From c24fd7cff71917b8534a8881cf09766555087a18 Mon Sep 17 00:00:00 2001
From: rzuo <rongguo.zuo@gmail.com>
Date: Fri, 11 Aug 2023 13:59:11 +0800
Subject: [PATCH 1/2] add logsearch support to ambari

---
 .../AMBARI_LOGSEARCH/3.0.0/alerts.json        |   77 +
 .../configuration/logfeeder-ambari-config.xml |   38 +
 .../3.0.0/configuration/logfeeder-env.xml     |  187 ++
 .../3.0.0/configuration/logfeeder-grok.xml    |   49 +
 .../logfeeder-kafka-output-config.xml         |   61 +
 .../3.0.0/configuration/logfeeder-log4j.xml   |   78 +
 .../configuration/logfeeder-output-config.xml |   37 +
 .../configuration/logfeeder-properties.xml    |  145 ++
 .../logfeeder-system_log-env.xml              |   61 +
 .../configuration/logsearch-admin-json.xml    |   54 +
 .../logsearch-audit_logs-solrconfig.xml       |   62 +
 .../configuration/logsearch-common-env.xml    |  124 ++
 .../logsearch-common-properties.xml           |   23 +
 .../3.0.0/configuration/logsearch-env.xml     |  201 ++
 .../3.0.0/configuration/logsearch-log4j.xml   |  121 ++
 .../configuration/logsearch-properties.xml    |  317 +++
 .../logsearch-service_logs-solrconfig.xml     |   62 +
 .../AMBARI_LOGSEARCH/3.0.0/kerberos.json      |   72 +
 .../AMBARI_LOGSEARCH/3.0.0/metainfo.xml       |  204 ++
 .../AMBARI_LOGSEARCH/3.0.0/metrics.json       |   53 +
 .../3.0.0/package/alerts/alert_logfeeder.py   |   85 +
 .../3.0.0/package/scripts/logfeeder.py        |   70 +
 .../3.0.0/package/scripts/logsearch.py        |   71 +
 .../3.0.0/package/scripts/params.py           |  429 ++++
 .../3.0.0/package/scripts/service_check.py    |   41 +
 .../3.0.0/package/scripts/setup_logfeeder.py  |  136 ++
 .../3.0.0/package/scripts/setup_logsearch.py  |  162 ++
 .../3.0.0/package/scripts/status_params.py    |   38 +
 .../templates/HadoopServiceConfig.json.j2     |  505 +++++
 .../package/templates/global.config.json.j2   |   27 +
 .../templates/input.config-logsearch.json.j2  |   55 +
 .../package/templates/logfeeder_jaas.conf.j2  |   26 +
 .../package/templates/logsearch_jaas.conf.j2  |   26 +
 .../properties/audit_logs-solrconfig.xml.j2   | 1889 +++++++++++++++++
 .../properties/input.config-ambari.json.j2    |  858 ++++++++
 .../3.0.0/properties/kafka-output.json.j2     |   34 +
 .../logfeeder-default_grok_patterns.j2        |  148 ++
 .../3.0.0/properties/logfeeder-env.sh.j2      |   47 +
 .../3.0.0/properties/logfeeder-log4j.xml.j2   |   72 +
 .../3.0.0/properties/logsearch-admin.json.j2  |   25 +
 .../3.0.0/properties/logsearch-env.sh.j2      |   51 +
 .../3.0.0/properties/logsearch-log4j.xml.j2   |   82 +
 .../3.0.0/properties/output.config.json.j2    |   59 +
 .../3.0.0/properties/secure_log.json          |   31 +
 .../properties/service_logs-solrconfig.xml.j2 | 1889 +++++++++++++++++
 .../3.0.0/properties/system_messages.json     |   31 +
 .../3.0.0/quicklinks/quicklinks.json          |   35 +
 .../3.0.0/role_command_order.json             |    9 +
 .../AMBARI_LOGSEARCH/3.0.0/service_advisor.py |  176 ++
 .../3.0.0/themes/credentials.json             |   42 +
 .../3.0.0/themes/directories.json             |  137 ++
 .../AMBARI_LOGSEARCH/3.0.0/themes/theme.json  |  480 +++++
 52 files changed, 9792 insertions(+)
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/alerts.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-ambari-config.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-env.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-grok.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-kafka-output-config.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-log4j.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-output-config.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-properties.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-system_log-env.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-admin-json.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-audit_logs-solrconfig.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-env.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-properties.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-env.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-log4j.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-properties.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-service_logs-solrconfig.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/kerberos.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metainfo.xml
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metrics.json
 create mode 100755 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/alerts/alert_logfeeder.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logfeeder.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logsearch.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/params.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/service_check.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logfeeder.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logsearch.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/status_params.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/HadoopServiceConfig.json.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/global.config.json.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/input.config-logsearch.json.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logfeeder_jaas.conf.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logsearch_jaas.conf.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/audit_logs-solrconfig.xml.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/input.config-ambari.json.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/kafka-output.json.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-default_grok_patterns.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-env.sh.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-log4j.xml.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-admin.json.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-env.sh.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-log4j.xml.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/output.config.json.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/secure_log.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/service_logs-solrconfig.xml.j2
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/system_messages.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/quicklinks/quicklinks.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/role_command_order.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/service_advisor.py
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/credentials.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/directories.json
 create mode 100644 ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/theme.json

diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/alerts.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/alerts.json
new file mode 100644
index 00000000000..9f9a38d94ec
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/alerts.json
@@ -0,0 +1,77 @@
+{
+  "AMBARI_LOGSEARCH": {
+    "service": [
+      {
+        "name": "logfeeder_process_percent",
+        "label": "Percent LogFeeders Available",
+        "description": "This service-level alert is triggered if the configured percentage of LogFeeders processes cannot be determined to be up and listening on the network for the configured warning and critical thresholds. It aggregates the results of LogFeeders process down checks.",
+        "interval": 1,
+        "scope": "SERVICE",
+        "enabled": true,
+        "source": {
+          "type": "AGGREGATE",
+          "alert_name": "logfeeder_process",
+          "reporting": {
+            "ok": {
+              "text": "affected: [{1}], total: [{0}]"
+            },
+            "warning": {
+              "text": "affected: [{1}], total: [{0}]",
+              "value": 10
