Adding in the README files.

Author: morfien101

.gitignore

@@ -3,6 +3,3 @@
 # Available publically and likely to fall out of date.
 # https://help.papertrailapp.com/kb/configuration/encrypting-remote-syslog-with-tls-ssl/
 papertrail_cert.crt
-
-# while I sort these out
-READMEs/

READMEs/ConfigrationFile.md

@@ -0,0 +1,208 @@
+# Configuration File
+
+Configuration is used to tell Launch what to do. 
+
+It is used to determine where logs go, what processes run and what data needs to be collected.
+
+An example of the configuration file can be obtained by running:
+
+```bash
+# Get example configuration file
+./launch -example-config
+```
+
+Below is each section of the configuration with the relevant values and details. If you would like more information regarding the configuration all data is layed out in the [configfile folder](../configfile).
+
+## Understanding double rendering
+
+Configuration files have templating built in, see later templating section. This allows for environment variables to be used in the configuration file.
+However many of those environment variables will be collected during the secrets and parameters collection phase.
+
+The configuration file is rendered twice when the Launch is started.
+The first render will be done on start up, it will produce the configuration with the available environment variables as the container starts.
+The Launch will then proceed to collect secrets and parameters. Once complete the configuration is rendered a second time.
+This allows the configuration to make use of parameters and secrets as part of the configuration. Previously blanked environment settings will now be filled in.
+
+An example use case is using an override for hostname in the syslog logging configuration, or setting a environment variable.
+
+Normal templating rules will be followed when using both renders. This means that you can still use the environment variables for secret collection but, they __MUST__ be available when the container starts. Eg. making use of docker -e|--env flags.
+This also means that any templating that makes use of the `required` and `env` functions together __MUST__ be available on the first render or the configuration will fail to render and cause the Launch to stop.
+
+Secrets are only collected once at startup.
+
+## process_manager
+
+`process_manager` configures the Launch process itself. It needs to know where to send it's logs and also if it needs to enable debug logging.
+
+Example:
+
+```yaml
+# Process manager is Launch itself
+process_manager:
+  # logging_config is the logging the Launch process needs to use.
+  logging_config:
+  # This section contains a Logging config _see below_
+  # debug_logging will toggle on and off the debug logger inside
+  # the Launch
+  debug_logging: (true|false)
+  # Debug options should be off by default. Use them only if you need to.
+  debug_options:
+    # Prints the configuration that will be used for running processes. This happens after secrets are collected
+    # and the second config rendering has taken place.
+    show_generated_config: (true|false)
+```
+
+## processes
+
+`processes` tells the Launch what start and where to send the logs. There is 3 sections here: secret_processes, init_processes and main_processes
+
+Example:
+
+```yaml
+# processes tells Launch what to start and how.
+processes:
+  # Secret processes start before logging so use the console logger.
+  # Secrets can export to environment variables and are the only process
+  # that can share environment variables.
+  secret_processes:
+  - name: Process1
+    # Path to executable
+    command: /example/bin1
+    # List of arguments
+    arguments:
+    - --arg1
+    - two
+    # How long to allow the process to run. This helps with run away processes.
+    termination_timeout_seconds: 60
+    # skip stops this execution if required.
+    # Use the template functions to set this value.
+    skip: false
+  # init_processes start after secrets and run sequentially
+  # This is a list and can have as many items as required.
+  init_processes:
+    # name is a descriptive name for the process.
+  - name: first init processes
+    # command is the full path to executable
+    command: /binary/to/execute
+    # List of arguments to pass onto the executable
+    arguments:
+      # Strings, strings with spaces, and numbers are accepted
