Update error alarms (#372)

* add composite alarm for severe errors

* fix syntax

* fix syntax

* fix syntax

* add depends on

* add high threshold version of alarm

* fix syntax

* template updates

* add error rate alarms

* update alarm names

* update template

* rename alarm

* fix alarm name

* fix suppressor alarm name

* address comments

* fix template

* update depends on

Author: molly-moen

cicd/3-app/javabuilder/template.yml.erb

@@ -670,20 +670,21 @@ Resources:
         OKActions: []
 
 <%JAVALAB_APP_TYPES.each do | name | -%>
-
-  <%=name%>HighSevereErrorRateAlarm:
+<%{
+  TenPercentSevereErrorRateAlarm: {Threshold: 10, AlarmName: 'ten_percent_severe_error_rate'},
+  NinetyPercentSevereErrorRateAlarm: {Threshold: 90, AlarmName: 'ninety_percent_severe_error_rate'},
+}.each do |alarmTitle, config| -%>
+  <%=name%><%=alarmTitle%>:
     Type: AWS::CloudWatch::Alarm
     Properties:
-      AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_high_severe_error_rate"
-      AlarmDescription: Send page if Javabuilder severe error rate exceeds 10% for 20
-          minutes. Occasional spikes are expected, but a sustained high error rate
-          is an indication of an outage.
-      ActionsEnabled: true
-      AlarmActions:
-          - !If [SilenceAlertsCondition, !Ref AWS::NoValue, !Sub "arn:aws:sns:${AWS::Region}:${AWS::AccountId}:Javabuilder-high-error-rate"]
+      AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_<%=config[:AlarmName]%>"
+      AlarmDescription: Severe error rate in Javabuilder's <%=name%> build and run lambda (the core of
+          Javabuilder, which executes student <%=name%> code) exceeded <%=config[:Threshold]%>% for four
+          consecutive 5 minute periods.
+      ActionsEnabled: false
       EvaluationPeriods: 4
       DatapointsToAlarm: 4
-      Threshold: 10
+      Threshold: <%=config[:Threshold]%>
       ComparisonOperator: GreaterThanThreshold
       TreatMissingData: notBreaching
       Metrics:
@@ -713,20 +714,24 @@ Resources:
                           Value: !Ref BuildAndRunJava<%=name%>ProjectFunction
                 Period: 300
                 Stat: Sum
+<%end%>
+
 
-  <%=name%>HighErrorRateAlarm:
+<%{
+  TwentyFivePercentErrorRateAlarm: {Threshold: 25, AlarmName: 'twenty_five_percent_error_rate'},
+  NinetyPercentErrorRateAlarm: {Threshold: 90, AlarmName: 'ninety_percent_error_rate'},
+}.each do |alarmTitle, config| -%>
+  <%=name%><%=alarmTitle%>:
     Type: AWS::CloudWatch::Alarm
     Properties:
-      AlarmName: !Sub "${SubDomainName}_build_and_run_<%=name.downcase%>_lambda_error_rate"
+      AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_<%=config[:AlarmName]%>"
       AlarmDescription: Error rate in Javabuilder's <%=name%> build and run lambda (the core of
-          Javabuilder, which executes student <%=name%> code) exceeded 10% for four
+          Javabuilder, which executes student <%=name%> code) exceeded <%=config[:Threshold]%>% for four
           consecutive 5 minute periods.
-      ActionsEnabled: true
-      AlarmActions:
-        - !If [SilenceAlertsCondition, !Ref AWS::NoValue, !Sub "arn:aws:sns:${AWS::Region}:${AWS::AccountId}:javabuilder-build-and-run-lambda-error-rate"]
+      ActionsEnabled: false
       EvaluationPeriods: 4
       DatapointsToAlarm: 4
-      Threshold: 25
+      Threshold: <%=config[:Threshold]%>
       ComparisonOperator: GreaterThanThreshold
       TreatMissingData: notBreaching
       Metrics:
@@ -767,6 +772,7 @@ Resources:
                           Value: !Ref BuildAndRunJava<%=name%>ProjectFunction
                 Period: 300
                 Stat: TC(89000:)
+<%end%>
 
