New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add a GeoIP processor. #253
Comments
Is your feature request related to a problem? Please describe. Pipeline users want to add geographical location details based on IP address to enrich data for analytical purposes. Describe the solution you'd like Create GeoIP plugin which will enrich traces with a geo location field, derived from the IP address. This will give customers a more insightful value that will allow them to visualize where traces are coming originating from. Plugin should be able to use Geo data from MaxMind database / Amazon location Service / User provided path of Geodata.
GeoIP attributes should have many optional attributes like ip, city_name, country_name, continent_code, country_iso_code, postal_code, region_name, region_code, timezone, location, latitude, longitude . Default should be all values included. Location attribute refers to latitude and longitude. Design Considerations: Any Geo data - consumer needs to keep updating the latest data in the plugin periodically Additional context Resources : MaxMind data: https://dev.maxmind.com/geoip/geolite2-free-geolocation-data?lang=en |
@ashoktelukuntla , I'd like to propose that we decouple the service configuration from the pipeline. In
The pipelines need only have:
The work being done for #2588 can help support this type of configuration |
Hi team, this feature would also be tremendously useful for security analytics usecases. Can you share any timelines for this feature? Thanks |
Last PR to complete this implementation for 2.7: #4307 |
Provide a new processor which can enrich Data Prepper events with location information using a provided IP address.
The minimal configuration is to provide a
source_key
with the JSON Pointer key path.Additionally, this plugin should be able to use either a MaxMind GeoIP Lite2 database or the GeoIP2 Commercial Licensing database. The Data Prepper author must provide information for configuring the commercial license.
The pipeline author can also specify an optional
target_key
property to specify where the location fields are written. By default, this will be the root of the event.Example 1 - Minimal Configuration
Input Event:
Output Event:
Example 2 - Target Key
Input Event:
Output Event:
The text was updated successfully, but these errors were encountered: