feat: Add user fields mapping to OTLP #431
Conversation
| @@ -580,3 +580,19 @@ func replaceReservedRune(disallowedRunes string) func(r rune) rune { | |||
| return unicode.ToLower(r) | |||
| } | |||
| } | |||
|
|
|||
| // NOTE: This will overwrite user fields set by `user.name=process.owner` from `otlp/metadata.go:translateResourceMetadata`. | |||
There was a problem hiding this comment.
This requires some consideration, how should we handle it if the user.name was already set by process.owner?
ref:
apm-data/input/otlp/metadata.go
Lines 239 to 243 in 99f84c0
There was a problem hiding this comment.
See test cases at #431 (comment)
There was a problem hiding this comment.
Raised in elastic/apm-server#15254 (comment) that process.owner mapping to user.name seems a bit out of place. I wonder it should actually be mapped to process.user.name instead.
| { | ||
| name: "process owner not overwritten", | ||
| processOwner: "i-am-the-owner", | ||
| input: userField{ | ||
| userID: "123", | ||
| userName: "", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| expected: userField{ | ||
| userID: "123", | ||
| userName: "i-am-the-owner", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| }, | ||
| { | ||
| name: "overwrite process owner", | ||
| processOwner: "i-am-the-owner", | ||
| input: userField{ | ||
| userID: "123", | ||
| userName: "hello", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| expected: userField{ | ||
| userID: "123", | ||
| userName: "hello", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| }, |
There was a problem hiding this comment.
Here are the test cases for when the process.owner resource metadata attribute is set.
There was a problem hiding this comment.
this is the case for record-level (log records, data points, spans) attributes overwriting resource level attributes, which is fine. But you may also need to test resource level User semconv fields competing with process.owner. However, I'm not sure if we should expect it at the resource level. See the above comment.
input/otlp/metadata.go
Outdated
| @@ -242,6 +242,8 @@ func translateResourceMetadata(resource pcommon.Resource, out *modelpb.APMEvent) | |||
| } | |||
| out.User.Name = truncate(v.Str()) | |||
|
|
|||
| // TODO(eric): Check if `user.*` fields are considered resource metadata? | |||
There was a problem hiding this comment.
Need help to confirm if user.* attributes are:
- resource metadata only
- scope metadata only
- datapoints only
- resource metadata + datapoints
- scope metadata + datapoints
- resource metadata + scope metadata + datapoints
There was a problem hiding this comment.
I see that you are currently only doing it for log records, data points and span events. imo it is missing for spans (see TranslateTransaction and TranslateSpan) which is most likely where these attributes are.
And you wonder if it should apply to resource and scope. I think it is unlikely for scope, but not too sure about resource. @axw may have a better idea here.
There was a problem hiding this comment.
Thanks. From what I can tell, TranslateTransaction and TranslateSpan is also used by intake v2. Will this change overwrite the user fields that are set here?
There was a problem hiding this comment.
I see that you are currently only doing it for log records, data points and span events. imo it is missing for spans (see TranslateTransaction and TranslateSpan) which is most likely where these attributes are.
++
And you wonder if it should apply to resource and scope. I think it is unlikely for scope, but not too sure about resource. @axw may have a better idea here.
I'm not aware of any cases where user would exist at the resource level. I guess there could be some kind of resource owner attributes, but I'm only aware of the need to represent users of the instrumented service, which would be at the operation level.
There was a problem hiding this comment.
Got it, I will just add the change to TranslateTransaction and TranslateSpan.
There was a problem hiding this comment.
As discussed in #431 (comment) , I think we should really fix user.name=process.owner in either this PR or a separate PR as a blocker. process.owner shouldn't be setting user.name in the first place. When that's fixed, this PR won't be overwriting user fields.
There was a problem hiding this comment.
+1 on this suggestion. @ericywl can you put up a PR to changing the current user mapping as a bugfix and then get back to this PR?
ericywl
changed the title
ericywl
changed the title
input/otlp/metadata.go
Outdated
| @@ -242,6 +242,8 @@ func translateResourceMetadata(resource pcommon.Resource, out *modelpb.APMEvent) | |||
| } | |||
| out.User.Name = truncate(v.Str()) | |||
|
|
|||
| // TODO(eric): Check if `user.*` fields are considered resource metadata? | |||
There was a problem hiding this comment.
I see that you are currently only doing it for log records, data points and span events. imo it is missing for spans (see TranslateTransaction and TranslateSpan) which is most likely where these attributes are.
And you wonder if it should apply to resource and scope. I think it is unlikely for scope, but not too sure about resource. @axw may have a better idea here.
| { | ||
| name: "process owner not overwritten", | ||
| processOwner: "i-am-the-owner", | ||
| input: userField{ | ||
| userID: "123", | ||
| userName: "", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| expected: userField{ | ||
| userID: "123", | ||
| userName: "i-am-the-owner", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| }, | ||
| { | ||
| name: "overwrite process owner", | ||
| processOwner: "i-am-the-owner", | ||
| input: userField{ | ||
| userID: "123", | ||
| userName: "hello", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| expected: userField{ | ||
| userID: "123", | ||
| userName: "hello", | ||
| userEmail: "[email protected]", | ||
| }, | ||
| }, |
There was a problem hiding this comment.
this is the case for record-level (log records, data points, spans) attributes overwriting resource level attributes, which is fine. But you may also need to test resource level User semconv fields competing with process.owner. However, I'm not sure if we should expect it at the resource level. See the above comment.
| } | ||
|
|
||
| allEvents := transformTraces(t, traces) | ||
| events := (*allEvents)[1:] |
There was a problem hiding this comment.
Why is the first event ignored? Is that the span itself?
There was a problem hiding this comment.
It shouldn't be ignored. We should ensure that the span document has user fields as well.
There was a problem hiding this comment.
On the point about user fields being experimental, imo it is fine to handle them and map them to the most appropriate ECS fields, as we have been doing that in apm-server. The implication of this PR is that User semconv fields will be mapped differently, which makes it possibly a "breaking change".
For apm-server, if we're only doing that in a major version change, it is fine, but it also means an apm-data major release and any other apm-data changes to apm-server 8.x will require backport to the previous apm-data major.
For MIS, there's likely a different policy for breaking changes.
Therefore, I'd appreciate @simitt's views on whether this should really be considered a breaking change. It seems like a slippery slope to me.
Co-authored-by: Carson Ip <[email protected]>
Apologies for the late response. Correcting the current mapping of the |
|
Let's close this PR, as we have closed the underlying issue as Won't fix. As raised by @lahsivjar , the currently mapped |
β Why is this being changed
Related to elastic/apm-server#15254
π§βπ» What is being changed
Map the following user fields from OTel attributes to
APMEvent.Useruser.iduser.nameuser.emailThe other user fields do not have equivalents in
APMEvent.User, so they will still be underAPMEvent.Labels.β How to validate the change
Run test on APM server with the changes