+      # Add as many as you need
+    - -c
+    - /tmp/text.txt
+    - 10
+    - words and more
+    # termination_timeout_seconds how long the grace period is for processes to terminate.
+    # The default is 1 second.
+    termination_timeout_seconds: 3
+    # logging_config is used to forward on the logs from this process.
+    logging_config:
+      # This section contains a Logging config _see below_
+  # main_processes looks exactly the same as init_processes.
+  main_processes:
+  - name: first main
+    command: /binary/to/execute
+    arguments:
+    - -a
+    - 1
+    - -b
+    - this and that
+    logging_config:
+      # This section contains a Logging config _see below_
+  - name: second main
+    command: /another/binary/to/execute
+    arguments:
+    - -a
+    - 1
+    - -b
+    - foo and bar
+    logging_config:
+      # This section contains a Logging config _see below_
+```
+
+## default_logger_config
+
+`default_logger_config` is a section that allows you to put in any defaults that you don't want to repeat.
+It contains a `logging_config` but is intended to allow for all configuration for all engines to be defined here.
+
+Example:
+
+```yaml
+default_logger_config:
+  logging_config:
+  # This section contains a Logging config _see below_
+```
+## Logging
+
+Logging is used to tell the Launch to send logs to a logging engine eg. syslog, console, etc...
+
+Below is the logging configuration. However this is a slightly different one to the rest.
+
+In this configuration you put the details for the logging engine for the process and then select which logging engine you want to make use of. These will appear in all processes.
+
+valid engine names:
+
+- console
+- devnull
+- syslog
+- logfile
+
+Example:
+
+```yaml
+logging_config:
+  # Engine is where the logs should go
+  engine: any valid engine name from above
+  # descriptive name for your binary. Shipped to logging engine if possible.
+  process_name: amazing_project
+  # Only one of the below is required when used on a process.
+  # Normally the one that is related the engine selected.
+  # Syslog and file logger both require extra config as below.
+  syslog:
+    # Overrides the process name with this value. Can be defaulted so all processes that
+    # don't have a value set will get this one.
+    # If your process does have this or a name you will get the hostname which is ugly.
+    # So have at least one of them set.
+    program_name: syslog program name
+    # Tries to read the log level if specific condition are met
+    extract_log_level: (true|false)
+    # Override the hostname sent to papertrail
+    override_hostname: hostname_to_use
+    # These both add the containers hostname to the end of the value they control.
+    # remember that you need to add your own separator.
+    append_container_name_to_tag: (true|false)
+    append_container_name_to_hostname: (true|false)
+  file_config:
+    # filepath is where to store these logs
+    filepath: /var/logs/process_name.log
+    # size_limit is how large the file can be before rotation happens.
+    size_limit: 100mb
+    # historical_files_limit is how many files are to be kept.
+    historical_files_limit: 3
+```
+
+## Template Functions
+
+Template functions are used to make the configuration files somewhat dynamic. They allow values to be put in place at boot time of the process. Reading and rendering the configuration file is the very first thing Launch will do. Therefore if the configuration does not render correctly then it will not start.
+
+Below is a list of the functions available to you and an example of the syntax used.
+
+`hint: it's just golang's template syntax`
+
+Function | Description | Example
+---|---|---
+env | Sets the value to an available Environment Variable | {{ env "ENVIRONMENT" }}
+default | Use this default value if function fails | {{ default .NonExisting "default value" }}
+required | This value must be satisfied or the launch will fail | {{ required (env "ALWAYS_THERE") }}
+zerolen | Allows you to check if a value is zero length, returns the value for true or false | {{ zerolen (env "SOMETHING") "true value" "false value" }}
+
+Example in configuration file.
+
+```yaml
+secrets:
+  parameter_store:
+  - key_path: {{ env "SECRET_PATH" }}
+    recursive_lookup: true
+    with_decryption: true
+    skip: {{ zerolen (env "SECRET_PATH") "true" "false" }}
+```

