Reporting revamp - POC OpenSearch Observability capabilities.

[asteriscos]

Description

For the next major release of Wazuh, we want to incorporate metrics and traces about the different components of Wazuh in the dashboard.

To achieve this, we want to leverage the OpenSearch Observability plugin, as it provides a framework to work with metrics and traces. This framework is works with OpenTelemetry, which will be used in other Wazuh components.

References:

• OpenSearch and OpenTelemetry
• OpenTelemetry documentation
• https://medium.com/@erikstrm_11611/demystify-opentelemetry-with-opensearch-as-a-single-plane-of-glass-919f884eb568
• Observability plugin documentation
• Notebooks documentation

We need to:

• determine if we can use the observability plugin it to manage the metrics and traces of Wazuh.
• evaluate and design the events format, as well as dashboards and visualizations covered by the plugin.

Implementation restrictions

• Our research must be focused on OpenTelemetry formats for metrics and traces.

Plan

• Prepare the dev environment to have the Observability plugin
• Generate mock metrics using the open telemetry protocol
• Create a dashboard in the Notebooks app using the mocked metrics
• Generate PDF reports
• Detect restrictions and features to be developed in wazuh-dashboard-plugins
• Identify RBAC permissions to restrict operations in the Observability plugin
• Identify events format requirements and limitations
• Identify a way to have initial dashboards in Wazuh dashboards initial setup

[gdiazlo]

Closing this issue in favor of #195