otelagent

package module
v0.4.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 19, 2026 License: MIT Imports: 27 Imported by: 0

README

go-otel-agent

A production-ready, batteries-included OpenTelemetry observability library for Go applications. Provides distributed tracing, metrics, and structured logging with smart defaults — get full observability with just 3 environment variables.

Built for SigNoz, but works with any OpenTelemetry-compatible backend (Jaeger, Grafana Tempo, Datadog, etc.).

Features

  • Zero-config startup — Only 3 env vars required (OTEL_SERVICE_NAME, OTEL_SERVICE_NAMESPACE, OTEL_SERVICE_VERSION)
  • Full OpenTelemetry stack — Traces, metrics, and logs via OTLP (gRPC/HTTP)
  • Smart defaults — 50+ configuration values baked in as production-ready defaults
  • Datadog-level HTTP enrichment — Request/response headers, query params, body capture, exception events
  • Gin middleware — Direct span management with W3C propagation, HTTP enrichment, PII scrubbing, and metrics
  • GORM plugin — Lazy tracer provider with full SQL query text, db.namespace/db.user attributes, and stack traces on errors
  • Redis plugin — Automatic Redis operation tracing
  • AMQP plugin — RabbitMQ trace context propagation
  • Uber FX compatible — Lazy initialization solves FX lifecycle ordering (works with fx.Invoke + OnStart)
  • PII scrubbing — Automatic redaction of sensitive span attributes and HTTP data
  • HTTP PII scrubbing — Sensitive headers always redacted, query params and body patterns scrubbed
  • Health probes — Built-in health, readiness, and diagnostics endpoints
  • Route exclusion — Three-layer matcher (exact, prefix, glob) with default versioned health patterns
  • Noop safety — All providers return noop implementations when disabled (never nil, never panics)
  • Metric cardinality control — No user_id or error_message in metric attributes
  • Instrument caching — Metric instruments cached via sync.Map (no recreation per call)
  • ParentBased sampling — Ratio sampler always wrapped in ParentBased for correct distributed tracing
  • SigNoz Cloud support — Auth headers and TLS configuration for secured collectors
  • Graceful degradation — Exporter health tracking (healthy/degraded/unhealthy)
  • HTTP client instrumentation — Automatic tracing for outgoing HTTP requests with legacy semconv bridge for SigNoz External Call dashboard
  • OTel log bridge — Automatic zap-to-OTLP export via otelzap with native TraceID/SpanID correlation (Logs<->Traces linking)
  • SigNoz semconv bridge — Full new-to-legacy attribute bridge for DB queries (db.statement, db.system, db.operation, db.sql.table, net.peer.name, db.name) and HTTP external calls
  • Diagnostics endpoint — Runtime config inspection for debugging telemetry issues

Installation

go get github.com/RodolfoBonis/go-otel-agent@latest

Requires Go 1.24+.

Quick Start

Minimal Setup (3 lines + 3 env vars)
package main

import (
    "context"
    "log"

    otelagent "github.com/RodolfoBonis/go-otel-agent"
)

func main() {
    agent := otelagent.NewAgent(
        otelagent.WithServiceName("my-api"),
        otelagent.WithServiceNamespace("my-platform"),
        otelagent.WithServiceVersion("1.0.0"),
    )

    ctx := context.Background()
    if err := agent.Init(ctx); err != nil {
        log.Fatal(err)
    }
    defer agent.Shutdown(ctx)

    // Your application code here...
}

Or configure entirely via environment variables:

export OTEL_SERVICE_NAME=my-api
export OTEL_SERVICE_NAMESPACE=my-platform
export OTEL_SERVICE_VERSION=1.0.0

agent := otelagent.NewAgent()
With Gin HTTP Server
package main

import (
    "context"
    "log"

    otelagent "github.com/RodolfoBonis/go-otel-agent"
    "github.com/RodolfoBonis/go-otel-agent/integration/ginmiddleware"
    "github.com/gin-gonic/gin"
)

func main() {
    agent := otelagent.NewAgent(
        otelagent.WithServiceName("my-api"),
        otelagent.WithServiceNamespace("my-platform"),
        otelagent.WithServiceVersion("1.0.0"),
    )

    ctx := context.Background()
    if err := agent.Init(ctx); err != nil {
        log.Fatal(err)
    }
    defer agent.Shutdown(ctx)

    r := gin.Default()

    // Single middleware for traces + metrics + route exclusion
    r.Use(ginmiddleware.New(agent, "my-api"))

    // Health endpoints (excluded from tracing by default)
    r.GET("/health", ginmiddleware.HealthHandler(agent))
    r.GET("/ready", ginmiddleware.ReadinessHandler(agent))

    r.GET("/api/v1/users", func(c *gin.Context) {
        // Automatically traced and measured
        c.JSON(200, gin.H{"users": []string{"alice", "bob"}})
    })

    r.Run(":8080")
}
With Uber FX
package main

import (
    otelagent "github.com/RodolfoBonis/go-otel-agent"
    "github.com/RodolfoBonis/go-otel-agent/fxmodule"
    "go.uber.org/fx"
)

func main() {
    app := fx.New(
        fxmodule.ProvideWithConfiguration(
            otelagent.WithServiceName("my-api"),
            otelagent.WithServiceVersion("1.0.0"),
        ),
        // ... your modules
    )
    app.Run()
}

