From d9c1ad8401c175c2a709308fb661a787e6f48f2e Mon Sep 17 00:00:00 2001
From: Mike Shoup <mike@shoup.io>
Date: Sat, 5 Sep 2020 13:52:39 -0600
Subject: [PATCH] Remove fluentd

---
 workloads/kube-system/fluentd-config.yml      | 363 ------------------
 .../fluentd-daemonset-elasticsearch-rbac.yaml | 125 ------
 2 files changed, 488 deletions(-)
 delete mode 100644 workloads/kube-system/fluentd-config.yml
 delete mode 100644 workloads/kube-system/fluentd-daemonset-elasticsearch-rbac.yaml

diff --git a/workloads/kube-system/fluentd-config.yml b/workloads/kube-system/fluentd-config.yml
deleted file mode 100644
index c1420cc..0000000
--- a/workloads/kube-system/fluentd-config.yml
+++ /dev/null
@@ -1,363 +0,0 @@
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  labels:
-    k8s-app: fluentd-logging
-  name: fluentd-logging
-  namespace: kube-system
-data:
-  fluent.conf: |
-    @include "#{ENV['FLUENTD_SYSTEMD_CONF'] || 'systemd'}.conf"
-    @include "#{ENV['FLUENTD_PROMETHEUS_CONF'] || 'prometheus'}.conf"
-    @include kubernetes.conf
-    @include nextcloud.conf
-    @include conf.d/*.conf
-    @include filters.conf
-
-    <match **>
-      @type elasticsearch
-      @id out_es
-      @log_level info
-      include_tag_key true
-      host "#{ENV['FLUENT_ELASTICSEARCH_HOST']}"
-      port "#{ENV['FLUENT_ELASTICSEARCH_PORT']}"
-      path "#{ENV['FLUENT_ELASTICSEARCH_PATH']}"
-      scheme "#{ENV['FLUENT_ELASTICSEARCH_SCHEME'] || 'http'}"
-      ssl_verify "#{ENV['FLUENT_ELASTICSEARCH_SSL_VERIFY'] || 'true'}"
-      ssl_version "#{ENV['FLUENT_ELASTICSEARCH_SSL_VERSION'] || 'TLSv1_2'}"
-      user "#{ENV['FLUENT_ELASTICSEARCH_USER'] || use_default}"
-      password "#{ENV['FLUENT_ELASTICSEARCH_PASSWORD'] || use_default}"
-      reload_connections "#{ENV['FLUENT_ELASTICSEARCH_RELOAD_CONNECTIONS'] || 'false'}"
-      reconnect_on_error "#{ENV['FLUENT_ELASTICSEARCH_RECONNECT_ON_ERROR'] || 'true'}"
-      reload_on_failure "#{ENV['FLUENT_ELASTICSEARCH_RELOAD_ON_FAILURE'] || 'true'}"
-      log_es_400_reason "#{ENV['FLUENT_ELASTICSEARCH_LOG_ES_400_REASON'] || 'false'}"
-      logstash_prefix "#{ENV['FLUENT_ELASTICSEARCH_LOGSTASH_PREFIX'] || 'logstash'}"
-      logstash_dateformat "#{ENV['FLUENT_ELASTICSEARCH_LOGSTASH_DATEFORMAT'] || '%Y.%m.%d'}"
-      logstash_format "#{ENV['FLUENT_ELASTICSEARCH_LOGSTASH_FORMAT'] || 'true'}"
-      index_name "#{ENV['FLUENT_ELASTICSEARCH_LOGSTASH_INDEX_NAME'] || 'logstash'}"
-      type_name "#{ENV['FLUENT_ELASTICSEARCH_LOGSTASH_TYPE_NAME'] || 'fluentd'}"
-      include_timestamp "#{ENV['FLUENT_ELASTICSEARCH_INCLUDE_TIMESTAMP'] || 'false'}"
-      template_name "#{ENV['FLUENT_ELASTICSEARCH_TEMPLATE_NAME'] || use_nil}"
-      template_file "#{ENV['FLUENT_ELASTICSEARCH_TEMPLATE_FILE'] || use_nil}"
-      template_overwrite "#{ENV['FLUENT_ELASTICSEARCH_TEMPLATE_OVERWRITE'] || use_default}"
-      sniffer_class_name "#{ENV['FLUENT_SNIFFER_CLASS_NAME'] || 'Fluent::Plugin::ElasticsearchSimpleSniffer'}"
-      request_timeout "#{ENV['FLUENT_ELASTICSEARCH_REQUEST_TIMEOUT'] || '5s'}"
-      <buffer>
-        flush_thread_count "#{ENV['FLUENT_ELASTICSEARCH_BUFFER_FLUSH_THREAD_COUNT'] || '8'}"
-        flush_interval "#{ENV['FLUENT_ELASTICSEARCH_BUFFER_FLUSH_INTERVAL'] || '5s'}"
-        chunk_limit_size "#{ENV['FLUENT_ELASTICSEARCH_BUFFER_CHUNK_LIMIT_SIZE'] || '2M'}"
-        queue_limit_length "#{ENV['FLUENT_ELASTICSEARCH_BUFFER_QUEUE_LIMIT_LENGTH'] || '32'}"
-        retry_max_interval "#{ENV['FLUENT_ELASTICSEARCH_BUFFER_RETRY_MAX_INTERVAL'] || '30'}"
-        retry_forever true
-      </buffer>
-    </match>
-
-  disable.conf: ""
-
-  filters.conf: |
-    <filter kubernetes.var.log.containers.nextcloud-** kubernetes.var.log.containers.echoserver-**>
-      @type parser
-      key_name log
-      reserve_data true
-      <parse>
-        @type apache2
-      </parse>
-    </filter>
-
-    <filter kubernetes.var.log.containers.hass-**>
