15 KiB
stage, group, info, description, ignore_in_report, title
| stage | group | info | description | ignore_in_report | title |
|---|---|---|---|---|---|
| none | Embody | This page is owned by https://handbook.gitlab.com/handbook/ceo/office-of-the-ceo/embody-team/ | Monitor application performance and troubleshoot performance issues. | true | Observability |
{{< details >}}
- Tier: Free
- Offering: GitLab Self-Managed
- Status: Experimental
{{< /details >}}
{{< history >}}
- Introduced in GitLab 18.1. This feature is an experiment.
{{< /history >}}
{{< alert type="flag" >}}
The availability of this feature is controlled by a feature flag. For more information, see the history. This feature is available for testing, but not ready for production use.
{{< /alert >}}
Use GitLab Observability (O11y) to:
- Monitor application performance through a unified observability dashboard.
- View distributed traces, logs, and metrics in a single platform.
- Identify and troubleshoot performance bottlenecks in your applications.
{{< alert type="disclaimer" />}}
By adding observability to GitLab itself users can gain these (planned) features.
For an overview, see GitLab Experimental Observability (O11y) Introduction.
Join the conversation about interesting ways to use GitLab O11y in the GitLab O11y Discord channel.
Why GitLab Observability
- Cost-effective open source model: Only pay for compute resources rather than per-seat licensing, making observability accessible for teams of any size. Contribute features and fixes directly, helping ensure the platform evolves to meet your specific needs.
- Simplified access management: New engineers automatically gain access to production observability data when they receive code repository access, helping eliminate lengthy provisioning processes. This unified access model helps ensure team members can immediately contribute to troubleshooting and monitoring efforts without administrative delays.
- Enhanced development workflow: Developers can correlate code changes directly with application performance metrics, helping to more easily identify when deployments introduce issues. This tight integration between code commits and runtime behavior accelerates debugging and reduces mean time to resolution.
- Shift-left observability: Teams can catch performance issues and anomalies earlier in the development cycle, by integrating observability data into their development process. This proactive approach reduces the cost and impact of fixing problems. The open source nature can make it easier and more cost-effective to orchestrate comprehensive staging environments that mirror production observability.
- Streamlined incident response: When issues occur, teams can more quickly have context about recent deployments, code changes, and the developers involved, helping with faster triage and resolution. The integration provides a single pane of glass for both code and operational data.
- Data next to decisions: Real-time performance metrics and user behavior data become accessible in the development environment, helping teams make informed decisions about feature prioritization, technical debt, and optimization efforts.
- Compliance and audit trails: The integration creates comprehensive audit trails that link code changes to system behavior, which can be valuable for compliance requirements and post-incident analysis.
- Reduced tool switching: Your development teams can access monitoring data, alerts, and performance insights without leaving their familiar GitLab environment, helping to improve productivity and reduce cognitive overhead.
Set up a GitLab Observability instance
Observability data is collected in a separate application outside of your GitLab.com instance. Problems with your GitLab instance do not impact collecting or viewing your observability data and vice-versa.
Prerequisites:
- You must have an EC2 instance or similar virtual machine with:
- Minimum: t3.large (2 vCPU, 8 GB RAM).
- Recommended: t3.xlarge (4 vCPU, 16 GB RAM) for production use.
- At least 100 GB storage space.
- Docker and Docker Compose must be installed.
- Your GitLab instance must be connected to the Observability instance.
Provision server and storage
For AWS EC2:
- Launch an EC2 instance with at least 2 vCPU and 8 GB RAM.
- Add an EBS volume of at least 100 GB.
- Connect to your instance using SSH.
Mount storage volume
sudo mkdir -p /mnt/data
sudo mount /dev/xvdbb /mnt/data # Replace xvdbb with your volume name
sudo chown -R $(whoami):$(whoami) /mnt/data
For permanent mounting, add to /etc/fstab:
echo '/dev/xvdbb /mnt/data ext4 defaults,nofail 0 2' | sudo tee -a /etc/fstab
Install Docker
For Ubuntu/Debian:
sudo apt update
sudo apt install -y docker.io docker-compose
sudo systemctl enable docker
sudo systemctl start docker
sudo usermod -aG docker $(whoami)
For Amazon Linux:
sudo dnf update
sudo dnf install -y docker
sudo systemctl enable docker
sudo systemctl start docker
sudo usermod -aG docker $(whoami)
Log out and log back in, or run:
newgrp docker
Configure Docker to use the mounted volume
sudo mkdir -p /mnt/data/docker
sudo bash -c 'cat > /etc/docker/daemon.json << EOF
{
"data-root": "/mnt/data/docker"
}
EOF'
sudo systemctl restart docker
Verify with:
docker info | grep "Docker Root Dir"
Install GitLab Observability
cd /mnt/data
git clone -b main https://gitlab.com/gitlab-org/embody-team/experimental-observability/gitlab_o11y.git
cd gitlab_o11y/deploy/docker
docker-compose up -d
If you encounter timeout errors, use:
COMPOSE_HTTP_TIMEOUT=300 docker-compose up -d
Optional: Use an external ClickHouse database
If you'd prefer, you can use your own ClickHouse database.
