new doc- Configure Multiple Storage Accounts and update - Storage Configuration

Author: DebashisBorgohainO2

docs/.pages

@@ -9,7 +9,7 @@ nav:
 - Architecture: architecture.md
 - HA Deployment: ha_deployment.md
 - Environment Variables: environment-variables.md
-- Storage: storage.md
+- Data Management: data-management
 - User Guide: user-guide
 - Operator Guide: operator-guide
 - Performance Optimization: performance.md

docs/data-management/.pages

@@ -0,0 +1,5 @@
+nav:
+
+    - Data Management Overview: index.md
+    - Storage Configuration: storage.md
+    - Configure Multiple Object Storage Accounts: configure-multiple-storage-accounts.md

docs/data-management/configure-multiple-storage-accounts.md

@@ -0,0 +1,83 @@
+This guide explains how to configure OpenObserve to store data in multiple object storage accounts. It also covers how to set environment variables to specify which stream should be stored in each account.
+
+## Why Use Multiple Object Storage Accounts
+
+- Using multiple object storage accounts or buckets in OpenObserve helps you:
+- Store data across different regions or providers.
+- Separate critical and non-critical data into different accounts or buckets.
+- Optimize storage cost and meet compliance requirements.
+- Improve write throughput by avoiding single-bucket performance limits. For example, some providers such as AWS S3 impose a throughput limit per bucket. Using multiple buckets helps distribute the load and increase overall ingestion throughput.
+- Use flexible combinations of accounts and buckets:
+
+    - A single account with multiple buckets.
+    - Multiple accounts with one or more buckets.
+    - A combination of specific accounts and buckets for each stream.
+    
+This setup is useful for organizations that manage large-scale log ingestion across diverse environments.
+    
+## Steps to Configure Multiple Object Storage Accounts
+
+Let us say, you want to store logs based on their importance:
+
+- Critical logs should go to an AWS S3 bucket in us-east-1
+- Internal logs should go to a MinIO bucket in us-west-1
+
+Follow these steps to configure multiple object storage accounts in OpenObserve:
+
+
+### Prerequisites
+
+- At least two S3-compatible object storage accounts.
+- Valid credentials, regions, and bucket names for each.
+
+### Step 1: Set Storage Account Environment Variables
+Define the environment variables required to connect to each object storage account:
+```
+ZO_S3_ACCOUNTS="acc1,acc2"
+ZO_S3_PROVIDER="aws,minio"
+ZO_S3_SERVER_URL="https://s3.amazonaws.com,https://minio.example.com"
+ZO_S3_REGION_NAME="us-east-1,us-west-1"
+ZO_S3_ACCESS_KEY="key1,key2"
+ZO_S3_SECRET_KEY="secret1,secret2"
+ZO_S3_BUCKET_NAME="critical-logs,internal-logs"
+ZO_S3_BUCKET_PREFIX="logs/"
+```
+
+!!! info "Important"
+    - The first account is treated as the default account. Configure the old account as the first one.
+    - All variables must contain the same number of comma-separated values.
+
+### Step 2: Configure Stream Strategy
+Set the `ZO_S3_STREAM_STRATEGY` environment variable to control how streams are assigned to accounts.
+
+You can choose one of the following strategies:
+
+**Use Default Account** <br>
+```
+ZO_S3_STREAM_STRATEGY=""
+```
+All streams are stored in the first configured account.
+
+**File Name Hashing** <br>
+```
+ZO_S3_STREAM_STRATEGY="file_hash"
+```
+The storage account is selected based on a hash of the file name.
+
+**Stream Name Hashing** <br>
+```
+ZO_S3_STREAM_STRATEGY="stream_hash"
+```
+The storage account is selected based on a hash of the stream name.
+
+**Static Stream-to-Account Mapping** <br>
+```
+ZO_S3_STREAM_STRATEGY="payments:acc1,operations:acc1,internal:acc2"
+```
+Each stream is mapped explicitly to a storage account.
+
+### Step 3: Verify Configuration
+
+1. Restart OpenObserve.
+2. Ingest test logs.
+3. Confirm logs are written to the correct storage buckets.

