jellyfin-logs Configuration

Installation

cscli parsers install LePresidente/jellyfin-logs

Description

Parser for Jellyfin Logs.

1---
2filenames:
3 - /var/log/jellyfin/log_*.log
4labels:
5  type: jellyfin

Note: If you are using Docker logs (directly or sending them to a syslog server), the output format is incorrect and will not match.
Create a copy of logging.default.json to logging.json in Jellyfin config directory (it will override the logging.default.json) and change the console output template like the following :

1...
2        "WriteTo": [
3            {
4                "Name": "Console",
5                "Args": {
6                    "outputTemplate": "[{Timestamp:yyyy-MM-dd HH:mm:ss.fff zzz}] [{Level:u3}] [{ThreadId}] {SourceContext}: {Message:lj}{NewLine}{Exception}"
7                }
8            },
9...

YAML Configuration

1onsuccess: next_stage
2#debug: false
3name: LePresidente/jellyfin-logs
4description: "Parse jellyfin logs"
5filter: "evt.Parsed.program == 'jellyfin'"
6pattern_syntax:
7  JELLYFIN_CUSTOMUSER: "(%{EMAILADDRESS}|%{USERNAME})"
8  JELLYFIN_CUSTOMDATE: "%{YEAR}-%{MONTHNUM}-%{MONTHDAY} %{HOUR}:%{MINUTE}:%{SECOND}"
9nodes:
10  - grok:
11      pattern: '(\[%{JELLYFIN_CUSTOMDATE:timestamp}.*\])?.*Authentication request for "?%{JELLYFIN_CUSTOMUSER:username}"? has been denied \(IP: "?%{IP:source_ip}"?\).*'
12      apply_on: message
13      statics:
14        - meta: log_type
15          value: jellyfin_failed_auth
16
17statics:
18    - meta: service
19      value: jellyfin
20    - meta: user
21      expression: "evt.Parsed.username"
22    - meta: source_ip
23      expression: "evt.Parsed.source_ip"
24    - target: evt.StrTime
25      expression: evt.Parsed.timestamp
26

Hub configuration

« jellyfin-logs »
v0.6 by LePresidente
Log parser

Hub configuration

« jellyfin-logs »v0.6 by LePresidenteLog parser

« jellyfin-logs »
v0.6 by LePresidente
Log parser