fluent
diff --git a/‎README.md
Lines changed: 113 additions & 9 deletions b/‎README.md
Lines changed: 113 additions & 9 deletions
diff --git a/‎config.go
Lines changed: 215 additions & 0 deletions b/‎config.go
Lines changed: 215 additions & 0 deletions
@@ -1,6 +1,6 @@
 # Custom Go Plugin for Jaeger
 
-**Note:** This plugin is under heavily development and needed to use with this Fluent Bit's PR: https://github.com/fluent/fluent-bit/pull/10299
+**Note:** This plugin is under heavily development.
 
 This plugin implements Jaeger Remote Sampling protocol on Golang cutom plugin mechanism.
 
@@ -26,21 +26,125 @@ custom_jeager_remote.so
 
 For custom jeager plugin, we need to add custom section in fluent-bit conf:
 
+### Basic structure
+
+```ini
+[CUSTOM]
+    # The name registered in the Go code ("jaeger_remote")
+    Name         jaeger_remote
+
+    # --- Mode Selection ---
+    # Can be: "client", "server", or "all" (default)
+    Mode         all
+
+    # --- Add parameters for the selected mode below ---
+```
+
+### Mode: client
+
+In this mode, the plugin acts as an OpenTelemetry client, fetching sampling strategies from an external server.
+
+```ini
+[CUSTOM]
+    Name                jaeger_remote
+    Mode                client
+
+    # URL of the OTLP-compatible collector to send traces to.
+    client.server_url   http://localhost:4318
+
+    # URL of the Jaeger-compatible sampling server.
+    client.sampling_url http://localhost:5778/sampling
+```
+
+### Mode: Server
+
+In this mode, the plugin polls a Jaeger Collector for strategies and serves them via its own HTTP and/or gRPC endpoints. You can enable one or both by providing their listen addresses.
+
+```ini
+[CUSTOM]
+    Name                jaeger_remote
+    Mode                server
+
+    # --- Connection to Jaeger Collector ---
+    server.endpoint      jaeger-collector:14250
+    server.service_names frontend,backend,database
+
+    # --- Exposed Endpoints (enable one or both) ---
+    server.http.listen_addr 0.0.0.0:8899
+    server.grpc.listen_addr 0.0.0.0:9099
+
+    # --- Advanced Connection Settings (Optional) ---
+    server.retry.initial_interval 10s
+    server.keepalive.time         30s
+```
+
+### Mode: server (Local File)
+
+This mode loads a static strategy file and serves it via HTTP and/or gRPC. It does not connect to a remote Jaeger Collector.
+
 ```
 [CUSTOM]
-    Name jaeger_remote
-    server_url "http://localhost:14268"
-    sampling_url "http://localhost:5778/sampling"
-    rate 5s
+    Name                   jaeger_remote
+    Mode                   server
+
+    # --- Local Strategy File ---
+    server.strategy_file   /path/to/my_strategies.json
+
+    # --- Exposed Endpoints ---
+    server.http.listen_addr  0.0.0.0:8899
 ```
 
-For plugins.yaml,
+### Mode: All
 
-```yaml
-plugins:
-    - /path/to/custom_jeager_remote.so
+This mode enables both client and server functionalities simultaneously.
+
+```ini
+[CUSTOM]
+    Name                jaeger_remote
+    Mode                all
+
+    # --- Client Parameters ---
+    client.server_url   http://localhost:4318
+    client.sampling_url http://localhost:5778/sampling
+
+    # --- Server Parameters ---
+    server.endpoint      jaeger-collector:14250
+    server.service_names frontend,backend,database
+    server.http.listen_addr 0.0.0.0:8899
+    server.grpc.listen_addr 0.0.0.0:9099
 ```
 
+## Parameter Reference
+
+| Key                                      | Mode          | Description                                                                                             | Default                  |
+| ---------------------------------------- | ------------- | ------------------------------------------------------------------------------------------------------- | ------------------------ |
+| `mode`                                   | **Global** | Sets the operating mode. Can be `client`, `server`, or `all`.                                             | `all`                    |
+| **Client Settings** |               |                                                                                                         |                          |
+| `client.server_url`                      | `client`/`all`  | The endpoint URL of the OTLP collector to which traces will be sent.                                      | **Required** |
+| `client.sampling_url`                    | `client`/`all`  | The URL of the Jaeger-compatible sampling server to poll for strategies.                                | **Required** |
+| **Server Settings** |               |                                                                                                         |                          |
+| `server.endpoint`                        | `server`/`all`  | The gRPC endpoint of the Jaeger Collector to poll for sampling strategies. **Mutually exclusive** with server.strategy_file. | **Required** |
+{ `server.strategy_file`                   | `server`/`all`  | Path to a local JSON file containing sampling strategies. **Mutually exclusive** with `server.endpoint`.    | ` ` (Disabled)           |
+| `server.service_names`                   | `server`/`all`  | A comma-separated list of service names to fetch strategies for.                                        | **Required** |
+| `server.http.listen_addr`                | `server`/`all`  | The address and port for the internal HTTP server to listen on. If empty, the HTTP server is disabled.    | ` ` (Disabled)           |
+| `server.grpc.listen_addr`                | `server`/`all`  | The address and port for the internal gRPC server to listen on. If empty, the gRPC server is disabled.   | ` ` (Disabled)           |
+| `server.headers`                         | `server`/`all`  | Comma-separated key=value pairs to add as gRPC metadata to requests to the Jaeger Collector.          | ` `                      |
+| **Server TLS Settings** |               |                                                                                                         |                          |
+| `server.tls.insecure`                    | `server`/`all`  | If `true`, TLS certificate verification is skipped when connecting to the Jaeger Collector.               | `false`                  |
+| `server.tls.server_name_override`        | `server`/`all`  | Overrides the server name used for TLS validation.                                                      | ` `                      |
+| `server.tls.ca_file`                     | `server`/`all`  | Path to the CA certificate file for verifying the Jaeger Collector's certificate.                       | ` `                      |
+| `server.tls.cert_file`                   | `server`/`all`  | Path to the client's TLS certificate file.                                                              | ` `                      |
+| `server.tls.key_file`                    | `server`/`all`  | Path to the client's TLS private key file.                                                              | ` `                      |
+| **Server Keepalive Settings** |               |                                                                                                         |                          |
+| `server.keepalive.time`                  | `server`/`all`  | Interval to send keepalive pings to the Jaeger Collector. If not set, keepalive is disabled.            | ` ` (Disabled)           |
+| `server.keepalive.timeout`               | `server`/`all`  | Time to wait for a keepalive ack before considering the connection dead.                                | `20s`                    |
+| `server.keepalive.permit_without_stream` | `server`/`all`  | If `true`, allows pings to be sent even if there are no active streams.                               | `true`                   |
+| **Server Retry Settings** |               |                                                                                                         |                          |
+| `server.retry.initial_interval`          | `server`/`all`  | The initial time to wait before retrying a failed connection to the Jaeger Collector.                   | `5s`                     |
+| `server.retry.max_interval`              | `server`/`all`  | The maximum time to wait between retries.                                                               | `5m`                     |
+| `server.retry.multiplier`                | `server`/`all`  | The factor by which the retry interval is multiplied after each failed attempt. Must be > 1.0.            | `1.5`                    |
+| `server.retry.max_retry`                 | `server`/`all`  | The factor by which the maximum retries after each failed attempt. Must be > 1.0.            | `10`                    |
+
 ## Run
 
 Put c-chared object in the specified path and run fluent-bit:
 
@@ -0,0 +1,215 @@
+package main
+
+import (
+	"crypto/tls"
+	"crypto/x509"
+	"errors"
+	"io/ioutil"
+	"strconv"
+	"strings"
+	"time"
+
+	"github.com/calyptia/plugin"
+)
+
+func loadTLSConfig(cfg TLSSettings) (*tls.Config, error) {
+	tlsConfig := &tls.Config{InsecureSkipVerify: cfg.Insecure, ServerName: cfg.ServerName}
+	if cfg.CAFile != "" {
+		caBytes, err := ioutil.ReadFile(cfg.CAFile)
+		if err != nil {
+			return nil, err
+		}
+		caPool := x509.NewCertPool()
+		caPool.AppendCertsFromPEM(caBytes)
+		tlsConfig.RootCAs = caPool
+	}
+	if cfg.CertFile != "" && cfg.KeyFile != "" {
+		cert, err := tls.LoadX509KeyPair(cfg.CertFile, cfg.KeyFile)
+		if err != nil {
+			return nil, err
+		}
+		tlsConfig.Certificates = []tls.Certificate{cert}
+	}
+	return tlsConfig, nil
+}
+
+func parseCorsConfig(cfg *Config, conf plugin.ConfigLoader) (*Config, error) {
+	if cfg == nil {
+		return nil, errors.New("cfg must not nil")
+	}
+	if corsStr := conf.String("server.cors.allowed_origins"); corsStr != "" {
+		for _, origin := range strings.Split(corsStr, ",") {
+			trimmedOrigin := strings.TrimSpace(origin)
+			if trimmedOrigin != "" { // Only append non-empty origins
+				cfg.ServerCors.AllowedOrigins = append(cfg.ServerCors.AllowedOrigins, trimmedOrigin)
+			}
+		}
+	}
+
+	return cfg, nil
+}
+
+func loadConfig(fbit *plugin.Fluentbit) (*Config, error) {
+	log := fbit.Logger
+	cfg := &Config{
+		Mode:                 fbit.Conf.String("mode"),
+		ClientServerURL:      fbit.Conf.String("client.server_url"),
+		ClientSamplingURL:    fbit.Conf.String("client.sampling_url"),
+		ServerEndpoint:       fbit.Conf.String("server.endpoint"),
+		ServerStrategyFile:   fbit.Conf.String("server.strategy_file"),
+		ServerHttpListenAddr: fbit.Conf.String("server.http.listen_addr"),
+		ServerGrpcListenAddr: fbit.Conf.String("server.grpc.listen_addr"),
+		ServerHeaders:        parseHeaders(fbit.Conf.String("server.headers")),
+	}
+
+	cfg, err := parseCorsConfig(cfg, fbit.Conf)
+	if err != nil {
+		return nil, err
+	}
+
+	if cfg.Mode == "" {
+		cfg.Mode = "all"
+	}
+
+	if cfg.Mode == "client" || cfg.Mode == "all" {
+		if cfg.ClientServerURL == "" {
+			return nil, errors.New("'client.server_url' is required for client/all mode")
+		}
+		if cfg.ClientSamplingURL == "" {
+			return nil, errors.New("'client.sampling_url' is required for client/all mode")
+		}
+	}
+
+	if cfg.Mode == "server" || cfg.Mode == "all" {
+		if cfg.ServerEndpoint == "" && cfg.ServerStrategyFile == "" {
+			return nil, errors.New("for server mode, either 'server.endpoint' or 'server.strategy_file' must be configured")
+		}
+		if cfg.ServerEndpoint != "" && cfg.ServerStrategyFile != "" {
+			return nil, errors.New("'server.endpoint' and 'server.strategy_file' are mutually exclusive")
+		}
+
+		// Remote-only server settings
+		if cfg.ServerEndpoint != "" {
+			if valStr := fbit.Conf.String("server.reload_interval"); valStr != "" {
+				val, err := time.ParseDuration(valStr)
+				if err != nil {
+					log.Warn("could not parse 'server.reload_interval', using default of 5m. error: %v", err)
+					cfg.ServerReloadInterval = 5 * time.Minute
+				} else {
+					cfg.ServerReloadInterval = val
+				}
+			} else {
+				cfg.ServerReloadInterval = 5 * time.Minute // Default TTL
+			}
+
+			cfg.ServerTLS = TLSSettings{
+				ServerName: fbit.Conf.String("server.tls.server_name_override"),
+				CAFile:     fbit.Conf.String("server.tls.ca_file"),
+				CertFile:   fbit.Conf.String("server.tls.cert_file"),
+				KeyFile:    fbit.Conf.String("server.tls.key_file"),
+			}
+			if insecureStr := fbit.Conf.String("server.tls.insecure"); insecureStr != "" {
+				cfg.ServerTLS.Insecure, _ = strconv.ParseBool(insecureStr)
+			}
+
+			if kaTimeStr := fbit.Conf.String("server.keepalive.time"); kaTimeStr != "" {
+				cfg.ServerKeepalive = &KeepaliveConfig{}
+				kaTime, err := time.ParseDuration(kaTimeStr)
+				if err != nil {
+					log.Warn("could not parse 'server.keepalive.time', skipping keepalive config. error: %v", err)
+					cfg.ServerKeepalive = nil
+				} else {
+					cfg.ServerKeepalive.Time = kaTime
+					kaTimeoutStr := fbit.Conf.String("server.keepalive.timeout")
+					if kaTimeoutStr == "" {
+						cfg.ServerKeepalive.Timeout = 20 * time.Second
+					} else {
+						kaTimeout, err := time.ParseDuration(kaTimeoutStr)
+						if err != nil {
+							log.Warn("could not parse 'server.keepalive.timeout', using default of 20s. error: %v", err)
+							cfg.ServerKeepalive.Timeout = 20 * time.Second
+						} else {
+							cfg.ServerKeepalive.Timeout = kaTimeout
+						}
+					}
+					kaPermitStr := fbit.Conf.String("server.keepalive.permit_without_stream")
+					if kaPermitStr == "" {
+						cfg.ServerKeepalive.PermitWithoutStream = true
+					} else {
+						kaPermit, err := strconv.ParseBool(kaPermitStr)
+						if err != nil {
+							log.Warn("could not parse 'server.keepalive.permit_without_stream', using default of true. error: %v", err)
+							cfg.ServerKeepalive.PermitWithoutStream = true
+						} else {
+							cfg.ServerKeepalive.PermitWithoutStream = kaPermit
+						}
+					}
+				}
+			}
+
+			cfg.ServerRetry = &RetryConfig{}
+			if valStr := fbit.Conf.String("server.retry.initial_interval"); valStr != "" {
+				val, err := time.ParseDuration(valStr)
+				if err != nil {
+					log.Warn("could not parse 'server.retry.initial_interval', using default of 5s. error: %v", err)
+					cfg.ServerRetry.InitialInterval = 5 * time.Second
+				} else {
+					cfg.ServerRetry.InitialInterval = val
+				}
+			} else {
+				cfg.ServerRetry.InitialInterval = 5 * time.Second
+			}
+			if valStr := fbit.Conf.String("server.retry.max_interval"); valStr != "" {
+				val, err := time.ParseDuration(valStr)
+				if err != nil {
+					log.Warn("could not parse 'server.retry.max_interval', using default of 5m. error: %v", err)
+					cfg.ServerRetry.MaxInterval = 5 * time.Minute
+				} else {
+					cfg.ServerRetry.MaxInterval = val
+				}
+			} else {
+				cfg.ServerRetry.MaxInterval = 5 * time.Minute
+			}
+
+			if valStr := fbit.Conf.String("server.retry.max_retry"); valStr != "" {
+				val, err := strconv.ParseInt(valStr, 10, 0)
+				if err != nil {
+					log.Warn("could not parse 'server.retry.max_retry', using default of 5m. error: %v", err)
+					cfg.ServerRetry.MaxRetry = 10
+				} else {
+					cfg.ServerRetry.MaxRetry = val
+				}
+			} else {
+				cfg.ServerRetry.MaxRetry = 10
+			}
+			if cfg.ServerRetry.MaxRetry <= 0 {
+				log.Warn("'server.retry.multiplier' must be > 0, using default of 10")
+				cfg.ServerRetry.MaxRetry = 10
+			}
+			if valStr := fbit.Conf.String("server.retry.multiplier"); valStr != "" {
+				val, err := strconv.ParseFloat(valStr, 64)
+				if err != nil {
+					log.Warn("could not parse 'server.retry.multiplier', using default of 1.5. error: %v", err)
+					cfg.ServerRetry.Multiplier = 1.5
+				} else {
+					cfg.ServerRetry.Multiplier = val
+				}
+			} else {
+				cfg.ServerRetry.Multiplier = 1.5
+			}
+			if cfg.ServerRetry.Multiplier <= 1.0 {
+				log.Warn("'server.retry.multiplier' must be > 1.0, using default of 1.5")
+				cfg.ServerRetry.Multiplier = 1.5
+			}
+
+			serviceNamesStr := fbit.Conf.String("server.service_names")
+			if serviceNamesStr == "" {
+				return nil, errors.New("'server.service_names' (comma-separated) is required for server/all mode with a remote endpoint")
+			}
+			for _, s := range strings.Split(serviceNamesStr, ",") {
+				cfg.ServerServiceNames = append(cfg.ServerServiceNames, strings.TrimSpace(s))
+			}
+		}
+	}
+	return cfg, nil
+}