   <%=name%>SlowCleanupTimeAlarm:
     Type: AWS::CloudWatch::Alarm
@@ -894,6 +900,111 @@ Resources:
               Expression: ANOMALY_DETECTION_BAND(m1, 8)
         ThresholdMetricId: ad1
 
+  <%=name%>MinimumUsageAlarm:
+    Type: AWS::CloudWatch::Alarm
+    Properties:
+        AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_minimum_usage"
+        AlarmDescription: This alarm is to be used as part of a composite alarm, not by itself.
+            It triggers if the usage is above a minimum threshold, so we do not alarm on error
+            rates if we have very low usage.
+        ActionsEnabled: false
+        MetricName: Invocations
+        Namespace: AWS/Lambda
+        Statistic: Sum
+        Dimensions:
+            - Name: FunctionName
+              Value: !Ref BuildAndRunJava<%=name%>ProjectFunction
+        Period: 300
+        EvaluationPeriods: 4
+        DatapointsToAlarm: 4
+        Threshold: 100
+        ComparisonOperator: GreaterThanOrEqualToThreshold
+        TreatMissingData: notBreaching
+  
+  <%=name%>SevereErrorRateAlarm:
+    Type: AWS::CloudWatch::CompositeAlarm
+    DependsOn:
+      - <%=name%>TenPercentSevereErrorRateAlarm
+      - <%=name%>MinimumUsageAlarm
+      - <%=name%>ElevatedSevereErrorRateAlarm
+    Properties:
+        AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_severe_error_rate"
+        AlarmDescription: Alarm if Javabuilder severe error rate exceeds 10% every 5 minutes for 20
+          minutes and there are at least 100 requests every 5 minutes. 
+          Occasional spikes are expected, but a sustained elevated severe error rate is an indication of an issue.
+          Severe errors are generated and emitted by our code.
+        ActionsEnabled: true
+        AlarmActions:
+            - !If [SilenceAlertsCondition, !Ref AWS::NoValue, !Sub "arn:aws:sns:${AWS::Region}:${AWS::AccountId}:Javabuilder-high-error-rate"]
+        AlarmRule: !Sub "ALARM(${SubDomainName}_<%=name.downcase%>_ten_percent_severe_error_rate) AND 
+            ALARM(${SubDomainName}_<%=name.downcase%>_minimum_usage)"
+        InsufficientDataActions: []
+        OKActions: []
+        ActionsSuppressor: !Sub "arn:aws:cloudwatch:${AWS::Region}:${AWS::AccountId}:alarm:${SubDomainName}_<%=name.downcase%>_elevated_severe_error_rate"
+        ActionsSuppressorWaitPeriod: 120
+        ActionsSuppressorExtensionPeriod: 120
+
+  <%=name%>ElevatedSevereErrorRateAlarm:
+    Type: AWS::CloudWatch::CompositeAlarm
+    DependsOn:
+      - <%=name%>NinetyPercentSevereErrorRateAlarm
+      - <%=name%>MinimumUsageAlarm
+    Properties:
+        AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_elevated_severe_error_rate"
+        AlarmDescription: Alarm if Javabuilder severe error rate exceeds 90% every 5 minutes for 20
+          minutes and there are at least 100 requests every 5 minutes. 
+          Occasional spikes are expected, but a sustained high severe error rate is an indication of an outage.
+          Severe errors are generated and emitted by our code.
+        ActionsEnabled: true
+        AlarmActions:
+            - !If [SilenceAlertsCondition, !Ref AWS::NoValue, !Sub "arn:aws:sns:${AWS::Region}:${AWS::AccountId}:Javabuilder-high-error-rate"]
