SQL Server Integration Service vs Apache Hop – How ETL Tools have evolved and where Modern Tools Fit In (Part 1 of 2)

January 9, 2026

by Axxonet Analytics

Introduction

Before 2015, most ETL tools were designed for a world where data lived inside centralized databases, workloads ran on fixed on‑premise servers, and development happened inside proprietary IDEs. Tools like SSIS were built for this environment which are stable, tightly integrated with SQL Server, and optimized for Windows‑based enterprise data warehousing.

After 2015, the data landscape changed dramatically. Cloud platforms, distributed systems, containerization, and DevOps practices reshaped how data pipelines are built, deployed, and maintained. ETL tools had to evolve from server‑bound, vendor‑specific systems into flexible, portable, metadata‑driven platforms that could run anywhere.

This shift led to the rise of a broad ecosystem of open‑source ETL and orchestration tools, including Airflow, Talend Open Studio, Pentaho Kettle, Meltano, and more recently, Apache Hop—a modern, actively developed platform designed for cloud‑native and hybrid environments.

This article is Part 1 of a two‑part series.

Here, we focus on how SSIS and Apache Hop are built based on their architectural foundations, development philosophies, and the historical context that shaped them.

In Part 2, we will examine how these architectural differences translate into performance, scalability, automation, cloud readiness, and real‑world usage scenarios, helping you decide which tool best fits your future data strategy.

The Fundamental Distinctions

At a high level, SSIS and Apache Hop differ in how they are designed, deployed, and evolved.

SSIS is a Microsoft‑centric ETL tool built for on‑premise SQL Server environments. It offers a stable, tightly integrated experience for teams operating within the Windows and SQL Server ecosystem.
Apache Hop is an open‑source, cross‑platform orchestration framework built with modularity, portability, and cloud‑readiness in mind. It emphasizes metadata‑driven design, environment‑agnostic execution, and seamless movement across local, containerized, and distributed environments.

These foundational differences shape how each tool behaves across development, deployment, scaling, and modernization scenarios.

Overview of the Tools

What is SSIS?

SQL Server Integration Services (SSIS) is a mature ETL and data integration tool packaged with SQL Server. It provides a visual, drag‑and‑drop development experience inside Visual Studio, enabling teams to build batch processes, data pipelines, and complex transformations.

SSIS is optimized for Windows‑based enterprise environments and integrates deeply with SQL Server, SQL Agent, and the broader Microsoft data ecosystem.

Extended Capabilities

Built‑in transformations for cleansing, validating, aggregating, and merging data
Script Tasks using C# or VB.NET
SSIS Catalog for deployment, monitoring, and logging
High performance with SQL Server through native connectors

What is Apache Hop?

Apache Hop (Hop Orchestration Platform) is a modern, open‑source data orchestration and ETL platform under the Apache Foundation. It provides a clean, flexible graphical interface (Hop GUI) for designing pipelines and workflows across diverse data ecosystems.

Hop builds on the legacy of Pentaho Kettle but introduces a fully re‑engineered, metadata‑driven framework designed for portability and cloud‑native execution.

Extended Capabilities

Large library of transforms and connectors for databases, cloud services, APIs, and file formats
First‑class support for Docker, Kubernetes, and remote engines like Spark, Flink, and Beam
Pipelines‑as‑code (JSON/YAML) enabling DevOps workflows
Metadata injection for reusable, environment‑agnostic pipelines

Feature-by-Feature Comparison

1. Installation & Platform Support

SSIS

SSIS is tightly coupled with SQL Server and Windows. Installation typically involves SQL Server setup, enabling Integration Services, and configuring Visual Studio with SSDT.

Key Characteristics

Runs only on Windows
Requires SQL Server licensing
Vertical scaling
Cloud usage limited to Azure SSIS IR
No native container or Kubernetes support

This monolithic, server‑bound architecture works well in traditional environments but becomes restrictive in hybrid or multi‑cloud scenarios.

Apache Hop

Hop is lightweight and platform‑independent. It runs on Windows, Linux, and macOS, and supports local, remote, and containerized execution.

Typical Deployment Models

Local execution
Hop Server for remote execution
Docker containers
Kubernetes clusters
Integration with Airflow, Cron, and other schedulers

Key Characteristics

Fully cross‑platform
No licensing cost
Horizontal scaling via containers
Cloud‑agnostic
Metadata‑driven portability

Hop treats deployment as a first‑class concern, enabling “build once, run anywhere” pipelines.

Comparative Summary

Category	SSIS	Apache Hop
OS Support	Windows only	Windows, Linux, macOS
Deployment	Local server, SQL Agent	Desktop, server, Docker, Kubernetes
Licensing	SQL Server license	Free, open‑source

Hop aligns naturally with modern infrastructure patterns, while SSIS remains best suited for Microsoft‑centric environments.

Why Apache Hop Has an Advantage Here

Apache Hop aligns naturally with modern infrastructure patterns such as microservices, containers, and GitOps-driven deployments. Its ability to run the same pipelines across environments without modification significantly reduces operational overhead and future migration costs.

SSIS, while stable, is best suited for organizations that remain fully invested in Windows-based, on-premise architectures.

2. Development Environment

SSIS

SSIS development happens inside Visual Studio using SSDT. Pipelines are stored as binary .dtsx files, which complicates version control and collaboration.

Characteristics

Strongly UI‑driven
Script Tasks via C#/VB.NET
Harder Git diffs
Environment‑bound debugging
Manual multi‑environment handling

This often leads to developer‑machine dependency and challenges in CI/CD automation.

Apache Hop

Hop provides a standalone GUI with pipelines stored as human‑readable JSON/YAML. It embraces separation of logic and configuration through variables, parameters, and metadata injection.

Characteristics

No IDE dependency
Clean Git diffs
Metadata‑driven environment handling
Plugin and script extensibility
CI/CD‑friendly design

Metadata Injection in Hop

Metadata injection allows pipeline configuration (connections, file paths, parameters) to be supplied at runtime rather than hardcoded.

This enables:

Reusable pipelines
Clean environment promotion
Consistent DevOps workflows

The same pipeline can run in dev, test, and prod simply by changing metadata—not the pipeline itself.

Git integration in Apache Hop’s GUI

Git allows you to track changes to your project over time, collaborate with others without overwriting each other’s work, and roll back to previous versions if something goes wrong. Whether you’re working solo or in a team, using Git is a best practice that saves time and headaches down the road.

Using Git within Apache Hop’s GUI is a fantastic option if you prefer a visual interface. The integration helps you:

Track changes in real-time with color-coded file statuses.
Easily stage, commit, push, and pull changes without leaving the Hop environment.
Visually compare file revisions to see what’s changed between different versions of pipelines or workflows.

The built-in Git integration in Hop simplifies managing your project’s version history and collaborating with others.

This perspective gives you access to all the files associated with your project, such as workflows (hwf), pipelines (hpl), JSON, CSV, and more.

Throught this, your project is version-controlled, backed up, and ready for collaboration.

Comparative Summary

Aspect	SSIS	Apache Hop
Environment handling	Hardcoded/config files	Metadata injection
Pipeline portability	Limited	High
CI/CD friendliness	Moderate	Strong
Multi‑env support	Manual	Native

3. Transformations & Connectors

SSIS

SSIS provides strong built‑in transformations optimized for SQL Server and structured ETL patterns. However, connectors outside the Microsoft ecosystem are limited or require third‑party components.

Apache Hop

Hop offers a broad, extensible library of transforms and connectors, covering databases, cloud platforms, APIs, and big‑data ecosystems. Its plugin‑based architecture allows rapid adaptation to new technologies.

Hop also supports:

Nested workflows
Parallel pipeline execution
Streaming and batch patterns
ELT and ETL

Series and parallel execution

Comparative Summary

Aspect	SSIS	Apache Hop
Transformation style	Monolithic	Modular
Extensibility	Limited	Plugin‑based
API/cloud connectors	Limited	Strong
ELT support	Partial	Native
Ecosystem reach	Microsoft‑focused	Broad, cloud‑native
Reusability	Moderate	High

Conclusion (Part 1)

SSIS remains a strong and reliable option for organizations deeply embedded in the Microsoft ecosystem, offering stability, rich transformations, and tight SQL Server integration. However, its platform dependency and limited portability make it less adaptable to modern, cloud‑native workflows.

Apache Hop, on the other hand, embraces a metadata‑driven, platform‑agnostic approach, enabling greater reuse, cleaner DevOps practices, and seamless movement across environments. Its design aligns closely with today’s demands for flexibility, automation, and scalability.

Part 1 sets the stage by examining how these tools are built and how their architectural foundations differ.

In Part 2, we will explore how these differences translate into performance, scalability, automation, cloud readiness, and real‑world usage scenarios, helping you determine which tool best fits your future data strategy.

If you would like to enable this capability in your application, please get in touch with us at [email protected] or update your details in the form

WhatsApp Image 2025-12-03 at 21.20.40_5e74243b

Interactive What-If Analysis using Streamlit: Empowering Real-Time Decision Making

December 3, 2025

by Axxonet Analytics

In today’s fast-moving business landscape, leaders need more than static reports — they need the ability to explore multiple business scenarios instantly. Whether it’s evaluating pricing strategies, forecasting operational costs, or measuring profitability under different assumptions, What-If Analysis has become an essential capability for modern enterprises.

At Axxonet, we leverage advanced Python-based tools like Streamlit to build interactive What-If dashboards that allow businesses to simulate outcomes in real time and make data-driven decisions with confidence.

What Is What-If Analysis?

What-If Analysis is a decision-support technique that helps organizations understand how changes in key inputs — such as revenue, unit cost, volume, or operational parameters — impact key metrics like profitability, efficiency, or ROI.

Traditional methods rely heavily on Excel or BI tools. While effective, these approaches are often:

Manual and time-consuming
Difficult to scale
Prone to formula errors
Dependent on licensed software
Limited in automation and real-time data connectivity

Interactive web-based tools overcome these limitations by making scenario exploration intuitive, visual, and real time.

Why Streamlit?

Streamlit provides a powerful yet simple framework to build secure, interactive, analytical applications without front-end development. We use Streamlit because:

Open-Source & Free

No licensing restrictions, unlike Excel or proprietary BI tools.

Extremely Fast Development

Widgets, charts, layouts, and logic can be built in minutes using pure Python.

Real-Time Interaction

Any parameter change triggers instant recalculation and updates on the screen.

Easy Integration With Databases

Streamlit connects effortlessly with:

PostgreSQL
MySQL
ClickHouse
Azure SQL
REST APIs
Any operational data source

This enables What-If dashboards to pull live, monthly-updating operational averages directly from backend systems.

Automation & Scalability

Streamlit apps can:

Auto-refresh values
Run simulations at scale
Support multiple teams at once
Be embedded inside internal systems

Ease of Deployment

Runs on:

Local machine
Docker container
Cloud (AWS, Azure, GCP)
Streamlit Community Cloud
Enterprise servers

7. Built-in Support for Charts, KPIs, and PDF Exports

Interactive dashboards and exportable insights make decision-making seamless.

Why Companies Need Interactive What-If Tools

Instant Scenario Simulation

Decision-makers can adjust parameters on the fly and instantly see how results change considering live data from operational systems.

Better Visibility for Strategic Planning

Dynamic dashboards help compare multiple business scenarios, enabling more informed choices.

Reduction of Manual Work

Automated recalculation eliminates time-consuming spreadsheet operations where data needs to be extracted from multiple sources and compiled in sheets, which not only takes time but can also lead to errors when copying the data across multiple sources.

Improved Collaboration

Teams across finance, logistics, or operations can access the same interactive tool via a browser using real time information.

How We Use Streamlit to Build What-If Dashboards

Streamlit provides an elegant framework for building data apps without front-end development.
At Axxonet, we extend Streamlit to create:

Clean and interactive user interfaces
Dynamic input controls for cost, revenue, and operational parameters
Real-time Key Metrics updates
Visual charts and insights for faster comprehension
Downloadable PDF summaries for easy sharing

The result is a seamless, responsive experience where any input change automatically updates the output metrics and visualisations, considering the real-time live backend database information.

Profitability Simulation Dashboard

Below is a conceptual example of the type of dashboard we build:

Adjustable inputs for cost components, pricing, and volume
Real-time calculation of revenue, costs, and profit
Key Metrics widgets for quick interpretation
Charts showing cost breakdown, profit distribution, or sensitivity
Exportable reports summarizing key assumptions and outcomes

This approach helps businesses experiment with ideas before making real-world decisions — all in a secure browser-based environment.

Real Industry Use Cases

What-If analysis solutions support a wide range of industries and scenarios:

Financial Services

Profitability modelling
Interest rate sensitivity
Loan pricing scenarios

Logistics & Supply Chain

Trip-based cost modelling
Driver/vehicle scenario simulation
Fuel and toll forecasting

Retail & Consumer Business

Price optimization
Discount impact analysis

Operations & Planning

Resource allocation
Budget forecasting

Whether you’re planning next quarter’s financial forecast or optimizing operations, interactive What-If tools provide clarity and confidence.

Architecture Overview

The following diagram reflects the internal operational design of a Streamlit-based what-if simulator.

Our architecture is designed for:

Modularity — separate layers for UI, business logic, and calculations
Responsiveness — real-time recalculation and instant visual feedback
Scalability — deployable on cloud, server, or container environments
Security — access-controlled dashboards and isolated computation layers

We use modern Python frameworks and best practices to deliver a smooth experience without exposing internal complexities.

Deployment Options

Local Deployment

streamlit run app.py

Docker Deployment

FROM python:3.10-slim

WORKDIR /app

COPY . /app

RUN pip install streamlit pandas numpy reportlab plotly

EXPOSE 8501

CMD [“streamlit”, “run”, “app.py”, “–server.address=0.0.0.0”]

Cloud Deployment

Streamlit Community Cloud
Any container-based cloud platform (Azure, AWS, GCP)

Conclusion

Interactive What-If dashboards transform the way organisations evaluate scenarios, forecast outcomes, and make strategic decisions. By combining Streamlit’s powerful UI capabilities with our expertise in analytics and engineering, Axxonet delivers solutions that are:

Simple to use
Fully customizable
Real-time
Insight-driven

Businesses no longer need to rely on static spreadsheets — with dynamic What-If simulation, teams can explore opportunities, mitigate risks, and drive smarter decisions faster.

