OpenSearch 2.0.1 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2165

Checklist:

• Compatibility Matrix is updated
• Release 2.0.1.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

is there a list of things (relevant for consumers) which changed between the original ES plugin (on 7.10.2) and this one? i can see that starting with #10 the default prefix is now opensearch_ and not es_ anymore (but can be configured). it might be good if a small migration guide (ES 7.10.2 -> OpenSearch 1.x -> OpenSearch 2.x) could be added to the README.
thanks!

Currently, the metrics include label cluster holding the cluster name but we should add also cluster_uuid to better support cases where metrics from multiple clusters are collected into shared storage. At this moment if multiple clusters have the same name we can not distinguish between them.

A new version of Java Client has been released. See https://github.com/prometheus/client_java/releases

OpenSearch 2.1.0 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#1818
Official blog post: https://opensearch.org/blog/releases/2022/07/opensearch-2-1-is-available-now/

Checklist:

• Compatibility Matrix is updated
• Release 2.1.0.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

OpenSearch 1.3.5 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2348

Checklist:

• Compatibility Matrix is updated
• Release 1.3.5.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

There are still some places where the code and configuration files need more love:

• build.gradle file (this file has been updated many times since the migration and I now consider it up-to-date)
• gradle.properties file (this file has been updated many times since the migration and I now consider it up-to-date)
• setup checkstyle (most of the work here has been already merged in #167, except it is turned off now)
• review CONTRIBUTING.md (see #199 and #78)
• define security policy (see #19)
• verify trademarks and attributions (see #17)
• select Code of Conduct (see #15)
• review .github/CODEOWNERS (see #30)
• still some leftovers in tests from original plugin template (Rename*.java files) (see #191)
• final updates to README.md (there are some TODOs and TBDs in it) (see #27)
• rename the repository before it is moved to a new organisation (see here for more details about why the repository needs to change its name opensearch-project/opensearch-plugin-template-java#23)

Deprecated tasks:

• missing automated release process: We will document the release process (see #42) and automate later (if possible).

Use this meta-ticket when adding new metrics before migration to OpenSearch 2.0.0.

OpenSearch 1.3.6 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2650

Checklist:

• Compatibility Matrix is updated
• Release 1.3.6.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

Hello,

First i would like to say a big thank you for providing this exporter, it's much appreciated.

Second, we have been looking into graphing the rate of indexed documents in our OpenSearch clusters and found the gauge "opensearch_indices_indexing_index_current_number". The description reads:

# HELP opensearch_indices_indexing_index_current_number Current rate of documents indexed

If we take a look in prometheus it looks like this. The indexing rate reported by the plugin is either constant 0 or spikes around 1.0-2.0.

If we look at the amount of logs indexed by our opensearch cluster in opensearch-dashboards we have around 100k logs in the last 15 min.

How come the values reported by the prometheus plugin is so low?

Our setup:

OpenSearch 1.3.2 with 3 master and 3 data nodes. Ingest is handled via Logstash -> Redis -> Logstash -> OpenSearch.

Please let me know if there is any information missing or if i am missing something obvious :)

Thanks!

Releasing a new version of Prometheus exporter plugin for OpenSearch is manual process. In order to make it replicable (and possibly more automated in the future) we shall document individual steps of the process and best practices.

We ask users to provide DCO when creating PRs. But sometimes they don't do it which causes review and merging to take longer time (because we have to ask them to signoff their commits and update the PR).

Let's improve the UX by adding PR template and provide clear instructions about how to provide DCO in PRs.

Possible issue in the future:

> Task :compileTestJava
Note: /Users/lukas.vlcek/projects/prometheus-exporter/src/test/java/org/opensearch/plugin/prometheus/PrometheusPluginIT.java uses or overrides a deprecated API.
Note: Recompile with -Xlint:deprecation for details.

With migration to OpenSearch the metric prefix will be configurable with the default value of opensearch_.

Note: With the prefix value being configurable one can still set it to the original value of es_ which can be handy if there is other system that rely on original names of the metrics.

Note: Documentation of individual metrics need to be versioned (per plugin releases).

The release date for OpenSearch 2.4 is November 10th, 2022

The build ticket is here: opensearch-project/opensearch-build#2649

Once the OpenSearch release is officially available we can upgrade.

Hello. I am were Update opensearch to 1.3.1 version and get this error.