-      @type parser
-      key_name log
-      reserve_data true
-      <parse>
-        @type regexp
-        expression /^(?<logtime>.*) (?<level>.*) \((?<thread>.*)\) \[(?<source>.*)\] (?<message>.*)$/
-      </parse>
-    </filter>
-
-    <filter kubernetes.var.log.containers.flux-** kubernetes.var.log.containers.grafana-**>
-      @type parser
-      key_name log
-      reserve_data true
-      <parse>
-        @type json
-      </parse>
-    </filter>
-
-  nextcloud.conf: |
-    <source>
-      @type tail
-      @id in_tail_nextcloud_log
-      path /opt/nextcloud/nextcloud.log
-      pos_file /var/log/nextcloud.log.pos
-      tag nextcloud.log
-      read_from_head true
-      reserve_data true
-      <parse>
-        @type json
-        time_key time
-        time_format %Y-%m-%dT%H:%M:%S%z
-      </parse>
-    </source>
-
-  kubernetes.conf: |
-    <label @FLUENT_LOG>
-      <match fluent.**>
-        @type null
-      </match>
-    </label>
-
-    <source>
-      @type tail
-      @id in_tail_container_logs
-      path /var/log/containers/*.log
-      pos_file /var/log/fluentd-containers.log.pos
-      tag "#{ENV['FLUENT_CONTAINER_TAIL_TAG'] || 'kubernetes.*'}"
-      exclude_path "#{ENV['FLUENT_CONTAINER_TAIL_EXCLUDE_PATH'] || use_default}"
-      read_from_head true
-      <parse>
-        @type regexp
-        expression /^(?<time>.+) (?<stream>stdout|stderr)( (?<logtag>.))? (?<log>.*)$/
-        # 2020-04-18T18:05:32.568345742-04:00
-        time_format %Y-%m-%dT%H:%M:%S.%N%z
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_minion
-      path /var/log/salt/minion
-      pos_file /var/log/fluentd-salt.pos
-      tag salt
-      <parse>
-        @type regexp
-        expression /^(?<time>[^ ]* [^ ,]*)[^\[]*\[[^\]]*\]\[(?<severity>[^ \]]*) *\] (?<message>.*)$/
-        time_format %Y-%m-%d %H:%M:%S
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_startupscript
-      path /var/log/startupscript.log
-      pos_file /var/log/fluentd-startupscript.log.pos
-      tag startupscript
-      <parse>
-        @type syslog
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_docker
-      path /var/log/docker.log
-      pos_file /var/log/fluentd-docker.log.pos
-      tag docker
-      <parse>
-        @type regexp
-        expression /^time="(?<time>[^)]*)" level=(?<severity>[^ ]*) msg="(?<message>[^"]*)"( err="(?<error>[^"]*)")?( statusCode=($<status_code>\d+))?/
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_etcd
-      path /var/log/etcd.log
-      pos_file /var/log/fluentd-etcd.log.pos
-      tag etcd
-      <parse>
-        @type none
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_kubelet
-      multiline_flush_interval 5s
-      path /var/log/kubelet.log
-      pos_file /var/log/fluentd-kubelet.log.pos
-      tag kubelet
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_kube_proxy
-      multiline_flush_interval 5s
-      path /var/log/kube-proxy.log
-      pos_file /var/log/fluentd-kube-proxy.log.pos
-      tag kube-proxy
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_kube_apiserver
-      multiline_flush_interval 5s
-      path /var/log/kube-apiserver.log
-      pos_file /var/log/fluentd-kube-apiserver.log.pos
-      tag kube-apiserver
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_kube_controller_manager
-      multiline_flush_interval 5s
-      path /var/log/kube-controller-manager.log
-      pos_file /var/log/fluentd-kube-controller-manager.log.pos
-      tag kube-controller-manager
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_kube_scheduler
-      multiline_flush_interval 5s
-      path /var/log/kube-scheduler.log
-      pos_file /var/log/fluentd-kube-scheduler.log.pos
-      tag kube-scheduler
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_rescheduler
-      multiline_flush_interval 5s
-      path /var/log/rescheduler.log
-      pos_file /var/log/fluentd-rescheduler.log.pos
