feat(metrics): adding cloudwatch metric filter #2176
Conversation
| result, | ||
| xcpdRequest, |
There was a problem hiding this comment.
including the request and condensing the error for easier debugging
There was a problem hiding this comment.
We still want to capture these since these are an immediate issue that need to be remediated if they occur. They are an error in our system and not in an external gateways system
| `${msg}, registryError: ${JSON.stringify( | ||
| registryErrorList | ||
| )}, outboundRequest: ${JSON.stringify(outboundRequest)}` | ||
| ); |
There was a problem hiding this comment.
removing capture, adding log to be caught by metric filter
| log( | ||
| `${msg}, cxId: ${cxId}, patientId: ${patientId}, gateway: ${request.gateway.homeCommunityId}, error: ${error}` | ||
| `${msg}, cxId: ${cxId}, patientId: ${patientId}, gateway: ${request.gateway.homeCommunityId}, error: ${errorString}${errorDetails}` |
There was a problem hiding this comment.
cleaning log for metric filter. removing capture
| log( | ||
| `${msg}, cxId: ${cxId}, patientId: ${patientId}, gateway: ${request.gateway.homeCommunityId}, error: ${error}` | ||
| `${msg}, cxId: ${cxId}, patientId: ${patientId}, gateway: ${request.gateway.homeCommunityId}, error: ${errorString}${errorDetails}` |
| `${msg}, jsonObj: ${JSON.stringify(jsonObj)}, outboundRequest: ${JSON.stringify( | ||
| outboundRequest | ||
| )}` | ||
| ); |
There was a problem hiding this comment.
adding log for metric filter
|
|
||
| this.addMetricFiltersAndAlarms(patientDiscoveryLambda, "PatientDiscoveryLambda", props, [ | ||
| { filterPattern: "Aborted Error is present in response", threshold: 100 }, | ||
| { filterPattern: "Failure Sending SAML Request", threshold: 100 }, |
There was a problem hiding this comment.
we have 115/1500 endpoints erroring in prod, split between the two error types:
aborted errors (inline soap errors)
http errors (400s, 500s, etc)
100 allotted for each for now should be a good buffer.
| this.addMetricFiltersAndAlarms(documentQueryLambda, "DocumentQueryLambda", props, [ | ||
| { filterPattern: "RegistryErrorList is present in response", threshold: 3 }, | ||
| { filterPattern: "Failure Sending SAML Request", threshold: 5 }, | ||
| ]); |
There was a problem hiding this comment.
From posthog, we send 3 dqs on average per patient right now. I dont know how many dqs we send a minute, so this threshold is kinda a guess right now.
…nd drs Refs: #1667 Signed-off-by: Jonah Kaye <[email protected]> feat(metrics): refactoring and cleaning Refs: #1667 Signed-off-by: Jonah Kaye <[email protected]> feat(metrics): upping xcpd error threshold Refs: #1667 Signed-off-by: Jonah Kaye <[email protected]> feat(metrics): cleaning up logical ids for metric filters Refs: #1667 Signed-off-by: Jonah Kaye <[email protected]> feat(metrics): upping thresholds for dq and drs Refs: #1667 Signed-off-by: Jonah Kaye <[email protected]>
jonahkaye
force-pushed
the
1764-cloudwatch-metric-and-filter-ihe-v2
branch
from
459346b
to
b10cd45
Compare
jonahkaye
requested review from
Goncharo,
leite08,
Orta21 and
RamilGaripov
as code owners
There was a problem hiding this comment.
Thinking how this will play our on a day-to-day basis... How could we get a simplified list of data to act upon, something like a report about the external GWs and a count of each type of errors? Does it make sense move that to a DB table instead of relying on logs?
packages/core/src/external/carequality/ihe-gateway-v2/ihe-gateway-v2-logic.ts
Show resolved
Hide resolved
| @@ -47,27 +45,15 @@ export async function sendSignedDQRequests({ | |||
| }; | |||
| //eslint-disable-next-line @typescript-eslint/no-explicit-any | |||
| } catch (error: any) { | |||
| const msg = "HTTP/SSL Failure Sending Signed DQ SAML Request"; | |||
| const msg = "Failure Sending SAML Request"; | |||
There was a problem hiding this comment.
What do you think we always use Error when referring to these situations? If we use Failure as well, it makes the filter for logs harder - also when we're debugging manually on the logs.
| const msg = "Failure Sending SAML Request"; | ||
| const errorString: string = errorToString(error); | ||
| const errorDetails = error?.response?.data | ||
| ? `, error details: ${JSON.stringify(error?.response?.data)}` |
There was a problem hiding this comment.
nit: no need to question mark as we're already checking if present at the start of the ternary
|
|
||
| private addMetricFiltersAndAlarms( | ||
| lambdaFunction: Lambda, | ||
| functionName: string, |
There was a problem hiding this comment.
Could get this from lambdaFunction
| const metricFilter = logGroup.addMetricFilter( | ||
| `${functionName}-${sanitizedFilterPattern}-MetricFilter`, | ||
| { | ||
| metricNamespace: "IHEGatewayV2", |
There was a problem hiding this comment.
There's a Metriport namespace, can we place this as a "Service" under that one, please?
E.g., there's a OSS API service there: https://us-west-1.console.aws.amazon.com/cloudwatch/home?region=us-west-1#metricsV2?graph=~()&query=~'*7bMetriport*2cService*7d
| { | ||
| metricNamespace: "IHEGatewayV2", | ||
| metricName: `${functionName}-${sanitizedFilterPattern}`, | ||
| filterPattern: FilterPattern.anyTerm(filterPattern), |
There was a problem hiding this comment.
Won't this result in us getting hits for log entries that contain any of the components of the filter?
| const alarm = metricFilter | ||
| .metric() | ||
| .createAlarm(this, `${functionName}-${sanitizedFilterPattern}-Alarm`, { | ||
| threshold, | ||
| evaluationPeriods: 1, | ||
| alarmDescription: `Alarm if ${functionName} encounters ${filterPattern}`, | ||
| treatMissingData: cloudwatch.TreatMissingData.NOT_BREACHING, | ||
| }); |
There was a problem hiding this comment.
I suggest we don't alert on these. CW-initiated alarms can't be "archived"/snoozed like we do with Sentry, so we would need to make a release to silent an alarm/update its configs.
We can instead add a widget to the prod dashboard and monitor once in a while as part of on-call (if not an auto report as indicated on the main review comment)?
| { filterPattern: "RegistryErrorList In Soap Response", threshold: 5 }, | ||
| { filterPattern: "Failure Sending SAML Request", threshold: 5 }, |
There was a problem hiding this comment.
I'd reconsider the filter pattern being so reliant on the full message. It's very prone to break as we maintain the code and potentially update the error message - no direct link to this code.
Maybe we could have some sort of fixed prefix that we add to all log entries we want to have a metric for, and that could be shared across the code and the infra using Core or Shared?
Refs: #1764
Description
Testing
Release Plan