Terraform module and Lambda for transferring JSON log records from one Kinesis Data Streams stream to another, with key filtering.
- Records in Kinesis stream must be valid JSON data. Non-JSON data will be ignored.
- gzipped JSON, CloudWatch Logs subscription filters log format are supported.
- Broken JSON logs or logs without log type will be saved to S3 as
unknown.
- JSON data must have the following keys (key names are modifiable via variables):
log_type: Log type identifier. Used for filtering data sent to target stream.
- Recommended keys (necessary if target stream has lambda-kinesis-to-s3 or other modules attached):
log_id: Any unique identifier. Used to avoid file overwrites on S3. Also is useful to search for a specific log record.time: Any timestamp supported by dateutil.parser.parse. ISO8601 with milli/microseconds recommended.
resource "aws_kinesis_stream" "stream" {
name = "stream"
shard_count = "1"
retention_period = "24"
}
resource "aws_kinesis_stream" "target" {
name = "target"
shard_count = "1"
retention_period = "24"
}
module "kinesis_forward" {
source = "baikonur-oss/lambda-kinesis-forward/aws"
lambda_package_url = "https://github.com/baikonur-oss/terraform-aws-lambda-kinesis-forward/releases/download/v1.0.0/lambda_package.zip"
name = "kinesis_forward"
memory = "1024"
batch_size = "100"
source_stream_name = "${aws_kinesis_stream.source.name}"
target_stream_name = "${aws_kinesis_stream.target.name}"
failed_log_s3_bucket = "failed-logs"
failed_log_s3_prefix = "forward"
}Warning: use same module and package versions!
Use version parameter to pin to a specific version, or to specify a version constraint when pulling from Terraform Module Registry (source = baikonur-oss/lambda-kinesis-forward/aws).
For more information, refer to Module Versions section of Terraform Modules documentation.
Make sure to use ?ref= version pinning in module source URI when pulling from GitHub.
Pulling from GitHub is especially useful for development, as you can pin to a specific branch, tag or commit hash.
Example: source = github.com/baikonur-oss/terraform-aws-lambda-kinesis-forward?ref=v1.0.0
For more information on module version pinning, see Selecting a Revision section of Terraform Modules documentation.
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| batch_size | Maximum number of records passed for a single Lambda invocation | string | n/a | yes |
| enable_kinesis_mapping | Determines if the event source mapping will be enabled | string | "true" |
no |
| failed_log_s3_bucket | S3 bucket name for saving failed logs (ES API errors etc.) | string | n/a | yes |
| failed_log_s3_prefix | Path prefix for failed logs | string | n/a | yes |
| handler | Lambda Function handler (entrypoint) | string | "main.handler" |
no |
| kinesis_max_retries | Times to retry PutRecords on errors (wait time between retires is 500ms) | number | "3" |
no |
| lambda_package_url | Lambda package URL (see Usage in README) | string | n/a | yes |
| log_id_field | Key name for unique log ID | string | "log_id" |
no |
| log_retention_in_days | Lambda Function log retention in days | string | "30" |
no |
| log_timestamp_field | Key name for log timestamp | string | "time" |
no |
| log_type_field | Key name for log type | string | "log_type" |
no |
| log_type_field_whitelist | Log type whitelist (if empty, all types will be processed) | list(string) | [] |
no |
| log_type_unknown_prefix | Log type prefix for logs without log type field | string | "unknown" |
no |
| memory | Lambda Function memory in megabytes | string | "256" |
no |
| name | Resource name | string | n/a | yes |
| runtime | Lambda Function runtime | string | "python3.7" |
no |
| source_stream_name | Source Kinesis Data Stream name | string | n/a | yes |
| starting_position | Kinesis ShardIterator type (see: https://docs.aws.amazon.com/kinesis/latest/APIReference/API_GetShardIterator.html ) | string | "TRIM_HORIZON" |
no |
| tags | Tags for Lambda Function | map(string) | {} |
no |
| target_stream_name | Target Kinesis Data Stream name | string | n/a | yes |
| timeout | Lambda Function timeout in seconds | string | "60" |
no |
| timezone | tz database timezone name (e.g. Asia/Tokyo) | string | "UTC" |
no |
| tracing_mode | X-Ray tracing mode (see: https://docs.aws.amazon.com/lambda/latest/dg/API_TracingConfig.html ) | string | "PassThrough" |
no |
Make sure to have following tools installed:
brew install pre-commit terraform terraform-docs
# set up pre-commit hooks by running below command in repository root
pre-commit install