If you would like to enable this capability in your application, please get in touch with us at [email protected] or update your details in the form

References

The following were the official documentation and resources referred to.

Streamlit Official Documentation — Widgets, Layout, API Reference
https://docs.streamlit.io

2. Streamlit Deployment Documentation — Community Cloud, Docker, Configuration
https://docs.streamlit.io/streamlit-community-cloud
https://docs.streamlit.io/deploy/tutorials

Apache Hop Meets GitLab: CICD Automation with GitLab

April 14, 2025

by Axxonet Analytics

Introduction

In our previous blog, we discussed Apache HOP in more detail. In case you have missed it, refer to Comparison of and migrating from Pentaho Data Integration PDI/ Kettle to Apache HOP. As a continuation of the Apache HOP article series, here we touch upon how to integrate Apache HOP with GitLab for version management and CI/CD.

In the fast-paced world of data engineering and data science, organizations deal with massive amounts of data that need to be processed, transformed, and analyzed in real-time. Extract, Transform, and Load (ETL) workflows are at the heart of this process, ensuring that raw data is ingested, cleaned, and structured for meaningful insights. Apache HOP (Hop Orchestration Platform) has emerged as one of the most powerful open-source tools for designing, orchestrating, and executing ETL pipelines, offering a modular, scalable, and metadata-driven approach to data integration.

However, as ETL workflows become more complex and business requirements evolve quickly, managing multiple workflows can be difficult. This is where Continuous Integration and Continuous Deployment (CI/CD) come into play. By automating the deployment, testing, and version control of ETL pipelines, CI/CD ensures consistency, reduces human intervention, and accelerates the development lifecycle.

This blog post explores Apache HOP integration with Gitlab, its key features, and how to leverage it to streamline and manage your Apache HOP workflows and pipelines.

Apache Hop:

Apache Hop (Hop Orchestration Platform) is a robust, open-source data integration and orchestration tool that empowers developers and data engineers to build, test, and deploy workflows and pipelines efficiently. One of Apache Hop’s standout features is its seamless integration with version control systems like Git, enabling collaborative development and streamlined management of project assets directly from the GUI.

GitLab:

GitLab is a widely adopted DevSecOps platform that provides built-in CI/CD capabilities, version control, and infrastructure automation. Integrating GitLab with Apache HOP for ETL development and deployment offers several benefits:

Version Control for ETL Workflows
- GitLab allows teams to track changes in Apache HOP pipelines, making it easier to collaborate, review, and revert to previous versions when needed.
- Each change to an ETL workflow is documented, ensuring transparency and traceability in development.
Automated Testing of ETL Pipelines
- Data pipelines can break due to schema changes, logic errors, or unexpected data patterns.
- GitLab CI/CD enables automated testing of HOP pipelines before deployment, reducing the risk of failures in production.
Seamless Deployment to Multiple Environments
- Using GitLab CI/CD pipelines, teams can deploy ETL workflows across different environments (development, staging, and production) without manual intervention.
- Environment-specific configurations can be managed efficiently using GitLab variables.
Efficient Collaboration & Code Reviews
- Multiple data engineers can work on different aspects of ETL development simultaneously using GitLab’s branching and merge request features.
- Code reviews ensure best practices are followed, improving the quality of ETL pipelines.
Rollback and Disaster Recovery
- If an ETL workflow fails in production, previous stable versions can be quickly restored using GitLab’s versioning and rollback capabilities.
Security and Compliance
- GitLab provides access control, audit logging, and security scanning features to ensure that sensitive ETL workflows adhere to compliance standards.

Jenkins:

Jenkins, one of the most widely used automation servers, plays a key role in enabling CI/CD by automating build, test, and deployment processes. Stay tuned for our upcoming articles on How to Integrate Jenkins with GitLab for managing, and deploying the Apache HOP artifacts.

In this blog post, we’ll explore how Git actions can be utilized in Apache Hop GUI to manage and track changes to workflows and pipelines effectively. We’ll cover the setup process, common Git operations, and best practices for using Git within Apache Hop.

Manual Git Integration for CI/CD Process (Problem Statement)

Earlier CI/CD for ETLs was a manual and tedious process. In ETL tools like Pentaho PDI or the older versions, we had to manually manage the CICD for the ETL artefacts (Apache Hop or Pentaho pipelines/transformation and workflows/jobs) with Git by following these summary steps:

Create an Empty Repository
- Log in to your Git account.
- Create a new repository and leave it empty (do not add a README, .gitignore, or license file).
Clone the Repository
- Clone the empty repository to your local system.
- This will create a local folder corresponding to your repository.
Use the Cloned Folder as Project Home
- Set the cloned folder as your Apache Hop project home folder.
- Save all your pipelines (.hpl files), workflows (.hwf files), and configuration files in this folder.

Common Challenges in Pentaho Data Integration (PDI)

Pentaho Data Integration (PDI), also known as Kettle, has been widely used for ETL (Extract, Transform, Load) processes. However, as data workflows became more complex and teams required better collaboration, automation, and version control, Pentaho’s limitations in CI/CD (Continuous Integration/Continuous Deployment) and Git integration became apparent.

1. Lack of Native Git Support

PDI lacked built-in Git integration, making version control and collaboration difficult for teams working on large-scale data projects.

2. Manual Deployment Processes

Without automated CI/CD pipelines, teams had to manually deploy and migrate transformations, leading to inefficiencies and errors.

3. Limited Workflow Orchestration

Handling complex workflows required custom scripting and external tools, increasing development overhead.

4. Scalability Issues:

PDI struggled with modern cloud-native architectures and containerized deployments, requiring additional customization.

Official Link: https://pentaho-public.atlassian.net/jira/software/c/projects/PDI

Birth of Apache Hop (Solution)

To automate the CICD process with the Apache HOP, we can now configure the Hop project to Git and manage the CICD process for the ETLs. This results in efficient ETL code integration and code management. The need for CI/CD and Git Integration in Pentaho Data Integration and other ETL tools led to Apache Hop. To address these limitations, the Apache Hop project was created, evolving from PDI while introducing modern development practices such as:

Built-in Git Integration: Enables seamless version control, collaboration, and tracking of changes within the Hop GUI.
CI/CD Compatibility: Supports automated testing, validation, and deployment of workflows using tools like Jenkins, GitHub Actions, and GitLab CI/CD.
Improved Workflow Orchestration: Provides metadata-driven workflow design with enhanced debugging and visualization.
Containerization & Cloud Support: Fully supports Kubernetes, Docker, and cloud-native architectures for scalable deployments.

Official Link: https://hop.apache.org/manual/latest/hop-gui/hop-gui-git.html

Impact of Git and CI/CD in Apache Hop

The integration of Git and Continuous Integration/Continuous Deployment (CI/CD) practices into Apache Hop has significantly transformed the way data engineering teams manage and deploy their ETL workflows.

1. Enhanced Collaboration with Git

Apache Hop’s support for Git allows multiple team members to work on different parts of a data pipeline simultaneously. Each developer can clone the repository, make changes in isolated branches, and submit pull requests for review. Git’s version control enables teams to:

Track changes to workflows and metadata over time
Review historical modifications and troubleshoot regressions
Merge contributions efficiently while minimizing conflicts

This collaborative environment leads to better code quality, transparency, and accountability within the team.

2. Reliable Deployments through CI/CD Pipelines

By integrating Apache Hop with CI/CD tools like Jenkins, GitLab CI, or GitHub Actions, organizations can automate the process of testing, packaging, and deploying ETL pipelines. Benefits include:

Automated testing of workflows to ensure stability before production releases
Consistent deployment across development, staging, and production environments
Rapid iteration cycles, reducing the time from development to delivery

These pipelines reduce human error and enhance the repeatability of deployment processes.

3. Improved Agility and Scalability

The combination of Git and CI/CD fosters a modern DevOps culture within data engineering. Teams can:

React quickly to changing business requirements
Scale solutions across projects and environments with minimal overhead
Maintain a centralized repository for configuration and infrastructure-as-code artifacts

This level of agility makes Apache Hop a powerful and future-ready tool for enterprises aiming to modernize their data integration and transformation processes.

Why Use Git with Apache Hop?

Integrating Git with Apache Hop offers several benefits:

Version Control
- Track changes in pipelines and workflows with Git’s version history.
- Revert to previous versions when needed.
Collaboration
- Multiple users can work on the same repository, ensuring smooth collaboration.
- Resolve conflicts using Git’s merge and conflict resolution features.
Centralized Management
- Store pipelines, workflows, and associated metadata in a Git repository for centralized access.
Branch Management
- Experiment with new features or workflows in isolated branches.
Rollback
- Revert to earlier versions of workflows in case of issues.

By incorporating Git into your Apache Hop workflow, you ensure a smooth and organized development process.

Git Actions in Apache Hop GUI

Apache Hop GUI provides a range of Git-related actions to simplify version control tasks.

These actions can be accessed from the toolbar or context menus within the application.

Committing Changes

After modifying a workflow or pipeline, save the changes.
Use the Commit option in the GUI to add a descriptive message for the changes.

Pulling Updates

Fetch the latest changes from the remote repository using the Pull option.
Resolve any conflicts directly in the GUI or using an external merge tool.

Pushing Changes

Once you commit changes locally, use the Push option to sync them with the remote repository.

Branching and Merging

Create new branches for feature development or experimentation.
Merge branches into the main branch to integrate completed features.

Viewing History

View the commit history to understand changes made to workflows or pipelines over time.
Use the diff viewer to compare changes between commits.

Reverting Changes

If a workflow is not functioning as expected, revert to a previous commit directly from the GUI.

In addition to adding and committing files, Apache Hop’s File Explorer perspective allows you to manage other Git operations:

Pull: To retrieve the latest changes from your remote repository, click the Git Pull button in the toolbar. This ensures you’re always working with the most up-to-date version of the project.
Revert: If you need to discard changes to a file or folder, select the file and click Git Revert in the Git toolbar.
Visual Diff: Apache Hop allows you to visually compare different versions of a file. Click the Git Info button, select a specific revision, and use the Visual Diff option to see the changes between two versions of a pipeline or workflow. This opens two tabs, showing the before and after states of your project.

Setting Up Git in Apache Hop GUI (CI/CD)

Apache Hop (Hop Orchestration Platform) provides Git integration to help users manage their workflows, pipelines, and metadata effectively. This integration allows version control of Hop projects, making it easier to track changes, collaborate, and revert to previous versions.

Apache Hop supports Git integration to track metadata changes such as:

Pipelines (ETL workflows)
Workflows (job orchestration)
Project metadata (variables, environment settings)
Database connections (stored securely)

With Git, users can:

Commit and push changes to a repository
Revert changes
Collaborate with other team members
Maintain a version history of Hop projects

Prerequisites

Install Apache Hop on your system.
Set up Git on your machine and configure it with your credentials (username and email).
Ensure you have access to a Git repository (local or remote).
Create or clone a repository to store Apache Hop files.

Create a GitLab access token to authenticate and push the code artifacts from Apache HOP.

Configure Git in Apache Hop

Here are the steps for configuring the CICD process using Gitlab in Apache HOP

Step 1: Launch Apache Hop GUI

Step 2: Navigate to the Preferences Menu

Step 3: Locate the Version Control Settings and Configure the Path to your Git Executable

Step 4: Optionally, Specify Default Repositories and Branch Names for your Projects

Step 5: Initialize a Git Repository

Create a new project in Apache Hop.

Open and verify the project’s folder in your file system.

Use Git to initialize the repository: Run the Init command in the Hop Project folder.

$ git init

Add a .gitignore file to exclude temporary files generated by Hop:

1. 1. *.log
  2. *.bak

Step 6: Git Info

After successfully initializing the Git on your local Hop project folder.

Step 7: Adding Files to Git

Select the file(s) you want to add to Git from the File Explorer.
In the toolbar at the top, you’ll see the Git Add button. Clicking this will stage the selected files, meaning they’re ready to be committed to your Git repository.
Alternatively, right-click the file in the File Explorer and select Git Add.

Once staged, the file will change from red to blue, indicating that it’s ready to be committed.

Step 8: Committing Changes

Click the Git Commit button from the toolbar.
Select the files you’ve staged from the File Explorer that you want to include in the commit.
A dialog will prompt you to enter a commit message, this message should summarize the changes you’ve made. Confirm the commit.

Once committed, the blue files will return to a neutral color.

After a successful Commit, comment details are shown in the Revision Tab.

Step 9: Connect to a Remote Repository

Add a remote repository URL:
git remote add origin <repository_url>

Push the local repository to the remote repository:
git push -u origin main

Step 10: Pushing Changes to a Remote Repository

In the Git toolbar, click the Git Push button.
Apache Hop will prompt you for your Git username and password. Enter the correct authentication details.

A confirmation message will appear, indicating that the push was successful.

GitLab / GitHub Operation

In the previous section of this blog, we have seen how to practically initialize a new Git project, commit the ETL files, and push the ETLs and config files from the Apache HOP GUI tool. This section will show how to manage merges and approve merge requests in GitLab after sending the push request from Apache HOP.

Go to the GitLab project.

Once the code is pushed from Hop, you should able to see the merge request notification as shown below:

2. Create a Merge request in the GitLab as shown below:

3. After the merge request is sent, the corresponding user should review the code artifacts to Approve and Merge the request.

4. After the merge request is approved we should be able to see the merged artifacts in the GitLab project as shown in the screenshot below:

Note: Save Pipelines and Workflows:

Store your Hop .hpl (pipelines) and .hwf (workflows) files in the Git repository.
Use this folder as your main project path.

In the upcoming blogs, we will see how to streamline the Git operations (approval and merging) and deploy the merged development files to new environments (Dev->QA->Production) using Jenkins to implement more robust CICD operations. Stay tuned for the upcoming blog releases.

Best Practices for Git in Apache Hop

Apache Hop (Hop Orchestration Platform) provides seamless integration with Git, enabling version control for pipelines and workflows. This integration allows teams to collaborate effectively, track changes, and manage multiple versions of ETL processes.