+            },
+            "critical": {
+              "text": "affected: [{1}], total: [{0}]",
+              "value": 30
+            },
+            "units" : "%",
+            "type": "PERCENT"
+          }
+        }
+      }
+    ],
+    "LOGSEARCH_SERVER": [
+      {
+        "name": "logsearch_ui",
+        "label": "Log Search Web UI",
+        "description": "This host-level alert is triggered if the Log Search UI is unreachable.",
+        "interval": 1,
+        "scope": "ANY",
+        "source": {
+          "type": "WEB",
+          "uri": {
+            "http": "{{logsearch-properties/logsearch.protocol}}://0.0.0.0:{{logsearch-properties/logsearch.http.port}}/api/v1/info",
+            "https": "{{logsearch-properties/logsearch.protocol}}://0.0.0.0:{{logsearch-properties/logsearch.https.port}}/api/v1/info",
+            "https_property": "{{logsearch-properties/logsearch.protocol}}",
+            "https_property_value": "https",
+            "default_port": 61888,
+            "connection_timeout": 5.0
+          },
+          "reporting": {
+            "ok": {
+              "text": "HTTP {0} response in {2:.3f}s"
+            },
+            "warning": {
+              "text": "HTTP {0} response from {1} in {2:.3f}s ({3})"
+            },
+            "critical": {
+              "text": "Connection failed to {1} ({3})"
+            }
+          }
+        }
+      }
+    ],
+    "LOGSEARCH_LOGFEEDER": [
+      {
+        "name": "logfeeder_process",
+        "label": "LogFeeder Status",
+        "description": "This alert indicates the status of the LogFeeder process as determined by the logfeeder status script.",
+        "interval": 1,
+        "scope": "ANY",
+        "source": {
+          "type": "SCRIPT",
+          "path": "AMBARI_LOGSEARCH/3.0.0/package/alerts/alert_logfeeder.py"
+        }
+      }
+    ]
+  }
+}
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-ambari-config.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-ambari-config.xml
new file mode 100644
index 00000000000..868e32c5281
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-ambari-config.xml
@@ -0,0 +1,38 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration supports_final="false" supports_adding_forbidden="true">
+  <property>
+    <name>content</name>
+    <display-name>Ambari Log Feeder config</display-name>
+    <description>Grok filters and input file locations for ambari related log files</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <type>content</type>
+      <show-property-name>false</show-property-name>
+      <property-file-name>input.config-ambari.json.j2</property-file-name>
+      <property-file-type>text</property-file-type>
+      <visible>false</visible>
+    </value-attributes>
+    <on-ambari-upgrade add="true" update="true"/>
+  </property>
+</configuration>
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-env.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-env.xml
new file mode 100644
index 00000000000..3076a06e562
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-env.xml
@@ -0,0 +1,187 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>logfeeder_pid_dir</name>
+    <value>/var/run/ambari-logsearch-logfeeder</value>
+    <description>Log Feeder Process ID Directory</description>
+    <display-name>Log Feeder pid dir</display-name>
+    <value-attributes>
+      <type>directory</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_log_dir</name>
+    <value>/var/log/ambari-logsearch-logfeeder</value>
+    <description>Log dir for Log Feeder</description>
+    <display-name>Log Feeder log dir</display-name>
+    <value-attributes>
+      <type>directory</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_max_mem</name>
+    <value>512m</value>
+    <description>Max Memory for Logfeeder</description>
+    <display-name>Log Feeder max memory</display-name>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_solr_service_logs_enable</name>
+    <value>true</value>
+    <display-name>Service Logs enabled</display-name>
+    <description>Enable service logs to Solr</description>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_solr_audit_logs_enable</name>
+    <value>true</value>
+    <display-name>Audit Logs enabled</display-name>
+    <description>Enable audit logs to Solr</description>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_truststore_location</name>
+    <value>/etc/security/serverKeys/logsearch.trustStore.jks</value>
+    <display-name>Log Feeder trust store location</display-name>
+    <description>Location of the trust store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_truststore_type</name>
+    <value>jks</value>
+    <display-name>Log Feeder trust store type</display-name>
+    <description>Type of the trust store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_truststore_password</name>
+    <value>bigdata</value>
+    <display-name>Log Feeder trust store password</display-name>
+    <property-type>PASSWORD</property-type>
+    <description>Password to open the trust store file.</description>
+    <value-attributes>
+      <type>password</type>
+      <keystore>true</keystore>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_keystore_location</name>
+    <value>/etc/security/serverKeys/logsearch.keyStore.jks</value>
+    <display-name>Log Feeder key store location</display-name>
+    <description>Location of the key store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_keystore_type</name>
+    <value>jks</value>
+    <display-name>Log Feeder store type</display-name>
+    <description>Type of the key store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_keystore_password</name>
+    <value>bigdata</value>
+    <display-name>Log Feeder key store password</display-name>
+    <property-type>PASSWORD</property-type>
+    <description>Password to open the key store file.</description>
+    <value-attributes>
+      <type>password</type>
+      <keystore>true</keystore>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_external_solr_kerberos_keytab</name>
+    <value></value>
+    <display-name>Log Feeder External Solr keytab</display-name>
+    <description>The path to the Kerberos Keytab file containing service principal of Log Feeder e.g. /etc/security/keytabs/logfeeder.service.keytab</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_external_solr_kerberos_principal</name>
+    <value></value>
+    <display-name>Log Feeder External Solr principal</display-name>
+    <description>The service principal for Log Feeder which will be used to access SolrClient e.g. logfeeder/_HOST@REALM</description>
+    <property-type>KERBEROS_PRINCIPAL</property-type>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_kerberos_keytab</name>
+    <value>/etc/security/keytabs/logfeeder.service.keytab</value>
+    <display-name>Log Feeder Solr keytab</display-name>
+    <description>The path to the Kerberos Keytab file containing service principal of the Log Feeder.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_kerberos_principal</name>
+    <value>logfeeder</value>
+    <display-name>Log Feeder Solr principal</display-name>
+    <description>The service principal for Log Feeder which will be used to access Log Search Solr.</description>
+    <property-type>KERBEROS_PRINCIPAL</property-type>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>ambari_server_log_dir</name>
+    <value>/var/log/ambari-server</value>
+    <description>Log dir of Ambari Server. Use this property when bootstrapping Logsearch only.</description>
+    <display-name>Ambari Server log dir</display-name>
+    <value-attributes>
+      <type>directory</type>
+      <editable-only-at-install>true</editable-only-at-install>
+    </value-attributes>
+    <on-ambari-upgrade add="false"/>
+  </property>
+  <property>
+    <name>ambari_agent_log_dir</name>
+    <value>/var/log/ambari-agent</value>