docs/data-management/index.md

@@ -0,0 +1,6 @@
+The Data Management section helps you configure how OpenObserve stores ingested stream data and metadata. It also includes guidance on optimizing storage across different object storage accounts or providers.
+
+**Learn more:**
+
+- [Storage Configuration](storage.md)
+- [Configure Multiple Object Storage Accounts](configure-multiple-storage-accounts.md)

docs/data-management/storage.md

@@ -0,0 +1,197 @@
+This guide explains how to configure data and metadata storage in OpenObserve. The information applies to both the open-source and enterprise versions.
+
+## Overview
+There are 2 primary items that need to be stored in OpenObserve.
+
+- Ingested stream data
+- Metadata for ingested stream data
+
+By default: 
+
+- Metadata is always stored on disk using **SQLite** in **Local mode**.
+- Metadata is always stored on disk using **postgres** in **Cluster mode**.
+- Stream data can be stored on disk or S3-compatible object storage such as Amazon S3, minIO, Google GCS, Alibaba OSS, or Tencent COS.
+
+## Storage Modes
+
+- OpenObserve runs in **Local mode** by default.
+- To enable **Cluster mode**, set the environment variable `LOCAL_MODE=false`.
+- In **Local mode**, stream data can be stored in S3 by setting `ZO_LOCAL_MODE_STORAGE=s3`.
+- GCS and OSS support the S3 SDK and can be treated as S3-compatible storages. Azure Blob storage is also supported.
+
+## Data Storage Format
+
+Stream data is stored in Parquet format. Parquet is columnar storage format optimized for storage efficiency and query performance. 
+
+## Stream Data Storage Options
+
+### Disk
+
+Disk is default storage place for stream data. **Ensure that sufficient disk space is available for storing stream data.**
+
+
+### Amazon S3
+
+To use Amazon S3 for storing stream data:
+
+1. Create the bucket in S3 first. 
+2. Provide AWS credentials through one of the supported AWS SDK mechanisms:
+
+  - Set environment variables `AWS_ACCESS_KEY_ID` and `AWS_SECRET_ACCESS_KEY`. This is not recommended due to security concerns. 
+  - Use AWS CLI credentials in `~/.aws/credentials`. 
+  - Use EC2 instance metadata for instances with IAM roles, or assign IAM roles directly to ECS or Fargate tasks. These roles are accessed through the Instance Metadata Service (IMDS or IMDSv2). ECS is not recommended for stateful workloads.
+  - Use IAM Roles for service Accounts in Amazon EKS. 
+
+
+### MinIO
+To use MinIO for storing stream data, first create the bucket in MinIO.
+Then set the following environment variables:
+
+| Environment Variable | Value | Description                                     |
+| -------------------- | ----- | ----------------------------------------------- |
+| ZO_S3_SERVER_URL     | -     | MinIO server address                            |
+| ZO_S3_REGION_NAME    | -     | Region name, such as `us-west-1` |
+| ZO_S3_ACCESS_KEY     | -     | Access key                                      |
+| ZO_S3_SECRET_KEY     | -     | Secret key                                      |
+| ZO_S3_BUCKET_NAME    | -     | Bucket name                                     |
+| ZO_S3_PROVIDER       | minio    | Used to specify settings like `force_style=true`  |
+
+
+### Openstack Swift
+To use OpenStack Swift for storing stream data, first create the bucket in Swift.
+Then set the following environment variables:
+
+| Environment Variable      | Value | Description                                     |
+| ------------------------- | ----- | ----------------------------------------------- |
+| ZO_S3_SERVER_URL          | -     | Swift server address, such as `https://us-west-1.example.com`   |
+| ZO_S3_REGION_NAME         | -     | Region name, such as `us-west-1` |
+| ZO_S3_ACCESS_KEY          | -     | Access key                                      |
+| ZO_S3_SECRET_KEY          | -     | Secret key                                      |
+| ZO_S3_BUCKET_NAME         | -     | Bucket name                                     |
+| ZO_S3_FEATURE_HTTP1_ONLY  | true  | 	Enables compatibility with Swift                                              |
+| ZO_S3_PROVIDER            | s3    | Enables S3-compatible API                           |
+| AWS_EC2_METADATA_DISABLED | true  | Disables EC2 metadata access, which is not supported by Swift |
+
+
+### Google GCS
+To use GCS for storing stream data, first create the bucket in GCS.
+
+**Using the S3-compatible API:**
+
+| Environment Variable     | Value  | Description                                                     |
+| ------------------------ | -------| --------------------------------------------------------------- |
+| ZO_S3_SERVER_URL         | -      | GCS server address. Should be sent to `https://storage.googleapis.com` |
+| ZO_S3_REGION_NAME        | -      | GCS region name, or set to `auto`                        |
+| ZO_S3_ACCESS_KEY         | -      | Access key                                                      |
+| ZO_S3_SECRET_KEY         | -      | Secret key                                                      |
+| ZO_S3_BUCKET_NAME        | -      | Bucket name                                                     |
+| ZO_S3_FEATURE_HTTP1_ONLY | true   | Required for compatibility                                                              |
+| ZO_S3_PROVIDER           | s3     | Enables S3-compatible API                                           |
+
+Refer to [GCS AWS migration documentation]((https://cloud.google.com/storage/docs/aws-simple-migration)) for more information.
+
+**Using GCS directly:**
+
+| Environment Variable     | Value  | Description                                                             |
+| ------------------------ | -------| ----------------------------------------------------------------------- |
+| ZO_S3_SERVER_URL         | -      | GCS server address. should be: `https://storage.googleapis.com`         |
+| ZO_S3_REGION_NAME        | -      | region name, gcs region name, or: `auto`                                |
+| ZO_S3_ACCESS_KEY         | -      | Path to gcp json private key if not available through instance metadata |