-      tag rescheduler
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_glbc
-      multiline_flush_interval 5s
-      path /var/log/glbc.log
-      pos_file /var/log/fluentd-glbc.log.pos
-      tag glbc
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    <source>
-      @type tail
-      @id in_tail_cluster_autoscaler
-      multiline_flush_interval 5s
-      path /var/log/cluster-autoscaler.log
-      pos_file /var/log/fluentd-cluster-autoscaler.log.pos
-      tag cluster-autoscaler
-      <parse>
-        @type kubernetes
-      </parse>
-    </source>
-
-    # Example:
-    # 2017-02-09T00:15:57.992775796Z AUDIT: id="90c73c7c-97d6-4b65-9461-f94606ff825f" ip="104.132.1.72" method="GET" user="kubecfg" as="<self>" asgroups="<lookup>" namespace="default" uri="/api/v1/namespaces/default/pods"
-    # 2017-02-09T00:15:57.993528822Z AUDIT: id="90c73c7c-97d6-4b65-9461-f94606ff825f" response="200"
-    <source>
-      @type tail
-      @id in_tail_kube_apiserver_audit
-      multiline_flush_interval 5s
-      path /var/log/kubernetes/kube-apiserver-audit.log
-      pos_file /var/log/kube-apiserver-audit.log.pos
-      tag kube-apiserver-audit
-      <parse>
-        @type multiline
-        format_firstline /^\S+\s+AUDIT:/
-        # Fields must be explicitly captured by name to be parsed into the record.
-        # Fields may not always be present, and order may change, so this just looks
-        # for a list of key="\"quoted\" value" pairs separated by spaces.
-        # Unknown fields are ignored.
-        # Note: We can't separate query/response lines as format1/format2 because
-        #       they don't always come one after the other for a given query.
-        format1 /^(?<time>\S+) AUDIT:(?: (?:id="(?<id>(?:[^"\\]|\\.)*)"|ip="(?<ip>(?:[^"\\]|\\.)*)"|method="(?<method>(?:[^"\\]|\\.)*)"|user="(?<user>(?:[^"\\]|\\.)*)"|groups="(?<groups>(?:[^"\\]|\\.)*)"|as="(?<as>(?:[^"\\]|\\.)*)"|asgroups="(?<asgroups>(?:[^"\\]|\\.)*)"|namespace="(?<namespace>(?:[^"\\]|\\.)*)"|uri="(?<uri>(?:[^"\\]|\\.)*)"|response="(?<response>(?:[^"\\]|\\.)*)"|\w+="(?:[^"\\]|\\.)*"))*/
-        time_format %Y-%m-%dT%T.%L%Z
-      </parse>
-    </source>
-
-    <filter kubernetes.**>
-      @type kubernetes_metadata
-      @id filter_kube_metadata
-      kubernetes_url "#{ENV['FLUENT_FILTER_KUBERNETES_URL'] || 'https://' + ENV.fetch('KUBERNETES_SERVICE_HOST') + ':' + ENV.fetch('KUBERNETES_SERVICE_PORT') + '/api'}"
-      verify_ssl "#{ENV['KUBERNETES_VERIFY_SSL'] || true}"
-      ca_file "#{ENV['KUBERNETES_CA_FILE']}"
-    </filter>
-
-  prometheus.conf: |
-    # Prometheus metric exposed on 0.0.0.0:24231/metrics
-    <source>
-      @type prometheus
-      bind "#{ENV['FLUENTD_PROMETHEUS_BIND'] || '0.0.0.0'}"
-      port "#{ENV['FLUENTD_PROMETHEUS_PORT'] || '24231'}"
-      metrics_path "#{ENV['FLUENTD_PROMETHEUS_PATH'] || '/metrics'}"
-    </source>
-
-    <source>
-      @type prometheus_output_monitor
-    </source>
-
-  systemd.conf: |
-    # Logs from systemd-journal for interesting services.
-    <source>
-      @type systemd
-      @id in_systemd_kubelet
-      matches [{ "_SYSTEMD_UNIT": "kubelet.service" }]
-      <storage>
-        @type local
-        persistent true
-        path /var/log/fluentd-journald-kubelet-cursor.json
-      </storage>
-      <entry>
-        fields_strip_underscores true
-      </entry>
-      read_from_head true
-      tag kubelet
-    </source>
-
-    # Logs from docker-systemd
-    <source>
-      @type systemd
-      @id in_systemd_docker
-      matches [{ "_SYSTEMD_UNIT": "docker.service" }]
-      <storage>
-        @type local
-        persistent true
-        path /var/log/fluentd-journald-docker-cursor.json
-      </storage>
-      <entry>
-        fields_strip_underscores true
-      </entry>
-      read_from_head true
-      tag docker.systemd
-    </source>
-
-    # Logs from systemd-journal for interesting services.