Use Descriptive Commit Messages
- Ensure commit messages clearly describe the changes made.
- Example: “Added error handling to data ingestion pipeline.”
Commit Frequently
- Break changes into small, logical units and commit regularly.
Leverage Branching
- Use branches for new features, bug fixes, or experimentation.
- Merge branches only after thorough testing.
Collaborate Effectively
- Use pull requests to review and discuss changes with your team before merging.
Keep the Repository Clean
- Use a .gitignore file to exclude temporary files and logs generated by Hop.

Conclusion

Using Git with Apache Hop GUI combines the power of modern version control with an intuitive data integration platform. By integrating Git into your ETL workflows, you’ll enhance collaboration and organization and improve your projects’ reliability and maintainability. Integrating GitLab CI with Apache HOP revolutionizes ETL workflow management by automating testing, deployment, and monitoring. This Continuous Integration (CI) ensures that data pipelines remain reliable, scalable, and maintainable in the ever-evolving landscape of data engineering. By embracing CI/CD best practices, organizations can enhance efficiency, reduce downtime, and accelerate the delivery of high-quality data insights.

Start leveraging Git actions in Apache Hop today to streamline your data orchestration projects.

Up Next

In the part of the CICD blog, we will talk more about Jenkins for the Continuous Deployment of the CI/CD process. Stay tuned.

Would you like us to officially set up Hop with GitLab & Jenkins CI/CD for your new project?

Official Links for Apache Hop and GitLab Integration

When writing this blog about Apache Hop and its integration with GitLab for CI/CD, the following were the official documentation and resources referred to. Below is a list of key official links:

1. Apache Hop Official Resources

Apache Hop Official Website: https://hop.apache.org
Apache Hop Documentation: https://hop.apache.org/docs/latest
Apache Hop GitHub Repository: https://github.com/apache/hop
Apache Hop Community & Discussions: https://hop.apache.org/community

2. GitLab CI/CD Official Resources

GitLab Official Website: https://about.gitlab.com
GitLab CI/CD Documentation: https://docs.gitlab.com/ee/ci/
GitLab Runners (for automation): https://docs.gitlab.com/runner/
GitLab API Reference: https://docs.gitlab.com/ee/api/

3. DevOps & CI/CD Best Practices

Continuous Integration Overview: https://about.gitlab.com/stages-devops-lifecycle/continuous-integration/
Continuous Deployment Best Practices: https://about.gitlab.com/stages-devops-lifecycle/continuous-deployment/
Apache Hop with DevOps Pipelines: https://hop.apache.org/manual/latest/plugins/

These links will help you explore Apache Hop, GitLab, and CI/CD automation in more depth.

Introduction

In our earlier blog post A Simpler Alternative to Kubernetes – Docker Swarm with Swarmpit we talked about how Docker Swarm, a popular open-source orchestration platform along with Swarmpit, another open-source simple and intuitive Swarm Monitoring and Management Web User interface for Swarm, we can do most of the activities that one does with Kubernetes, including the deployment and management of containerized applications across a cluster of Docker hosts with clustering and load balancing enabling for simple applications.

We know monitoring container logs efficiently is crucial for troubleshooting and maintaining application health in a Docker environment. In this article, we explore how this can be achieved easily using Swarmpit’s features for real-time monitoring of service logs with its strong filtering capabilities, and best practices for log management.

Challenges in Log Monitoring

Managing logs in a distributed environment like Docker Swarm presents several challenges:

- Logs are distributed across multiple containers and nodes.
- Accessing logs requires logging into individual nodes or using CLI tools.
- Troubleshooting can be time-consuming without a centralized interface.

Swarmpit's Logging Features

Swarmpit simplifies log monitoring by providing a centralized UI for viewing container logs without accessing nodes manually.

Key Capabilities:

- Real-Time Log Viewing: Monitor logs of running containers in real-time.
- Filtering and Searching: Narrow down logs using service names, container IDs, or keywords.
- Replica-Specific Logs: View logs for each replica in a multi-replica service.
- Log Retention: Swarmpit retains logs for a configurable period based on system resources.

Accessing Logs in Swarmpit

To access logs in Swarmpit:

1. Log in to the Swarmpit dashboard.
2. Navigate to the Services or Containers tab.
3. Select the service or container whose logs you need.
4. Switch to the Logs tab to view real-time output.
5. Use the search bar to filter logs by keywords or service names.

Filtering and Searching Logs

Swarmpit provides advanced filtering options to help you locate relevant log entries quickly.

- Filter by Service or Container: Choose a specific service or container from the UI.
- Filter by Replica: If a service has multiple replicas, select a specific replica’s logs.
- Keyword Search: Enter keywords to find specific log messages.

Best Practices for Log Monitoring

To make the most of Swarmpit’s logging features:

- Use Filters Effectively: Apply filters to isolate logs related to specific issues.
- Monitor in Real-Time: Keep an eye on live logs to detect errors early.
- Export Logs for Advanced Analysis: If deeper log analysis is required, consider integrating with external tools like Loki or ELK.

Conclusion

Swarmpit’s built-in logging functionality provides a simple and effective way to monitor logs in a Docker Swarm cluster. By leveraging its real-time log viewing and filtering capabilities, administrators can troubleshoot issues efficiently without relying on additional logging setups. While Swarmpit does not provide node-level logs, its service, and replica-specific log views offer a practical solution for centralized log monitoring.

This guide demonstrates how to utilize Swarmpit’s logging features for streamlined log management in a Swarm cluster.

Optimize your log management with the right tools. Get in touch to learn more!

Frequently Asked Questions (FAQs)

Can Swarmpit monitor logs across all nodes in a Swarm cluster?

No, Swarmpit provides logs per service and per replica but does not offer node-level log aggregation.

How long does Swarmpit retain logs?

Log retention depends on system resources and configuration settings within Swarmpit.

Can I export logs from Swarmpit to an external logging system?

Yes, for advanced log analysis, you can integrate Swarmpit with tools like Loki or the ELK stack.

Does Swarmpit support log alerts or notifications?

No, Swarmpit does not provide built-in log alerting. For alerts, consider integrating with third-party monitoring tools.

Can I filter logs by specific error messages?

Yes, Swarmpit allows keyword-based filtering, enabling you to search for specific error messages.

Guide to enable Single Sign On(SSO) between Grafana, GitLab and Jenkins using Keycloak

January 30, 2025

by Axxonet Devops

Introduction

As businesses scale their operations, centralised identity management becomes crucial to ensure security and operational efficiency. Keycloak, a powerful open-source Identity and Access Management (IAM) solution, simplifies this by offering Single Sign-On (SSO) and centralized authentication. This guide will walk you through integrating Keycloak with Grafana, GitLab, and Jenkins, streamlining user management and authentication.

In this guide, we will:

- Configure Keycloak as the Identity Provider (IdP).
- Set up OAuth2/OpenID Connect (OIDC) for Grafana, GitLab, and Jenkins.
- Provide detailed troubleshooting tips and insights to avoid common pitfalls.

By following this guide, you’ll have a unified authentication system, ensuring that users can access Grafana, GitLab, and Jenkins with one set of credentials.

Keycloak Overview

Keycloak is an open-source Identity and Access Management (IAM) solution that provides SSO with modern security standards such as OpenID Connect, OAuth2, and SAML. It supports various identity providers (e.g., LDAP, Active Directory) and provides a rich user interface for managing realms, users, roles and permissions.

Architecture Diagram

This diagram illustrates the integration of Keycloak as a central identity and access management system. It facilitates Single Sign-On (SSO) for various external identity providers (IDPs) and internal applications.

Components:

1. Keycloak
  - Acts as the core Identity Provider (IdP) for the architecture.
  - Manages authentication, authorization, and user sessions across connected services.
  - Facilitates Single Sign-On (SSO), allowing users to log in once and access multiple services seamlessly.
2. External Identity Providers (IDPs)
  - Keycloak integrates with external IDPs for user authentication.
  - OpenID Connect (OIDC) and SAML protocols for federated identity management.
  - Google and Microsoft for social and enterprise logins.
  - Keycloak redirects user login requests to these external providers as configured, enabling users to authenticate with their existing credentials.
3. Internal Applications

- - Keycloak provides SSO support for internal services.
  - GitLab for source code management.
  - Jenkins for continuous integration/continuous delivery (CI/CD) pipelines.
  - SonarQube for static code analysis and quality monitoring.
  - These applications delegate authentication to Keycloak. When users access these services, they are redirected to Keycloak for login.

Workflow:

1. Authentication with External IDPs:
  - A user trying to log in to any service is redirected to Keycloak.
  - If configured, Keycloak can redirect the user to an external provider (e.g., Google or Microsoft) to authenticate.
  - Once authenticated, the user is granted access to the requested service
2. Single Sign-On (SSO):
  - Keycloak generates and manages an SSO session after successful authentication.
  - Users only need to log in once. All other integrated services (e.g., GitLab, Jenkins, SonarQube) can reuse the same session for access.
3. Authorization:

- - Keycloak ensures proper access control by assigning roles and permissions.
  - Applications fetch user roles and permissions from Keycloak to enforce fine-grained authorization.

Keycloak's Key Features

- Single Sign-On (SSO): Users log in once to access multiple services.
- Centralized Authentication: Manage authentication for various services from a central location.
- Federated Identity: Keycloak can authenticate users from LDAP, Active Directory or other identity providers.
- Role-based Access Control (RBAC): Assign users specific roles and permissions across services.

Prerequisites

Before beginning, ensure you have the following:

- Keycloak: Installed and running. You can deploy Keycloak using Docker, Kubernetes, or install it manually.
- Grafana: Installed and running.
- GitLab: Installed and running (either self-hosted or GitLab.com).
- Jenkins: Installed and running.
- SSL Certificates: It’s highly recommended to secure your services with SSL to ensure secure communication.

Ensure you have administrative access to each service for configuration purposes.

Part 1: Keycloak Setup

Step 1: Install and Access Keycloak

Keycloak can be deployed via Docker, Kubernetes, or manually on a server.

For Docker:

docker run -d \

-p 8080:8080 \

-e KEYCLOAK_USER=admin \

-e KEYCLOAK_PASSWORD=admin \

quay.io/keycloak/keycloak:latest

For Kubernetes, you can deploy Keycloak with Helm or a custom Kubernetes manifest. Make sure Keycloak is accessible to Grafana, GitLab, and Jenkins, either through DNS or IP.

Step 2: Create a New Realm

A Realm in Keycloak is a space where you manage users, roles, clients, and groups. Each realm is isolated, meaning users and configurations don’t overlap between realms.

- From the Keycloak admin console, click on the top-left dropdown and select Add Realm.
- Name the realm (e.g., DevOpsRealm) and click Create.
- Ensure you select an appropriate Display Name and Internationalization settings if your user base spans different regions.

Step 3: Add Users and Assign Roles

You can now create users and assign them roles:

- Navigate to Users -> Add User.
- Fill in the user details and click Save.
- After the user is created, go to the Credentials tab and set the password.
- You can also manage roles under the Role Mappings tab to define custom permissions.

Step 4: Configure Clients (Grafana, GitLab, Jenkins)

Clients in Keycloak represent the applications that will use Keycloak for authentication. For each service (Grafana, GitLab, Jenkins), we’ll create a client that uses the OIDC protocol.

- Grafana Client Setup:

- 1. Go to Clients -> Create.
  2. Set the Client ID to grafana, and choose OpenID Connect as the protocol.
  3. Set the Root URL to http://<grafana-host>, and the Redirect URIs to http://<grafana-host>/login/generic_oauth.
  4. Enable the following flows: Standard Flow, Implicit Flow (if needed), and Direct Access Grants.
  5. Save the client and navigate to the Credentials tab to copy the generated Client Secret.

- GitLab Client Setup:
  1. Go to Clients -> Create.
  2. Set the Client ID to gitlab and choose OpenID Connect.
  3. Set the Redirect URI to http://<gitlab-host>/users/auth/openid_connect/callback.
  4. Enable Standard Flow and Implicit Flow if GitLab requires it.
  5. Save the client and copy the Client Secret from the Credentials tab.
- Jenkins Client Setup:

- 1. Add a new client for Jenkins, following the same steps as above.
  2. Set the Redirect URI to http://<jenkins-host>/securityRealm/finishLogin.
  3. Export the client-json file from client actions to configure in the next steps.
  4. Export the json file as shown below.

Part 2: Integrating Keycloak with Grafana

Step 1: Configure Grafana for OAuth2

Grafana supports OAuth2 natively, and Keycloak uses OpenID Connect as the protocol for OAuth2.

- Grafana’s Configuration: Locate the grafana.ini file (or environment variables for a Docker container) and configure OAuth2 settings:

[auth.generic_oauth]
enabled = true
client_id = grafana
client_secret = <Grafana_Client_Secret>
auth_url = http://<keycloak-host>/realms/<Your_Realm>/protocol/openid-connect/auth token_url = http://<keycloak-host>/realms/<Your_Realm>/protocol/openid-connect/token
api_url = http://<keycloak-host>/realms/<Your_Realm>/protocol/openid-connect/userinfo scopes = openid profile email

- Restart Grafana: After updating the configuration, restart Grafana:

For Manual:

systemctl restart grafana-server

For Docker:

docker restart <grafana-container-name>

Part 3: Integrating Keycloak with GitLab

GitLab supports OIDC natively for SSO, making it straightforward to integrate with Keycloak.

Step 1: Configure GitLab for OpenID Connect

- GitLab Configuration: Open GitLab’s gitlab.rb configuration file and enable OIDC:

gitlab_rails[‘omniauth_enabled’] = true
gitlab_rails[‘omniauth_providers’] = [

{
name: “openid_connect”,
label: “Keycloak”,
args: {
name: “openid_connect”,
scope: [“openid”, “profile”, “email”],
response_type: “code”,
issuer: “http://<keycloak-host>/realms/<Your_Realm>”,

discovery: true,

uid_field: “preferred_username”,

client_auth_method: “basic”,

client_options: {

identifier: “<GitLab_Client_ID>”,

secret: “<GitLab_Client_Secret>”,

redirect_uri: “http://<gitlab-host>/users/auth/openid_connect/callback”

}

]

- Reconfigure GitLab: After editing gitlab.rb, run:

For Manual:

sudo gitlab-ctl reconfigure

For Docker:

docker restart <gitlab-container-name>

Step 2: Test the Integration

Log out of GitLab, then visit the login page. You should see a “Sign in with Keycloak” option. Clicking it will redirect you to Keycloak for authentication, and once logged in, you’ll be redirected back to GitLab.

