README
¶
Dockmon
Dockmon is a Go service that collects Docker container logs and stores them in MySQL. It supports both structured and unstructured logs, watches Docker events, and starts/stops collectors dynamically as containers change state.
Features
- Collect logs from configured containers.
- Parse JSON logs and merge multiline unstructured logs.
- Persist logs to MySQL with container metadata and extra fields.
- Track Docker events (
start,stop,die,destroy) to manage collectors dynamically. - Resume collection with Redis-based timestamp checkpoints.
- Provide internal auth APIs for app registration and JWT token issuance.
Architecture
At startup, Dockmon initializes dependencies, then runs three concurrent components:
- HTTP server (
Gin) - In-process scheduler
- Docker log collector
Key flow for log collection:
- Resolve target container names to container IDs.
- Start log stream with Docker SDK (
Follow + Timestamps). - Parse each line:
- JSON logs: map known fields (
L,T,C,M,TraceID) and keep unknown keys inextra. - Unstructured logs: buffer multiline blocks and infer level.
- JSON logs: map known fields (
- Sanitize message content (strip ANSI escape sequences, control chars, invalid UTF-8, and truncate safely).
- Store into MySQL table
log. - Save last timestamp in Redis for incremental resume.
Project Layout
.
├── app/
│ ├── http/ # API handlers, middleware, router
│ ├── monitor/ # Docker watcher and log parser
│ ├── job/ # Scheduler jobs
│ ├── model/ # GORM models
│ ├── repository/ # Data access layer
│ ├── service/ # Business services
│ └── pkg/ # Shared packages (jwt, trace, schedule, error code)
├── bootstrap/ # App bootstrap and component startup
├── bin/
│ ├── configs/ # local/dev/prod config files
│ ├── data/sql/ # schema and migration SQL
│ └── lang/ # i18n message files
├── scripts/ # helper scripts
├── Dockerfile
├── Makefile
└── main.go
Requirements
- Go
1.24+(fromgo.mod) - Docker daemon (Dockmon uses Docker socket/API)
- MySQL 8+
- Redis
Quick Start (Local)
- Clone the repository.
git clone https://github.com/seakee/dockmon.git
cd dockmon
- Create local config and update required fields.
cp bin/configs/local.json.default bin/configs/local.json
You must set:
system.jwt_secret(required, use a strong random value, at least 32 chars)databases[0]connection valuesredis[0]connection valuescollector.container_name(containers to monitor)
- Initialize database schema.
mysql -u <user> -p <database> < bin/data/sql/auth_app.sql
mysql -u <user> -p <database> < bin/data/sql/log.sql
If you are upgrading an existing deployment, also apply:
mysql -u <user> -p <database> < bin/data/sql/migration/20260226_log_utf8mb4_fix.sql
- Build and run.
make build
RUN_ENV=local make run
Equivalent script command:
./scripts/dockmon.sh build
RUN_ENV=local ./scripts/dockmon.sh run
Run with Docker
Build:
make docker-build
Run:
RUN_ENV=local make docker-run
Manual example:
docker run -d --name dockmon \
-p 8085:8080 \
-v /var/run/docker.sock:/var/run/docker.sock \
-v "$(pwd)/bin/configs":/bin/configs \
-e APP_NAME=dockmon \
-e RUN_ENV=local \
dockmon:latest
Configuration
Config files are loaded from bin/configs/<RUN_ENV>.json.
Environment variables:
RUN_ENV: selects config file (local,dev,prod), default islocal.APP_NAME: overridessystem.nameat runtime.
Important config blocks:
system: run mode, HTTP port, JWT, language.databases: MySQL setup and retry policy.redis: redis clients (Dockmon expects adockmonentry).collector:monitor_self: auto-add current app container when running in Docker.container_name: monitored container names.time_layout: accepted timestamp formats.unstructured_log_line_flags: line prefixes treated as new unstructured blocks.
