This tutorial demonstrates how to configure Cloud Functions for Firebase to relay device application logs from Cloud IoT Core to Stackdriver Logging.

Objectives

• Send application logs from device software over MQTT and IoT Core
• View device logs in Stackdriver Logging
• Use sorting and searching features of Stackdriver Logging to find logs of interest
• Use the monitored resource type for IoT devices to see multiple log entries from different sources for a given device

Before you begin

This tutorial assumes you already have a Google Cloud Platform (GCP) account set up and have completed the IoT Core quickstart.

You need to associate Firebase to your GCP project. Visit the Firebase Console and choose to add a project. You can then choose to add Firebase to an existing GCP project.

Costs

This tutorial uses billable components of GCP, including the following:

• Cloud IoT Core
• Cloud Pub/Sub
• Cloud Functions for Firebase
• Stackdriver Logging

This tutorial should not generate any usage that would not be covered by the free tier, but you can use the Pricing Calculator to generate a cost estimate based on your projected production usage.

Set up the environment

If you do not already have a development environment set up with gcloud and Firebase tools, it is recommended that you use Cloud Shell for any command line instructions.

Set the name of the Cloud IoT Core settings you are using to environment variables:

export REGISTRY_ID=[your registry here]
export CLOUD_REGION=[your region, such as us-central1]
export GCLOUD_PROJECT=$(gcloud config list project --format "value(core.project)")

Create a logs topic, and associate it with a device registry

Create a Cloud Pub/Sub topic that you will use for device logs:

gcloud pubsub topics create device-logs

Assuming you have a registry already created from the required quickstart pre-requisite, add this topic as a notification config for a specific MQTT topic match:

gcloud iot registries update $REGISTRY_ID --region $CLOUD_REGION --event-notification-config subfolder=log,topic=device-logs

This configures IoT Core to send any messages written to the MQTT topic of /devices/{device-id}/events/log to be published to a specific Cloud Pub/Sub topic created above.

Deploy the relay function

You can use either Google Cloud Functions or Cloud Functions for Firebase to run the relay (they use the same underlying systems). Here you are using Cloud Functions for Firebase as the tools are a little more straightforward and there are nice Typescript starting samples.

The main part of the function handles a Cloud Pub/Sub message from IoT Core, extracts the log payload and device information, and then writes a structured log entry to Stackdriver Logging:

import * as functions from 'firebase-functions';
const loggingClient = require('@google-cloud/logging');

import { runInDebugContext } from 'vm';

// create the Stackdriver Logging client
const logging = new loggingClient({
  projectId: process.env.GCLOUD_PROJECT,
});

// start cloud function

exports.deviceLog =
  functions.pubsub.topic('device-logs').onPublish((message) => {
    const log = logging.log('device-logs');
    const metadata = {
      // Set the Cloud IoT Device you are writing a log for
      // you extract the required device info from the PubSub attributes
      resource: {
        type: 'cloudiot_device',
        labels: {
          project_id: message.attributes.projectId,
          device_num_id: message.attributes.deviceNumId,
          device_registry_id: message.attributes.deviceRegistryId,
          location: message.attributes.location,
        }
      },
      labels: {
        // note device_id is not part of the monitored resource, but you can
        // include it as another log label
        device_id: message.attributes.deviceId,
      }
    };
    const logData = message.json;

    // Here you optionally extract a severity value from the log payload if it
    // is present
    const validSeverity = [
      'DEBUG', 'INFO', 'NOTICE', 'WARNING', 'ERROR', 'ALERT', 'CRITICAL',
      'EMERGENCY'
    ];
    if (logData.severity &&
      validSeverity.indexOf(logData.severity.toUpperCase()) > -1) {
      (metadata as any)['severity'] = logData.severity.toUpperCase();
      delete (logData.severity);


      // write the log entryto Stackdriver Logging
      const entry = log.entry(metadata, logData);
      return log.write(entry);
    }
  });

To deploy the Cloud Function, you use the Firebase CLI tool:

cd functions
npm install
firebase use $GCLOUD_PROJECT
firebase deploy --only functions

Write logs from a device

create a dummy sample device:

cd ../sample-device
npm install

gcloud iot devices create log-tester --region $CLOUD_REGION --registry $REGISTRY_ID --public-key path=./ec_public.pem,type=ES256

node build/index.js &

Explore the logs that are written

If you open up the Stackdriver Logging console.

Because you send the device ID as part of the log record, you can choose to pull that up into the summary line:

Which then looks like this:

Combine system and Applications logs

Now you will exercise a part of our sample device code that responds to config changes. Use the following gcloud command to update the devices config telling it to "bounce to a level of 2":

gcloud iot devices configs update --device log-tester --registry $REGISTRY_ID --region $CLOUD_REGION --config-data '{"bounce": 2}'

Now in just a few moments, you will see two new entries in Stackdriver Logging. One is from IoT Core system noting that a devices config was updated (the ModifyCloudToDeviceConfig call).

This is then followed by a device application log reporting the imaginary "spring back" value. This shows how we can view both system logs from IoT Core and device application logs in one place.

You can use the refresh button in the GCP Console, or use the play button to stream logs.

Use severity to convey log level

Let's send a couple more config updates (you should send one, wait a second or two, then send the next):

gcloud iot devices configs update --device log-tester --registry $REGISTRY_ID --region $CLOUD_REGION --config-data '{"bounce": 7}'

# pause

gcloud iot devices configs update --device log-tester --registry $REGISTRY_ID --region $CLOUD_REGION --config-data '{"bounce": 17}'

As these are received and responded to by the sample device, you can see the use of a severity level to indicate the importance of the log.

Filter logs to a specific device

So far you have been looking at a log that contains entries for all devices. But given these are structured log entries, you can use the numeric ID of the resource to limit our view to only one device in the more realistic scenario when multiple devices are writing log events.

You open up the log entry, find the resource, labels, and choose device_num_id, click it and choose Show matching entries:

This creates a quick filter of the log:

You can get a sense the filter syntax. You can even do things like a substring match on a field in the JSON payload of the log message, try adding jsonPayload.msg:"Spring". See the docs for more on using advanced filters.

Cleaning up

Kill the sample device:

killall node

Because the test device uses a non-secret key, you should delete it:

gcloud iot devices delete log-tester --registry $REGISTRY_ID --region $CLOUD_REGION

All of the resource in this tutorial cost nothing at rest, or scale to zero. You can delete Cloud Functions, Device Registry, and Cloud Pub/Sub topics from GCP.