Package Structure

go-otel-agent/
├── agent.go                        # Agent lifecycle: NewAgent, Init, Shutdown, ForceFlush
├── config.go                       # Configuration with smart defaults + env var loading
├── options.go                      # Functional options: WithServiceName, WithEndpoint, etc.
├── errors.go                       # Sentinel errors
├── health.go                       # HealthCheck, ReadinessCheck, Diagnostics
├── noop.go                         # Noop tracer/meter (never nil)
├── config/
│   └── types.go                    # All configuration struct definitions
├── logger/
│   ├── logger.go                   # Zap-based logger with auto trace correlation + OTel log bridge
│   └── noop.go                     # NoopLogger for testing
├── provider/
│   ├── resource.go                 # OTel Resource builder
│   ├── trace.go                    # TracerProvider with ParentBased sampling
│   ├── metric.go                   # MeterProvider with OTLP exporter
│   ├── log.go                      # LoggerProvider with OTLP exporter
│   ├── scrub.go                    # PII scrubbing SpanProcessor
│   ├── http_scrubber.go            # HTTP-specific PII scrubber (headers, query, body)
│   └── exporter_health.go          # Exporter health tracking
├── helper/
│   ├── span.go                     # StartSpan, TraceFunction, TraceFunctionWithResult
│   ├── metric.go                   # RecordDuration, IncrementCounter, SetGauge (cached)
│   ├── baggage.go                  # SetBaggage, GetBaggage
│   ├── composite.go                # TraceAndMeasure (combined trace+metric)
│   ├── context.go                  # GetTraceID, GetSpanID, IsTracing
│   └── global.go                   # Trace, Measure, Count, Event, Error (global)
├── collector/
│   ├── collector.go                # MetricCollector orchestrator
│   ├── runtime.go                  # Go runtime metrics (memory, GC, goroutines)
│   ├── system.go                   # System metrics (connections, queues)
│   ├── performance.go              # Performance metrics (latency percentiles)
│   └── business.go                 # Business metrics (custom counters/gauges)
├── instrumentor/
│   ├── instrumentor.go             # Function tracing via reflection
│   ├── propagation.go              # W3C trace context propagation
│   └── httpclient.go               # NewOTelTransport + InstrumentHTTPClient with legacy semconv bridge
├── internal/
│   └── matcher/
│       └── route.go                # Three-layer route exclusion matcher
├── integration/
│   ├── ginmiddleware/
│   │   ├── middleware.go           # Direct span management with HTTP enrichment
│   │   ├── health.go               # Health/readiness/diagnostics Gin handlers
│   │   └── body.go                 # Response body capture
│   ├── gormplugin/
│   │   └── plugin.go               # GORM with lazy TracerProvider, db.namespace/db.user, SQL truncation, full semconv bridge
│   ├── redisplugin/
│   │   └── plugin.go               # Redis auto-instrumentation
│   └── amqpplugin/
│       └── plugin.go               # AMQP trace context propagation
└── fxmodule/
    └── module.go                   # Uber FX module with lifecycle hooks

Configuration

Environment Variables

The library loads configuration from environment variables with smart defaults. Only 3 are required:

Required
Variable Description Example
OTEL_SERVICE_NAME Unique service identity my-api
OTEL_SERVICE_NAMESPACE Logical grouping my-platform
OTEL_SERVICE_VERSION Release version 1.0.0
Infrastructure (with defaults)
Variable Default Description
OTEL_EXPORTER_OTLP_ENDPOINT signoz-otel-collector.signoz.svc.cluster.local:4317 Collector endpoint
OTEL_EXPORTER_OTLP_PROTOCOL grpc Transport protocol (grpc, http)
OTEL_EXPORTER_OTLP_INSECURE true Disable TLS (default for in-cluster)
OTEL_EXPORTER_OTLP_COMPRESSION gzip Compression algorithm
OTEL_TRACES_SAMPLER_ARG 0.1 (prod) / 1.0 (dev) Sampling rate (0.0-1.0)
ENV development Deployment environment
Signals (all enabled by default)
Variable Default Description
OTEL_TRACES_ENABLED true Enable distributed tracing
OTEL_METRICS_ENABLED true Enable metrics collection
OTEL_LOGS_ENABLED true Enable log export
Route Exclusion
Variable Default Description
OTEL_TRACES_EXCLUDED_PATHS /health,/healthz,/health_check,/metrics,/ready,/live Exact path exclusions
OTEL_TRACES_EXCLUDED_PREFIXES (none) Prefix exclusions (e.g., /debug/,/internal/)
OTEL_TRACES_EXCLUDED_PATTERNS See Route Exclusion Glob patterns (e.g., /*/health)
PII Scrubbing
Variable Default Description
OTEL_PII_SCRUB_ENABLED false Enable PII scrubbing
OTEL_PII_SENSITIVE_KEYS password,token,secret,key,email Comma-separated attribute keys to redact
OTEL_PII_SENSITIVE_PATTERNS .*password.*,.*token.*,.*secret.* Regex patterns for key matching
OTEL_PII_REDACTED_VALUE [REDACTED] Replacement value
OTEL_PII_DB_STATEMENT_MAX_LENGTH 2048 Truncate db.statement and db.query.text (0=disabled)
HTTP Capture

