripts/install-aggregates-logging.shYou can remove everything generated during the deployment while leaving other project contents intact:
$ oc delete all --selector logging-infra=kibana
$ oc delete all --selector logging-infra=fluentd
$ oc delete all --selector logging-infra=elasticsearch
$ oc delete all --selector logging-infra=curator
$ oc delete all,sa,oauthclient --selector logging-infra=support
$ oc delete secret logging-fluentd logging-elasticsearch \
logging-es-proxy logging-kibana logging-kibana-proxy \
logging-kibana-ops-proxy