+    <description>Log dir of Ambari Agent. Use this property when bootstrapping Logsearch only.</description>
+    <display-name>Ambari Agent log dir</display-name>
+    <value-attributes>
+      <type>directory</type>
+      <editable-only-at-install>true</editable-only-at-install>
+    </value-attributes>
+    <on-ambari-upgrade add="false"/>
+  </property>
+  <property>
+    <name>content</name>
+    <display-name>logfeeder-env template</display-name>
+    <description>This is the jinja template for logfeeder-env.sh file</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>logfeeder-env.sh.j2</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true" update="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-grok.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-grok.xml
new file mode 100644
index 00000000000..e280bb9ae27
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-grok.xml
@@ -0,0 +1,49 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>default_grok_patterns</name>
+    <display-name>Default Grok Patterns</display-name>
+    <description>This is the jinja template for default grok patterns</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <read-only>true</read-only>
+      <property-file-name>logfeeder-default_grok_patterns.j2</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>custom_grok_patterns</name>
+    <display-name>Custom Grok Patterns</display-name>
+    <description>This is the jinja template for custom grok patterns</description>
+    <value/>
+    <property-type>TEXT</property-type>
+    <value-attributes>
+      <type>multiLine</type>
+      <empty-value-valid>true</empty-value-valid>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-kafka-output-config.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-kafka-output-config.xml
new file mode 100644
index 00000000000..1f711097c92
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-kafka-output-config.xml
@@ -0,0 +1,61 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration supports_final="false" supports_adding_forbidden="true">
+  <property>
+    <name>logfeeder_kafka_output_enabled</name>
+    <value>false</value>
+    <description>Enable Kafka output for Log Feeder</description>
+    <display-name>Log Feeder Kafka output enabled</display-name>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_kafka_broker_list</name>
+    <value>localhost:6667</value>
+    <display-name>Log Feeder Kafka broker list</display-name>
+    <description>Broker list for Kafka output (define the right value, as it can be external, also you can add PLAINTEXT or PLAINTEXTSASL protocol as well to the addresses)</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_kafka_topic</name>
+    <value>log-streaming</value>
+    <display-name>Log Feeder Kafka topic</display-name>
+    <description>Kafka topic which is the destination of Log Feeder outputs</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>content</name>
+    <display-name>Log Feeder Kafka output config</display-name>
+    <description>Kafka output configuration for Log Feeder (data shipping)</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <type>content</type>
+      <show-property-name>false</show-property-name>
+      <property-file-name>kafka-output.json.j2</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-log4j.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-log4j.xml
new file mode 100644
index 00000000000..ba33a007bed
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-log4j.xml
@@ -0,0 +1,78 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>logfeeder_log_maxfilesize</name>
+    <value>10</value>
+    <description>The maximum size of backup file before the log is rotated</description>
+    <display-name>Log Feeder Log: backup file size</display-name>
+    <value-attributes>
+      <unit>MB</unit>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_log_maxbackupindex</name>
+    <value>10</value>
+    <description>The number of backup files</description>
+    <display-name>Log Feeder Log: # of backup files</display-name>
+    <value-attributes>
+      <type>int</type>
+      <minimum>0</minimum>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_json_log_maxfilesize</name>
+    <value>10</value>
+    <description>The maximum size of backup file before the log is rotated</description>
+    <display-name>Log Feeder JSON Log: backup file size</display-name>
+    <value-attributes>
+      <unit>MB</unit>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder_json_log_maxbackupindex</name>
+    <value>10</value>
+    <description>The number of backup files</description>
+    <display-name>Log Feeder JSON Log: # of backup files</display-name>
+    <value-attributes>
+      <type>int</type>
+      <minimum>0</minimum>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>content</name>
+    <display-name>logfeeder-log4j template</display-name>
+    <description>This is the jinja template for log4j.xml file for Log Feeder</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>logfeeder-log4j.xml.j2</property-file-name>
+      <property-file-type>xml</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-output-config.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-output-config.xml
new file mode 100644
index 00000000000..29999ba25f6
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-output-config.xml
@@ -0,0 +1,37 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration supports_final="false" supports_adding_forbidden="true">
+  <property>
+    <name>content</name>
+    <display-name>Log Feeder output config</display-name>
+    <description>Output configuration for Log Feeder (data shipping)</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <type>content</type>
+      <show-property-name>false</show-property-name>
+      <property-file-name>output.config.json.j2</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true" update="true"/>
+  </property>
+</configuration>
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-properties.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-properties.xml
new file mode 100644
index 00000000000..1b7643f2a16
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-properties.xml
@@ -0,0 +1,145 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration>
+  <property>
+    <name>logfeeder.config.files</name>
+    <value>{default_config_files}</value>
+    <description>Comma separated config files in grok format</description>
+    <display-name>Log Feeder config files</display-name>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.checkpoint.folder</name>
+    <value>/usr/lib/ambari-logsearch-logfeeder/conf/checkpoints</value>
+    <description>Checkpoint folder for Log Feeder</description>
+    <display-name>Log Feeder checkpoint dir</display-name>
+    <value-attributes>
+      <type>directory</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true" update="true"/>
+  </property>
+  <property>
+    <name>logfeeder.metrics.collector.hosts</name>
+    <value>{metrics_collector_hosts}</value>
+    <description>Metrics collector hosts for pushing metrics by Log Feeder</description>
+    <display-name>Metrics collector hosts</display-name>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.log.filter.enable</name>
+    <value>true</value>
+    <description>Enable Log filtering based on log level (INFO,ERROR,WARN etc.)</description>
+    <display-name>Log Filter enable</display-name>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.solr.config.interval</name>
+    <value>5</value>
+    <description>Interval to fetch filter config from Solr in sec</description>
+    <display-name>Fetch Solr config interval</display-name>
+    <value-attributes>
+      <type>int</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.solr.implicit.routing</name>
+    <value>false</value>
+    <description>
+      Use implicit routing for Solr Collections.
