journald

Overview Versions Insights

ansible logo

redhat logo

Ansible Role :signal_strength: :page_with_curl: Journald

Galaxy Role GitHub release (latest by date) License: MIT

Table of Contents

Ansible role that installs and configures Journald: a system service which collects and stores logging data.

Supported Platforms:
* Debian
* Redhat(CentOS/Fedora)
* Ubuntu

Requirements

Considered the default logging system for Linux distributions and viewed as the sucessor to syslog with respect to system logging services, journald is generally installed alongside systemd and available without manual or user installation on the supported list of Linux platforms.

Reference the systemd README and journald documentation for further details.

Role Variables

Variables are available and organized according to the following software & machine provisioning stages:

  • install
  • config
  • uninstall

Install

The following variables can be customized to control certain aspects involved with the journald installation process. It is assumed that the host has a working version of the systemd package. Available versions based on OS distribution can be found here for reference.

journal_group_adds: <list-of-accounts> (default: [])

  • indicates user accounts to automatically add to the systemd-journal group for privileged log monitoring capabilities

Journal files are, by default, owned and readable by the systemd-journal system group but are not writable. Adding a user to this group thus enables her/him to read the journal files without privilege escalation. Reference this systemd-journald service documentation for more details.

Example
 journal_group_adds:
   - user-account-1
   - user-account-2

Config

Configuration of journald is declared in an ini-style config file, stored as journald.conf by default. This INI config is composed of a single section, [Journal], which may be composed of various options for declaring the desired behavior of the logging service.

These configurations can be expressed within the role's journald_config hash variable as lists of dicts containing key-value pairs representing the name, load path and a combination of the aforemented section options. See here for a complete list of available options.

[journald_configs: <list-entry>:] name: <string> (default: journald.conf)

  • name of the journald configuration file

[journald_configs: <list-entry>:] path: <string> (default: /etc/systemd/)

  • load path of the journald configuration file

When packages or local administrators need to customize the base or default configuration, they can install configuration snippets in one of the following override directories:

Configuration Load Path Description
/etc/systemd/journald.conf default/base configuration, as defined by the local system administrator
/etc/systemd/journald.conf.d/*.conf local administrator override directory (filename is an arbitrary value)
/run/systemd/journald.conf.d/*.conf runtime override directory (filename is an arbitrary value)
/usr/lib/systemd/journald.conf.d/*.conf vendor package override directory

The main configuration file is read before any of the configuration directories, and has the lowest precedence. Entries in a file in any configuration directory override entries in the single configuration file. Files in the *.conf.d/ configuration subdirectories are sorted and loaded by their filename in lexicographic order, regardless of which of the subdirectories they reside in.

[journald_config: <list-entry>:] config: <dict> (default: {})

  • section definitions for journal configuration

Any configuration setting/value key-pair supported by journald should be expressible within each journald_configs list entry and properly rendered within the specified INI config.

Example
 journald_configs:
   - name: debug-overrides.conf
     path: /run/systemd/journald.conf.d
     config:
       MaxLevelStore: debug
       Storage: volatile
       RateLimitIntervalSec: 0
       RateLimitBurst: 0

Uninstall

Remove managed journald.conf config, returning the target host to its configured state prior to application of this role (e.g. can be useful for recycling configuration settings during system upgrades).

The following variable(s) can be customized to manage this uninstall process:

perform_uninstall: <true | false> (default: false)

  • whether to uninstall managed configuration of a system's journald.conf configuration on a target host (see: handlers/main.yml for details)

Dependencies

None

Example Playbook

default example:

- hosts: all
  roles:
  - role: 0x0I.journald

set persistent log storage and update/decrease persistence sync interval:

- hosts: staging
  roles:
  - role: 0x0I.journald
    vars:
      journald_configs:
        - config:
            Storage: persistence
            SyncIntervalSec: 10

create base custom configuration with debug override configuration in place:

- hosts: all
  roles:
  - role: 0x0I.journald
    vars:
      journald_configs:
          # base configuration will be installed at /etc/systemd/journald.conf
          - config:
              Storage: auto
              MaxLevelStore: warning
          # override configuration will be installed at /run/systemd/journald.conf.d/debug-overrides.conf
          - name: debug-overrides.conf
            path: /run/systemd/journald.conf.d
            config:
              Storage: volatile
              MaxLevelStore: debug
              RateLimitIntervalSec: 0
              RateLimitBurst: 0

add a set of users to the systemd-journal group for privileged journal access:

- hosts: prod
  roles:
  - role: 0x0I.journald
    vars:
      journal_group_adds: ['sysadmin-user', 'sre-user']

License

MIT

Author Information

This role was created in 2019 by O1.IO.

About

Journald, a system service that collects and stores logging data

role events journald logging systemd
Install
ansible-galaxy install 0x0I/ansible-role-journald
GitHub repository
0 stars
2 forks
2 open issues
License
Unknown
Downloads
247
Owner