-    <source>
-      @type systemd
-      @id in_systemd_bootkube
-      matches [{ "_SYSTEMD_UNIT": "bootkube.service" }]
-      <storage>
-        @type local
-        persistent true
-        path /var/log/fluentd-journald-bootkube-cursor.json
-      </storage>
-      <entry>
-        fields_strip_underscores true
-      </entry>
-      read_from_head true
-      tag bootkube
-    </source>
diff --git a/workloads/kube-system/fluentd-daemonset-elasticsearch-rbac.yaml b/workloads/kube-system/fluentd-daemonset-elasticsearch-rbac.yaml
deleted file mode 100644
index 8022c80..0000000
--- a/workloads/kube-system/fluentd-daemonset-elasticsearch-rbac.yaml
+++ /dev/null
@@ -1,125 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: fluentd
-  namespace: kube-system
-
----
-apiVersion: rbac.authorization.k8s.io/v1beta1
-kind: ClusterRole
-metadata:
-  name: fluentd
-  namespace: kube-system
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - pods
-  - namespaces
-  verbs:
-  - get
-  - list
-  - watch
-
----
-kind: ClusterRoleBinding
-apiVersion: rbac.authorization.k8s.io/v1beta1
-metadata:
-  name: fluentd
-roleRef:
-  kind: ClusterRole
-  name: fluentd
-  apiGroup: rbac.authorization.k8s.io
-subjects:
-- kind: ServiceAccount
-  name: fluentd
-  namespace: kube-system
----
-apiVersion: apps/v1
-kind: DaemonSet
-metadata:
-  name: fluentd
-  namespace: kube-system
-  labels:
-    k8s-app: fluentd-logging
-    version: v1
-spec:
-  selector:
-    matchLabels:
-      k8s-app: fluentd-logging
-      version: v1
-  template:
-    metadata:
-      labels:
-        k8s-app: fluentd-logging
-        version: v1
-    spec:
-      serviceAccount: fluentd
-      serviceAccountName: fluentd
-      tolerations:
-      - key: node-role.kubernetes.io/master
-        effect: NoSchedule
-      containers:
-      - name: fluentd
-        image: fluent/fluentd-kubernetes-daemonset:v1-debian-elasticsearch
-        env:
-          - name:  FLUENT_ELASTICSEARCH_HOST
-            value: "es01.home.shoup.io"
-          - name:  FLUENT_ELASTICSEARCH_PORT
-            value: "9200"
-          - name: FLUENT_ELASTICSEARCH_SCHEME
-            value: "http"
-          # Option to configure elasticsearch plugin with self signed certs
-          # ================================================================
-          # - name: FLUENT_ELASTICSEARCH_SSL_VERIFY
-          #   value: "true"
-          # Option to configure elasticsearch plugin with tls
-          # ================================================================
-          # - name: FLUENT_ELASTICSEARCH_SSL_VERSION
-          #   value: "TLSv1_2"
-          # X-Pack Authentication
-          # =====================
-          # - name: FLUENT_ELASTICSEARCH_USER
-          #   value: "elastic"
-          # - name: FLUENT_ELASTICSEARCH_PASSWORD
-          #   value: "changeme"
-
-          # Disable SystemD input
-          - name: FLUENTD_SYSTEMD_CONF
-            value: "disable"
-          # Don't parse own logs
-          - name: FLUENT_CONTAINER_TAIL_EXCLUDE_PATH
-            value: '["/var/log/containers/fluentd*"]'
-        resources:
-          limits:
-            memory: 200Mi
-          requests:
-            cpu: 100m
-            memory: 200Mi
-        volumeMounts:
-        - name: varlog
-          mountPath: /var/log
-        - name: varlogcontainers
-          mountPath: /var/log/containers
-          readOnly: true
-        - name: config-volume
-          mountPath: /fluentd/etc
-        - name: nextcloud-data
-          mountPath: /opt/nextcloud/nextcloud.log
-          subPath: data/nextcloud.log
-      terminationGracePeriodSeconds: 30
-      volumes:
-      - name: varlog
-        hostPath:
-          path: /var/log
-      - name: varlogcontainers
-        hostPath:
-          path: /var/log/containers
-      - name: config-volume
-        configMap:
-          name: fluentd-logging
-      - name: nextcloud-data
-        hostPath:
-          path: /opt/nextcloud/pod
-          type: Directory