+    </description>
+    <display-name>Log Feeder Solr implicit routing</display-name>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.cache.enabled</name>
+    <value>false</value>
+    <description>
+      Enable input cache for every monitored input file. The cache stores log lines, based on the data, duplications can be dropped.
+    </description>
+    <display-name>Input cache enabled</display-name>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.cache.size</name>
+    <value>100</value>
+    <description>Size of the input caches</description>
+    <display-name>Input cache size</display-name>
+    <value-attributes>
+      <type>int</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.cache.dedup.interval</name>
+    <value>1000</value>
+    <description>
+      If input cache is enabled, Log Feeder can drop any duplicated line during log processing,
+      but only if the duplicated lines/messages are in the same interval (in milliseconds) with the original message/line.
+    </description>
+    <display-name>Input cache dedup interval</display-name>
+    <value-attributes>
+      <type>int</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.cache.last.dedup.enabled</name>
+    <value>false</value>
+    <description>
+      If last dedup is enabled for input cache, Log Feeder will drop every new line (message), which is the same as the last line.
+    </description>
+    <display-name>Input cache last dedup</display-name>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.cache.key.field</name>
+    <value>log_message</value>
+    <description>
+      Key field, which will be used as keys in the Input cache. (by defalt, log_message represets the message part of processed data)
+    </description>
+    <display-name>Input cache key field</display-name>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logfeeder.include.default.level</name>
+    <value>FATAL,ERROR,WARN</value>
+    <description>Include default Log Feeder Log Levels for Log Search. Used for bootstrapping the configuration only. (levels: FATAL,ERROR,WARN,INFO,DEBUG,TRACE)</description>
+    <display-name>Log Feeder Log Levels</display-name>
+    <value-attributes>
+      <editable-only-at-install>true</editable-only-at-install>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-system_log-env.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-system_log-env.xml
new file mode 100644
index 00000000000..0461409c531
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logfeeder-system_log-env.xml
@@ -0,0 +1,61 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration supports_adding_forbidden="true">
+
+  <property>
+    <name>logfeeder_system_messages_content</name>
+    <display-name>System messages grok filter</display-name>
+    <description>This is the jinja template for input.config.system_messages.json file</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>system_messages.json</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+
+  <property>
+    <name>logfeeder_secure_log_content</name>
+    <display-name>Secure log grok filter</display-name>
+    <description>This is the jinja template for input.config.secure_log.json file</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>secure_log.json</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+
+  <property>
+    <name>logfeeder_system_log_enabled</name>
+    <display-name>Enable system logs</display-name>
+    <description>Enable Log Feeders to load system logs to the Log Search solr</description>
+    <value>false</value>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+
+</configuration>
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-admin-json.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-admin-json.xml
new file mode 100644
index 00000000000..34f64abd9d8
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-admin-json.xml
@@ -0,0 +1,54 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>logsearch_admin_username</name>
+    <value>ambari_logsearch_admin</value>
+    <display-name>Admin username</display-name>
+    <description>Log Search admin username</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property require-input="true">
+    <name>logsearch_admin_password</name>
+    <value/>
+    <property-type>PASSWORD</property-type>
+    <display-name>Admin password</display-name>
+    <description>Log Search admin password</description>
+    <value-attributes>
+      <overridable>false</overridable>
+      <type>password</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>content</name>
+    <display-name>logsearch-admin-json template</display-name>
+    <description>This is the jinja template for logsearch-admin.json file</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>logsearch-admin.json.j2</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-audit_logs-solrconfig.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-audit_logs-solrconfig.xml
new file mode 100644
index 00000000000..5a07b6946fb
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-audit_logs-solrconfig.xml
@@ -0,0 +1,62 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>logsearch_audit_logs_max_retention</name>
+    <value>7</value>
+    <display-name>Max retention</display-name>
+    <description>Days to retain the audit logs in Solr</description>
+    <value-attributes>
+      <type>int</type>
+      <overridable>false</overridable>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_audit_logs_merge_factor</name>
+    <value>5</value>
+    <display-name>Merge factor</display-name>
+    <description>The mergeFactor value tells Lucene how many segments of equal size to build before merging them into a
+      single segment. High value merge factor (e.g. 25) improves indexing speed, but slows down searching. Low value
+      (e.g. 5) improves searching, but slows down indexing.
