Skip to content

Simple, efficient & fast log storage and observability platform. Open source alternative to Splunk.

License

Notifications You must be signed in to change notification settings

ashahbazi58/parseable

 
 

Repository files navigation

Parseable Parseable

Cloud native log observability

Quick Start | Documentation | Community | Live Demo

👋 Introduction

Parseable is a open source log observability platform. Written in Rust, it is designed for simplicity of deployment and use. It is compatible with standard logging agents via their HTTP output. Parseable also offers a builtin GUI for log query and analysis.

We're focussed on

  • Simplicity - ease of deployment and use.
  • Efficiency - lesser CPU, Memory usage.
  • Extensibility - freedom to do more with event data.
  • Performance - lower latency, higher throughput.

🎯 Motivation

Given the analytical nature of log data, columnar formats like Parquet are the best way to store and analyze. Parquet offers compression and inherent analytical capabilities. However, indexing based text search engines are still prevalent. We are building Parseable to take full advantage of advanced data formats like Apache Parquet and Arrow. This approach is simpler, efficient and much more scalable.

Parseable is developer friendly, cloud native, logging platforms today that is simple to deploy and run - while offering a rich set of features.

❓ How it works

Parseable exposes REST API to ingest and query log data. Under the hood, it uses Apache Arrow and Parquet to handle and compress high volume log data. All data is stored in S3 (or compatible systems). Parseable also has a bundled web console to visualize and query log data.

  • Written in Rust. Low CPU & memory footprint, with low latency, high throughput.
  • Open data format (Parquet). Complete ownership of data. Wide range of possibilities for data analysis.
  • Single binary / container based deployment (including UI). Deploy in minutes if not seconds.
  • Indexing free design. Lower CPU and storage overhead. Similar levels of performance as indexing based systems.
  • Kubernetes and Cloud native design, build ground up for cloud native environments.

✅ Installing

Run the below command to deploy Parseable in demo mode with Docker.

mkdir -p /tmp/data
docker run \
  -p 8000:8000 \
  -v /tmp/data:/data \
  parseable/parseable:latest \
  parseable server --demo

Once this runs successfully, you'll see dashboard at http://localhost:8000. You can login to the dashboard with parseable, parseable as the credentials. Please make sure not to post any important data while in demo mode.

Prefer other platforms? Check out installation options (Kubernetes, bare-metal), in the documentation.

Live demo

Instead of installing locally, you can also try out Parseable on our Demo instance. Credentials to login to the dashboard are parseable / parseable.

💯 Usage

If you've already deployed Parseable using the above Docker command, use below commands to create stream and post event(s) to the stream. Make sure to replace <stream-name> with the name of the stream you want to create and post events (e.g. my-stream).

Create a stream

curl --location --request PUT 'http://localhost:8000/api/v1/logstream/<stream-name>' \
--header 'Authorization: Basic cGFyc2VhYmxlOnBhcnNlYWJsZQ=='

Send events to the stream

curl --location --request POST 'http://localhost:8000/api/v1/logstream/<stream-name>' \
--header 'X-P-META-meta1: value1' \
--header 'X-P-TAG-tag1: value1' \
--header 'Authorization: Basic cGFyc2VhYmxlOnBhcnNlYWJsZQ==' \
--header 'Content-Type: application/json' \
--data-raw '[
    {
        "id": "434a5f5e-2f5f-11ed-a261-0242ac120002",
        "datetime": "24/Jun/2022:14:12:15 +0000",
        "host": "153.10.110.81", 
        "user-identifier": "Mozilla/5.0 Gecko/20100101 Firefox/64.0", 
        "method": "PUT", 
        "status": 500, 
        "referrer": "http://www.google.com/"
    }
]'

🩺 Support

For questions and feedback please feel free to reach out to us on Slack. For bugs, please create issue on GitHub.

For commercial support and consultation, please reach out to us at [email protected].

🏆 Contributing

Refer to the contributing guide here.

Contributors

Supported by

About

Simple, efficient & fast log storage and observability platform. Open source alternative to Splunk.

Resources

License

Code of conduct

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Rust 97.7%
  • Smarty 1.1%
  • Other 1.2%