Control what HTTP data is captured in spans. Headers are captured by default; body capture is opt-in.

Variable Default Description
OTEL_HTTP_CAPTURE_REQUEST_HEADERS true Capture request headers as span attributes
OTEL_HTTP_CAPTURE_RESPONSE_HEADERS true Capture response headers as span attributes
OTEL_HTTP_CAPTURE_QUERY_PARAMS true Capture URL query string
OTEL_HTTP_CAPTURE_REQUEST_BODY false Capture request body (opt-in, expensive)
OTEL_HTTP_CAPTURE_RESPONSE_BODY false Capture response body (opt-in, expensive)
OTEL_HTTP_REQUEST_BODY_MAX_SIZE 8192 Max request body bytes to capture
OTEL_HTTP_RESPONSE_BODY_MAX_SIZE 8192 Max response body bytes to capture
OTEL_HTTP_BODY_ALLOWED_CONTENT_TYPES application/json,application/xml,text/plain Content types eligible for body capture
OTEL_HTTP_RECORD_EXCEPTION_EVENTS true Add exception events for 4xx/5xx responses
OTEL_HTTP_SENSITIVE_HEADERS authorization,cookie,set-cookie,x-api-key,x-auth-token Headers always redacted (regardless of scrub config)
SigNoz Cloud Authentication
Variable Default Description
SIGNOZ_ACCESS_TOKEN (none) SigNoz Cloud ingestion key
OTEL_EXPORTER_OTLP_HEADERS (none) Custom headers (key=value pairs)
Functional Options

Override any default via code:

agent := otelagent.NewAgent(
    otelagent.WithServiceName("my-api"),
    otelagent.WithServiceNamespace("my-platform"),
    otelagent.WithServiceVersion("1.0.0"),
    otelagent.WithEndpoint("custom-collector:4317"),
    otelagent.WithSamplingRate(0.5),
    otelagent.WithInsecure(true),
    otelagent.WithEnvironment("production"),
    otelagent.WithEnabled(true),
    otelagent.WithDebugMode(false),
    otelagent.WithDisabledSignals(otelagent.SignalLogs),
    otelagent.WithAutoInstrumentation(true, true, true, true),
    otelagent.WithRouteExclusions(otelagent.RouteExclusionConfig{
        ExactPaths:  []string{"/health", "/metrics"},
        PrefixPaths: []string{"/debug/", "/internal/"},
        Patterns:    []string{"/api/v*/health"},
    }),
    otelagent.WithAuthHeaders(map[string]string{
        "signoz-access-token": "your-token",
    }),
    otelagent.WithLogger(customLogger),
    otelagent.WithConfig(customConfig),
)

Usage Guide

Tracing
Manual Spans
import "github.com/RodolfoBonis/go-otel-agent/helper"

// Using global provider
ctx, span := helper.Trace(ctx, "my-operation", &helper.SpanOptions{
    Component: "my-service",
    Attributes: []attribute.KeyValue{
        attribute.String("key", "value"),
    },
})
defer span.End()
Function Tracing
// Trace a function (void)
err := helper.TraceFunction(ctx, agent, "process-order", func(ctx context.Context) error {
    // your logic here
    return nil
}, &helper.SpanOptions{Component: "orders"})

// Trace a function with return value (generic)
result, err := helper.TraceFunctionWithResult(ctx, agent, "get-user",
    func(ctx context.Context) (*User, error) {
        return fetchUser(ctx, userID)
    },
    &helper.SpanOptions{Component: "users"},
)
Span Events and Errors
// Add event to current span
helper.AddSpanEvent(ctx, "cache-miss", attribute.String("key", cacheKey))

// Set attributes on current span
helper.SetSpanAttributes(ctx, attribute.Int("items.count", len(items)))

// Record error on current span
helper.RecordSpanError(ctx, err, attribute.String("operation", "db-query"))
Context Inspection
import "github.com/RodolfoBonis/go-otel-agent/helper"

traceID := helper.GetTraceID(ctx)  // "abc123..."
spanID := helper.GetSpanID(ctx)    // "def456..."
isTracing := helper.IsTracing(ctx) // true/false
Metrics
import "github.com/RodolfoBonis/go-otel-agent/helper"