Exception in thread "main" java.lang.IllegalArgumentException: Plugin [prometheus-exporter] was built for OpenSearch version 1.3.0 but version 1.3.1 is running
	at org.opensearch.plugins.PluginsService.verifyCompatibility(PluginsService.java:392)
	at org.opensearch.plugins.InstallPluginCommand.loadPluginInfo(InstallPluginCommand.java:815)
	at org.opensearch.plugins.InstallPluginCommand.installPlugin(InstallPluginCommand.java:870)
	at org.opensearch.plugins.InstallPluginCommand.execute(InstallPluginCommand.java:275)
	at org.opensearch.plugins.InstallPluginCommand.execute(InstallPluginCommand.java:249)
	at org.opensearch.cli.EnvironmentAwareCommand.execute(EnvironmentAwareCommand.java:100)
	at org.opensearch.cli.Command.mainWithoutErrorHandling(Command.java:138)
	at org.opensearch.cli.MultiCommand.execute(MultiCommand.java:104)
	at org.opensearch.cli.Command.mainWithoutErrorHandling(Command.java:138)
	at org.opensearch.cli.Command.main(Command.java:101)
	at org.opensearch.plugins.PluginCli.main(PluginCli.java:60)

https://opensearch.org/blog/releases/2022/03/launch-announcement-1-3-0/

There are some deprecation warning (in 2.2.1.0):

> Task :compileJava
/Users/lukas.vlcek/projects/prometheus-exporter/src/main/java/org/opensearch/action/NodePrometheusRequestBuilder.java:26: warning: [deprecation] MasterNodeReadOperationRequestBuilder in org.opensearch.action.support.master has been deprecated
public class NodePrometheusRequestBuilder extends MasterNodeReadOperationRequestBuilder<NodePrometheusMetricsRequest,
                                                  ^
/Users/lukas.vlcek/projects/prometheus-exporter/src/main/java/org/opensearch/action/NodePrometheusRequestBuilder.java:26: warning: [deprecation] MasterNodeReadOperationRequestBuilder in org.opensearch.action.support.master has been deprecated
public class NodePrometheusRequestBuilder extends MasterNodeReadOperationRequestBuilder<NodePrometheusMetricsRequest,
                                                  ^
/Users/lukas.vlcek/projects/prometheus-exporter/src/main/java/org/opensearch/action/NodePrometheusMetricsRequest.java:28: warning: [deprecation] MasterNodeReadRequest in org.opensearch.action.support.master has been deprecated
public class NodePrometheusMetricsRequest extends MasterNodeReadRequest<NodePrometheusMetricsRequest> {
                                                  ^
/Users/lukas.vlcek/projects/prometheus-exporter/src/main/java/org/opensearch/action/NodePrometheusMetricsRequest.java:28: warning: [deprecation] MasterNodeReadRequest in org.opensearch.action.support.master has been deprecated
public class NodePrometheusMetricsRequest extends MasterNodeReadRequest<NodePrometheusMetricsRequest> {
                                                  ^
4 warnings

Current metrics collection process is very strightforward – for every single scraping request all the metrics are pulled from the cluster. It is always "all or nothing" (except it is possible to skip detailed index level metrics with a cluster config setting).

Not only is it not efficient from the OpenSearch cluster perspective (i.e. pulling some metric types from the cluster may be more expensive than the other) but it also does not give user any option to include/exclude specific metrics.

The proposal is to give users control over the type(s) of metrics they want to pull from the cluster.

Currently, for a single scraping request there are several API calls excecuted internally in OpenSearch cluster (like Cluster health API, Nodes stats API, Indices Stats API, ... etc). The proposal is to make it possible to control which types of internal APIs will be called (hence making it possible to limit the number of metrics returned in response).

The API can look like this:

# To pull all stats (the default)
/_prometheus/metrics

# To pull only cluster health and nodes stats
/_prometheus/metrics?include=cluster_health,nodes_stats

# To pull only indices stats
/_prometheus/metrics?include=indices_stats

In combination with already implemented nodes filter this feature will allow for very flexible schema of metric collection. It will allow to collect specific type(s) of metrics from pre-defined sets of nodes at different intervals.