+| ZO_S3_BUCKET_NAME        | -      | bucket name                                                             |
+| ZO_S3_PROVIDER           | gcs    | Use GCS API                                                             |
+
+OpenObserve uses the [object_store crate](https://docs.rs/object_store/0.10.1/object_store/gcp/struct.GoogleCloudStorageBuilder.html) to initialize the storage configuration. It calls the with_env() function by default. If the ZO_S3_ACCESS_KEY variable is set, OpenObserve additionally uses the with_service_account_path() function to load the GCP service account key.
+
+### Alibaba OSS (aliyun)
+To use Alibaba OSS for storing stream data, first create the bucket in Alibaba Cloud.
+Then set the following environment variables:
+
+| Environment Variable           | Value | Description                                                     |
+| ------------------------------ | ----- | --------------------------------------------------------------- |
+| ZO_S3_SERVER_URL               | -     | OSS endpoint, such as `https://bucketname.oss-ap-southeast-1.aliyuncs.com` |
+| ZO_S3_REGION_NAME              | -     | OSS region name, such as `oss-cn-beijing`.             |
+| ZO_S3_BUCKET_NAME              | -     | Bucket name                                                     |
+| ZO_S3_ACCESS_KEY               | -     | Access key                                                      |
+| ZO_S3_SECRET_KEY               | -     | Secret key                                                      |
+| ZO_S3_FEATURE_FORCE_HOSTED_STYLE | true  | Enables hosted-style addressing                                                              |
+
+Refer to [Alibaba OSS region and endpoint documentation](https://help.aliyun.com/zh/oss/user-guide/regions-and-endpoints).
+
+### Tencent COS
+To use Tencent COS for storing stream data, first create the bucket in Tencent Cloud.
+Then set the following environment variables:
+
+| Environment Variable | Value | Description                  |
+| -------------------- | ----- | ---------------------------- |
+| ZO_S3_SERVER_URL     | -     | COS endpoint address         |
+| ZO_S3_REGION_NAME    | -     | COS region name |
+| ZO_S3_ACCESS_KEY     | -     | Access key                   |
+| ZO_S3_SECRET_KEY     | -     | Secret key                   |
+| ZO_S3_BUCKET_NAME    | -     | Bucket name                  |
+
+Refer to [Tencent COS documentation](https://cloud.tencent.com/document/product/436/37421).
+
+### UCloud US3
+To use UCloud US3 for storing stream data, first create the bucket in UCloud.
+Then set the following environment variables:
+
+| Environment Variable | Value | Description                                          |
+| -------------------- | ----- | ---------------------------------------------------- |
+| ZO_S3_SERVER_URL     | -     | US3 endpoint, such as `http://internal.s3-sg.ufileos.com` |
+| ZO_S3_ACCESS_KEY     | -     | Access key                                           |
+| ZO_S3_SECRET_KEY     | -     | Secret key                                           |
+| ZO_S3_BUCKET_NAME    | -     | Bucket name                                          |
+| ZO_S3_FEATURE_HTTP1_ONLY    | true     | Required for HTTP1 compatibility                                         |
+
+Refer to [UCloud S3 documentation](https://docs.ucloud.cn/ufile/s3/s3_introduction).
+
+### Baidu BOS
+To use Baidu BOS for storing stream data, first create the bucket in Baidu Cloud.
+Then set the following environment variables:
+
+| Environment Variable | Value | Description                                          |
+| -------------------- | ----- | ---------------------------------------------------- |
+| ZO_S3_SERVER_URL     | -     | BOS endpoint, such as `https://s3.bj.bcebos.com` |
+| ZO_S3_REGION_NAME    | -     | BOS region name, such as `bj`               |
+| ZO_S3_ACCESS_KEY     | -     | Access key                                           |
+| ZO_S3_SECRET_KEY     | -     | Secret key                                           |
+| ZO_S3_BUCKET_NAME    | -     | Bucket name                                          |
+
+Refer to [Baidu BOS documentation](https://cloud.baidu.com/doc/BOS/s/xjwvyq9l4).
+
+### Azure Blob
+
+OpenObserve can use azure blob for storing stream data. Following environment variables needs to be setup:
+
+| Environment Variable       | Value                | Description                                  |
+| -------------------------- | -------------------- | -------------------------------------------- |
+| ZO_S3_PROVIDER             | azure                | Enables Azure Blob storage support                   |
+| ZO_LOCAL_MODE_STORAGE      | s3                   | Required only if running in single node mode |
+| AZURE_STORAGE_ACCOUNT_NAME | Storage account name | Need to provide mandatorily                  |
+| AZURE_STORAGE_ACCOUNT_KEY  | Access key           | Need to provide mandatorily                  |
+| ZO_S3_BUCKET_NAME          | Blob Container name  | Need to provide mandatorily                  |
+
+
+## Metadata Storage
+
+OpenObserve supports multiple metadata store backends, configurable using the `ZO_META_STORE` environment variable.
+
+### SQLite
+- Set `ZO_META_STORE=sqlite`.
+- No additional configuration is required.
+- Suitable for single-node installations.
+- This is generally not recommended as losing the SQLite data will make OpenObserve inoperable.
+
+### PostgreSQL
+- Set `ZO_META_STORE=postgres`.
+- Recommended for production deployments due to reliability and scalability. 
+- The default Helm chart (after February 23, 2024) uses [cloudnative-pg](https://cloudnative-pg.io/) to create a postgres cluster (primary + replica) which is used as the meta store. These instances provide high availability and backup support.
+
+### etcd (Deprecated)
+- Set `ZO_META_STORE=etcd`.
+- While etcd is used as the cluster coordinator, it was also the default metadata store in Helm charts released before 23 February 2024. This configuration is now deprecated. Helm charts released after 23 February 2024 use PostgreSQL as the default metadata store.
+
+### MySQL (Deprecated)
+- Set `ZO_META_STORE=mysql`.
+- Deprecated. 
+- Use PostgreSQL instead.