// Increment counter (global)
helper.Count(ctx, "orders.created", 1, &helper.MetricOptions{
    Component: "orders",
    Attributes: []attribute.KeyValue{
        attribute.String("type", "standard"),
    },
})

// Record duration (global)
helper.Measure(ctx, "db.query.duration", queryDuration, &helper.MetricOptions{
    Component: "database",
})

// Using provider directly
helper.RecordDuration(ctx, agent, "http.request.duration", duration, opts)
helper.IncrementCounter(ctx, agent, "requests.total", 1, opts)
helper.SetGauge(ctx, agent, "connections.active", 42, opts)
Combined Tracing + Metrics
import "github.com/RodolfoBonis/go-otel-agent/helper"

// Traces the function AND records duration + counter + error metrics
err := helper.TraceAndMeasure(ctx, agent, "process-payment",
    func(ctx context.Context) error {
        return processPayment(ctx, order)
    },
    &helper.SpanOptions{Component: "payments"},
)

// With return value
result, err := helper.TraceAndMeasureWithResult(ctx, agent, "fetch-inventory",
    func(ctx context.Context) (*Inventory, error) {
        return getInventory(ctx, sku)
    },
    &helper.SpanOptions{Component: "inventory"},
)
Logging
import "github.com/RodolfoBonis/go-otel-agent/logger"

log := logger.NewLogger("production") // or "development"

// All log calls automatically inject trace_id and span_id from context
log.Info(ctx, "Order created", logger.Fields{
    "order_id": orderID,
    "amount":   total,
})

log.Error(ctx, "Payment failed", logger.Fields{
    "order_id": orderID,
    "error":    err.Error(),
})

// Create a child logger with additional fields
orderLog := log.With(logger.Fields{"order_id": orderID})
orderLog.Info(ctx, "Processing order")

OTel log bridge: When OTEL_LOGS_ENABLED=true, the agent automatically bridges zap to the OTel LoggerProvider via otelzap. All log entries are exported via OTLP alongside traces and metrics. The bridge also sets native TraceID/SpanID on log records (via context.Context passed as a zapcore.SkipType field), enabling automatic Logs<->Traces linking in SigNoz and other backends. No code changes needed — agent.Init() sets it up automatically.

Baggage
import "github.com/RodolfoBonis/go-otel-agent/helper"

// Set baggage (propagated across service boundaries)
ctx = helper.SetBaggage(ctx, "tenant.id", "org-123")

// Get baggage
tenantID := helper.GetBaggage(ctx, "tenant.id") // "org-123"
Integration: Gin Middleware
import "github.com/RodolfoBonis/go-otel-agent/integration/ginmiddleware"

// Basic usage
r.Use(ginmiddleware.New(agent, "my-api"))

// With custom filter
r.Use(ginmiddleware.New(agent, "my-api",
    ginmiddleware.WithFilter(func(r *http.Request) bool {
        return r.URL.Path != "/custom-exclude"
    }),
))

// Health handlers
r.GET("/health", ginmiddleware.HealthHandler(agent))
r.GET("/ready", ginmiddleware.ReadinessHandler(agent))

The middleware manages the full span lifecycle directly (no delegation to otelgin). It uses lazy initialization (sync.Once) to resolve the real TracerProvider and MeterProvider on the first request, solving the FX lifecycle ordering issue where ginmiddleware.New() runs during fx.Invoke but agent.Init() hasn't completed yet.

Span lifecycle:

tracer.Start → c.Next() → enrichSpan → defer span.End()

W3C trace context (traceparent, baggage) is extracted from incoming headers for distributed trace propagation.

Span attributes captured automatically:

Attribute Source
http.request.method, url.path, url.scheme, http.response.status_code OpenTelemetry semconv (set at span start)
http.route Gin registered route pattern (set post-handler)
server.address Service name
client.address c.ClientIP()
user_agent.original User-Agent header
http.request.content_length Request Content-Length
http.client_ip c.ClientIP() (enrichment)
http.request.id Gin context requestID
user.id, user.role Gin context (if set by auth middleware)
http.request.header.<name> Request headers (sensitive ones redacted)
http.response.header.<name> Response headers (sensitive ones redacted)
url.query Query string (sensitive params redacted)
http.request.body Request body (opt-in via OTEL_HTTP_CAPTURE_REQUEST_BODY)
http.response.body Response body (opt-in via OTEL_HTTP_CAPTURE_RESPONSE_BODY)
http.request.body.size Request content length
http.response.body.size Response body length

Response headers set by middleware:

Header Description
X-Trace-Id Current trace ID — useful for debugging and correlating logs

Error handling:

  • 5xx responses set span status to Error
  • 4xx/5xx responses record an exception event with type and message (configurable via OTEL_HTTP_RECORD_EXCEPTION_EVENTS)

PII protection:

  • Headers in OTEL_HTTP_SENSITIVE_HEADERS are always redacted (default: authorization, cookie, set-cookie, x-api-key, x-auth-token)
  • Query param values matching OTEL_PII_SENSITIVE_PATTERNS are redacted when scrubbing is enabled
  • Body content matching sensitive patterns is redacted when scrubbing is enabled

