graylog2-server icon indicating copy to clipboard operation
graylog2-server copied to clipboard
verified publisher icon Graylog2

Allow read-only access to the datanode for applications such as Grafana

Open Pearson-k opened this issue 2 years ago • 2 comments

What?

Allow read-only access to the data within the indices in the data node so that it can be leveraged by other tools which can hook into OpenSearch.

Why?

Currently, the data node doesn't allow any third-party access to the data within Graylog. However, it is a common use case to leverage tools such as Grafana to leverage the data within Graylog in a different way without the need to ingest that data twice in both tools.

Pearson-k avatar Feb 02 '24 12:02 Pearson-k

Nothing is fundamentally preventing 3rd party clients from accessing data node-managed Opensearch clusters. However, it exclusively uses certificates to manage access. Thus, especially for CLI usage, Graylog needs to support generating certificates for that use case. As long as Grafana's datasource allows using certs there should be no issue.

kroepke avatar Feb 02 '24 12:02 kroepke

client certs should work according to the docs, but as said, we need to create the process/test https://grafana.com/docs/grafana/latest/administration/provisioning/#data-sources

janheise avatar Feb 02 '24 12:02 janheise

done

janheise avatar Mar 14 '24 09:03 janheise