HTTP API
Base group: /dockmon
Health endpoints:
GET /dockmon/internal/pingGET /dockmon/internal/admin/pingGET /dockmon/internal/service/pingGET /dockmon/external/pingGET /dockmon/external/app/pingGET /dockmon/external/service/ping
Auth endpoints:
-
POST /dockmon/internal/service/server/auth/token- Body type:
application/x-www-form-urlencoded - Fields:
app_id,app_secret - Returns JWT token and
expires_in
- Body type:
-
POST /dockmon/internal/service/server/auth/app- Protected by
Authorizationheader token (raw JWT string) - Body type: JSON
- Fields:
app_name,description,redirect_uri - Returns generated
app_idandapp_secret
- Protected by
Get token example:
curl -X POST "http://127.0.0.1:8080/dockmon/internal/service/server/auth/token" \
-H "Content-Type: application/x-www-form-urlencoded" \
-d "app_id=<app_id>&app_secret=<app_secret>"
Create app example:
curl -X POST "http://127.0.0.1:8080/dockmon/internal/service/server/auth/app" \
-H "Authorization: <jwt_token>" \
-H "Content-Type: application/json" \
-d '{
"app_name": "my-service",
"description": "internal service",
"redirect_uri": "https://example.com/callback"
}'
Testing
Run all tests:
go test ./...
Run monitor package tests only:
go test ./app/monitor -v
Operational Notes
- Docker socket mount is required (
/var/run/docker.sock). - The collector expects Redis key space for timestamp checkpoints and scheduler locks.
auth_apptable must exist before calling auth endpoints.- Config samples use stdout logging by default. If switching to file logging, ensure the log path key matches code expectations (
log_path).
License
MIT License. See LICENSE.
Documentation
¶
Overview ¶
Package main wires configuration loading, dependency bootstrap, and process lifecycle waiting for the dockmon service.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package app defines global configuration models and config loading helpers.
|
Package app defines global configuration models and config loading helpers. |
|
http/controller/auth
Package auth provides HTTP handlers for server app authentication endpoints.
|
Package auth provides HTTP handlers for server app authentication endpoints. |
|
http/middleware
Package middleware provides shared Gin middleware used by dockmon APIs.
|
Package middleware provides shared Gin middleware used by dockmon APIs. |
|
http/router
Package router wires HTTP route groups and registers controller handlers.
|
Package router wires HTTP route groups and registers controller handlers. |
|
job
Package job registers scheduled background jobs.
|
Package job registers scheduled background jobs. |
|
job/monitor
Package monitor implements scheduled job handlers under the job domain.
|
Package monitor implements scheduled job handlers under the job domain. |
|
model/auth
Package auth defines persistence models for authentication domain objects.
|
Package auth defines persistence models for authentication domain objects. |
|
model/collector
Package collector defines persistence models for collected container logs.
|
Package collector defines persistence models for collected container logs. |
|
monitor
Package monitor implements Docker log collection and parsing workflows.
|
Package monitor implements Docker log collection and parsing workflows. |
|
pkg/e
Package e defines business and HTTP error codes used in API responses.
|
Package e defines business and HTTP error codes used in API responses. |
|
pkg/jwt
Package jwt provides helpers for generating and parsing server app JWT tokens.
|
Package jwt provides helpers for generating and parsing server app JWT tokens. |
|
pkg/schedule
Package schedule provides a lightweight in-process scheduler with optional single-node locking via Redis.
|
Package schedule provides a lightweight in-process scheduler with optional single-node locking via Redis. |
|
pkg/trace
Package trace provides concurrent-safe trace ID generation utilities.
|
Package trace provides concurrent-safe trace ID generation utilities. |
|
repository/auth
Package auth implements auth-domain repository access methods.
|
Package auth implements auth-domain repository access methods. |
|
repository/collector
Package collector implements collector-domain repository access methods.
|
Package collector implements collector-domain repository access methods. |
|
service
Package service defines service-layer contracts and compositions.
|
Package service defines service-layer contracts and compositions. |
|
service/collector
Package collector provides service-layer orchestration for collected logs.
|
Package collector provides service-layer orchestration for collected logs. |
|
Package bootstrap initializes service dependencies and starts runtime workers.
|
Package bootstrap initializes service dependencies and starts runtime workers. |
Click to show internal directories.
Click to hide internal directories.