Metrics recorded:

  • http.server.request.duration (histogram, seconds)
  • http.server.request.total (counter)
  • http.server.errors.total (counter, 4xx/5xx)
Integration: GORM Database
import "github.com/RodolfoBonis/go-otel-agent/integration/gormplugin"

db, _ := gorm.Open(postgres.Open(dsn), &gorm.Config{})

// Basic usage
gormplugin.Instrument(db, agent)

// With database name and user (adds db.namespace and db.user to every span)
gormplugin.Instrument(db, agent,
    gormplugin.WithDBName("mydb"),
    gormplugin.WithDBUser("app_user"),
)

Span attributes:

Attribute Source
db.query.text Full SQL query text (new semconv)
db.statement Full SQL query text (legacy, auto-bridged from db.query.text)
db.system.name Database system (new semconv, e.g., postgresql)
db.system Database system (legacy, auto-bridged from db.system.name)
db.operation.name SQL operation (new semconv, e.g., SELECT, INSERT)
db.operation SQL operation (legacy, auto-bridged from db.operation.name)
db.collection.name Table name (new semconv)
db.sql.table Table name (legacy, auto-bridged from db.collection.name)
server.address Database host (new semconv)
net.peer.name Database host (legacy, auto-bridged from server.address)
db.namespace Database name (new semconv, via WithDBName)
db.name Database name (legacy, auto-bridged from db.namespace)
db.rows_affected Number of rows affected
db.user Database user (via WithDBUser)

The GORM plugin uses a lazy TracerProvider that resolves the real global TracerProvider on every query. This solves the FX lifecycle issue where gormplugin.Instrument() is called during fx.Invoke before agent.Init() sets the global provider.

Semconv bridge: The GORM OTel plugin v0.1.16 emits new semconv attributes, but SigNoz uses legacy semconv for DB Call Metrics and SQL display. The bridge span wrapper automatically duplicates all 6 attributes (query text, system, operation, table, host, database name) to their legacy equivalents.

DB spans appear as children of HTTP spans, creating a complete trace: HTTP GET /api/v1/plans -> SELECT plans.

Integration: Redis
import "github.com/RodolfoBonis/go-otel-agent/integration/redisplugin"

rdb := redis.NewClient(&redis.Options{Addr: "localhost:6379"})
redisplugin.Instrument(rdb)

// All Redis operations are now automatically traced
Integration: AMQP (RabbitMQ)
import "github.com/RodolfoBonis/go-otel-agent/integration/amqpplugin"

// Publishing with trace context
headers := amqpplugin.InjectTraceContext(ctx)
ch.Publish("exchange", "key", false, false, amqp.Publishing{
    Headers: headers,
    Body:    payload,
})

// Consuming with trace context extraction
ctx = amqpplugin.ExtractTraceContext(context.Background(), msg.Headers, agent)
Integration: HTTP Client
import "github.com/RodolfoBonis/go-otel-agent/instrumentor"

// Option 1: Wrap an existing http.Client (mutates transport in-place)
client := &http.Client{}
instrumentor.InstrumentHTTPClient(client)

// Option 2: Use the transport directly (e.g., for custom clients or middleware chains)
client := &http.Client{
    Transport: instrumentor.NewOTelTransport(http.DefaultTransport),
}

resp, err := client.Get("https://api.example.com/data")
// Outgoing request is automatically traced with span: "HTTP GET api.example.com"

Legacy semconv bridge: otelhttp v0.65.0 emits only new semconv attributes (server.address, url.full, http.request.method), but SigNoz External Call dashboard uses legacy attributes (net.peer.name, http.url, http.method) for hostname grouping. The inner transport wrapper automatically injects both, so external calls show actual hostnames instead of generic labels.

Health Probes
// Programmatic health check
status := agent.HealthCheck()
// HealthStatus{Status: "ok", Signals: {...}, Running: true, Enabled: true}

// Readiness check
ready := agent.ReadinessCheck() // true when initialized and running

// Diagnostics (runtime config for debugging)
diag := agent.Diagnostics()
// DiagnosticsInfo{Enabled: true, Running: true, Environment: "staging",
//   ServiceName: "my-api", Endpoint: "signoz:4317", SamplingRate: 0.5,
//   TracerType: "*trace.TracerProvider", LoggerType: "*log.LoggerProvider",
//   Features: {...}}

// Gin handlers
r.GET("/health", ginmiddleware.HealthHandler(agent))
r.GET("/ready", ginmiddleware.ReadinessHandler(agent))
r.GET("/debug/otel", ginmiddleware.DiagnosticsHandler(agent))
Uber FX Module
import "github.com/RodolfoBonis/go-otel-agent/fxmodule"

// Full module (default config from env vars)
fx.New(fxmodule.Module)

// With custom options
fx.New(fxmodule.ProvideWithConfiguration(
    otelagent.WithServiceName("my-api"),
))