Troubleshooting GitLab Integration:

- Invalid UID Field: If authentication succeeds but user data is incorrect, check that uid_field in the gitlab.rb configuration is set to preferred_username.
- Client Secret Mismatch: Ensure the client_secret in GitLab matches the secret in Keycloak’s client settings.

- Invalid Token Response: If you get errors related to invalid tokens, ensure your GitLab instance is reachable from Keycloak and that your OAuth2 flow is configured correctly in Keycloak.

Part 4: Integrating Keycloak with Jenkins

Step 1: Install and Configure Keycloak Plugin

- Install the Plugin: In Jenkins, go to Manage Jenkins -> Manage Plugins, search for the Keycloak OpenID Connect Plugin, and install it.
- Configure Keycloak in Jenkins:
  1. Go to Manage Jenkins -> Configure Security.
  2. Under Security Realm, choose Keycloak Authentication.
  3. Upload the client-json file which is exported from the client configuration step.
  4. Upload the json file in keycloak json field.

- Save and Test the Configuration: Log out of Jenkins and test the login with Keycloak.

Troubleshooting Jenkins Integration:

- Redirect URI Mismatch: Double-check that the redirect URI set in Keycloak matches Jenkins’ redirect path (/securityRealm/finishLogin).
- Access Denied Errors: Ensure users have been assigned roles in Keycloak that map to appropriate Jenkins permissions.
- Plugin Issues: If the plugin behaves unexpectedly, verify you have the latest version installed and that Jenkins’ logs provide more detailed errors.

Note: All the 3 apps are now integrated with keycloak. So if you login to any service with keycloak, automatically you’ll be logged into all the 3 apps.

Conclusion

Integrating Keycloak with Grafana, GitLab, and Jenkins provides a unified and secure authentication system. This setup reduces complexity, enhances security, and improves user experience by enabling SSO across your DevOps tools.

Simplify authentication and enhance security across your systems. Get started today!

Frequently Asked Questions (FAQs)

What is Keycloak, and why should I use it for authentication?

Keycloak is an open-source Identity and Access Management (IAM) solution that supports Single Sign-On (SSO) for applications. It provides centralized user management, secure authentication, and protocol support like OAuth2 and OpenID Connect. By using Keycloak, you can streamline access control and enhance security across multiple applications, reducing the need for managing credentials separately in each tool.

Can Keycloak be integrated with multiple applications at once?

Yes, Keycloak supports integration with multiple applications using different authentication protocols like OpenID Connect, OAuth2, and SAML. You can create separate clients in Keycloak for each application (Grafana, GitLab, Jenkins), all managed under a single realm.

Do Grafana, GitLab, and Jenkins all use OpenID Connect for integration with Keycloak?

Yes, Grafana, GitLab, and Jenkins can all be integrated with Keycloak using the OpenID Connect (OIDC) protocol. This ensures consistent and secure authentication across all services using Keycloak as the Identity Provider.

How do I ensure that users in Keycloak have the appropriate permissions in Grafana, GitLab, and Jenkins?

Permissions and roles can be managed both within Keycloak and each application. In Keycloak, you can assign roles to users, which can be passed to the application during authentication. Each application (Grafana, GitLab, Jenkins) can then map these roles to their internal permission models. For example, in Grafana, you can map Keycloak roles to Grafana’s organization roles.

What should I do if I receive a "redirect URI mismatch" error during login?

A "redirect URI mismatch" error occurs when the redirect URI specified in Keycloak doesn’t match the one configured in the client application. Ensure that the redirect URI in the client configuration in Keycloak matches exactly with what’s defined in Grafana, GitLab, or Jenkins, including protocols (http vs https), port numbers, and path names.

How can I troubleshoot "invalid client ID or secret" errors in Grafana, GitLab, or Jenkins?

If you receive an "invalid client ID or secret" error, verify the following:

Ensure that the client ID and client secret entered in the application’s configuration (Grafana, GitLab, Jenkins) match exactly what is defined in Keycloak for that particular client.
Regenerate the client secret in Keycloak if necessary and update it in the application configuration.
Check that there are no typos in the configuration files, and ensure the Keycloak client is enabled.

Can I customize the login page when redirecting users to Keycloak?

Yes, Keycloak allows customization of its login page. You can modify themes, change the logo, colors, and layout, or create a completely custom login page by uploading a custom theme to Keycloak. This allows you to offer a consistent branding experience for your users across different applications.

How do I fix issues where user information is not being fetched correctly after login?

If user information is not being retrieved correctly (e.g., email, profile data), ensure that:

The scopes (openid, profile, email) are configured correctly in the client settings for each application.
The User Info endpoint is accessible, and there are no network restrictions blocking it.
The appropriate claims are being released from Keycloak. You may need to check the Mappers in Keycloak’s client configuration to ensure that the correct user attributes are being sent.

How can I ensure that user sessions in Keycloak are correctly handled in Grafana, GitLab, and Jenkins?

Keycloak handles user sessions centrally. For Grafana, GitLab, and Jenkins, ensure that:

Session timeouts and token expiration settings in Keycloak are configured appropriately to match the expected behavior in your applications.
Token introspection is working, allowing the applications to verify tokens issued by Keycloak.
If users are logged out from Keycloak, they are also logged out from the integrated applications (SSO logout).

Why Choose Grafana a Comprehensive Alerting System Compared to Nagios, Datadog, Elastic Stack and Splunk

January 24, 2025

by Axxonet Devops

Why Choose Grafana? A Comprehensive Alerting System Compared to Nagios, Datadog, Elastic Stack, and Splunk

With the emerging world of data, monitoring and alerting systems have become vital to maintaining the reliability of applications and infrastructure. With tons of data produced every single second, businesses require powerful tools to present this data and quickly react to any incidents. Grafana — the leading open-source technology for monitoring and observability — is already among the most popular tools teams use to convert raw data into actionable real-life insight.

In this article, we will discuss how Grafana is the complete alerting system, showing how it compares to other monitoring tools, including Nagios, Datadog, Elastic Stack & Splunk. By comparing the pros and cons of each, readers can formulate a better sense of what Grafana is capable of and if it’s the right choice for their organization’s monitoring needs.

What is Grafana?

Grafana is a free platform used for monitoring, visualization, and analytics. It allows its users to turn large and complex datasets into informative visualizations by giving them the option of creating interactive and customizable dashboards. Monitoring of applications, services, and infrastructure can be done in real time with the help of Grafana, which makes it a good tool for teams, having a user-friendly interface. Therefore, it works exceedingly well for DevOps as well as IT operations.

It can work with an extensive range of data sources, such as Prometheus, InfluxDB, MySQL, Elasticsearch, etc. This means that adding Grafana to your display will allow you to see data from many systems all on one dashboard.

Additionally, dashboards in Grafana are also customizable, allowing users to present their data according to their requirements and preferences. Bar graphs, Heatmaps, and tables are some of the forms that can be used for data presentation depending on the metrics.

Also, the development of Grafana is aided by its active user base that helps monitor and alert users by contributing towards developing plugins and writing extensive documentation. Now, users will never feel lost in any application since there will always be installation guides and help provided.

Overview of Competing Tools

Nagios

Nagios is a monitoring solution whose service is based on infrastructure that has been in operation for several years. One of its strongest points includes user alerting, which has made it possible for users to keep track of application health, network performance, and server uptime. While it is accurate to say that there exists a robust alerting framework, the Nagios GUI is very tedious to navigate, and there is often a large manual workload for configuring alerts.

Datadog

Datadog is relatively new on the market, offering an application performance management and monitoring solution, entirely cloud-based, that provides visibility across your applications and infrastructure in its entirety. It works well with several cloud-based systems allowing its users to gather metrics, logs, and traces within seconds. It’s, quite literally, a powerful alerting system that enables keeping an eye on an application’s performance and infrastructure at any given moment. Unfortunately, its expensive model could be a deterrent for small organizations as once the level of use of the service increases, the cost would too.

Elastic Stack (ELK)

Elastic Stack, colloquially known as ELK, encompasses three tools – ElasticSearch, Logstash, and Kibana. This enables both analysis and visualization of logs. However, its capabilities get particularly enhanced when being used to process large amounts of log data. Thus, for organizations with a log-centric focus, ELK is a preferred choice. You can also set alert-based patterns via either the ElastAlert tool or using native alerting features provided in Kibana. It is worth noting though that maintaining and keeping the ELK stack up and running would require significant expertise and resources.

Splunk

Turning our attention to Splunk, we see that it currently reigns in the field of operational intelligence. More specifically, they provide real-time analysis and insights into machine-generated data. What puts Splunk at the forefront in terms of service, is that it combines effective analytics with an advanced search feature. Thereby allowing the organization to reduce their incident response time significantly. Splunk’s alerting system is arguably intricate as it doesn’t entirely allow for great customization, setting up alerts based on complex queries is doable. The downside, however, is a rather expensive licensing model. Splunk is notoriously expensive with their pricing model making scaling a challenge when trying to push them to their limits.

Feature	Grafana	Nagios	Datadog	Elastic Stack (ELK)	Splunk
Primary Focus	Visualization, monitoring, and alerting across multiple data sources	Infrastructure monitoring and alerting	Cloud-native monitoring and observability	Log analysis, search, and visualization	Data analysis, real-time insights, and log management
Alerting System	Unified alerting, customizable alerts across multiple data sources	Static alerts, tied to host/service monitoring	Extensive, integrated alerting for metrics and logs	Basic alerting with the additional configuration required	Advanced alerting with machine learning (ML) models
Ease of Use	User-friendly, intuitive UI, low learning curve	Complex setup, higher learning curve	Easy-to-use, modern cloud-native interface	Moderate complexity requires an Elasticsearch setup	Complex requires a deep understanding of configuration
Customization	Highly customizable dashboards support multiple data sources	Less flexible, more manual configuration	Highly customizable, SaaS-based with many options	High level of customization through Elasticsearch and Kibana	Highly customizable, but complex for large deployments
Notification Channels	Supports multiple channels: Slack, PagerDuty, email, Teams	Limited notification options, typically email	Broad range: Slack, email, PagerDuty, webhooks	Limited out-of-the-box, requires integration	Advanced notification options, but complex to set up
Integration	Integrates with Prometheus, Loki, Elasticsearch, MySQL, Pand PostgreSQL	Integrates with third-party plugins and services	Extensive cloud integration (AWS, Azure, GCP)	Deep integration with Elasticsearch for log analysis	Supports numerous services, but the complex integration process
Visualization	Best-in-class, customizable, interactive dashboards	Limited visualization capabilities	Advanced visualizations for metrics, logs, traces	Good visualization through Kibana, customizable	Strong visualization but more for advanced users
Scalability	Scales well with time series databases like Prometheus	Limited scalability without external tools	Excellent scalability for cloud and large deployments	Scales with Elasticsearch clusters	Scales well, but resource-intensive and costly
Community and Support	Strong open-source community, rich plugin ecosystem	Large community, but more focused on plugins	Strong support via SaaS, extensive documentation	Active open-source community, with paid support options	Strong enterprise support, but costs are high
Cost	Open-source, with paid enterprise options	Open-source, but requires third-party integrations for advanced features	Paid SaaS, usage-based pricing	Open-source (free), paid enterprise options available	Expensive enterprise-level pricing

Grafana’s Alerting Features

The skills of monitoring teams are significantly enhanced by Grafana’s alerting system which is quite robust and flexible to use. Central to this functionality are the alert rules, which enable the user to impose limitations on metrics, logs, and traces. With Grafana’s Unified Alerting system that was embedded with the software version 8, the user can operate different alerts from a single point, whereby fetching data from sources such as Prometheus, Loki, and Elasticsearch. This single-point management system is more effective in alert management as opposed to the Nagios-based swift tools that are closely tied to alerting tools and thus result in a disintegrated monitoring setup.

Grafana has the ability to alert a wide array of users and the alerting setup is another defining factor that has set Grafana aside from the others. Users can make advanced queries through their integrations with Prometheus by utilizing PromQL allowing them to build risks inside the metrics which can then be used for alerts. Also, Grafana integrates lots of notification channels such as PagerDuty, Slack, Microsoft Teams, and webhooks, among others. Such diversity assists the teams in instilling alerts over their communication workflows as it suits them best.

With Grafana’s contextual alerting, usability is improved as it binds alerts with relevant graphs. There is also a setting where a graph is displayed whenever an alert is triggered, making the diagnosis of the issue easier. Moreover, in the process of solving the problem, it is also beneficial that Grafana automatically marks events on graphs so users know when and where the problem was.

The platform also avoids alert fatigue through alert grouping and deduplication. Several alerts can be sent as one instead of a barrage of messages which greatly enhances communication and cuts out unwanted sounds. With Prometheus, Grafana allows users to not be burdened with constant notifications of similar types due to alert deduplication use.

Overall, the simple interface of Grafana makes any command related to setting alerts extremely easy, which is beneficial for new users while not compromising the experience of professionals. The API of the platform is also very helpful in automation as it allows integration with CI/CD pipelines and up-to-date DevOps processes. Such simplicity in work, in combination with powerful alerting features, is what makes Grafana a good tool for any company in need of a deep monitoring system.

Comparison of Alerting Systems

User Interface and Experience

Grafana is a better experience in terms of its user interface and experience as its design is more friendly. Users design the platform in such a way that navigating through its features becomes easy, which makes setup and management straightforward for those who are not familiar with monitoring tools. This stands in stark contrast to systems such as Nagios and Splunk which are a little bit easier to use but come with a complexity that requires a lot of time and effort to understand. For example, in Nagios, setting up alerts frequently requires sifting through configuration files and using a command-line interface which may turn out to be a pretty intimidating task for users with a limited technical background. Splunk, on the other hand, is a great tool but it also requires teams to understand how to use its query language and how to configure the tool which slows down the initial deployment of the team.

Alert Configuration

Grafana enhances alert management via a single unified system which allows users to define alert notifications based on any visualization or metrics from multiple data sources. Thanks to Prometheus and PromQL, complex alert conditions can easily be met, allowing for changes in response to conditions occurring. Note that Nagios, on the other hand, makes it necessary to adjust manually every alert which might unify some systems, but make several errors. Splunk is more advanced, yes, but the way search queries need to be configured can be a bit more than any user would want to deal with.

