NLogTarget.Splunk
1.0.3
See the version list below for details.
dotnet add package NLogTarget.Splunk --version 1.0.3
NuGet\Install-Package NLogTarget.Splunk -Version 1.0.3
<PackageReference Include="NLogTarget.Splunk" Version="1.0.3" />
paket add NLogTarget.Splunk --version 1.0.3
#r "nuget: NLogTarget.Splunk, 1.0.3"
// Install NLogTarget.Splunk as a Cake Addin #addin nuget:?package=NLogTarget.Splunk&version=1.0.3 // Install NLogTarget.Splunk as a Cake Tool #tool nuget:?package=NLogTarget.Splunk&version=1.0.3
Supports sending log entries in async and sync mode with gzip compression enabled. In async mode, the entries are sent in batches.
Sample NLog.config
The required parameters are
endpoint
- HEC URL, such as https://sample.org/services/collector/eventauthToken
- Authentication tokenindex
- An index to which to send the event logs tosource
- Identifies the source of the event logs
Optional parameters are
ignoreSSLErrors
-False
by default. IfTrue
, ssl errors are ignored when posting to the HEC endpointtimeout
- # of milliseconds to wait before aborting a POST to HEC endpoint. Default is 30000 (30 seconds).
Keep in mind that the timestamp must be sent along with the log entries. The library will set the timestamp to the current time (DateTime.Now
) so ensure that the time across your servers is synchronized.
<?xml version="1.0" encoding="utf-8" ?>
<nlog xmlns="http://www.nlog-project.org/schemas/NLog.xsd"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.nlog-project.org/schemas/NLog.xsd NLog.xsd"
autoReload="false"
throwExceptions="false"
internalLogLevel="Off" internalLogFile="C:\logs\nlog_internal.log">
<extensions>
<add assembly="NLogTarget.Splunk"/>
</extensions>
<targets async="true">
<target xsi:type="Splunk" name="splunk" endpoint="https://sample.org/services/collector/event" authToken="***" index="sample_index" source="http:your_app">
<layout xsi:type="JsonLayout" includeAllProperties="true">
<attribute name="logger" layout="${logger}" />
<attribute name="severity" layout="${level}" />
<attribute name="callsite" layout="${callsite:includeSourcePath=false:className=false}" />
<attribute name="message" layout="${message}" />
<attribute name="error" layout="${exception:format=ToString}" />
</layout>
</target>
</targets>
<rules>
<logger name="*" minlevel="Info" writeTo="Splunk" />
</rules>
</nlog>
Resolving AuthToken Programmatically
It is highly recommended that the AuthToken
value is resolved from a secrets vault rather then NLog.config. To resolve the AuthToken
programmatically:
- Set the value of
AuthToken
to*resolve*
in NLog.config - Add a handler to
SplunkAuthTokenResolver.OnObtainAuthToken
event early on in the program before any log entries are written. Targetname
from NLog.config will be passed in to the event handler. Keep in mind that_wrapped
suffix will be added to the target name incasetargets async
is set totrue
in NLog.config - The handler must return the value of the auth token. It is guaranteed that the resolution will only happen once per program lifecycle. If the auth token cannot be resolved, no log entries will be written. Check the internal log for errors (see
internalLogFile
in NLog.config)
Sample AuthToken resolution code
class Program
{
static readonly Logger logger = LogManager.GetCurrentClassLogger();
static void Main(string[] args)
{
SplunkAuthTokenResolver.OnObtainAuthToken += SplunkAuthTokenResolver_OnObtainAuthToken;
logger.Info("Testing 123");
Console.Read();
}
static string SplunkAuthTokenResolver_OnObtainAuthToken(string targetName)
{
if(targetName == "splunk" || targetName == "splunk_wrapped")
{
// get auth token from secrets vault
return "auth token value";
}
return null;
}
}
- Enjoy Responsibly -
Product | Versions Compatible and additional computed target framework versions. |
---|---|
.NET | net5.0 was computed. net5.0-windows was computed. net6.0 was computed. net6.0-android was computed. net6.0-ios was computed. net6.0-maccatalyst was computed. net6.0-macos was computed. net6.0-tvos was computed. net6.0-windows was computed. net7.0 was computed. net7.0-android was computed. net7.0-ios was computed. net7.0-maccatalyst was computed. net7.0-macos was computed. net7.0-tvos was computed. net7.0-windows was computed. net8.0 was computed. net8.0-android was computed. net8.0-browser was computed. net8.0-ios was computed. net8.0-maccatalyst was computed. net8.0-macos was computed. net8.0-tvos was computed. net8.0-windows was computed. |
.NET Core | netcoreapp2.0 was computed. netcoreapp2.1 was computed. netcoreapp2.2 was computed. netcoreapp3.0 was computed. netcoreapp3.1 was computed. |
.NET Standard | netstandard2.0 is compatible. netstandard2.1 was computed. |
.NET Framework | net461 was computed. net462 was computed. net463 was computed. net47 was computed. net471 was computed. net472 was computed. net48 was computed. net481 was computed. |
MonoAndroid | monoandroid was computed. |
MonoMac | monomac was computed. |
MonoTouch | monotouch was computed. |
Tizen | tizen40 was computed. tizen60 was computed. |
Xamarin.iOS | xamarinios was computed. |
Xamarin.Mac | xamarinmac was computed. |
Xamarin.TVOS | xamarintvos was computed. |
Xamarin.WatchOS | xamarinwatchos was computed. |
-
.NETStandard 2.0
- Newtonsoft.Json (>= 11.0.2)
- NLog (>= 4.5.10)
NuGet packages
This package is not used by any NuGet packages.
GitHub repositories
This package is not used by any popular GitHub repositories.
v1.0.3 - Added lazy resolution of AuthToken
v1.0.2 - Added an ability to programmatically resolve the AuthToken
v1.0.1 - Initial release