// Tracing only
fx.New(fxmodule.TracingOnlyModule())

// Metrics only
fx.New(fxmodule.MetricsOnlyModule())

// Logs only
fx.New(fxmodule.LogsOnlyModule())

// Testing (disabled agent)
fx.New(fxmodule.ProvideForTesting())

The FX module provides:

  • *otelagent.Agent — the observability agent
  • *instrumentor.Instrumentor — function/HTTP instrumentation
  • logger.Logger — structured logger with trace correlation

Route Exclusion

The three-layer matcher excludes paths from both tracing and metrics:

// Via environment variables
// OTEL_TRACES_EXCLUDED_PATHS=/health,/healthz,/metrics,/ready
// OTEL_TRACES_EXCLUDED_PREFIXES=/debug/,/internal/
// OTEL_TRACES_EXCLUDED_PATTERNS=/v1/health,/api/v2/metrics

// Via code
otelagent.WithRouteExclusions(otelagent.RouteExclusionConfig{
    ExactPaths:  []string{"/health", "/metrics"},     // O(1) map lookup
    PrefixPaths: []string{"/debug/", "/internal/"},   // strings.HasPrefix
    Patterns:    []string{"/*/health"},                // path.Match glob
})

Default patterns:

All three layers have built-in defaults so health/readiness probes are excluded out of the box, including versioned paths like /v1/health or /api/v2/health_check:

Layer Default values
Exact paths /health, /healthz, /health_check, /metrics, /ready, /live
Prefix paths (none)
Glob patterns /*/health, /*/healthz, /*/health_check, /*/metrics, /*/ready, /*/live, /*/*/health, /*/*/healthz, /*/*/health_check, /*/*/metrics, /*/*/ready, /*/*/live

Glob patterns use Go's path.Match where * matches a single path segment (not /).

PII Scrubbing

Two layers of PII protection work together:

Span Attribute Scrubbing

Automatically redact sensitive span attributes before export:

OTEL_PII_SCRUB_ENABLED=true
OTEL_PII_SENSITIVE_KEYS=password,token,secret,key,email
OTEL_PII_SENSITIVE_PATTERNS=.*password.*,.*token.*,.*secret.*
OTEL_PII_REDACTED_VALUE=[REDACTED]
OTEL_PII_DB_STATEMENT_MAX_LENGTH=2048
  • Matches attribute keys by exact name or regex pattern
  • Replaces values with [REDACTED] (configurable)
  • Truncates db.statement and db.query.text to configurable max length (default: 2048 chars)
  • DB truncation runs independently from PII redaction (always applies when DBStatementMaxLength > 0)
  • Runs as a SpanProcessor (before export)
HTTP Data Scrubbing

HTTP-specific scrubbing that protects sensitive data in request/response captures:

  • Sensitive headers (e.g., Authorization, Cookie) are always redacted, regardless of whether PII scrubbing is enabled
  • Query param values matching sensitive patterns are redacted when OTEL_PII_SCRUB_ENABLED=true
  • Body content matching sensitive patterns is redacted when OTEL_PII_SCRUB_ENABLED=true
  • Body content is truncated to OTEL_HTTP_REQUEST_BODY_MAX_SIZE / OTEL_HTTP_RESPONSE_BODY_MAX_SIZE
  • Only OTEL_HTTP_BODY_ALLOWED_CONTENT_TYPES are eligible for body capture (binary data is never captured)

Bugs Fixed from Original Implementation

This library was extracted from a production codebase and fixes these issues:

Bug Fix
GetMeter() returns nil when disabled — panics consumers Returns noop meter, never nil
getStringEnv() default value logic broken Redesigned: getStringEnv(defaultValue, keys...)
ratio sampler not wrapped in ParentBased Always wrapped in ParentBased for correct distributed tracing
Span limits configured but never applied Wired to sdktrace.WithRawSpanLimits() using NewSpanLimits() as base (avoids zero-value truncation)
Retry config configured but never wired Wired to WithRetry() on all OTLP exporters
error_message as metric attribute — unbounded cardinality Removed from metrics, kept on spans only
user_id as metric attribute — cardinality bomb Removed from metrics, kept on spans only
Metric instruments recreated on every call Cached via sync.Map
Duplicate HTTP instrumentation (instrumentor + middleware) Consolidated into single middleware with direct span management
otelgin span lifecycle prevents post-handler enrichment Direct span management: Start → Next → enrich → End
FX lifecycle: Gin middleware captures noop TracerProvider Lazy init via sync.Once — resolves real provider on first request
FX lifecycle: GORM plugin captures noop tracer eagerly Lazy TracerProvider/Tracer wrappers resolve global provider per query
DB spans orphaned (no HTTP parent) Both fixes together ensure correct parent-child span linking
DB spans missing query text GORM plugin includes query variables by default + SQL truncation
DB spans missing database name/user WithDBName() / WithDBUser() add db.namespace and db.user attributes
DB queries not visible in SigNoz (new semconv) Full semconv bridge duplicates all 6 DB attributes to legacy equivalents
DB truncation logic was dead code (inside isSensitive()) Extracted as independent concern, handles both db.statement and db.query.text
SigNoz External Call shows generic labels (A, F1) Legacy semconv transport injects net.peer.name, http.url, http.method
No HTTP request/response details in spans Full header, query param, and body capture with PII scrubbing
No error events for HTTP 4xx/5xx Exception events recorded with status code and error message
No runtime config inspection for debugging Diagnostics() method and DiagnosticsHandler expose config at runtime
Log provider not stored — shutdown/flush leaked LoggerProvider stored on Agent with proper Shutdown/ForceFlush lifecycle
Logs not exported via OTLP otelzap bridge auto-enabled when OTEL_LOGS_ENABLED=true
No native trace correlation on logs (only string attributes) context.Context passed via zapcore.SkipType field for native TraceID/SpanID on log records
WithRawSpanLimits(SpanLimits{}) truncates all string attributes to empty Uses NewSpanLimits() as base (sets AttributeValueLengthLimit=-1 unlimited)

