Skip to content

Commit

Permalink
COSI-19: Add docs for s3 and iam metrics
Browse files Browse the repository at this point in the history
  • Loading branch information
anurag4DSB committed Jan 2, 2025
1 parent 34ff9cb commit 7e94e8d
Showing 1 changed file with 110 additions and 0 deletions.
110 changes: 110 additions & 0 deletions docs/metrics-overview.md
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,116 @@ The COSI driver exposes default gRPC server metrics to monitor RPC activity.
grpc_server_started_total{grpc_method="DriverGetInfo",grpc_service="cosi.v1alpha1.Identity",grpc_type="unary"} 2
```

---

## IAM Operation Metrics

The COSI driver collects metrics for IAM operations performed via the AWS IAM API. These metrics help track the number and duration of IAM-related operations, enabling better monitoring and observability of IAM activity.

### Key IAM Metrics

| Metric Name | Description | Labels | Example Values |
|---------------------------------------------------|------------------------------------------------------------|-------------------|----------------------------------|
| `scality_cosi_driver_iam_request_duration_seconds`| Histogram of IAM request durations in seconds. | `method`, `status`| `CreateUser`, `success`, `error`|
| `scality_cosi_driver_iam_requests_total` | Total number of IAM requests categorized by method and status. | `method`, `status`| `CreateAccessKey`, `success` |

### IAM Operations

| IAM Operation | Description |
|-------------------------|---------------------------------------------------------------------|
| `CreateUser` | Creates an IAM user with the specified username. |
| `CreateAccessKey` | Generates access keys for a specific IAM user. |
| `PutUserPolicy` | Attaches an inline S3 wildcard policy to a user for bucket access. |
| `GetUser` | Retrieves details about an IAM user. |
| `ListAccessKeys` | Lists all access keys associated with an IAM user. |
| `DeleteAccessKey` | Deletes a specific access key associated with an IAM user. |
| `DeleteUserPolicy` | Deletes an inline policy associated with an IAM user. |
| `DeleteUser` | Deletes an IAM user. |

### Example IAM Metrics Output

Duration of IAM requests in seconds

```sh
scality_cosi_driver_iam_request_duration_seconds_bucket{method=“CreateUser”,status=“success”,le=“0.01”} 3
scality_cosi_driver_iam_request_duration_seconds_bucket{method=“CreateUser”,status=“success”,le=“0.025”} 4
scality_cosi_driver_iam_request_duration_seconds_sum{method=“CreateUser”,status=“success”} 0.014
scality_cosi_driver_iam_request_duration_seconds_count{method=“CreateUser”,status=“success”} 4
```

Total number of IAM requests

```sh
scality_cosi_driver_iam_requests_total{method=“CreateUser”,status=“success”} 4
scality_cosi_driver_iam_requests_total{method=“DeleteAccessKey”,status=“error”} 1
```

### Example IAM Workflow

#### Creating Bucket Access

1. Create an IAM user (`CreateUser`).
2. Attach an inline policy for bucket access (`PutUserPolicy`).
3. Generate access keys for the IAM user (`CreateAccessKey`).

#### Revoking Bucket Access

1. Verify the IAM user exists (`GetUser`).
2. Delete inline policies (`DeleteUserPolicy`).
3. Delete all associated access keys (`DeleteAccessKey`).
4. Delete the IAM user (`DeleteUser`).

---

## S3 Operation Metrics

The COSI driver collects metrics for S3 bucket operations performed via the AWS S3 API. These metrics help monitor bucket-related operations and their durations.

### Key S3 Metrics

| Metric Name | Description | Labels | Example Values |
|---------------------------------------------------|------------------------------------------------------------|-------------------|----------------------------------|
| `scality_cosi_driver_s3_request_duration_seconds` | Histogram of S3 request durations in seconds. | `method`, `status`| `CreateBucket`, `success`, `error`|
| `scality_cosi_driver_s3_requests_total` | Total number of S3 requests categorized by method and status. | `method`, `status`| `DeleteBucket`, `success` |

### S3 Operations

| S3 Operation | Description |
|---------------------|--------------------------------------------------------------------------|
| `CreateBucket` | Creates a new S3 bucket in the specified region. |
| `DeleteBucket` | Deletes an existing S3 bucket. (only empty bucket deletion is supported) |

### Example S3 Metrics Output

Duration of S3 requests in seconds

```sh
scality_cosi_driver_s3_request_duration_seconds_bucket{method=“CreateBucket”,status=“success”,le=“0.01”} 1
scality_cosi_driver_s3_request_duration_seconds_bucket{method=“CreateBucket”,status=“success”,le=“0.05”} 2
scality_cosi_driver_s3_request_duration_seconds_sum{method=“CreateBucket”,status=“success”} 0.04
scality_cosi_driver_s3_request_duration_seconds_count{method=“CreateBucket”,status=“success”} 2
```

Total number of S3 requests

```sh
scality_cosi_driver_s3_requests_total{method=“CreateBucket”,status=“success”} 2
scality_cosi_driver_s3_requests_total{method=“DeleteBucket”,status=“success”} 1
```

### Example S3 Workflow

#### Creating a Bucket:

1. Specify the bucket name and region.
2. Use the `CreateBucket` operation to create the bucket.
3. Configure bucket properties (e.g., policies, versioning) if needed.

#### Deleting a Bucket:

1. Verify the bucket exists.
2. Use the `DeleteBucket` operation to delete the bucket. Only empty bucket deletion is supported.

## Additional Resource

- [gRPC-Go Prometheus Metrics](https://github.com/grpc-ecosystem/go-grpc-prometheus)
Expand Down

0 comments on commit 7e94e8d

Please sign in to comment.