Populate repository

Author: srisub-amzn

LICENSE.txt

@@ -0,0 +1,33 @@
+Amazon Software License
+
+This Amazon Software License (“License”) governs your use, reproduction, and distribution of the accompanying software as specified below.
+
+1. Definitions
+“Licensor” means any person or entity that distributes its Work.
+
+“Software” means the original work of authorship made available under this License.
+
+“Work” means the Software and any additions to or derivative works of the Software that are made available under this License.
+
+The terms “reproduce,” “reproduction,” “derivative works,” and “distribution” have the meaning as provided under U.S. copyright law; provided, however, that for the purposes of this License, derivative works shall not include works that remain separable from, or merely link (or bind by name) to the interfaces of, the Work.
+
+Works, including the Software, are “made available” under this License by including in or with the Work either (a) a copyright notice referencing the applicability of this License to the Work, or (b) a copy of this License.
+
+2. License Grants
+2.1 Copyright Grant. Subject to the terms and conditions of this License, each Licensor grants to you a perpetual, worldwide, non-exclusive, royalty-free, copyright license to reproduce, prepare derivative works of, publicly display, publicly perform, sublicense and distribute its Work and any resulting derivative works in any form.
+2.2 Patent Grant. Subject to the terms and conditions of this License, each Licensor grants to you a perpetual, worldwide, non-exclusive, royalty-free patent license to make, have made, use, sell, offer for sale, import, and otherwise transfer its Work, in whole or in part. The foregoing license applies only to the patent claims licensable by Licensor that would be infringed by Licensor’s Work (or portion thereof) individually and excluding any combinations with any other materials or technology.
+
+3. Limitations
+3.1 Redistribution. You may reproduce or distribute the Work only if (a) you do so under this License, (b) you include a complete copy of this License with your distribution, and (c) you retain without modification any copyright, patent, trademark, or attribution notices that are present in the Work.
+3.2 Derivative Works. You may specify that additional or different terms apply to the use, reproduction, and distribution of your derivative works of the Work (“Your Terms”) only if (a) Your Terms provide that the use limitation in Section 3.3 applies to your derivative works, and (b) you identify the specific derivative works that are subject to Your Terms. Notwithstanding Your Terms, this License (including the redistribution requirements in Section 3.1) will continue to apply to the Work itself.
+3.3 Use Limitation. The Work and any derivative works thereof only may be used or intended for use with the web services, computing platforms or applications provided by Amazon.com, Inc. or its affiliates, including Amazon Web Services, Inc.
+3.4 Patent Claims. If you bring or threaten to bring a patent claim against any Licensor (including any claim, cross-claim or counterclaim in a lawsuit) to enforce any patents that you allege are infringed by any Work, then your rights under this License from such Licensor (including the grants in Sections 2.1 and 2.2) will terminate immediately.
+3.5 Trademarks. This License does not grant any rights to use any Licensor’s or its affiliates’ names, logos, or trademarks, except as necessary to reproduce the notices described in this License.
+3.6 Termination. If you violate any term of this License, then your rights under this License (including the grants in Sections 2.1 and 2.2) will terminate immediately.
+
+4. Disclaimer of Warranty.
+THE WORK IS PROVIDED “AS IS” WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING WARRANTIES OR CONDITIONS OF M ERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE OR NON-INFRINGEMENT. YOU BEAR THE RISK OF UNDERTAKING ANY ACTIVITIES UNDER THIS LICENSE. SOME STATES’ CONSUMER LAWS DO NOT ALLOW EXCLUSION OF AN IMPLIED WARRANTY, SO THIS DISCLAIMER MAY NOT APPLY TO YOU.
+
+5. Limitation of Liability.
+EXCEPT AS PROHIBITED BY APPLICABLE LAW, IN NO EVENT AND UNDER NO LEGAL THEORY, WHETHER IN TORT (INCLUDING NEGLIGENCE), CONTRACT, OR OTHERWISE SHALL ANY LICENSOR BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY DIRECT, INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES ARISING OUT OF OR RELATED TO THIS LICENSE, THE USE OR INABILITY TO USE THE WORK (INCLUDING BUT NOT LIMITED TO LOSS OF GOODWILL, BUSINESS INTERRUPTION, LOST PROFITS OR DATA, COMPUTER FAILURE OR MALFUNCTION, OR ANY OTHER COMM ERCIAL DAMAGES OR LOSSES), EVEN IF THE LICENSOR HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
+Effective Date – April 18, 2008 © 2008 Amazon.com, Inc. or its affiliates. All rights reserved.

NOTICE.txt

@@ -0,0 +1,2 @@
+amazon-elasticsearch-lambda-samples
+Copyright 2015- Amazon.com, Inc. or its affiliates. All Rights Reserved.