+    </description>
+    <value-attributes>
+      <type>int</type>
+      <overridable>false</overridable>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <!-- solrconfig.xml -->
+  <property>
+    <name>content</name>
+    <display-name>Solrconfig template</display-name>
+    <description>This is the jinja template for solrconfig.xml file for audit logs</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>audit_logs-solrconfig.xml.j2</property-file-name>
+      <property-file-type>xml</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-env.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-env.xml
new file mode 100644
index 00000000000..0d2f029f3ee
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-env.xml
@@ -0,0 +1,124 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>logsearch_use_external_solr</name>
+    <value>false</value>
+    <display-name>Use External Solr</display-name>
+    <description>Use External Solr to store logs</description>
+    <value-attributes>
+      <type>value-list</type>
+      <overridable>false</overridable>
+      <entries>
+        <entry>
+          <value>true</value>
+          <label>ON</label>
+        </entry>
+        <entry>
+          <value>false</value>
+          <label>OFF</label>
+        </entry>
+      </entries>
+      <selection-cardinality>1</selection-cardinality>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_external_solr_zk_znode</name>
+    <value></value>
+    <display-name>External Solr Logs Znode</display-name>
+    <description>Only needed if using custom solr cloud. E.g. /logsearch_solr</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_external_solr_zk_quorum</name>
+    <value></value>
+    <display-name>External Solr Logs ZK Quorum</display-name>
+    <description>Only needed if using custom solr cloud. E.g. zk1:2181,zk2:2182</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_external_solr_ssl_enabled</name>
+    <value>false</value>
+    <display-name>Log Search External Solr SSL Enabled</display-name>
+    <description>Use SSL to connect to the external solr</description>
+    <value-attributes>
+      <type>value-list</type>
+      <overridable>false</overridable>
+      <entries>
+        <entry>
+          <value>true</value>
+          <label>ON</label>
+        </entry>
+        <entry>
+          <value>false</value>
+          <label>OFF</label>
+        </entry>
+      </entries>
+      <selection-cardinality>1</selection-cardinality>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_external_solr_kerberos_enabled</name>
+    <value>false</value>
+    <display-name>Log Search External Solr Kerberos Enabled</display-name>
+    <description>Use Kerberos to connect to the external solr</description>
+    <value-attributes>
+      <type>value-list</type>
+      <overridable>false</overridable>
+      <entries>
+        <entry>
+          <value>true</value>
+          <label>ON</label>
+        </entry>
+        <entry>
+          <value>false</value>
+          <label>OFF</label>
+        </entry>
+      </entries>
+      <selection-cardinality>1</selection-cardinality>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+
+  <property>
+    <name>logsearch_zookeeper_external_principal</name>
+    <value>zookeeper/_HOST@EXAMPLE.COM</value>
+    <display-name>External ZK principal</display-name>
+    <description>The kerberos service principal name for external ZooKeeper.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+
+  <property>
+    <name>logsearch_zookeeper_external_enabled</name>
+    <value>false</value>
+    <display-name>Enable External ZK</display-name>
+    <description>Enable external ZooKeeper. If the Solr is secure, the external ZK should be secure as well.</description>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-properties.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-properties.xml
new file mode 100644
index 00000000000..00870281471
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-common-properties.xml
@@ -0,0 +1,23 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration>
+</configuration>
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-env.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-env.xml
new file mode 100644
index 00000000000..1f32655fc1f
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-env.xml
@@ -0,0 +1,201 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>logsearch_pid_dir</name>
+    <value>/var/run/ambari-logsearch-portal</value>
+    <description>Log Search Process ID Directory</description>
+    <display-name>Log Search pid dir</display-name>
+    <value-attributes>
+      <type>directory</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_log_dir</name>
+    <value>/var/log/ambari-logsearch-portal</value>
+    <description>Log directory for Log Search</description>
+    <display-name>Log Search log dir</display-name>
+    <value-attributes>
+      <type>directory</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_user</name>
+    <value>logsearch</value>
+    <property-type>USER</property-type>
+    <description>Log Search user</description>
+    <display-name>Log Search User</display-name>
+    <value-attributes>
+      <type>user</type>
+      <overridable>false</overridable>
+      <user-groups>
+        <property>
+          <type>cluster-env</type>
+          <name>user_group</name>
+        </property>
+      </user-groups>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_app_max_memory</name>
+    <value>1024</value>
+    <description>Max memory for Log Search Portal</description>
+    <display-name>Log Search Maximum Memory</display-name>
+    <value-attributes>
+      <type>int</type>
+      <minimum>512</minimum>
+      <maximum>2048</maximum>
+      <unit>MB</unit>
+      <increment-step>256</increment-step>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_debug_enabled</name>
+    <value>false</value>
+    <display-name>Log Search Debug Enabled</display-name>
+    <description>Enable debug mode for Log Search Server</description>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_debug_port</name>
+    <value>5005</value>
+    <display-name>Log Search Debug Port</display-name>
+    <description>Debug port for Log Search Server</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_external_solr_kerberos_keytab</name>
+    <value></value>
+    <display-name>Log Search External Solr keytab</display-name>
