使用 Terraform 为 AWS API 网关启用 CloudWatch 日志
[英]Enable CloudWatch logs for AWS API Gateway using Terraform
问题描述
I am using OpenAPI 3.0 spec to deploy an AWS API Gateway.
我正在使用 OpenAPI 3.0 规范部署 AWS API 网关。 I am not able to figure out how to enable cloud watch logs for the deployment.我无法弄清楚如何为部署启用云监视日志。
Here is the terraform code:这是 terraform 代码:
data "template_file" "test_api_swagger" {
template = file(var.api_spec_path)
vars = {
//ommitted
}
}
resource "aws_api_gateway_rest_api" "test_api_gateway" {
name = "test_backend_api_gateway"
description = "API Gateway for some x"
body = data.template_file.test_api_swagger.rendered
endpoint_configuration {
types = ["REGIONAL"]
}
}
resource "aws_api_gateway_deployment" "test_lambda_gateway" {
rest_api_id = aws_api_gateway_rest_api.test_api_gateway.id
stage_name = var.env
}
I checked Amazon OpenAPI extensions and none seem to have this option.我检查了 Amazon OpenAPI 扩展,似乎没有一个有这个选项。 Only way I see is using api_gateway_method_settings which I cannot use in this case.我看到的唯一方法是使用在这种情况下我无法使用的 api_gateway_method_settings 。
2 个解决方案
解决方案1
1 已采纳 2020-07-05 09:45:02
I think that it is not supported in terraform.我认为 terraform 不支持它。 I'm currently using terraform provisioner to run aws cli command after the deployment is created, like in the example below:我目前正在使用terraform 配置程序在创建部署后运行 aws cli 命令,如下例所示:
The example that I'm providing is to enable XRay tracing.
resource "aws_api_gateway_deployment" "test_lambda_gateway" {
rest_api_id = aws_api_gateway_rest_api.test_api_gateway.id
stage_name = var.env
provisioner "local-exec" {
command = "aws apigateway update-stage --region ${data.aws_region.current.name} --rest-api-id ${aws_api_gateway_rest_api.test_api_gateway.id} --stage-name ${var.env} --patch-operations op=replace,path=/tracingEnabled,value=true"
}
}
You just need to make a reference to the aws data provider in your terraform template:您只需在 terraform 模板中引用 aws 数据提供程序:
data "aws_region" "current" {}
解决方案2
0 2021-07-28 19:34:13
Even though you're creating the gateway with OpenAPI import, you can still use api_gateway_method_settings to reference the stage, assuming you're using a stage as recommended.即使您使用 OpenAPI 导入创建网关,您仍然可以使用 api_gateway_method_settings 来引用阶段,假设您按照推荐使用阶段。 See AWS documentation .请参阅AWS 文档。 You would just indicate "*/*" on the method_path as per the example.根据示例,您只需在 method_path 上指示“*/*”。
resource "aws_api_gateway_stage" "example" {
deployment_id = aws_api_gateway_deployment.test_lambda_gateway.id
rest_api_id = aws_api_gateway_rest_api.test_api_gateway.id
stage_name = "example"
}
resource "aws_api_gateway_method_settings" "all" {
rest_api_id = aws_api_gateway_rest_api.test_api_gateway.id
stage_name = aws_api_gateway_stage.example.stage_name
method_path = "*/*"
settings {
logging_level = "INFO"
}
}
This should set up the logging on the gateway for all requests with INFO level logging as if you had done it in the console on the stage.这应该在网关上为所有具有 INFO 级别日志记录的请求设置日志记录,就像您在舞台上的控制台中完成的一样。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.