READMEs/Logging.md

@@ -0,0 +1,75 @@
+# Logging Engines Documentation
+
+A more detailed description of the loggers that are available is documented below.
+
+## Startup logging
+
+The Launch needs to start logging before it is actually capable of logging fully. This is because some loggers require authentication that is expected to be collected by the secrets.
+To overcome this the Launch will log to the console until after the secrets have been collected.
+At which point it will read the configuration file and use the specified loggers.
+
+## Default logging
+
+Default values for logging can be set. These values will be used if there is not value present for a process or they will be merged. This allows most the configuration to be setup here, and only specifics to be set at the process level.
+
+Processes will still need to select a logging engine.
+
+## DevNull
+
+DevNull is basically the same as /dev/null. Its a black hole for logs to go and never return.
+
+Use this if you have an application that you simply don't care about the logging.
+
+## Console
+
+Console logging will forward out the logs it receives to the Launch STDOUT and STDERR. This is more useful for development environments where you don't want to forward your logs to a central logging platform.
+
+## File Logging
+
+File logging consumes the messages from your application via STDOUT and STDERR and forwards them to a file. The file is rotated on a regular basis to keep the container footprint small. The configuration values for rotation can be set with the configuration files.
+
+File logging is only really useful in development environments. In most production environments the disks of the containers will be removed once the container is terminated. If you want to use this in production it is recommend that you link the volumes where the files are to be written.
+
+## Syslog
+
+Syslog is a pretty standard linux way of sending logs. These logs are sent as lines and multiline logs are unfortunetly split.
+
+The logger allows you to override the name that you see in syslog. By default it will use the process name. If you set the `program_name` key under the syslog logging configuration it will use that in its place.
+
+Due to the logs being presented to Launch via stdout we are not able to know if the log is critical, warning or informational. This information might be available in the text, however the Launch will simply forward on the message with out inspecting its contents by default.
+
+If you set `extract_log_level: true` the logger will attempt to detect the level from your message. There are limitations here and your messages need to be structured correctly.
+
+1. The logs `MUST` be in JSON format.
+1. The logs `MUST` have have `level` key.
+1. The `level` key `MUST` have one of the following values. [syslog wikipedia](https://en.wikipedia.org/wiki/Syslog#Severity_level)
+
+* emerg
+* alert
+* crit
+* err
+* warning
+* notice
+* info
+* debug
+
+Example:
+
+```json
+{
+    "name": "my_test",
+    "msg": "This is a test log",
+    "level": "crit"
+}
+```
+
+The last point to think about is that large logs (excess of 1000 chars) may have a small impact on performance. This is compounded with rapid logging. Currently it takes about 0.003 Milliseconds to read a 500 char log. If you have hundreds of logs per second, Expect problems with detection.
+
+Syslog logging reports the hostname of the host that sent the message. This is by default the hostname of the container. However for searching the hostname of the container can actually be useless and rather you would want the applications to send under a common hostname. This can be done by making use the `override_hostname` configuration. This can be set as a default logging variable and process level. The process level will win if both are set.
+You can combine this with the configuration file templating to make names that reflect your environment such as `override_hostname: awesome_app_{{env NODE_NAME }}_{{env NODE_REGION}}`.
+
+The normal rules for host names will apply. No special chars, no space, etc...
+
+For easier tracking of the instances themselves you can append the containers hostname to either the process or to the hostname. If you do this you need to include any _ or - as it will simple tack on the hostname.
+The can be set at the default configuration OR the process configuration.
+Use `append_container_name_to_tag` and `append_container_name_to_hostname` to control these features.

READMEs/README.md

@@ -0,0 +1,18 @@
+# README files
+
+The README files for all the features are contained here.
+Take a look around.
+
+## Contents
+
+### Configuration files
+
+    [Configuration Documentation](ConfigurationFile.md)
+
+### Logging
+
+    [Logging Documentation](Logging.md)
+
+### Secrets
+
+    [Secrets Documentation](Secrets.md)

READMEs/Secrets.md

@@ -0,0 +1,37 @@
+# Secret Collection Engines
+
+Secrets are collected before anything else has a chance to start.
+This is because the loggers often need credentials to send the logs onwards.
+Due to this logging is done to the console of the container itself, because we can not be sure we would be able to actually send the log messages on.
+
+Launch allows you to run your own binary/command to collect secrets within the containers. Doing this means that you can use any secret management system you can write code for.
+
+## Secret Processes
+
+A secret process is used to go collect secrets. These could be in AWS Secret Manager, Hashicorp Vault or some inhouse secret manager.
+The idea is that you can create your own binary to use to collect secrets and have Launch inject them into the environment.
+
+```text
+Because Launch is the parent process, child processes CAN NOT update the environment of the parent.
+Therefore your process can not expose environment variables for later processes to see.
+```
+To over come this, Launch will read a key value pair in JSON as the stdout of your process and expose those as environment variables for you.
+
+Output expected:
+
+```json
+{"key":"value", "key2":"value2"}
+```
+
+It is also possible that you process writes to files that other processes can collect. It is expected that no output to STDOUT is given in this case.
+
+With this being said here are the requirements for Secret Processes:
+
+1. They must complete successfully to continue execution.
+1. They are executed sequentially as shown in the configuration file.
+1. output must be valid JSON and the only output on STDOUT.
+
+Secrets might not always need to be collected. Consider if you are using in a Dev environment.
+Make use of the `skip` field to stop a process from running.
+You can determine the value by using one of the templating functions.
+