Notification Flexibility

Grafana shines in its flexibility in notification channels, where it supports an enormous number of notification channels: email, Slack, PagerDuty, and Microsoft Teams, among others. This means alerts can be pushed to the correct teams in real-time, enabling prompt responses to issues. Datadog and Elastic Stack also offer several options for notifications; however, being open-source, Grafana offers far more customization and integration opportunities. For organizations looking to customize their alerting processes in order to fit with particular workflows, Grafana is a more flexible solution.

Scalability

Scalability is one important factor for an organization, particularly as the need to monitor scales up and becomes very large. In this respect, Grafana has a good architecture that can scale effectively with data sources, such as Prometheus, which are designed to have high availability and scalability, which makes it perfect for large environments. However, Datadog is also scalable but becomes expensive with more data. Built with robust scalability options, the Elastic Stack may be a bit complex in terms of management. What Grafana does well is it captures the powerful monitoring features without incurring the high costs of some cloud-native products.

Integration with Existing Systems

Its biggest advantage is its seamless integration with other systems that may already exist in an organization. It supports multiple data sources such as Prometheus, Loki, Elasticsearch, and many more. Therefore, the existing tools are easily utilized by organizations with less disruption. It allows teams to see and alert on data coming from different sources in one place, thus making it a smooth workflow. And though Nagios and Splunk, for example, tend to be siloed products that may only more readily work with other systems with more configurations or separate instances, the integration of APIs and webhooks into Grafana increases its flexibility in deployment in various workflows. Such a feature explanation makes it appealing to teams that want to enhance the monitoring and alerting capabilities without overhauling their existing processes.

Conclusion

Grafana’s alerting system provides a great balance of visual appeal, flexibility, and ease of use, which makes it a great contender for organizations looking to enhance their monitoring capabilities. The unified alerting framework, support for multiple data sources, and rich community support help teams manage alerts effectively while reducing noise and improving response times.

Grafana can be a perfect choice for those organizations that are searching for an all-around monitoring stack. It complements other tools that are very strong in areas like log analysis or deep metrics monitoring. This way, the organization can get an even more complete solution for varied operational needs.

Empower Your Business with Data-Driven Insights. Reach out to us today!

Frequently Asked Questions (FAQs)

What are the key differences between Grafana and Nagios for monitoring?

Grafana focuses on data visualization and dashboarding, whereas Nagios is more traditional in the system and network monitoring. Grafana supports multi-source data integration and is highly customizable for visual representations, while Nagios excels in alerting and plugin-based monitoring.

How do I customize Grafana dashboards for my specific monitoring needs?

You can customize Grafana dashboards by adding panels for different data sources, applying custom queries, and using built-in or third-party plugins to tailor the visualization. The layout and metrics displayed can be configured to suit your monitoring preferences.

How does Prometheus integrate with Grafana for monitoring?

Prometheus can be easily integrated with Grafana as a data source. Grafana pulls data from Prometheus using its API and allows you to create dynamic dashboards based on the time-series data collected by Prometheus.

What are the best Grafana plugins for monitoring various systems?

Some popular plugins include the Zabbix plugin for Zabbix integration, Loki for log monitoring, and the Pie Chart plugin for specific visualizations. Plugins for cloud services like AWS and Google Cloud also extend Grafana's monitoring capabilities.

How does Grafana compare to Splunk for data visualization and logging?

Splunk is a powerful tool for log analysis and management, with advanced search capabilities. Grafana, on the other hand, excels at real-time data visualization from multiple sources and is often used alongside Prometheus for metrics monitoring. Splunk is more enterprise-focused, while Grafana offers flexibility in open-source and cloud-native environments

What is Unified Alerting in Grafana, and how do I set it up?

Unified Alerting is Grafana's system for managing alerts across multiple data sources. You can configure it by setting up conditions for metrics or logs that trigger alerts, and by defining notification channels like email, Slack, or webhook for sending alerts.

How does Grafana handle multi-data source integration?

Grafana allows you to connect and visualize data from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, and more, all in one dashboard. You can configure queries for each data source and display the results in different panels on the same dashboard.

What are the main differences between the ELK stack and Grafana for log monitoring?

The ELK stack (Elasticsearch, Logstash, Kibana) is a comprehensive solution for log aggregation, search, and analysis, whereas Grafana is primarily focused on metrics and visualization. Grafana, when used with Loki, can handle logs but lacks the deep search and indexing capabilities of ELK.

Which is better for cloud-native monitoring: Grafana or Datadog?

Grafana is often preferred for open-source, highly customizable setups, while Datadog offers an all-in-one solution with built-in metrics, logs, and traces for cloud environments. Datadog provides a more managed experience but at a higher cost.

Why choose Apache Druid over Snowflake

January 23, 2025

by Axxonet Analytics

Introduction

In our previous blog, Apache Druid Integration with Apache Superset we talked about Apache Druid’s integration with Apache Superset. In case you have missed it, it is recommended you read it before continuing the Apache Druid blog series. In the Exploring Apache Druid: A High-Performance Real-Time Analytics Database blog post, we have talked about Apache Druid in more detail.

In this blog, we talk about the advantages of Druid over Snowflake. Apache Druid and Snowflake are both high-performance databases, but they serve different use cases, with Druid excelling in real-time analytics and Snowflake in traditional data warehousing.

Snowflake

Snowflake is a cloud-based data platform and data warehouse service that has gained significant popularity due to its performance, scalability, and ease of use. It is built from the ground up for the cloud and offers a unified platform for data warehousing, data lakes, data engineering, data science, and data application development

Apache Druid

Apache Druid is a high-performance, distributed real-time analytics database designed to handle fast, interactive queries on large-scale datasets, especially those with a time component. It is widely used for powering business intelligence (BI) dashboards, real-time monitoring systems, and exploratory data analytics.

Here are the advantages of Apache Druid over Snowflake, particularly in real-time, time-series, and low-latency analytics:

(a) Real-Time Data Ingestion

- Apache Druid: Druid is designed for real-time data ingestion, making it ideal for applications where data needs to be available for querying as soon as it’s ingested. It can ingest data streams from sources like Apache Kafka or Amazon Kinesis and make the data immediately queryable.
- Snowflake: Snowflake is primarily a batch-processing data warehouse. While Snowflake can load near real-time data using external tools or connectors, it is not built for real-time streaming data ingestion like Druid.

Advantage: Druid is superior for real-time analytics, especially for streaming data from sources like Kafka and Kinesis.

(b) Sub-Second Query Latency for Interactive Analytics

- Apache Druid: Druid is optimized for sub-second query latency, which makes it highly suitable for interactive dashboards and ad-hoc queries. Its columnar storage format and advanced indexing techniques (such as bitmap and inverted indexes) enable very fast query performance on large datasets, even in real time.
- Snowflake: Snowflake is highly performant for large-scale analytical queries, but it is designed for complex OLAP (Online Analytical Processing) queries over historical data, and query latency may be higher for low-latency, real-time analytics, particularly for streaming or fast-changing datasets.

Advantage: Druid offers better performance for low-latency, real-time queries in use cases like interactive dashboards or real-time monitoring.

(c) Time-Series Data Optimization

- Apache Druid: Druid is natively optimized for time-series data, with its architecture built around time-based partitioning and segmenting. This allows for efficient querying and storage of event-driven data (e.g., log data, clickstreams, IoT sensor data).
- Snowflake: While Snowflake can store and query time-series data, it does not have the same level of optimization for time-based queries as Druid. Snowflake is better suited for complex, multi-dimensional queries rather than the high-frequency, time-stamped event queries where Druid excels.

Advantage: Druid is more optimized for time-series analytics and use cases where data is primarily indexed and queried based on time.

(d) Streaming Data Support

- Apache Druid: Druid has native support for streaming data platforms like Kafka and Kinesis, enabling direct ingestion from these sources and offering real-time visibility into data as it streams in.
- Snowflake: Snowflake supports streaming data through tools like Snowpipe, but it works better with batch data loading or micro-batch processing. Its streaming capabilities are generally less mature and lower-performing compared to Druid’s real-time streaming ingestion.

Advantage: Druid has stronger native streaming data support and is a better fit for real-time analytics from event streams.

(e) Low-Latency Aggregations

- Apache Druid: Druid excels in performing low-latency aggregations on event data, making it ideal for use cases that require real-time metrics, summaries, and rollups. For instance, it’s widely used in monitoring, fraud detection, ad tech, and IoT, where data must be aggregated and queried in near real-time.
- Snowflake: While Snowflake can aggregate data, it is more optimized for batch-mode processing, where queries are run over large datasets. Performing continuous, real-time aggregations would require external tools and more complex architectures.

Advantage: Druid is better suited for real-time aggregations and rollups on streaming or event-driven data.

(f) High Cardinality Data Handling

- Apache Druid: Druid’s advanced indexing techniques, like bitmap indexes and sketches (e.g., HyperLogLog), allow it to efficiently handle high-cardinality data (i.e., data with many unique values). This is important for applications like ad tech where unique user IDs, URLs, or click events are frequent.
- Snowflake: Snowflake performs well with high-cardinality data in large-scale analytical queries, but its query execution model is generally more suited to aggregated batch processing rather than fast, high-cardinality lookups and filtering in real time.

Advantage: Druid has better indexing for real-time queries on high-cardinality datasets.

(g) Real-Time Analytics for Operational Use Cases

- Apache Druid: Druid was built to serve operational analytics use cases where real-time visibility into systems, customers, or events is critical. Its ability to handle fast-changing data and return instant insights makes it ideal for powering monitoring dashboards, business intelligence tools, or real-time decision-making systems.
- Snowflake: Snowflake is an excellent data warehouse for historical and batch-oriented analytics but is not optimized for operational or real-time analytics where immediate insights from freshly ingested data are needed.

Advantage: Druid is better suited for operational analytics and real-time, event-driven systems.

(h) Cost-Effectiveness for Real-Time Workloads

- Apache Druid: Druid’s open-source nature means there are no licensing fees, and you only pay for the infrastructure it runs on (if you use a managed service or deploy it on the cloud). For organizations with significant real-time analytics workloads, Druid can be more cost-effective than cloud-based data warehouses, which charge based on storage and query execution.
- Snowflake: Snowflake’s pricing is based on compute and storage usage, with charges for data loading, querying, and storage. For continuous, high-frequency querying (such as real-time dashboards), these costs can add up quickly.

Advantage: Druid can be more cost-effective for real-time analytics, especially in high-query environments with constant data ingestion.

(i) Schema Flexibility and Semi-Structured Data Handling

- Apache Druid: Druid supports schema-on-read and is highly flexible in terms of handling semi-structured data such as JSON or log formats. This flexibility is particularly useful for use cases where the schema may evolve over time or when working with less structured data types.
- Snowflake: Snowflake also handles semi-structured data like JSON, but it requires more structured schema management compared to Druid’s flexible schema handling, which makes Druid more adaptable to changes in data format or structure.

Advantage: Druid offers greater schema flexibility for semi-structured data and evolving datasets.

(j) Open-Source and Vendor Independence

- Apache Druid: Druid is open-source, which gives users full control over deployment, management, and scaling without being locked into a specific vendor. This makes it a good choice for organizations that want to avoid vendor lock-in and have the flexibility to self-manage or choose different cloud providers.
- Snowflake: Snowflake is a proprietary, cloud-based data warehouse. While Snowflake offers excellent cloud capabilities, users are tied to Snowflake’s platform and pricing model, which may not be ideal for organizations preferring more control or customization in their infrastructure.

Advantage: Druid provides more freedom and control as an open-source platform, allowing for vendor independence.

When to Choose Apache Druid over Snowflake

Real-Time Streaming Analytics: If your use case involves high-frequency event data or real-time streaming analytics (e.g., user behavior tracking, IoT sensor data, or monitoring dashboards), Druid is a better fit.
Interactive, Low-Latency Queries: For interactive dashboards requiring fast response times, especially with frequently updated data, Druid’s sub-second query performance is a significant advantage.
Time-Series and Event-Driven Data: Druid’s architecture is designed for time-series data, making it superior for analyzing log data, time-stamped events, and similar data.
Operational Analytics: Druid excels in operational analytics where real-time data ingestion and low-latency insights are needed for decision-making.
Cost-Effective Real-Time Workloads: For continuous real-time querying and analysis, Druid’s cost structure may be more affordable compared to Snowflake’s compute-based pricing.

Data Ingestion, Data Processing, and Data Querying

Apache Druid

Data Ingestion and Data Processing

Apache Druid is a high-performance real-time analytics database designed for fast querying of large datasets. One common use case is ingesting a CSV file into Druid to enable interactive analysis. In this guide, we will walk through each step to upload a CSV file to Apache Druid, covering both the Druid Console and the ingestion configuration details.

Note: We have used the default configuration settings that come with the trial edition of Apache Druid and Snowflake for this exercise. Results may vary depending on the configuration of the applications.

Prerequisites:

(a) Ensure your CSV file is:

- Properly formatted, with headers in the first row.
- Clean of inconsistencies (e.g., missing data or malformed values).
- Stored locally or accessible via a URL if uploading from a remote location.

(b) Launch the Apache Druid Console.

(d) Open the Druid Console by navigating to its URL (default: http://localhost:8888).

(e) Load Data: Select the Datasources Grid.

Create a New Data Ingestion Task

(a) Navigate to the Ingestion Section:

- In the Druid Console, click on Data in the top navigation bar.
- Select Load data to start a new ingestion task.

(b) Choose the Data Source:

- Select Local disk if the CSV file is on the same server as the Druid cluster.
- Select HTTP(s) if the file is accessible via a URL.
- Choose Amazon S3, Google Cloud Storage, or other options if the file is stored in a cloud storage service.

(c) Upload or Specify the File Path:

- For local ingestion: Provide the absolute path to the CSV file.
- For HTTP ingestion: Enter the file’s URL.

(d) Start a New Batch Spec: We are using a new file for processing.

(e) Connect and parse raw data: Select Local Disk option.

(f) Specify the Data: Select the base directory of the file and choose the file type you are using to process.