+    <description>The path to the Kerberos Keytab file containing service principal of Log Search e.g. /etc/security/keytabs/logsearch.service.keytab</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_external_solr_kerberos_principal</name>
+    <value></value>
+    <display-name>Log Search External Solr principal</display-name>
+    <description>The service principal for Log Search which will be used to access SolrClient  e.g. logsearch/_HOST@REALM</description>
+    <property-type>KERBEROS_PRINCIPAL</property-type>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_kerberos_service_users</name>
+    <display-name>Log Search service users</display-name>
+    <value/>
+    <value-attributes>
+      <empty-value-valid>true</empty-value-valid>
+    </value-attributes>
+    <description>
+      List of comma separated kerberos service users who can read from logsearch collections if the cluster is
+      secure. (logsearch user supported by default)
+    </description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_truststore_location</name>
+    <value>/usr/lib/ambari-logsearch-portal/conf/keys/logsearch.jks</value>
+    <display-name>Log Search trust store location</display-name>
+    <description>Location of the trust store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_truststore_type</name>
+    <value>jks</value>
+    <display-name>Log Search trust store type</display-name>
+    <description>Type of the trust store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_truststore_password</name>
+    <value>bigdata</value>
+    <display-name>Log Search trust store password</display-name>
+    <property-type>PASSWORD</property-type>
+    <description>Password to open the trust store file.</description>
+    <value-attributes>
+      <type>password</type>
+      <keystore>true</keystore>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_keystore_location</name>
+    <value>/usr/lib/ambari-logsearch-portal/conf/keys/logsearch.jks</value>
+    <display-name>Log Search key store location</display-name>
+    <description>Location of the key store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_keystore_type</name>
+    <value>jks</value>
+    <display-name>Log Search key store type</display-name>
+    <description>Type of the key store file.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_keystore_password</name>
+    <value>bigdata</value>
+    <display-name>Log Search key store password</display-name>
+    <property-type>PASSWORD</property-type>
+    <description>Password to open the key store file.</description>
+    <value-attributes>
+      <type>password</type>
+      <keystore>true</keystore>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_kerberos_keytab</name>
+    <value>/etc/security/keytabs/logsearch.service.keytab</value>
+    <display-name>Log Search keytab</display-name>
+    <description>The path to the Kerberos Keytab file containing service principal of Log Search.</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_kerberos_principal</name>
+    <value>logsearch</value>
+    <display-name>Log Search principal</display-name>
+    <description>The service principal for Log Search which will be used to access SolrClient.</description>
+    <property-type>KERBEROS_PRINCIPAL</property-type>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <!-- logsearch-env.sh -->
+  <property>
+    <name>content</name>
+    <display-name>logsearch-env template</display-name>
+    <description>This is the jinja template for logsearch-env.sh file</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>logsearch-env.sh.j2</property-file-name>
+      <property-file-type>text</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true" update="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-log4j.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-log4j.xml
new file mode 100644
index 00000000000..31f7d57fbea
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-log4j.xml
@@ -0,0 +1,121 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <!-- log4j.xml -->
+  <property>
+    <name>logsearch_log_maxfilesize</name>
+    <value>10</value>
+    <description>The maximum size of backup file before the log is rotated</description>
+    <display-name>Log Search Log: backup file size</display-name>
+    <value-attributes>
+      <unit>MB</unit>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_log_maxbackupindex</name>
+    <value>10</value>
+    <description>The number of backup files</description>
+    <display-name>Log Search Log: # of backup files</display-name>
+    <value-attributes>
+      <type>int</type>
+      <minimum>0</minimum>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_json_log_maxfilesize</name>
+    <value>10</value>
+    <description>The maximum size of backup file before the log is rotated</description>
+    <display-name>Log Search JSON Log: backup file size</display-name>
+    <value-attributes>
+      <unit>MB</unit>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_json_log_maxbackupindex</name>
+    <value>10</value>
+    <description>The number of backup files</description>
+    <display-name>Log Search JSON Log: # of backup files</display-name>
+    <value-attributes>
+      <type>int</type>
+      <minimum>0</minimum>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_audit_log_maxfilesize</name>
+    <value>10</value>
+    <description>The maximum size of backup file before the log is rotated</description>
+    <display-name>Log Search Audit Log: backup file size</display-name>
+    <value-attributes>
+      <unit>MB</unit>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_audit_log_maxbackupindex</name>
+    <value>10</value>
+    <description>The number of backup files</description>
+    <display-name>Log Search Audit Log: # of backup files</display-name>
+    <value-attributes>
+      <type>int</type>
+      <minimum>0</minimum>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_perf_log_maxfilesize</name>
+    <value>10</value>
+    <description>The maximum size of backup file before the log is rotated</description>
+    <display-name>Log Search Performance Log: backup file size</display-name>
+    <value-attributes>
+      <unit>MB</unit>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_perf_log_maxbackupindex</name>
+    <value>10</value>
+    <description>The number of backup files</description>
+    <display-name>Log Search Performance Log: # of backup files</display-name>
+    <value-attributes>
+      <type>int</type>
+      <minimum>0</minimum>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>content</name>
+    <display-name>logsearch-log4j template</display-name>