Examples

See the examples/ directory for complete, runnable examples:

  • basic — Minimal setup with tracing and metrics
  • gin-api — Gin HTTP API with middleware, health probes, and custom metrics
  • fx-app — Uber FX dependency injection with full lifecycle management

Testing

go test ./...              # Run all tests
go test -race ./...        # Run with race detector
go test -v ./...           # Verbose output
go test -cover ./...       # With coverage

Contributing

  1. Fork the repository
  2. Create your feature branch (git checkout -b feat/my-feature)
  3. Commit your changes (git commit -m 'feat: add my feature')
  4. Push to the branch (git push origin feat/my-feature)
  5. Open a Pull Request

License

MIT License — see LICENSE for details.

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var (
	ErrNotInitialized     = errors.New("go-otel-agent: agent not initialized, call Init() first")
	ErrAlreadyInitialized = errors.New("go-otel-agent: agent already initialized")
	ErrInvalidConfig      = errors.New("go-otel-agent: invalid configuration")
	ErrShutdownTimeout    = errors.New("go-otel-agent: shutdown timed out")
	ErrMissingServiceName = errors.New("go-otel-agent: service name is required")
)

Functions

This section is empty.

Types

type Agent 

type Agent struct {
	// contains filtered or unexported fields
}

Agent is the central observability agent. It manages providers, instrumentors, collectors, and health probes.

Create with NewAgent(opts...), then call Init(ctx) to start.

func NewAgent 

func NewAgent(opts ...Option) *Agent

NewAgent creates a new Agent with the given options. No I/O is performed — call Init(ctx) to start providers and collectors.

func (*Agent) Config 

func (a *Agent) Config() *Config

Config returns the agent configuration.

func (*Agent) Diagnostics added in v0.4.0 

func (a *Agent) Diagnostics() DiagnosticsInfo

Diagnostics returns runtime configuration details for debugging.

func (*Agent) ExporterHealth 

func (a *Agent) ExporterHealth() *provider.ExporterHealth

ExporterHealth returns the exporter health tracker.

func (*Agent) ForceFlush 

func (a *Agent) ForceFlush(ctx context.Context) error

ForceFlush flushes all pending telemetry without shutting down.

func (*Agent) GetMeter 

func (a *Agent) GetMeter(name string) metric.Meter

GetMeter returns a meter for the given name. Never returns nil. Fix: original returned nil when disabled, causing panics in consumers.

func (*Agent) GetTracer 

func (a *Agent) GetTracer(name string) trace.Tracer

GetTracer returns a tracer for the given name. Never returns nil.

func (*Agent) HealthCheck 

func (a *Agent) HealthCheck() HealthStatus

HealthCheck returns the current health status of the agent.

func (*Agent) Init 

func (a *Agent) Init(ctx context.Context) error

Init initializes all providers, sets global OTel state, and starts collectors.

func (*Agent) Instrumentor 

func (a *Agent) Instrumentor() *instrumentor.Instrumentor

Instrumentor returns the instrumentor.

func (*Agent) IsEnabled 

func (a *Agent) IsEnabled() bool

IsEnabled returns whether observability is enabled.

func (*Agent) IsRunning 

func (a *Agent) IsRunning() bool

IsRunning returns whether the agent is currently running.

func (*Agent) Logger 

func (a *Agent) Logger() logger.Logger

Logger returns the agent logger.

func (*Agent) LoggerProvider added in v0.4.0 

func (a *Agent) LoggerProvider() *sdklog.LoggerProvider

LoggerProvider returns the underlying sdklog.LoggerProvider. Returns nil if logs are disabled or not initialized.

func (*Agent) ReadinessCheck 

func (a *Agent) ReadinessCheck() bool

ReadinessCheck returns true when the agent is initialized and running.

func (*Agent) RouteMatcher 

func (a *Agent) RouteMatcher() *matcher.RouteMatcher

RouteMatcher returns the route exclusion matcher.