For example it will allow to pull the following sets of stats independently:

• system nodes statistics (Host stats, JVM stats, ...)
• cluster indices statistics (number of shards, segments, ...)
• ML tasks statistics

As a result users will be able to setup more scraping jobs in their Prometheus, each can run at different interval and pulling different type of metrics. This will make overall metric collection more efficient both for OpenSearch and Prometheus storage.

This may not be a breaking change. The default behaviour will be to pull "all metrics" at once. But users will be encouraged to setup more fine-grained scraping jobs instead. Examples will be provided.

All integration tests were originally implemented for Elasticsearch 5.x and 6.x
This means they should be updated to reflect "_type removal" breaking change.

WARNING: request [PUT http://127.0.0.1:57608/twitter/foo/1?error_trace=true] returned 1 warnings:
  [299 OpenSearch-1.2.3-8a529d77c7432bc45b005ac1c4ba3b2741b57d4a "[types removal] Specifying
  types in document index requests is deprecated, use the typeless endpoints instead
  (/{index}/_doc/{id}, /{index}/_doc, or /{index}/_create/{id})."]

OpenSearch 1.3.4 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2205

Checklist:

• Compatibility Matrix is updated
• Release 1.3.4.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

Release candidate (rc) builds are not supported at this moment. It is a legacy of the original project this plugin was forked from (i.e. Elasticsearch Prometheus exported plugin started by @vvanholl while ago). At that time the release process was fully automated and the idea was that the plugin code was either in -SNAPSHOT version or not (in which case the automated release process has been executed). More important rc build were quite rare with Elasticsearch, if my memory serves me well we never did rc release of Prometheus exporter plugin for Elasticsearch.

In order to make it possible a modification in build.gradle is needed.

Currently, the node statistics pulled from individual OpenSearch node is relevant to that node only.
This is limiting in cases when Prometheus is not scraping every OpenSearch node.

We can start using nodes filter to pull node statistics of more nodes via single scrape request.
Currently, the node filter is hardcoded to "_local". The goal is to add a new configuration option to specify custom node filter (such as "_master", "_all", "coordinating_only:true", ... etc).

Check this forum thread for more context:
https://discuss.opendistrocommunity.dev/t/add-exporter-plugin-to-opensearch/7115/19

it'd be great if you could publish your releases to maven (we use it to manage our dependencies, incl. opensearch & opensearch plugins).

you can use the opensearch.pluginzip gradle plugin for this: see the opensearch plugins documentation on this and opensearch-project/opensearch-build#1916.

Check list:

• Compatibility Matrix is updated
• Release 1.3.0.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

Existing instructions in README.md about running individual integration tests are not working.

Hi, is it possible to save plugin file localy and install later?
I saved prometheus-exporter-1.3.3.0.zip. I tried to install, but I had an error:

# wget https://github.com/aiven/prometheus-exporter-plugin-for-opensearch/releases/download/1.3.3.0/prometheus-exporter-1.3.3.0.zip
# opensearch-plugin install prometheus-exporter-1.3.3.0.zip
-> Installing prometheus-exporter-1.3.3.0.zip
-> Failed installing prometheus-exporter-1.3.3.0.zip
-> Rolling back prometheus-exporter-1.3.3.0.zip
-> Rolled back prometheus-exporter-1.3.3.0.zip
A tool for managing installed opensearch plugins

Non-option arguments:
[String] -- command  

Option             Description        
------             -----------        
-E <KeyValuePair>  Configure a setting
-h, --help         Show help          
-s, --silent       Show minimal output
-v, --verbose      Show verbose output
ERROR: Unknown plugin prometheus-exporter-1.3.3.0.zip

But, if I'm installing like this, it is successful.

# /usr/share/opensearch/bin/./opensearch-plugin install https://github.com/aiven/prometheus-exporter-plugin-for-opensearch/releases/download/1.3.3.0/prometheus-exporter-1.3.3.0.zip
-> Installing https://github.com/aiven/prometheus-exporter-plugin-for-opensearch/releases/download/1.3.3.0/prometheus-exporter-1.3.3.0.zip
-> Downloading https://github.com/aiven/prometheus-exporter-plugin-for-opensearch/releases/download/1.3.3.0/prometheus-exporter-1.3.3.0.zip
[=================================================] 100%   
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@     WARNING: plugin requires additional permissions     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
* java.lang.RuntimePermission accessClassInPackage.sun.misc
* java.lang.RuntimePermission accessDeclaredMembers
* java.lang.reflect.ReflectPermission suppressAccessChecks
See http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these permissions allow and the associated risks.