Prerequisites:
- Ensure your external ClickHouse instance is accessible and properly configured with any required authentication credentials.
Before you run docker-compose up -d, complete the following steps:
- Open
docker-compose.ymlfile. - Open
docker-compose.ymland comment out:- The
clickhouseandzookeeperservices. - The
x-clickhouse-defaultsandx-clickhouse-dependsections.
- The
- Replace all occurrences of
clickhouse:9000with your relevant ClickHouse endpoint and TCP port (for example,my-clickhouse.example.com:9000) in the following files. If your ClickHouse instance requires authentication, you may also need to update connection strings to include credentials:docker-compose.ymlotel-collector-config.yamlprometheus-config.yml
Configure network access for GitLab Observability
To properly receive telemetry data, you need to open specific ports in your GitLab O11y instance's security group:
- Go to AWS Console > EC2 > Security Groups.
- Select the security group attached to your GitLab O11y instance.
- Select Edit inbound rules.
- Add the following rules:
- Type: Custom TCP, Port: 8080, Source: Your IP or 0.0.0.0/0 (for UI access)
- Type: Custom TCP, Port: 4317, Source: Your IP or 0.0.0.0/0 (for OTLP gRPC)
- Type: Custom TCP, Port: 4318, Source: Your IP or 0.0.0.0/0 (for OTLP HTTP)
- Type: Custom TCP, Port: 9411, Source: Your IP or 0.0.0.0/0 (for Zipkin - optional)
- Type: Custom TCP, Port: 14268, Source: Your IP or 0.0.0.0/0 (for Jaeger HTTP - optional)
- Type: Custom TCP, Port: 14250, Source: Your IP or 0.0.0.0/0 (for Jaeger gRPC - optional)
- Select Save rules.
Access GitLab Observability
Access the GitLab O11y UI at:
http://[your-instance-ip]:8080
Connect GitLab to GitLab Observability
Configure GitLab and Enable the feature flag
Configure the GitLab O11y URL for your group and enable the feature flag using the Rails console:
-
Access the Rails console:
{{< tabs >}}
{{< tab title="Linux package (Omnibus)" >}}
sudo gitlab-rails console{{< /tab >}}
{{< tab title="Docker" >}}
docker exec -it gitlab gitlab-rails console{{< /tab >}}
{{< /tabs >}}
-
Configure the observability settings for your group and enable the feature flag:
group = Group.find_by_path('your-group-name') Observability::GroupO11ySetting.create!( group_id: group.id, o11y_service_url: 'your-o11y-instance-url', o11y_service_user_email: 'your-email@example.com', o11y_service_password: 'your-secure-password', o11y_service_post_message_encryption_key: 'your-super-secret-encryption-key-here-32-chars-minimum' ) Feature.enable(:observability_sass_features, group) Feature.enabled?(:observability_sass_features, group)Replace:
your-group-namewith your actual group pathyour-o11y-instance-urlwith your GitLab O11y instance URL (for example:http://192.168.1.100:8080)- Email and password with your preferred credentials
- Encryption key with a secure 32+ character string
The last command should return
trueto confirm the feature is enabled.
Use Observability with GitLab
After you have configured GitLab O11y, to access the dashboard embedded in GitLab:
- On the left sidebar, select Search or go to and find your group where the feature flag is enabled.
- On the left sidebar, select Observability.
If Observability isn't displayed on the left sidebar,
go directly to http://<gitlab_instance>/groups/<group_path>/-/observability/services.
Send telemetry data to GitLab Observability
You can test your GitLab O11y installation by sending sample telemetry data using the OpenTelemetry SDK. This example uses Ruby, but OpenTelemetry has SDKs for many languages.