docs/integration/cloudflare.md

@@ -31,7 +31,7 @@ To stream Cloudflare logs, log in to OpenObserve and follow these steps:
 1. From the left menu, select **Data Sources > Custom > Logs > Curl**.
 2. Extract the following details from the sample curl command: 
 
-![Extract endpoint and credentials](../../docs/images/extract-creds-from-data-sources.png)
+![Extract endpoint and credentials](images/extract-creds-from-data-sources.png)
 
 - **Endpoint**: `https://api.openobserve.ai/api/<organization_name>/<stream_name>/_json`. 
 Replace `organization_name` with the organization name shown at the top right corner of the screen. Replace the `stream_name` with **cloudflare_logs**.
@@ -71,9 +71,9 @@ return new Response("Hello from Cloudflare!", {
 4. Select **Deploy** and note the generated URL, such as `log-generator.example-subdomain.workers.dev`.
 5. You may optionally add a route under **Workers Routes**, such as `example.com/log/*`.
 6. Generate traffic by visiting the Worker URL, linking it on a webpage, or enabling access through a known route.
-![Generate traffic visiting the Worker URL](../../docs/images/cloudflare-worker-setup.gif)
+![Generate traffic visiting the Worker URL](images/cloudflare-worker-setup.gif)
 
-![Cloudflare worker.js](../../docs/images/cloudflare-worker-js.png)
+![Cloudflare worker.js](images/cloudflare-worker-js.png)
 
 **Option 3: Existing traffic on Business or Enterprise plans**
 
@@ -281,7 +281,7 @@ You should see entries similar to the following:
   "requests": 1
 }
 ```
-![Verify the Cloudflare and OpenObserve integration](../../docs/images/cloudflare-verify-ingestion.gif)
+![Verify the Cloudflare and OpenObserve integration](images/cloudflare-verify-ingestion.gif)
 
 Logs appear immediately when using Logpush. If you are testing with GraphQL, the simulated data appears first. Real logs are usually visible within 5 to 10 minutes.