File Format:
- Select CSV as the file format.
- If your CSV uses a custom delimiter (e.g., ;), specify it here.
Parse Timestamp Column:
- Druid requires a timestamp column to index the data.
- Select the column containing the timestamp (e.g., timestamp).
- Specify the timestamp format if it differs from ISO 8601 (e.g., yyyy-MM-dd HH:mm:ss).
Preview Data:
- The console will show a preview of the parsed data.
- Ensure that all columns are correctly identified.

(g) Connect: Connect details.

(h) Parse Data: At this stage, you should be able to see the data in Druid to parse it.

(i) Parse Time: At this stage, you should be able to see the data in Druid to parse the time details.

(j) Transform: At this stage, Druid allows you to perform some fundamental Transformations.

(k) Filter: At this stage, Druid allows you to apply the filter conditions to your data.

(l) Configure Schema: At this stage, we are configuring the Schema details about the file that we had uploaded to the Druid.

Define Dimensions and Metrics:
- Dimensions are fields you want to filter or group by (e.g., category).
- Metrics are fields you want to aggregate (e.g., value).
Primary Timestamp:
- Confirm the primary timestamp field.
Partitioning and Indexing:
- Select a time-based partitioning scheme, such as day or hour.
- Choose indexing options like bitmap or auto-compaction if needed.

(m) Partition: At this stage, Druid allows you to configure the Date specific granularity details.

(n) Tune:

- Max Rows in Memory:
  - Specify the maximum number of rows to store in memory during ingestion.
- Segment Granularity:
  - Define how data is divided into segments (e.g., daily, hourly).
- Partitioning and Indexing:
  - Configure the number of parallel tasks for ingestion if working with large datasets.

(o) Publish:

(p) Edit Spec:

(q) Submit Task:

1. Generate the Ingestion Spec:
  - Review the auto-generated ingestion spec JSON in the console.
  - Edit the JSON manually if you need to add custom configurations.
2. Submit the Task:
  - Click Submit to start the ingestion process.

(r) Monitor the Ingestion Process:

1. Navigate to the Tasks section in the Druid Console.
2. Monitor the progress of the ingestion task.
3. If the task fails, review the logs for errors, such as incorrect schema definitions or file path issues.

Processing a CSV data load of 1 Million data in 33 sec.

Data Querying

Query the Ingested Data

1. Navigate to the Query Tab:
  - In the Druid Console, go to Query and select your new data source.
2. Write and Execute Queries:
  - Use Druid SQL or the native JSON query language to interact with your data.

Example SQL Query:

Query Performance for querying and rendering of 1 million rows is 15 ms.

1. Visualize Results:

- - View the query results directly in the console or connect Druid to a visualization tool like Apache Superset. In our upcoming blog we will see how to visualize this ingested data using Apache Superset. Meanwhile In our previous blog, Exploring Apache Druid: A High-Performance Real-Time Analytics Database, and Apache Druid Integration with Apache Superset we discussed Apache Druid in more detail. In case you have missed it, it is recommended that you read it before continuing the Apache Druid blog series. In this blog, we talk about integrating Apache Superset and Apache Druid.

Uploading data sets to Apache Druid is a straightforward process, thanks to the intuitive Druid Console. By following these steps, you can ingest your data, configure schemas, and start analyzing it in no time. Whether you’re exploring business metrics, performing real-time analytics, or handling time-series data, Apache Druid provides the tools and performance needed to get insights quickly.

Snowflake

2. Upload the CSV file to the Server.

3. The uploaded “customer.csv” file has 1 Million data rows and the size of the file is around 166 MB.

4. Specify the Snowflake Database.

5. Specify the Snowflake Table.

6. The CSV data is being processed into the specified Snowflake Database and table.

7. Snowflake allows us to format or edit the metadata information before loading the data into Snowflake DB. Update the details as per the data and click on the Load button.

8. Snowflake successfully loaded customer data. Snowflake has taken 45 sec to process the CSV data. Snowflake has taken 12+ seconds compared to Apache Druid to load, transform, and process 1 Million records.

9. Query Performance for rendering 1 million rows is 20 ms. Snowflake took 5+ seconds compared to Apache Druid for querying 1 Million records.

Conclusion

While Snowflake is a powerful, cloud-native data warehouse with strengths in batch processing, historical data analysis, and complex OLAP queries, Apache Druid stands out in scenarios where real-time, low-latency analytics are needed. Druid’s open-source nature, time-series optimizations, streaming data support, and operational focus make it the better choice for real-time analytics, event-driven applications, and fast, interactive querying on large datasets.

Apache Druid FAQ

What is Apache Druid used for?

Apache Druid is used for real-time analytics and fast querying of large-scale datasets. It's particularly suitable for time-series data, clickstream analytics, operational intelligence, and real-time monitoring.

What are Druid’s ingestion methods?

Druid supports:

Streaming ingestion: Data from Kafka, Kinesis, etc., is ingested in real time.
Batch ingestion: Data from Hadoop, S3, or other static sources is ingested in batches.

How does Druid achieve fast queries?

Druid uses:

Columnar storage: Optimizes storage for analytic queries.
Advanced indexing: Bitmap and inverted indexes speed up filtering and aggregation.
Distributed architecture: Spreads query load across multiple nodes.

Can Druid handle transactional data (OLTP)?

No. Druid is optimized for OLAP (Online Analytical Processing) and is not suitable for transactional use cases.

How does Druid manage data storage?

Data is segmented into immutable chunks and stored in Deep Storage (e.g., S3, HDFS).
Historical nodes cache frequently accessed segments for faster querying.

What query languages does Druid support?

SQL: Provides a familiar interface for querying.
Native JSON-based query language: Offers more flexibility and advanced features.

What are the core components of Apache Druid?

Broker: Routes queries to appropriate nodes.
Historical nodes: Serve immutable data.
MiddleManager: Handles ingestion tasks.
Overlord: Coordinates ingestion processes.
Coordinator: Manages data availability and balancing.

What integrations does Druid support?

Druid integrates with tools like:

Apache Superset
Tableau
Grafana
Stream ingestion tools (Kafka, Kinesis)
Batch processing frameworks (Hadoop, Spark)

Is Apache Druid free to use?

Yes, it’s open-source and distributed under the Apache License 2.0.

What are some alternatives to Apache Druid?

Alternatives include:

ClickHouse
Elasticsearch
BigQuery
Snowflake

Whether you're exploring real-time analytics or need help getting started, feel free to reach out!

Watch the Apache Blog Series

Stay tuned for the upcoming Apache Blog Series:

Exploring Apache Druid: A High-Performance Real-Time Analytics Database
Unlocking Data Insights with Apache Superset
Streamlining Apache HOP Workflow Management with Apache Airflow
Comparison of and migrating from Pentaho Data Integration PDI/ Kettle to Apache HOP
Apache Druid Integration with Apache Superset
Why choose Apache Druid over Vertica
Why choose Apache Druid over Snowflake
Why choose Apache Druid over Google Big Query
Integrating Apache Druid with Apache Superset for Realtime Analytics

Proactive Alerting for Cloud Applications using Grafana

January 17, 2025

by Axxonet Devops

When to Use Grafana and How to Set Up Alerting in Grafana

Alerting now has become critical. As monitoring gives one an overview of the system, alerting is a near-real-time alert and notification system that immediately notifies the team regarding the occurrence of an issue in time to take some quick action before things go bad. For example, suppose a server uses more than its expected CPU usage. In that case, an alert will alert the team to address the matter before it leads to downtime or performance degradation. In short, alerting allows you to preclude problems that have a big impact on your system or business.

In this article, we will discuss the basic role of alerting in a monitoring system and exactly how alerting works inside Grafana, one of the powerful open-source tools for monitoring and visualization. After briefly discussing the importance of monitoring and alerting, we’ll guide you through the steps to set up alerting in Grafana.

Importance of Alerting in Monitoring Systems

Monitoring is the process of continuously collecting data from various parts of the system and understanding it over a while to trace patterns or anomalies. It helps in capacity planning, exhibits performance bottlenecks, and guides optimization efforts by showing a whole picture of health without initiating action. Instead of this, alerting is an active response mechanism that informs the teams when certain conditions or thresholds have been met; the objective being keeping the teams informed of problems as they occur.

Main Differences

Objectives: Monitoring is concerned with long-term data collection and analysis while alerting is directed at the immediate need for issue detection and response.

Timing: Monitoring is always on, capturing data at all times, while alerts are event-driven, which means they become effective only when certain conditions are met.

Key Benefits of Alerts

Continuous Monitoring Without Human Intervention: The alerts automate the process, ensuring that issues are flagged without constant human oversight.

Real-Time Update-Alerts: It is based on predefined conditions to send instant notifications and thus, ensure rapid responses to critical changes. The right people get notified and thus ensure proper escalations are managed.

Types of Alerts

Threshold-Based Alerts: Threshold-based alerts are identified based on definite thresholds, such as which could raise an alert when the CPU exceeds 90%.

Anomaly Detection Alerts: Intended to track and look for unusual patterns or behaviours that might not be detected using typical thresholds.

Event-Based Alerts: These alerts react to critical events, such as the failure of an application process or missing critical data; thus, teams are alerted to important occurrences.

Setting Up Alerting in Grafana (Step-by-Step Guide)

Prerequisites to Setup Alerts

Before you can have alerts working in Grafana, you need to have the environment set up just as outlined below:

Data Source Integration: You will need a data source integrated with Grafana; some examples of sources are Prometheus. Alerts work based on the time-series data retrieved from such sources.

Understanding Alert Rules: An alert rule is a query that checks the state of a defined metric and determines whether an alert should be triggered given certain predefined conditions.

Step1: Login to Grafana with the required credentials

Step2: Create a new dashboard or open an existing dashboard where the notification alert needs to be setup

Steps to Create Alerts

Step 1: Create a Panel for Visualization

Add New Panel: First, add a new panel to your Grafana dashboard where you will visualize the metric that you are going to monitor.

Select Visualization Type: From the list, pick a visualization type that best fits either a Graph or Singlestat based on what sort of data you wish to monitor.

Step 2: Configure Alert

Alerting Menu Access: Navigate to the Alerting section from the menu.

New Alert Rule: From the subsection under Alerting, you click New Alert Rule to start the process of setting up an alert.

Data Source: Under the list of choices for a data source select such as Prometheus.

Write the Query: Type the query that fetches the metric you need to monitor. Be sure the query accurately reflects the condition you need to monitor.

Set the Threshold: How to check the input, i.e. whether the value is above a certain value, or similar. You could choose this condition as “is above” with a threshold value (for example, 80 for CPU usage).

Enter Values for Alerting Rule Options

Name: Give the rule a descriptive name for the alert, like “High CPU Usage Alert”.

Alert Conditions: Define a query that specifies the conditions under which the alert should be triggered.

Alert Evaluation Behavior: Select how frequently to check the alert (in this case, every 5 minutes).

Labels and Notifications: Add relevant tags to help categorize your alerts, such as environment or service. Describe the action instructions for the alert message that will go out once the alert is triggered. Include some background information regarding the issue so it can be easily recognized.

Include Contact Information: Determine the contact information where the alert notifications are to be delivered, such as email, Slack, or Google Chat/Hangout, PagerDuty & Webhooks. Remember, you’ll have to set up the notification channels in Grafana beforehand. In the URL section attach the Web hook of the above channels where you want to get notified.

Step 3: Testing your Alerts

Test the Alert: Use the testing feature in Grafana to test if your alert configuration is properly set. Thus, you will be reassured that under well-defined conditions, alerting works.

Step 4: Finalize the Alert

Save Alert: When all the settings for configuring are made, you can save the alert rule created by clicking Save.

Enable Alert: Finally, ensure to enable the alert so it can start monitoring for the defined conditions.

Conclusion

Alerting is one of the most important features of a modern monitoring system, that can enable teams to be able to respond to issues at their earliest sign rather than allowing them to spin out of control. With proper alert definitions integrated with monitoring, organizations can avoid more downtime, increase reliability, and make all these complex systems work flawlessly.

Alerts in Grafana must be actional and should not be vague. Avoid the over-complication of rules on alerts. Regularly update the alerts since the infrastructure and environments are always in the update, it has to be properly grouped and prioritized, and advance notification options like webhooks or third-party tools.

In this post, we focused on how Grafana excels at detailed alert settings and is suitable for monitoring metrics of the system, complementing tools like Uptime Kuma, which is good for simple service uptime tracking. In the following release, we dig deeper into Uptime Kuma, examining it in much more depth, then, of course, showing its setup from the ground up. Stay tuned to find out how these two tools can work together to create a seamless, holistic monitoring and alerting strategy.

Have questions about Grafana, alerting, or optimizing your monitoring setup? Our team is here to assist

Frequently Asked Questions (FAQs)

What is the purpose of configuring notification alerts in Grafana?

The purpose of configuring notification alerts is to ensure timely awareness of issues in your systems by monitoring specific metrics. Alerts allow you to proactively respond to potential problems, reducing downtime and enhancing system performance.

How do I access Grafana to start configuring alerts?

You can access Grafana by logging in with the required credentials. If you don't have an account, you'll need to create one or request access from your administrator.

Can I set up alerts on an existing dashboard, or do I need to create a new one?

You can set up alerts on both existing dashboards and new ones. Simply open the dashboard where you want to configure the alert or create a new dashboard if needed.

What types of visualization can I use when setting up an alert?

You can use various visualization types, such as Graph or Singlestat, depending on how you want to display the metric you're monitoring.

How do I select the data source for my alert?

In the alerting section under "Rules," select "New Alert Rule" and choose your data source (e.g., Prometheus, InfluxDB) when writing the query to retrieve the metric you want to monitor.

How do I define the alert conditions?

You can define alert conditions by specifying when the alert should trigger based on your chosen metric. This could be when the metric crosses a certain threshold or remains above or below a specific value for a defined duration.

What is the importance of setting a threshold value?

Setting a threshold value determines the specific point at which an alert will be triggered, allowing you to control when you are notified of potential issues based on the behaviour of the monitored metric.

Can I customize the alert messages?

Yes, you can customize the alert messages by setting annotations in the alerting rule. This allows you to tailor the content of the notification that will be sent when the alert is triggered.

How do I configure where the alert notifications will be sent?