+        AlarmRule: !Sub "ALARM(${SubDomainName}_<%=name.downcase%>_ninety_percent_severe_error_rate) AND 
+            ALARM(${SubDomainName}_<%=name.downcase%>_minimum_usage)"
+        InsufficientDataActions: []
+        OKActions: []
+  
+  <%=name%>ErrorRateAlarm:
+    Type: AWS::CloudWatch::CompositeAlarm
+    DependsOn:
+      - <%=name%>TwentyFivePercentErrorRateAlarm
+      - <%=name%>MinimumUsageAlarm
+      - <%=name%>ElevatedErrorRateAlarm
+    Properties:
+        AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_error_rate"
+        AlarmDescription: Alarm if Javabuilder severe error rate exceeds 25% every 5 minutes for 20
+          minutes and there are at least 100 requests every 5 minutes. 
+          Occasional spikes are expected, but a sustained elevated error rate is an indication of an issue.
+          Errors are generated by the Lambda system.
+        ActionsEnabled: true
+        AlarmActions:
+            - !If [SilenceAlertsCondition, !Ref AWS::NoValue, !Sub "arn:aws:sns:${AWS::Region}:${AWS::AccountId}:Javabuilder-high-error-rate"]
+        AlarmRule: !Sub "ALARM(${SubDomainName}_<%=name.downcase%>_twenty_five_percent_error_rate) AND 
+            ALARM(${SubDomainName}_<%=name.downcase%>_minimum_usage)"
+        InsufficientDataActions: []
+        OKActions: []
+        ActionsSuppressor: !Sub "arn:aws:cloudwatch:${AWS::Region}:${AWS::AccountId}:alarm:${SubDomainName}_<%=name.downcase%>_elevated_error_rate"
+        ActionsSuppressorWaitPeriod: 120
+        ActionsSuppressorExtensionPeriod: 120
+
+  <%=name%>ElevatedErrorRateAlarm:
+    Type: AWS::CloudWatch::CompositeAlarm
+    DependsOn:
+      - <%=name%>NinetyPercentErrorRateAlarm
+      - <%=name%>MinimumUsageAlarm
+    Properties:
+        AlarmName: !Sub "${SubDomainName}_<%=name.downcase%>_elevated_error_rate"
+        AlarmDescription: Alarm if Javabuilder error rate exceeds 90% every 5 minutes for 20
+          minutes and there are at least 100 requests every 5 minutes. 
+          Occasional spikes are expected, but a sustained high error rate is an indication of an outage.
+          Errors are generated by the Lambda system.
+        ActionsEnabled: true
+        AlarmActions:
+            - !If [SilenceAlertsCondition, !Ref AWS::NoValue, !Sub "arn:aws:sns:${AWS::Region}:${AWS::AccountId}:Javabuilder-high-error-rate"]
+        AlarmRule: !Sub "ALARM(${SubDomainName}_<%=name.downcase%>_ninety_percent_error_rate) AND 
+            ALARM(${SubDomainName}_<%=name.downcase%>_minimum_usage)"
+        InsufficientDataActions: []
+        OKActions: []
+
 <%end -%>
 
 # We use shortened versions of names for partition keys (eg, user_id),

cicd/README.md

@@ -67,3 +67,12 @@ By setting the `TARGET_BRANCH` you can create a new CI/CD pipeline that watches
 ```
 TARGET_BRANCH=mybranch cicd/2-cicd/deploy-cicd.sh
 ```
+
+## Debugging `template.yml.erb`
+If you are are updating the template file and don't want to wait for a full deploy cycle to validate the syntax, you can do the following from `cicd/3-app/javabuilder`:
+```
+erb -T - template.yml.erb > app-template-test.yml
+cfn-lint app-template-test.yml
+```
+This will run cloudformation lint on you template changes and give you a quicker feedback cycle when fixing up syntax.
+Just delete app-template-test.yml when you are done.