Prerequisites:
-
Ruby installed on your local machine
-
Required gems:
gem install opentelemetry-sdk opentelemetry-exporter-otlp
Create a basic test script
Create a file named test_o11y.rb with the following content:
require 'opentelemetry/sdk'
require 'opentelemetry/exporter/otlp'
OpenTelemetry::SDK.configure do |c|
# Define service information
resource = OpenTelemetry::SDK::Resources::Resource.create({
'service.name' => 'test-service',
'service.version' => '1.0.0',
'deployment.environment' => 'production'
})
c.resource = resource
# Configure OTLP exporter to send to GitLab O11y
c.add_span_processor(
OpenTelemetry::SDK::Trace::Export::BatchSpanProcessor.new(
OpenTelemetry::Exporter::OTLP::Exporter.new(
endpoint: 'http://[your-o11y-instance-ip]:4318/v1/traces'
)
)
)
end
# Get tracer and create spans
tracer = OpenTelemetry.tracer_provider.tracer('basic-demo')
# Create parent span
tracer.in_span('parent-operation') do |parent|
parent.set_attribute('custom.attribute', 'test-value')
puts "Created parent span: #{parent.context.hex_span_id}"
# Create child span
tracer.in_span('child-operation') do |child|
child.set_attribute('custom.child', 'child-value')
puts "Created child span: #{child.context.hex_span_id}"
sleep(1)
end
end
puts "Waiting for export..."
sleep(5)
puts "Done!"
Replace [your-o11y-instance-ip] with your GitLab O11y instance's IP address or hostname.
Run the test
-
Run the script:
ruby test_o11y.rb -
Check your GitLab O11y dashboard:
- Open
http://[your-o11y-instance-ip]:8080 - Go to the "Services" section
- Look for the "test-service" service
- Select on it to see traces and spans
- Open
Instrument your application
To add OpenTelemetry instrumentation to your applications:
- Add the OpenTelemetry SDK for your language.
- Configure the OTLP exporter to point to your GitLab O11y instance.
- Add spans and attributes to track operations and metadata.
Refer to the OpenTelemetry documentation for language-specific guidelines.
GitLab Observability Templates
GitLab provides pre-built dashboard templates to help you get started with observability quickly. These templates are available at Experimental Observability O11y Templates.
Available templates
Standard OpenTelemetry dashboards: If you instrument your application with standard OpenTelemetry libraries, you can use these plug-and-play dashboard templates:
- Application performance monitoring dashboards
- Service dependency visualizations
- Error rate and latency tracking
GitLab-specific dashboards: When you send GitLab OpenTelemetry data to your GitLab O11y instance, use these dashboards for out-of-the-box insights:
- GitLab application performance metrics
- GitLab service health monitoring
- GitLab-specific trace analysis
CI/CD observability: The repository includes an example GitLab CI/CD pipeline with OpenTelemetry instrumentation that works with the GitLab O11y CI/CD dashboard template JSON file. This helps you monitor your CI/CD pipeline performance and identify bottlenecks.
Using the templates
- Clone or download the templates from the repository.
- Update the service name in the example application dashboards to match your service name.
- Import the JSON files into your GitLab O11y instance.
- Configure your applications to send telemetry data using standard OpenTelemetry libraries as described in the Instrument your application section.
- The dashboards are now available with your application's telemetry data in GitLab O11y.
Troubleshooting
GitLab Observability instance issues
Check container status:
docker ps
View container logs:
docker logs [container_name]
Menu doesn't appear
-
Verify the feature flag is enabled for your group:
Feature.enabled?(:observability_sass_features, Group.find_by_path('your-group-name')) -
Check that the O11Y_URL environment variable is set:
group = Group.find_by_path('your-group-name') group.observability_group_o11y_setting&.o11y_service_url -
Ensure the routes are properly registered:
Rails.application.routes.routes.select { |r| r.path.spec.to_s.include?('observability') }.map(&:path)
Performance issues
If experiencing SSH connection issues or poor performance:
- Verify instance type meets minimum requirements (2 vCPU, 8 GB RAM)
- Consider resizing to a larger instance type
- Check disk space and increase if needed
Telemetry doesn't show up
If your telemetry data isn't appearing in GitLab O11y:
-
Verify ports 4317 and 4318 are open in your security group.
-
Test connectivity with:
nc -zv [your-o11y-instance-ip] 4317 nc -zv [your-o11y-instance-ip] 4318 -
Check container logs for any errors:
docker logs otel-collector-standard docker logs o11y-otel-collector docker logs o11y -
Try using the HTTP endpoint (4318) instead of gRPC (4317).
-
Add more debugging information to your OpenTelemetry setup.