README.md

@@ -1,2 +1,168 @@
-# amazon-elasticsearch-lambda-samples
-Data ingestion for Amazon Elasticsearch Service from S3 and Amazon Kinesis, using AWS Lambda: Sample code
+# Streaming Data to Amazon Elasticsearch Service
+## Using AWS Lambda: Sample Node.js Code
+### Package amazon-elasticsearch-lambda-samples
+
+Copyright 2015- Amazon.com, Inc. or its affiliates. All Rights Reserved.
+
+### Introduction
+It is often useful to stream data, as it gets generated, for indexing in an
+Amazon Elasticsearch Service domain.  This helps fresh data to be available for
+search or analytics.  To do this requires:
+
+1. Knowing when new data is available
+2. Code to pick up and parse the data into JSON documents, and add them to an
+   Amazon Elasticsearch (henceforth, ES for short) domain.
+3. Scalable and fully managed infrastructure to host this code
+
+*Lambda* is an AWS service that takes care of these requirements.  Put simply,
+it is an "event handling" service in the cloud.  Lambda lets us implement
+the event handler (in Node.js or Java), which it hosts and invokes in response
+to an event.
+
+The handler can be triggered by a "push" or a "pull" approach.
+Certain event sources (such as S3) push an event notification to Lambda.
+Others (such as Kinesis) require Lambda to poll for events and pull them
+when available.
+
+For more details on AWS Lambda, please see
+[the documentation](http://aws.amazon.com/documentation/lambda/).
+
+This package contains sample Lambda code (in Node.js) to stream data to ES
+from two common AWS data sources: S3 and Kinesis.  The S3 sample takes apache
+log files, parses them into JSON documents and adds them to ES.  The Kinesis
+sample reads JSON data from the stream and adds them to ES.
+
+Note that the sample code has been kept simple for reasons for clarity.  It
+does not handle ES document batching, or eventual consistency issues for
+S3 updates, etc.
+
+### Setup Overview
+
+While some detailed instructions are covered later in this file and elsewhere
+(in the Lambda documentation), this section aims to show the larger picture
+that the individual steps work to accomplish.  We assume that the data source
+(an S3 bucket or a Kinesis stream, in this case) and an ES domain are already
+set up.
+
+1. **Deployment Package**: The "Deployment Package" is the event handler code files
+   and its dependencies packaged as a zip file.  The first step in creating
+   a new Lambda function is to prepare and upload this zip file.
+
+2. **Lambda Configuration**:
+
+   1. Handler: The name of the main code file in the deployment package,
+      with the file extension replaced with a `.handler` suffix.
+   2. Memory: The memory limit, based on which the EC2 instance type to use
+      is determined.  For now, the default should do.
+   3. Timeout: The default timeout value (3 seconds) is quite low for our
+      use-case.  10 seconds might work better, but please adjust based on
+      your testing.
+
+3. **Authorization**: Since there is a need here for various AWS services making
+   calls to each other, appropriate authorization is required.  This takes
+   the form of configuring an IAM role, to which various authorization policies
+   are attached.  This role will be assumed by the Lambda function when running.
+
+Note:
+
+* The AWS Console is simpler to use for configuration than other methods.
+* Lambda is currently available only in a few regions (us-east-1, us-west-2,
+  eu-west-1, ap-northeast-1).
+* Once the setup is complete and tested, enable the data source in the Lambda
+  console, so that data may start streaming in.
+* The code is kept simple for purposes of illustration.  It doesn't batch
+  documents when loading the ES domain, or (for S3 updates) handle
+  eventual consistency cases.
+
+#### Deployment Package Creation
+1. On your development machine, download and install [Node.js](https://nodejs.org/en/).
+2. Anywhere, create a directory structure similar to the following:
+
+       eslambda (place sample code here)
+       |
+       +-- node_modules (dependencies will go here)
+
+3. Modify the sample code with the correct ES endpoint, region, index
+   and document type.
+4. Install each dependency imported by the sample code
+   (with the `require()` call), as follows:
+
+       npm install <dependency>
+
+   Verify that these are installed within the `node_modules` subdirectory.
+5. Create a zip file to package the code and the `node_modules` subdirectory
+
+       zip -r eslambda.zip *
+
+The zip file thus created is the Lambda Deployment Package.
+
+## S3-Lambda-ES
+
+Set up the Lambda function and the S3 bucket as described in the
+[Lambda-S3 Walkthrough](http://docs.aws.amazon.com/lambda/latest/dg/walkthrough-s3-events-adminuser.html).
+Please keep in mind the following notes and configuration overrides:
+
+* The walkthrough uses the AWS CLI for configuration, but it's probably more
+convenient to use the AWS Console (web UI)
+
+* The S3 bucket must be created in the same region as Lambda is, so that it
+  can push events to Lambda.
+
+* When registering the S3 bucket as the data-source in Lambda, add a filter
+  for files having `.log` suffix, so that Lambda picks up only apache log files.
+
+* The following authorizations are required:
+
+  1. Lambda permits S3 to push event notification to it
+  2. S3 permits Lambda to fetch the created objects from a given bucket
+  3. ES permits Lambda to add documents to the given domain
+
+  The Lambda console provides a simple way to create an IAM role with policies
+  for (1).  For (2), when creating the IAM role, choose the "S3 execution role"
+  option; this will load the role with permissions to read from the S3
+  bucket.  For (3), add the following access policy to permit ES operations
+  to the role.
+
+      {
+          "Version": "2012-10-17",
+          "Statement": [
+              {
+                  "Action": [
+                      "es:*"
+                  ],
+                  "Effect": "Allow",
+                  "Resource": "*"
+              }
+          ]
+      }
+
+
+## Kinesis-Lambda-ES
+
+Set up the Lambda function and the Kinesis stream as described in the
+[Lambda-Kinesis Walkthrough](http://docs.aws.amazon.com/lambda/latest/dg/walkthrough-kinesis-events-adminuser.html).
+Please keep in mind the following notes and configuration overrides:
+
+* The walkthrough uses the AWS CLI, but it's probably more convenient to use
+  the AWS Console (web UI) for Lambda configuration.
+
+* To the IAM role assigned to the Lambda function, add the following
+  access policy to permit ES operations.
+
+        {
+            "Version": "2012-10-17",
+            "Statement": [
+                {
+                    "Action": [
+                        "es:*"
+                    ],
+                    "Effect": "Allow",
+                    "Resource": "*"
+                }
+            ]
+        }
+
+* For testing: If you have a Kinesis client, use it to stream a record to Lambda.
+  If not, the AWS CLI could be used to push a JSON document to Lambda.
+
+      aws kinesis put-record --stream-name <lambda name> --data "<JSON document>" --region <region> --partition-key shardId-000000000000

