Elastic Search ELK stack using Spring Boot
There are 2 resource flows in this project
- CRUD Operation using ElasticsearchRepository - CustomerController
- to create,update,delete,retrieve data from the indexes
- The retrieve operation is limited
- Query data from indexes using DSL (Domain Specific Language) - ManualSearchResource
- Retrieve data from index using criteria like multiple fields, wildcard etc
There are 2 use cases in this project and both use different indexes
- CRUD operations and retrieval is performed in the index specified by the application i.e elasticsearch1
- Logging the application logs by Logstash in a index named logstash*
Prerequisite
- Download ElasticSearch zip and start ElasticSearch using elasticsearch.bat. Elastic search runs on port 9200
- Download Kibana zip and specify ElasticSearch url localhost:9200. start Kibana.bat after that. Kibana runs on port 5601
- Download logStash.zip and specify log file url and ElasticSearch url localhost:9200.
- Create logstash.conf file inside the bin folder to specify the input,filter and output stages. start logstash after that
Steps to execute
- Create a model object called Customer with the annotation @Document(indexName="elasticsearch_14062020",type="customer",shards=2)
- Create a CustomerRepository CustomerRepository extends ElasticsearchRepository<Customer, String>
- This repository inherits all the apis from Spring Data JPA and hence it is similar to be connecting to other DB. Only difference is data is indexed and stored in files in the disk
- Specify location of logs in application.properties. This is to store logs in centralized location and will be read by logstash
- call this endpoint in postman to insert data http://localhost:8080/saveCustomers { "id":"7", "firstName":"xxx", "lastName":"xxx", "age":xx }
- call this endpoint to retrieve data http://localhost:8080/findByFirstName/{firstName}
- call this endpoint to search by either firstname or age http://localhost:8080/manual/search/multifields/{firstName}/{age}
- call this endpoint to search by a single value in both firstName and lastName field. Also it searches by wildcard * http://localhost:8080/manual/search/searchall/{text}
- Kibana end point is localhost:5601 Click on management menu in Kibana and create index pattern by filtering the index.
- elasticsearch1 for crud data
- logstash* for logs data
- Go to discover menu and select and index and search any data either crud data or logs data
- Create visualizations based on the searched data
- Go to dashboards and add the creaed visualizations as shown below
Kibana Search
Search Results from Query DSL
- multifields_firstName_age
- search_firstName_lastName_wildcard.bmp