+    <description>This is the jinja template for log4j.xml file for Log Search server</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>logsearch-log4j.xml.j2</property-file-name>
+      <property-file-type>xml</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-properties.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-properties.xml
new file mode 100644
index 00000000000..853fa023ab9
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-properties.xml
@@ -0,0 +1,317 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<configuration>
+  <property>
+    <name>logsearch.http.port</name>
+    <value>61888</value>
+    <description>Default port for Log Search UI (HTTP)</description>
+    <display-name>Log Search UI Http Port</display-name>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.https.port</name>
+    <value>61888</value>
+    <description>Default port for Log Search UI (HTTPS)</description>
+    <display-name>Log Search UI Https Port</display-name>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.protocol</name>
+    <value>http</value>
+    <description>Protocol (http or https)</description>
+    <display-name>Log Search UI Protocol</display-name>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.collection.service.logs.numshards</name>
+    <value>4</value>
+    <display-name>Log Search Solr Service Logs Shards</display-name>
+    <description>Number of shards for Service Logs collection</description>
+    <value-attributes>
+      <type>int</type>
+      <minimum>1</minimum>
+      <maximum>20</maximum>
+      <unit>int</unit>
+      <increment-step>1</increment-step>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.collection.service.logs.replication.factor</name>
+    <value>2</value>
+    <display-name>Log Search Solr Service Logs Replication Factor</display-name>
+    <description>Replication factor for Service Logs Solr collection</description>
+    <value-attributes>
+      <type>int</type>
+      <minimum>1</minimum>
+      <maximum>10</maximum>
+      <unit>int</unit>
+      <increment-step>1</increment-step>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.collection.audit.logs.numshards</name>
+    <value>4</value>
+    <display-name>Log Search Solr Audit Logs Shards</display-name>
+    <description>Number of shards for Audit Logs collection</description>
+    <value-attributes>
+      <type>int</type>
+      <minimum>1</minimum>
+      <maximum>20</maximum>
+      <unit>int</unit>
+      <increment-step>1</increment-step>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.collection.audit.logs.replication.factor</name>
+    <value>2</value>
+    <display-name>Log Search Solr Audit Logs Replication Factor</display-name>
+    <description>Replication factor for Audit Logs Solr collection</description>
+    <value-attributes>
+      <type>int</type>
+      <minimum>1</minimum>
+      <maximum>10</maximum>
+      <unit>int</unit>
+      <increment-step>1</increment-step>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.solr.collection.service.logs</name>
+    <value>hadoop_logs</value>
+    <display-name>Log Search Solr Service Logs Collection</display-name>
+    <description>Name for the service logs collection</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.solr.collection.audit.logs</name>
+    <value>audit_logs</value>
+    <display-name>Log Search Solr Audit Logs Collection</display-name>
+    <description>Name for the audit logs collection</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.service.logs.fields</name>
+    <value>logtime,level,event_count,ip,type,seq_num,path,file,line_number,host,log_message,id</value>
+    <display-name>Log Search Solr Service Logs Fields</display-name>
+    <description>Solr fields for service logs</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.web.service_logs.component.labels</name>
+    <value>hst_agent:HST Agent,hst_server:HST Server,activity_analyser:Activity Analyzer,ams_hbase_master:AMS HBase Master,ams_hbase_regionserver:AMS HBase RegionServer,ams_collector:AMS Metrics Collector,ams_monitor:AMS Metric Monitor,ams_grafana:AMS Grafana,ranger_kms:Ranger KMS,mapred_historyserver:MapReduce History Server,zookeeper:ZooKeeper Server,logsearch_app:Log Search Server,logsearch_feeder:Log Feeder,logsearch_perf:Log Search Performance,zeppelin:Zeppelin Notebook,spark2_jobhistory_server:Spark History Server,spark2_thriftserver:Spark Thrift Server,livy2_server:Spark Livy Server,ranger_dbpatch:Ranger DB Patch,ambari_config_changes:Ambari Config Change,ambari_eclipselink:Ambari EclipseLink,ambari_server_check_database:Ambari Check DB,storm_drpc:Storm DRPC,storm_ui:Storm UI,oozie_app:Oozie Server,kafka_logcleaner:Kafka Log Cleaner,kafka_server:Kafka Server,kafka_statechange:Kafka State Change,hbase_master:HBase Master,hbase_regionserver:HBase RegionServer,hbase_phoenix_server:HBase Phoenix Query Server,atlas_app:Atlas Metadata Server,yarn_nodemanager:YARN NodeManager,yarn_resourcemanager:YARN ResourceManager,yarn_timelineserver:YARN Timeline Server,yarn_historyserver:YARN History Server,yarn_jobsummary:YARN Job Summary,knox_cli:Knox CLI,knox_ldap:Knox LDAP,hive_server:HiveServer2,hive_server_interactive:HiveServer2 Interactive,hdfs_datanode:HDFS DataNode,hdfs_namenode:HDFS NameNode,hdfs_journalnode:HDFS JournalNode,hdfs_secondary_namenode:HDFS Secondary NameNode,hdfs_zkfc:HDFS ZKFailoverController,hdfs_nfs3:HDFS NFSGateway</value>
+    <display-name>Log Search Component Names</display-name>
+    <description>Component name mapping for the Log Search UI (mycomponent1:My Label1,mycomponent2:My Label2), by default _ are replaced with spaces and first letters and latters after undersocre transformed to uppercase latters </description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.service.logs.split.interval.mins</name>
+    <value>15</value>
+    <display-name>Log Search Service Logs split interval</display-name>
+    <description>Will create multiple collections and use alias. Valid values are single,hour_week</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.audit.logs.split.interval.mins</name>
+    <value>15</value>
+    <display-name>Log Search Audit Logs split interval</display-name>
+    <description>Will switch the shard after the interval specified. Valid values are none and greater than 1
+    </description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.solr.implicit.routing</name>
+    <value>false</value>
+    <description>
+      Use implicit routing for Solr Collections.