You can set contact points for notifications, such as Email, Hangouts, Slack, PagerDuty, or Webhooks. Attach the webhook URL for the channel where you want to receive alerts.

Why is it important to test the alert before saving it?

Testing the alert with the "Test Rule" button allows you to simulate the alert and see how it would behave under current conditions, ensuring the configuration works as expected before saving.

What is server monitoring and why is it important?

Server monitoring involves tracking the performance and health of servers to ensure they are running efficiently and to quickly identify and resolve any issues. It is important because it helps prevent downtime, ensures optimal performance, and maintains the reliability of services.

How does Grafana help in server monitoring?

Grafana provides real-time insights into server metrics such as CPU usage, memory utilization, network traffic, and disk activity. It offers customizable dashboards and visualization options to help interpret data and spot anomalies quickly.

How are alerts managed in this monitoring setup?

Alerts are configured in Grafana with custom rules and thresholds. Integrating with Google Chat, the system sends immediate notifications to the relevant team members when any anomalies or performance issues arise.

What tools are used for data collection in this monitoring setup?

Node-exporter and Prometheus are used for data collection. Node-exporter gathers system-level metrics, while Prometheus stores these metrics and provides querying capabilities.

What metrics can I monitor with Grafana?

Grafana can monitor a wide range of metrics, including CPU usage, memory utilization, disk I/O, network traffic, application response times, and custom application metrics defined through various data sources.

Can I integrate Grafana with third-party applications?

Yes, Grafana supports integration with numerous third-party applications and services, including notification channels like Slack, Microsoft Teams, PagerDuty, and more, enhancing its alerting capabilities.

How frequently does Grafana collect data from the data sources?

The data collection frequency can vary based on the configuration of the data source (like Prometheus) and the specific queries you set up. You can typically configure scrape intervals in your Prometheus setup.

Is it possible to share Grafana dashboards with team members?

Yes, Grafana allows you to share dashboards with team members via direct links, snapshots, or by exporting them. You can also set permissions to control who can view or edit the dashboards.

What should I do if I encounter issues while setting up alerts?

If you encounter issues, check the Grafana logs for error messages, review your alert configurations, and ensure that your data sources are properly connected. The Grafana community and documentation are also valuable resources for troubleshooting.

Can I set up alerts based on multiple metrics?

Yes, Grafana allows you to create complex alert conditions based on multiple metrics using advanced queries. You can combine metrics in a single alert rule to monitor related conditions.

How does Grafana handle downtime of data sources?

If a data source goes down, Grafana will typically show an error or a warning on the dashboard. Alerts configured with that data source may also fail to trigger until the connection is restored.

Can I use Grafana for historical data analysis?

Yes, Grafana allows you to visualize historical data by querying data sources that store time-series data, such as Prometheus. You can create dashboards that analyze trends over time.

What are annotations in Grafana, and how are they used?

Annotations are markers added to graphs in Grafana to indicate significant events or changes. They can provide context for data trends and help identify when specific incidents occurred.

What is the difference between alerts and notifications in Grafana?

Alerts are conditions set to monitor specific metrics and trigger under certain circumstances, while notifications are the messages sent out when those alerts are triggered, informing users of the situation.

Can I customize the Grafana user interface?

Yes, Grafana offers some customization options for its UI, including themes and layout adjustments. You can also configure dashboard variables to create dynamic and user-friendly interfaces.

Is there a way to automate Grafana dashboard creation?

Yes, you can use Grafana's API to programmatically create and manage dashboards, allowing for automation in scenarios such as CI/CD pipelines or large-scale deployments.

What resources are available for learning more about Grafana?

Grafana offers extensive documentation, tutorials, and community forums. Additionally, there are many online courses and video tutorials available to help users learn the platform.

Apache Druid Integration with Apache Superset

January 16, 2025

by Axxonet Analytics

Introduction

In our previous blog, Exploring Apache Druid: A High-Performance Real-Time Analytics Database, we discussed Apache Druid in more detail. In case you have missed it, it is recommended that you read it before continuing the Apache Druid blog series. In this blog, we talk about integrating Apache Superset and Apache Druid.

Apache Superset and Apache Druid are both open-source tools that are often used together in data analytics and business intelligence workflows. Here’s an overview of each and their relationship.

Apache Superset

Apache Superset is an open-source data exploration and visualization platform developed by Airbnb, it was later donated to the Apache Software Foundation. It is now a top-level Apache project, widely adopted across industries for data analytics and visualization.

Type: Data visualization and exploration platform.
Purpose: Enables users to create dashboards, charts, and reports for data analysis.
Features:
1. User-friendly interface for querying and visualizing data.
2. Wide variety of visualization types (charts, maps, graphs, etc.).
3. SQL Lab: A rich SQL IDE for writing and running queries.
4. Extensible: Custom plugins and charts can be developed.
5. Role-based access control and authentication options.
6. Integrates with multiple data sources, including databases, warehouses, and big data engines.
Use Cases:
1. Business intelligence (BI) dashboards.
2. Interactive data exploration.
3. Monitoring and operational analytics.

Apache Druid

Type: Real-time analytics database.
Purpose: Designed for fast aggregation, ingestion, and querying of high-volume event streams.
Features:
1. Columnar storage format: Optimized for analytic workloads.
2. Real-time ingestion: Can process and make data available immediately.
3. Fast queries: High-performance query engine for OLAP (Online Analytical Processing).
4. Scalability: Handles massive data volumes efficiently.
5. Support for time-series data: Designed for datasets with a time component.
6. Flexible data ingestion: Supports batch and streaming ingestion from sources like Kafka, Hadoop, and object stores.
Use Cases:
1. Real-time dashboards.
2. Clickstream analytics.
3. Operational intelligence and monitoring.
4. Interactive drill-down analytics.

How They Work Together

Integration: Superset can connect to Druid as a data source, enabling users to visualize and interact with the data stored in Druid.
Workflow:
1. Data Ingestion: Druid ingests large-scale data in real-time or batches from various sources.
2. Data Querying: Superset uses Druid’s fast query capabilities to retrieve data for visualizations.
3. Visualization: Superset presents the data in user-friendly dashboards, allowing users to explore and analyze it.

Key Advantages of Using Them Together

Speed: Druid’s real-time and high-speed querying capabilities complement Superset’s visualization features, enabling near real-time analytics.
Scalability: The combination is suitable for high-throughput environments where large-scale data analysis is needed.
Flexibility: Supports a wide range of analytics use cases, from real-time monitoring to historical data analysis.

Use Cases of Apache Druid and Apache Superset

Fraud Detection: Analyzing transactional data for anomalies.
Real-Time Analytics: Monitoring website traffic, application performance, or IoT devices in real-time.
Operational Intelligence: Tracking business metrics like revenue, sales, or customer behaviour.
Clickstream Analysis: Analyzing user interactions and behaviour on websites and apps.
Log and Event Analytics: Parsing and querying log files or event streams.

Importance of Integrating Apache Druid with Apache Superset

Integrating Apache Druid with Apache Superset opens quite a few doors for the organization to really address high-scale data analysis and interactive visualization needs. Here’s why this combination is so powerful:

High-Performance Analytics:

Druid’s Speed: Apache Druid optimizes low-latency queries and fast aggregation and is designed with large datasets in mind. That can be huge because quick response means Superset can deliver good, reusable, production-quality representations.

Real-Time Data: Druid supports real-time data ingestion, allowing Superset dashboards to visualise near-live data streams, making it suitable for monitoring and operational analytics.

Advanced Query Capabilities:

Complex Aggregations: Druid’s ability to handle complex OLAP-style aggregations and filtering ensures that Superset can provide rich and detailed visualizations.

Native Time-Series Support: Druid’s in-built time-series functionalities allow seamless integration for Superset’s time-series charts and analysis.

Scalability:

Designed for Big Data: Druid is highly scalable and can manage billions of rows in an efficient manner. Together with Superset, it helps dashboards scale easily for high volumes of data.

Distributed Architecture: Being by nature distributed, Druid ensures reliable performance of Superset even when it’s under high loads or many concurrent user sessions.

Simplified Data Exploration:

Columnar Storage: This columnar storage format on Druid greatly accelerates the exploratory data analysis of Superset since it supports scans of selected columns efficiently.

Pre-Aggregated Data: Superset can avail use from the roll-up and pre-aggregation mechanisms in Druid for reducing query cost as well as improving the visualization performance.

Flawless Integration:

Incorporated Connector: Superset is natively integrated with Druid. Therefore, there would not be any hassle regarding implementing it. It lets users query Druid directly and curate dashboards using minimal configuration. Moreover, non-technical users can also perform SQL-like queries (Druid SQL) within the interface.

Advanced Features:

Granular Access Control: When using Druid with Superset, it is possible to enforce row-level security and user-based data access, ensuring that sensitive data is only accessible to authorized users.

Segment-Level Optimization: Druid’s segment-based storage enables Superset to optimize queries for specific data slices.

Cost Efficiency:

Efficient Resource Utilization: Druid’s architecture minimizes storage and compute costs while providing high-speed analytics, ensuring that Superset dashboards run efficiently.

Real-Time Monitoring and BI:

Operational Dashboards: In the case of monitoring systems, website traffic, or application logs, Druid’s real-time capabilities make the dashboards built in Superset very effective for real-time operational intelligence.

Streaming Data Support: Druid supports ingesting stream-processing-enabled data sources; for example, Kafka’s ingestion is supported. This enables Superset to visualize live data with minimal delay.

Prerequisites

The Superset Docker Container or instance should be up and running.
Installation of pydruid in Superset Container or instance.

Installing PyDruid

1. Enable Druid-Specific SQL Queries

PyDruid is the Python library that serves as a client for Apache Druid. This allows Superset to:

Run Druid SQL queries as efficiently as possible.
Access Druid’s powerful querying capabilities directly from Superset’s SQL Lab and dashboards.
Without this client, Superset will not be able to communicate with the Druid database, which consequently results in partial functionality or functionality at large

2. Native Connection Support

Superset is largely dependent upon PyDruid for:

Seamless connections to Apache Druid.
Translate Superset queries into Druid-native SQL or JSON that the Druid engine understands.

3. Efficient Data Fetching

PyDruid optimizes data fetching from Druid by

Managing the query API of Druid in regards to aggregation, filtering, and time-series analysis
Reducing latency due to better management of connections and responses

4. Advanced Visualization Features

Many features of advanced visualization available in Superset (like time-series charts and heat maps) depend on Druid’s capabilities, which PyDruid enables. It also exposes to Superset Druid’s granularity, time aggregation and access to complex metrics pre-aggregated in Druid.

5. Integration with Superset’s Druid Connector

The Druid connector in Superset relies on PyDruid as a dependency to:

Register Druid as a data source.
Allow Superset users the capability to query and visually explore Druid datasets directly.
Without PyDruid the Druid connector in Superset will not work, limiting your ability to integrate Druid as a backend for analytics.

6. Data Discovery PyDruid Enables Superset to:

Fetch metadata from Druid, including schema, tables, and columns. Enable ad hoc exploration of Druid data in SQL Lab.

Apache Druid as a Data Source

Make sure your Druid database application is set up and working fine in the respective ports.

2. Install pydruid by logging into the container.

$ docker exec -it <superset_container_name> user=root /bin/bash

$ pip install pydruid

3. Once pydruid is installed, navigate to settings and click on database connections

4. Click on Add Database and select Apache Druid as shown in the screenshot below:

5. Here we have to enter the SQLALCHEMY URI. To learn more about the SQLALCHEMY rules please follow the below link.

https://superset.apache.org/docs/configuration/databases/

6. For Druid the SQLALCHEMY URI will be in the below format:

druid://<User>:<password>@<Host>:<Port-default-9088>/druid/v2/sql

Note:

druid://<User>:<password>@<Host>:<Port-default-9088>/druid/v2/sql

According to the Alchemy URI “<Port-default-9088>” the default ports will be “8888” or “8081”.

If the druid you have installed is running on http without any secure connection the Alchemy URI with the above rule will work without any issue.

Ex: druid://localhost:8888/druid/v2/sql/

If you have a secure connection normally druid://localhost:8888/druid/v2/sql/ will not work and provide an error.

Here we will understand that we have to provide a domain name instead of localhost if we have enabled a secured connection for the druid UI. So we will make the changes and enter the URI as below

druid://domain.name.com:8888/druid/v2/sql/. This will also not work.

According to other sources we have to make the changes like

druid+https://localhost:8888/druid/v2/sql/

druid+https://localhost:8888/druid/v2/sql/?ssl_verify=false

Neither of them will work

Normally once we enable a secured connection port HTTPS will be enabled to the site proxying the default ports of any of the other applications.

So if we enter the below SQL ALCHEMY URI as below

druid+https://domain.name.com:443/druid/v2/sql/?ssl=true

Superset will understand that the druid is enabled with a secured connection and running in the HTTPS port.

7. Since we have enabled the SSL to our druid application we have to enter the below SQLALCHEMY URI

druid+https://domain.name.com:443/druid/v2/sql/?ssl=true

and click on test connection.

8. Once we click on test connection the Apache superset will be integrated with the Apache druid and will be ready to be worked on.

In the upcoming articles, we will talk about the data ingestion and visualization of Apache Druid data in the Apache Superset.

Apache Druid FAQ

What is Apache Druid used for?

What are Druid’s ingestion methods?

Druid supports:

Streaming ingestion: Data from Kafka, Kinesis, etc., is ingested in real-time.
Batch ingestion: Data from Hadoop, S3, or other static sources is ingested in batches.

How does Druid achieve fast queries?

Druid uses:

Columnar storage: Optimizes storage for analytic queries.
Advanced indexing: Bitmap and inverted indexes speed up filtering and aggregation.
Distributed architecture: Spreads query load across multiple nodes.

Can Druid handle transactional data (OLTP)?

No. Druid is optimized for OLAP (Online Analytical Processing) and is not suitable for transactional use cases.

How does Druid manage data storage?

Data is segmented into immutable chunks and stored in Deep Storage (e.g., S3, HDFS).
Historical nodes cache frequently accessed segments for faster querying.

What query languages does Druid support?

SQL: Provides a familiar interface for querying.
Native JSON-based query language: Offers more flexibility and advanced features.

What are the core components of Apache Druid?

