With Thanos Query access, you will be able to access the Loki logs programmatically using your OpenShift personal token.
To get the specific permissions needed to query logs directly from the Loki Query API, please follow these steps:
- Onboard your project/group to Operate First (guide)
- Once your group has been onboarded, add your group to this list in a new line as:
- kind: Group
apiGroup: rbac.authorization.k8s.io
name: MY_GROUP_NAME
and create a PR (Pull Request). You can see an example Pull Request here.
- After your PR is reviewed/merged, you should have access to the Thanos Query Console and API
URL: https://loki-frontend-opf-observatorium.apps.smaug.na.operate-first.cloud
This is the endpoint that can be used to query logs from Loki.
curl -H "X-Scope-OrgID: opf-example" \
-H "Authorization: Bearer MY_BEARER_TOKEN" \
-G -s "https://loki-frontend-opf-observatorium.apps.smaug.na.operate-first.cloud/loki/api/v1/query_range" \
--data-urlencode 'query={app="my-app-1"}'
This command queries logs from Loki using "app="my-app-1" label as the query. Notice that we had to provide the same OrgID “opf-example” to be able to query for the logs that we pushed in.