Continue with installation? [y/N]y
-> Installed prometheus-exporter with folder name prometheus-exporter

Hello,

Can we grab some info about indices in cluster? Size, docs inside or some more info?

OpenSearch 1.3.3 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2101

Checklist:

• Compatibility Matrix is updated
• Release 1.3.3.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

https://opensearch.org/blog/releases/2022/05/release-candidate-2-0-available/

As a reminder, this release candidate is provided for testing and validation purposes only. Please don’t use this release candidate in a production environment.

OpenSearch 2.3.0 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2447

Checklist:

• Compatibility Matrix is updated
• Release 2.3.0.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

The following two settings have impact on the amount of metrics pulled from OpenSearch. In the past (*) they were enabled by default which can lead to high cardinality issues in Prometheus (especially the indices level metrics).

(*) "In the past" means in the original Elasticsearch plugin which this OpenSearch plugin has been forked from. I think the forking process is the best opportunity for introducing breaking changes.

Let's switch the default value of these settings to false – meaning they will be disabled OOTB.

• prometheus.indices: false
• prometheus.cluster.settings: false

Notice: this feature will require improvement of integration tests. In particular we will need to configure two OpenSearch test clusters:

• One with these (^^) settings enabled for both the indices and settings metrics, without these settings enabled there will be some integration tests failing.
• Second cluster with the default settings (ie. indices and settings metrics disabled) that will be used to test only limited set of IT tests.

background

this is the third attempt in the third repo to get an answer to vvanholl/elasticsearch-prometheus-exporter#324 and aparo/opensearch-prometheus-exporter#4 🙂

there are various security plugins available for OpenSearch (OpenSearch Security and SearchGuard with their upcoming release) and OpenSearch Security is included and enabled by default in the normal distribution.
is there any documentation on how to use opensearch-prometheus-exporter in combination with them?

problems

i see two aspects to this:

• this plugin does REST calls to elasticsearch, so if security is enabled there it needs to be able to
  • provide authentication
  • validate & accept the TLS cert (it might well be a self-signed CA at the top which isn't accepted by the prometheus scrapper!)
• since the prometheus plugin exposes a new path on the existing 9200 port instead of opening a dedicated port it is behind HTTPS (if this is enabled in the security plugin) and behind authentication. but when using prometheus in a kubernetes environment with automatic scrapping there's no good way to configure the scraper to accept self-signed CAs or provide authentication

our workaround (solution?)

this is how we got it to work:

there's a role for prometheus (both to access the prometheus metrics as well as for the prometheus plugin itself to access the internal metrics; mixed here because as you can see in the role mapping below it's anyway using the same mechanism):

read_prometheus:
  cluster_permissions:
    - "cluster:monitor/prometheus/metrics" # allow access to the prometheus plugin (the prometheus metrics collector doesn't send authentication information)
    # allow the plugin to access the required metrics (the plugin also doesn't send authentication information)
    - "cluster:monitor/health"
    - "cluster:monitor/state"
    - "cluster:monitor/nodes/info"
    - "cluster:monitor/nodes/stats"
  index_permissions:
    - index_patterns:
      - "*"
      allowed_actions:
      - "indices:monitor/stats"

this is then mapped for all anonymous users in a role mapping (which IMHO is bad practice as it requires enabling anonymous auth in the first place):

read_prometheus:
  backend_roles:
    - opendistro_security_anonymous_backendrole

this of course requires config.dynamic.http.anonymous_auth_enabled: true to be set in the security config.
note: this is currently undocumented in OpenSearch, i've raised the corresponding docs ticket: opensearch-project/documentation-website#627

if the prometheus scrapper doesn't know the CA used for the TLS certificates on the http port then you might also have to disable TLS on OpenSearch (or re-configure the prometheus scrapper).

with this in place it's then possible for prometheus to scrap the metrics.

alternatives

it would also be possible to set up basic authentication on OpenSearch with a dedicated user for prometheus and then let the prometheus scrapper use this user to read the data. however, this also isn't particularly secure (e.g. when using the k8s annotations for prometheus and having to define the username/password there...) and requires having basic auth enabled in the first place (which isn't what we want given that we have no other usage for it and adding a new auth realm for one single use-case opens a whole new can of worms).