Broker: Routes queries to appropriate nodes.
Historical nodes: Serve immutable data.
MiddleManager: Handles ingestion tasks.
Overlord: Coordinates ingestion processes.
Coordinator: Manages data availability and balancing.

What integrations does Druid support?

Druid integrates with tools like:

Apache Superset
Tableau
Grafana
Stream ingestion tools (Kafka, Kinesis)
Batch processing frameworks (Hadoop, Spark)

Is Apache Druid free to use?

Yes, it’s open-source and distributed under the Apache License 2.0.

What are some alternatives to Apache Druid?

Alternatives include:

ClickHouse
Elasticsearch
BigQuery
Snowflake

Apache Superset FAQ

What is Apache Superset?

Apache Superset is an open-source data visualization and exploration platform. It allows users to create dashboards, charts, and interactive visualizations from various data sources.

What types of visualizations does Superset support?

Superset offers:

Line charts, bar charts, pie charts.
Geographic visualizations like maps.
Pivot tables, histograms, and heatmaps.
Custom visualizations via plugins.

What data sources can Superset connect to?

Superset supports:

Relational databases (PostgreSQL, MySQL, SQLite).
Big data engines (Hive, Presto, Trino, BigQuery).
Analytics databases (Apache Druid, ClickHouse).

Is Apache Superset a replacement for Tableau or Power BI?

Superset is a robust, open-source alternative to commercial BI tools. While it’s feature-rich, it may require more setup and development effort compared to proprietary solutions like Tableau.

What query languages does Superset support?

Superset primarily supports SQL for querying data. Its SQL Lab provides an environment for writing, testing, and running queries.

How does Superset handle user authentication?

Superset supports:

Database-based login.
OAuth, LDAP, OpenID Connect, and other SSO mechanisms.
Role-based access control (RBAC) for managing permissions.

How do I install Superset?

Superset can be installed using:

Docker: For containerized deployments.
Python pip: For a native installation in a Python environment.
Helm: For Kubernetes-based setups.

Can I use Superset with real-time data?

Yes. By integrating Superset with real-time analytics platforms like Apache Druid or streaming data sources, you can build dashboards that reflect live data.

What are Superset’s limitations?

Requires knowledge of SQL for advanced queries.
May not have the polish or advanced features of proprietary BI tools like Tableau.
Customization and extensibility require some development effort.

How does Superset handle performance?

Superset performance depends on:

The efficiency of the connected database or analytics engine.
The complexity of queries and visualizations.
Hardware resources and configuration.

Would you like further details on specific features or help setting up either tool? Reach out to us

Watch the Apache Blog Series

Stay tuned for the upcoming Apache Blog Series:

Exploring Apache Druid: A High-Performance Real-Time Analytics Database
Unlocking Data Insights with Apache Superset
Streamlining Apache HOP Workflow Management with Apache Airflow
Comparison of and Migrating from Pentaho Data Integration PDI/ Kettle to Apache HOP
Why choose Apache Druid over Vertica
Why choose Apache Druid over Snowflake
Why choose Apache Druid over Google Big Query

Exploring Apache Druid: A High-Performance Real-Time Analytics Database

September 27, 2024

by Axxonet Analytics

Introduction

Apache Druid is a distributed, column-oriented, real-time analytics database designed for fast, scalable, and interactive analytics on large datasets. It excels in use cases requiring real-time data ingestion, high-performance queries, and low-latency analytics.

Druid was originally developed to power interactive data applications at Metamarkets and has since become a widely adopted open-source solution for real-time analytics, particularly in industries such as ad tech, fintech, and IoT.

It supports batch and real-time data ingestion, enabling users to perform fast ad-hoc queries, power dashboards, and interactive data exploration.

In big data and real-time analytics, having the right tools to process and analyze large volumes of data swiftly is essential. Apache Druid, an open-source, high-performance, column-oriented distributed data store, has emerged as a leading solution for real-time analytics and OLAP (online analytical processing) workloads. In this blog post, we’ll delve into what Apache Druid is, its key features, and how it can revolutionize your data analytics capabilities. Refer to the official documentation for more information.

Apache Druid

Apache Druid is a high-performance, real-time analytics database designed for fast slice-and-dice analytics on large datasets. It was created by Metamarkets (now part of Snap Inc.) and is now an Apache Software Foundation project. Druid is built to handle both batch and streaming data, making it ideal for use cases that require real-time insights and low-latency queries.

Key Features of Apache Druid:

Real-Time Data Ingestion

Druid excels at real-time data ingestion, allowing data to be ingested from various sources such as Kafka, Kinesis, and traditional batch files. It supports real-time indexing, enabling immediate query capabilities on incoming data with low latency.

High-Performance Query Engine

Druid’s query engine is optimized for fast, interactive querying. It supports a wide range of query types, including Time-series, TopN, GroupBy, and search queries. Druid’s columnar storage format and advanced indexing techniques, such as bitmap indexes and compressed column stores, ensure that queries are executed efficiently.

Scalable and Distributed Architecture

Druid’s architecture is designed to scale horizontally. It can be deployed on a cluster of commodity hardware, with data distributed across multiple nodes to ensure high availability and fault tolerance. This scalability makes Druid suitable for handling large datasets and high query loads.

Flexible Data Model

Druid’s flexible data model allows for the ingestion of semi-structured and structured data. It supports schema-on-read, enabling dynamic column discovery and flexibility in handling varying data formats. This flexibility simplifies the integration of new data sources and evolving data schemas.

Built-In Data Management

Druid includes built-in features for data management, such as automatic data partitioning, data retention policies, and compaction tasks. These features help maintain optimal query performance and storage efficiency as data volumes grow.

Extensive Integration Capabilities

Druid integrates seamlessly with various data ingestion and processing frameworks, including Apache Kafka, Apache Storm, and Apache Flink. It also supports integration with visualization tools like Apache Superset, Tableau, and Grafana, enabling users to build comprehensive analytics solutions.

Use Cases of Apache Druid

Real-Time Analytics

Druid is used in real-time analytics applications where the ability to ingest and query data in near real-time is critical. This includes monitoring applications, fraud detection, and customer behavior tracking.

Ad-Tech and Marketing Analytics

Druid’s ability to handle high-throughput data ingestion and fast queries makes it a popular choice in the ad tech and marketing industries. It can track user events, clicks, impressions, and conversion rates in real time to optimize campaigns.

IoT Data and Sensor Analytics

IoT applications produce time-series data at high volume. Druid’s architecture is optimized for time-series data analysis, making it ideal for analyzing IoT sensor data, device telemetry, and real-time event tracking.

Operational Dashboards

Druid is often used to power operational dashboards that provide insights into infrastructure, systems, or applications. The low-latency query capabilities ensure that dashboards reflect real-time data without delay.

Clickstream Analysis

Organizations leverage Druid to analyze user clickstream data on websites and applications, allowing for in-depth analysis of user interactions, preferences, and behaviors in real time.

The Architecture of Apache Druid

Apache Druid follows a distributed, microservice-based architecture. The architecture allows for scaling different components based on the system’s needs.

The main components are:

Coordinator and Overlord Nodes

Coordinator Node: Manages data availability, balancing the distribution of data across the cluster, and overseeing segment management (segments are the basic units of storage in Druid).
Overlord Node: Responsible for managing ingestion tasks. It works with the middle managers to schedule and execute data ingestion tasks, ensuring that data is ingested properly into the system.

Historical Nodes

Historical nodes store immutable segments of historical data. When queries are executed, historical nodes serve data from the disk, which allows for low-latency and high-throughput queries.

MiddleManager Nodes

MiddleManager nodes handle real-time ingestion tasks. They manage tasks such as ingesting data from real-time streams (like Kafka), transforming it, and pushing the processed data to historical nodes after it has persisted.

Broker Nodes

The broker nodes route incoming queries to the appropriate historical or real-time nodes and aggregate the results. They act as the query routers and perform query federation across the Druid cluster.

Query Nodes

Query nodes are responsible for receiving, routing, and processing queries. They can handle a variety of query types, including SQL, and route these queries to other nodes for execution.

Deep Storage

Druid relies on an external deep storage system (such as Amazon S3, Google Cloud Storage, or HDFS) to store segments of data permanently. The historical nodes pull these segments from deep storage when they need to serve data.

Metadata Storage

Druid uses an external relational database (typically PostgreSQL or MySQL) to store metadata about the data, including segment information, task states, and configuration settings.

Advantages of Apache Druid

Sub-Second Query Latency: Optimized for high-speed data queries, making it perfect for real-time dashboards.
Scalability: Easily scales to handle petabytes of data.
Flexible Data Ingestion: Supports both batch and real-time data ingestion from multiple sources like Kafka, HDFS, and Amazon S3.
Column-Oriented Storage: Efficient data storage with high compression ratios and fast retrieval of specific columns.
SQL Support: Familiar SQL-like querying capabilities for easy data analysis.
High Availability: Fault-tolerant and highly available due to data replication across nodes.

Getting Started with Apache Druid

Installation and Setup

Setting up Apache Druid involves configuring a cluster with different node types, each responsible for specific tasks:

Master Nodes: Oversee coordination, metadata management, and data distribution.
Data Nodes: Handle data storage, ingestion, and querying.
Query Nodes: Manage query routing and processing.

You can install Druid using a package manager, Docker, or by downloading and extracting the binary distribution. Here’s a brief overview of setting up Druid using Docker:

Download the Docker Compose File:
$curl -O https://raw.githubusercontent.com/apache/druid/master/examples/docker-compose/docker-compose.yml
Start the Druid Cluster: $ docker-compose up
Access the Druid Console: Open your web browser and navigate to http://localhost:8888 to access the Druid console.

Ingesting Data

To ingest data into Druid, you need to define an ingestion spec that outlines the data source, input format, and parsing rules. Here’s an example of a simple ingestion spec for a CSV file:

JSON Code

{ “type”: “index_parallel”, “spec”: { “ioConfig”: { “type”: “index_parallel”, “inputSource”: { “type”: “local”, “baseDir”: “/path/to/csv”, “filter”: “*.csv” }, “inputFormat”: { “type”: “csv”, “findColumnsFromHeader”: true } }, “dataSchema”: { “dataSource”: “example_data”, “timestampSpec”: { “column”: “timestamp”, “format”: “iso” }, “dimensionsSpec”: { “dimensions”: [“column1”, “column2”, “column3”] } }, “tuningConfig”: { “type”: “index_parallel” } }}

Submit the ingestion spec through the Druid console or via the Druid API to start the data ingestion process.

Querying Data

Once your data is ingested, you can query it using Druid’s native query language or SQL. Here’s an example of a simple SQL query to retrieve data from the example_data data source:

SELECT __time, column1, column2, columnFROM example_dataWHERE __time BETWEEN ‘2023-01-01’ AND ‘2023-01-31’

Use the Druid console or connect to Druid from your preferred BI tool to execute queries and visualize data.

Conclusion

Apache Druid is a powerful, high-performance real-time analytics database that excels at handling large-scale data ingestion and querying. Its robust architecture, flexible data model, and extensive integration capabilities make it a versatile solution for a wide range of analytics use cases. Whether you need real-time insights, interactive queries, or scalable OLAP capabilities, Apache Druid provides the tools to unlock the full potential of your data. Explore Apache Druid today and transform your data analytics landscape. Apache Druid has firmly established itself as a leading database for real-time, high-performance analytics. Its unique combination of real-time data ingestion, sub-second query speeds, and scalability makes it a perfect choice for businesses that need to analyze vast amounts of time-series and event-driven data. With growing adoption across industries.

Need help transforming your real-time analytics with high-performance querying? Contact our experts today!

Watch the Apache Druid Blog Series

Stay tuned for the upcoming Apache Druid Blog Series:

Why choose Apache Druid over Vertica
Why choose Apache Druid over Snowflake
Why choose Apache Druid over Google Big Query
Integrating Apache Druid with Apache Superset for Realtime Analytics

Introduction

The Fundamental Distinctions

Overview of the Tools

What is SSIS?

What is Apache Hop?

Feature-by-Feature Comparison

1. Installation & Platform Support

2. Development Environment

Git integration in Apache Hop’s GUI

3. Transformations & Connectors

Apache Hop

Conclusion (Part 1)

What Is What-If Analysis?

Why Streamlit?

Why Companies Need Interactive What-If Tools

How We Use Streamlit to Build What-If Dashboards

Profitability Simulation Dashboard

Real Industry Use Cases

Architecture Overview

Deployment Options

Conclusion

References

Introduction

Manual Git Integration for CI/CD Process (Problem Statement)

Common Challenges in Pentaho Data Integration (PDI)

Birth of Apache Hop (Solution)

Impact of Git and CI/CD in Apache Hop

Why Use Git with Apache Hop?

Git Actions in Apache Hop GUI

Setting Up Git in Apache Hop GUI (CI/CD)

Prerequisites

Configure Git in Apache Hop

GitLab / GitHub Operation

Best Practices for Git in Apache Hop

Conclusion

Up Next

Official Links for Apache Hop and GitLab Integration

Other posts in the Apache HOP Blog Series

Introduction

Challenges in Log Monitoring

Swarmpit's Logging Features

Key Capabilities:

Accessing Logs in Swarmpit

Filtering and Searching Logs

Best Practices for Log Monitoring

Conclusion

Frequently Asked Questions (FAQs)

Introduction

Keycloak Overview

Architecture Diagram

Components:

Workflow:

Keycloak's Key Features

Prerequisites

Part 1: Keycloak Setup

Part 2: Integrating Keycloak with Grafana

Part 3: Integrating Keycloak with GitLab

Part 4: Integrating Keycloak with Jenkins

Conclusion

Frequently Asked Questions (FAQs)

Why Choose Grafana? A Comprehensive Alerting System Compared to Nagios, Datadog, Elastic Stack, and Splunk

What is Grafana?

Overview of Competing Tools

Nagios

Datadog

Elastic Stack (ELK)

Splunk

Grafana’s Alerting Features

Comparison of Alerting Systems

User Interface and Experience

Alert Configuration

Notification Flexibility

Scalability

Integration with Existing Systems

Conclusion

Frequently Asked Questions (FAQs)

Introduction

Snowflake

Apache Druid

When to Choose Apache Druid over Snowflake