func (*Agent) Shutdown 

func (a *Agent) Shutdown(ctx context.Context) error

Shutdown gracefully shuts down all providers with a 10s timeout enforcement.

func (*Agent) TracerProvider 

func (a *Agent) TracerProvider() trace.TracerProvider

TracerProvider returns the underlying trace.TracerProvider. Returns a noop provider if not initialized.

type AuthConfig 

type AuthConfig = config.AuthConfig

type CardinalityConfig 

type CardinalityConfig = config.CardinalityConfig

type Config 

type Config = config.Config

Re-export config types so consumers can use otelagent.Config, etc.

func LoadConfigFromEnv 

func LoadConfigFromEnv() *Config

LoadConfigFromEnv loads configuration from environment variables with smart defaults.

type DiagnosticsInfo added in v0.4.0 

type DiagnosticsInfo struct {
	Enabled      bool    `json:"enabled"`
	Running      bool    `json:"running"`
	Environment  string  `json:"environment"`
	ServiceName  string  `json:"service_name"`
	Namespace    string  `json:"namespace"`
	Version      string  `json:"version"`
	Endpoint     string  `json:"endpoint"`
	SamplingRate float64 `json:"sampling_rate"`
	TracerType   string  `json:"tracer_type"`
	LoggerType   string  `json:"logger_type"`
	Features     any     `json:"features"`
}

DiagnosticsInfo surfaces runtime configuration for debugging telemetry issues.

type FeaturesConfig 

type FeaturesConfig = config.FeaturesConfig

type HTTPConfig added in v0.2.0 

type HTTPConfig = config.HTTPConfig

type HealthStatus 

type HealthStatus struct {
	Status  string                             `json:"status"` // "ok", "degraded", "unhealthy"
	Signals map[string]provider.ExporterStatus `json:"signals,omitempty"`
	Running bool                               `json:"running"`
	Enabled bool                               `json:"enabled"`
}

HealthStatus represents the overall health of the agent.

type LogsConfig 

type LogsConfig = config.LogsConfig

type MetricsConfig 

type MetricsConfig = config.MetricsConfig

type Option 

type Option func(*Agent)

Option configures the Agent.

func WithAuthHeaders 

func WithAuthHeaders(headers map[string]string) Option

WithAuthHeaders sets authentication headers for the OTLP exporter.

func WithAutoInstrumentation 

func WithAutoInstrumentation(http, database, redis, amqp bool) Option

WithAutoInstrumentation enables/disables auto-instrumentation per component.

func WithConfig 

func WithConfig(cfg *Config) Option

WithConfig overrides the entire configuration.

func WithDebugMode 

func WithDebugMode(debug bool) Option

WithDebugMode enables debug mode.

func WithDisabledSignals 

func WithDisabledSignals(signals ...Signal) Option

WithDisabledSignals disables specific telemetry signals.

func WithEnabled 

func WithEnabled(enabled bool) Option

WithEnabled sets whether observability is enabled.

func WithEndpoint 

func WithEndpoint(endpoint string) Option

WithEndpoint sets the OTLP collector endpoint.

func WithEnvironment 

func WithEnvironment(env string) Option

WithEnvironment sets the deployment environment.

func WithInsecure 

func WithInsecure(insecure bool) Option

WithInsecure sets whether to use insecure connection.

func WithLogger 

func WithLogger(l logger.Logger) Option

WithLogger sets a custom logger.

func WithRouteExclusions 

func WithRouteExclusions(cfg RouteExclusionConfig) Option

WithRouteExclusions sets route exclusion configuration.

func WithSamplingRate 

func WithSamplingRate(rate float64) Option

WithSamplingRate sets the trace sampling rate (0.0 to 1.0).

func WithServiceName 

func WithServiceName(name string) Option

WithServiceName sets the service name.

func WithServiceNamespace 

func WithServiceNamespace(ns string) Option

WithServiceNamespace sets the service namespace.

func WithServiceVersion 

func WithServiceVersion(version string) Option

WithServiceVersion sets the service version.

type PerformanceConfig 

type PerformanceConfig = config.PerformanceConfig

type ResourceConfig 

type ResourceConfig = config.ResourceConfig

type RouteExclusionConfig 

type RouteExclusionConfig = config.RouteExclusionConfig

type SamplingConfig 

type SamplingConfig = config.SamplingConfig

type ScrubConfig 

type ScrubConfig = config.ScrubConfig

type Signal 

type Signal int

Signal represents a telemetry signal type. 

const (
	SignalTraces Signal = iota
	SignalMetrics
	SignalLogs
)

type TLSConfig 

type TLSConfig = config.TLSConfig

type TracesConfig 

type TracesConfig = config.TracesConfig

Source Files

View all Source files

Directories

Path Synopsis
examples
basic command
fx-app command
gin-api command
integration
amqpplugin
ginmiddleware
gormplugin
redisplugin
internal
matcher

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.