required solution

preferred solution

• no config is needed for the plugin to be able to access the metrics, it handles this internally (at least for OpenSearch Security as it should IMHO have first-party integration with that)
• no config is needed for the plugin to be accessible from the outside (to avoid both the authentication issues and the certificate issues you could potentially spin up your own HTTP(-only) server rather than relying on the OpenSearch mechanism to provide the endpoint)

minimal solution

• the best practices for the (manual) security setup are documented

OpenSearch 1.3.1 has been released, see release notes.
Official Opensearch release ticket: opensearch-project/opensearch-build#1805

Checklist:

• Compatibility Matrix is updated
• Release 1.3.1.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

The NodePrometheusRequestBuilder class is no longer needed because the method that was returning instance of this class has been removed from upstream classes (see below). Now, it is just a leftover from past refactoring and can be removed.

1. First the method Action.newRequestBuilder(client) was removed from Elasticsearch (see: elastic/elasticsearch#30966, specifically here elastic/elasticsearch@46e8d97#diff-34311f69b4f5ea90a3e88cabb8d3167f6c0651e5172f906750efc8a8276e4320L37).

2. Then it was removed from the Elasticsearch Prometheus exporter NodePrometheusMetricsAction class (see: vvanholl/elasticsearch-prometheus-exporter@deb496d#diff-d4bd29c3b4f015bf843e60db39c318a2560c6d9384942bbb271ed662ecf0d507L41).

The metric prefix is now configurable (see #7) but we do not have any tests covering this feature.

OpenSearch 2.0.0-rc1 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#1624

Checklist:

• Compatibility Matrix is updated
• Release 2.0.0.0-rc1 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

Hey Aiven, your exporter is great!
I just wanted to ask if you have a default dashboard that I can use with it?

OpenSearch uses different cluster name. All relevant integration tests need to be updated.

Upgrade to OpenSearch 2.0.0-rc1.

We created a new branch v1.3 that will be used for 1.3.x releases going forward.

The original build.gradle script was inherited from vvanholl/elasticsearch-prometheus-exporter repository.

Migration of this plugin was based on top of official opensearch-project/opensearch-plugin-template-java template which brings its own build.gradle script.

Merging these two build scripts is not very straightforward, especially the setup around opensearchplugin plugin (which was also challenging with Elasticsearch's esplugin) and testing.

Use mixin approach to generate Grafana compatible dashbhoard, Prometheus Rules and Alerts.

Sources of inspiration (all AL2):

• Elasticsearch mixin implemented for OpenShift Logging:
  • https://github.com/lukas-vlcek/elasticsearch-mixin
  • https://github.com/openshift/elasticsearch-operator/tree/master/files
• Prometheus Alerts unit tests implemented as part of Elasticsearch-operator for OpenShift Logging:
  • https://github.com/openshift/elasticsearch-operator/blob/master/test/files/prometheus-unit-tests/test.yml

The idea is that the repository will get new sub-project folder to host related source files, on top of that there will be a new gradle task implemented to process mixin sources and run alerts tests. This means that as part of each new release of the prometheus-exporter plugin we could also run automated release of Grafana dashboard and Prometheus Rules & Alerts as well.

OpenSearch 2.0.0 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2086

Checklist:

• Compatibility Matrix is updated
• Release 2.0.0.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

OpenSearch 2.2.0 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2271
Official blog post: https://opensearch.org/blog/releases/2022/08/opensearch-2-2-is-now-available/

Checklist:

• Compatibility Matrix is updated
• Release 2.2.0.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

OpenSearch 1.3.2 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#1882

Checklist:

• Compatibility Matrix is updated
• Release 1.3.2.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published

Hey all!
Im running my OpenSearch cluster on k8s env and i want to install the exporter on the OpenSearch nodes (pods), from a quick look on your repo i noticed that a restart is needed after installing the exporter on a node.
what will be the best why to install it? init container to the pods ?

Thanks!

OpenSearch 2.2.1 has been released, see release notes.
Official OpenSearch release ticket: opensearch-project/opensearch-build#2481

Checklist:

• Compatibility Matrix is updated
• Release 2.2.1.0 tag is present in the repo
• Release artifacts are available and downloadable
• Release notes published
• Forum announcement published