src/kinesis_lambda_es.js

@@ -0,0 +1,79 @@
+/*
+ * Sample node.js code for AWS Lambda to upload the JSON documents
+ * pushed from Kinesis to Amazon Elasticsearch.
+ *
+ *
+ * Copyright 2015- Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ *
+ * Licensed under the Amazon Software License (the "License").
+ * You may not use this file except in compliance with the License.
+ * A copy of the License is located at http://aws.amazon.com/asl/
+ * or in the "license" file accompanying this file.  This file is distributed
+ * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
+ * express or implied.  See the License for the specific language governing
+ * permissions and limitations under the License.
+ */
+
+/* == Imports == */
+var AWS = require('aws-sdk');
+var path = require('path');
+
+/* == Globals == */
+var esDomain = {
+    region: 'us-east-1',
+    endpoint: 'my-domain-search-endpoint',
+    index: 'myindex',
+    doctype: 'mytype'
+};
+var endpoint = new AWS.Endpoint(esDomain.endpoint);
+/*
+ * The AWS credentials are picked up from the environment.
+ * They belong to the IAM role assigned to the Lambda function.
+ * Since the ES requests are signed using these credentials,
+ * make sure to apply a policy that allows ES domain operations
+ * to the role.
+ */
+var creds = new AWS.EnvironmentCredentials('AWS');
+
+
+/* Lambda "main": Execution begins here */
+exports.handler = function(event, context) {
+    console.log(JSON.stringify(event, null, '  '));
+    event.Records.forEach(function(record) {
+        var jsonDoc = new Buffer(record.kinesis.data, 'base64');
+        postToES(jsonDoc.toString(), context);
+    });
+}
+
+
+/*
+ * Post the given document to Elasticsearch
+ */
+function postToES(doc, context) {
+    var req = new AWS.HttpRequest(endpoint);
+
+    req.method = 'POST';
+    req.path = path.join('/', esDomain.index, esDomain.doctype);
+    req.region = esDomain.region;
+    req.headers['presigned-expires'] = false;
+    req.headers['Host'] = endpoint.host;
+    req.body = doc;
+
+    var signer = new AWS.Signers.V4(req , 'es');  // es: service code
+    signer.addAuthorization(creds, new Date());
+
+    var send = new AWS.NodeHttpClient();
+    send.handleRequest(req, null, function(httpResp) {
+        var respBody = '';
+        httpResp.on('data', function (chunk) {
+            respBody += chunk;
+        });
+        httpResp.on('end', function (chunk) {
+            console.log('Response: ' + respBody);
+            context.succeed('Lambda added document ' + doc);
+        });
+    }, function(err) {
+        console.log('Error: ' + err);
+        context.fail('Lambda failed with error ' + err);
+    });
+}