+    </description>
+    <display-name>Log Search Solr implicit routing</display-name>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.solr.audit.logs.use.ranger</name>
+    <value>false</value>
+    <display-name>Ranger Audit Logs Enabled</display-name>
+    <description>Use Ranger Audit collection. This is supported only if Ranger Solr is installed in SolrCloud mode</description>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.ranger.audit.logs.collection.name</name>
+    <value>ranger_audits</value>
+    <display-name>Log Search Solr Ranger Audit Logs Collection</display-name>
+    <description>Name for the ranger audit logs collection</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.solr.metrics.collector.hosts</name>
+    <value>{metrics_collector_hosts}</value>
+    <description>Metrics collector hosts for pushing metrics by Log Search Solr</description>
+    <display-name>Metrics collector hosts</display-name>
+    <value-attributes>
+      <empty-value-valid>true</empty-value-valid>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.auth.external_auth.enabled</name>
+    <value>true</value>
+    <display-name>External authentication</display-name>
+    <description>Enable external authentication</description>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="false"/>
+  </property>
+  <property>
+    <name>logsearch.auth.external_auth.host_url</name>
+    <value>{ambari_server_auth_host_url}</value>
+    <display-name>External authentication url - host and port</display-name>
+    <description>The host and port of the external server used to authenticate</description>
+    <on-ambari-upgrade add="false"/>
+  </property>
+  <property>
+    <name>logsearch.auth.external_auth.login_url</name>
+    <value>/api/v1/users/$USERNAME/privileges?fields=*</value>
+    <display-name>External authentication url - path and query</display-name>
+    <description>The path and query of the external server used to authenticate</description>
+    <on-ambari-upgrade add="false"/>
+  </property>
+  <property>
+    <name>logsearch.roles.allowed</name>
+    <value>AMBARI.ADMINISTRATOR,CLUSTER.ADMINISTRATOR</value>
+    <display-name>Roles allowed</display-name>
+    <description>Comma separated roles for external authentication</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.auth.jwt.enabled</name>
+    <value>false</value>
+    <display-name>JWT authentication enabled</display-name>
+    <description>Enable JWT based authentication for Log Search portal</description>
+    <value-attributes>
+      <type>value-list</type>
+      <overridable>false</overridable>
+      <entries>
+        <entry>
+          <value>true</value>
+          <label>ON</label>
+        </entry>
+        <entry>
+          <value>false</value>
+          <label>OFF</label>
+        </entry>
+      </entries>
+      <selection-cardinality>1</selection-cardinality>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.auth.jwt.provider_url</name>
+    <value/>
+    <display-name>JWT authentication provider url</display-name>
+    <description>URL to the JWT authentication server</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.auth.jwt.query.param.original_url</name>
+    <value>originalUrl</value>
+    <display-name>JWT original url query param</display-name>
+    <description>Name of the original request URL which is used to redirect to Log Search Portal</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.auth.jwt.cookie.name</name>
+    <value>hadoop-jwt</value>
+    <display-name>JWT cookie name</display-name>
+    <description>The name of the cookie that contains the JWT token</description>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.auth.jwt.audiances</name>
+    <value/>
+    <display-name>JWT expected audiances</display-name>
+    <description>Comma separated list of acceptable audiences for the JWT token</description>
+    <value-attributes>
+      <empty-value-valid>true</empty-value-valid>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.auth.jwt.public_key</name>
+    <value/>
+    <display-name>JWT authentication signing key</display-name>
+    <description>PEM formatted public key for JWT token without the header and the footer</description>
+    <value-attributes>
+      <type>content</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.spnego.kerberos.enabled</name>
+    <value>false</value>
+    <display-name>Http Spnego enabled</display-name>
+    <description>Enable SPNEGO based authentication on the Log Search UI</description>
+    <value-attributes>
+      <type>boolean</type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.spnego.kerberos.principal</name>
+    <value/>
+    <display-name>Http Spnego principal</display-name>
+    <description>Principal for SPNEGO authentication for Http requests</description>
+    <property-type>KERBEROS_PRINCIPAL</property-type>
+    <value-attributes>
+      <empty-value-valid>true</empty-value-valid>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.spnego.kerberos.keytab</name>
+    <value/>
+    <display-name>Http Spnego keytab</display-name>
+    <description>Keytab for SPNEGO authentication for Http requests</description>
+    <value-attributes>
+      <empty-value-valid>true</empty-value-valid>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch.spnego.kerberos.host</name>
+    <value>_HOST</value>
+    <display-name>Http Spnego hostname</display-name>
+    <description>Fully-qualified host name in the Kerberos service principal name (SPN) that is used by SPNEGO</description>
+    <value-attributes>
+      <empty-value-valid>true</empty-value-valid>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-service_logs-solrconfig.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-service_logs-solrconfig.xml
new file mode 100644
index 00000000000..81f5482dbf8
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/configuration/logsearch-service_logs-solrconfig.xml
@@ -0,0 +1,62 @@
+<?xml version="1.0"?>
+<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
+<!--
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+-->
+<!-- This is a special config file for properties used to monitor status of the service -->
+<configuration supports_adding_forbidden="true">
+  <property>
+    <name>logsearch_service_logs_max_retention</name>
+    <value>7</value>
+    <display-name>Max retention</display-name>
+    <description>Days to retain the service logs in Solr</description>
+    <value-attributes>
+      <type>int</type>
+      <overridable>false</overridable>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <property>
+    <name>logsearch_service_logs_merge_factor</name>
+    <value>5</value>
+    <display-name>Merge factor</display-name>
+    <description>The mergeFactor value tells Lucene how many segments of equal size to build before merging them into a
+      single segment. High value merge factor (e.g. 25) improves indexing speed, but slows down searching. Low value
+      (e.g. 5) improves searching, but slows down indexing.
+    </description>
+    <value-attributes>
+      <type>int</type>
+      <overridable>false</overridable>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+  <!-- solrconfig.xml -->
+  <property>
+    <name>content</name>
+    <display-name>solrconfig template</display-name>
+    <description>This is the jinja template for solrconfig.xml file for service logs</description>
+    <value/>
+    <property-type>VALUE_FROM_PROPERTY_FILE</property-type>
+    <value-attributes>
+      <property-file-name>service_logs-solrconfig.xml.j2</property-file-name>
+      <property-file-type>xml</property-file-type>
+    </value-attributes>
+    <on-ambari-upgrade add="true"/>
+  </property>
+</configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/kerberos.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/kerberos.json
new file mode 100644
index 00000000000..ad1f56f807f
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/kerberos.json
@@ -0,0 +1,72 @@
+{
+  "services": [
+    {
+      "name": "AMBARI_LOGSEARCH",
+      "identities": [
+        {
+          "name": "logsearch_smokeuser",
+          "reference": "/smokeuser"
+        }
+      ],
+      "components": [
+        {
+          "name": "LOGSEARCH_SERVER",
+          "identities": [
+            {
+              "name": "logsearch",
+              "principal": {
+                "value": "logsearch/_HOST@${realm}",
+                "type": "service",
+                "configuration": "logsearch-env/logsearch_kerberos_principal"
+              },
+              "keytab": {
+                "file": "${keytab_dir}/logsearch.service.keytab",
+                "owner": {
+                  "name": "${logsearch-env/logsearch_user}",
+                  "access": "r"
+                },
+                "group": {
+                  "name": "${cluster-env/user_group}",
+                  "access": ""
+                },
+                "configuration": "logsearch-env/logsearch_kerberos_keytab"
+              }
+            },
+            {
+              "name": "logsearch_logsearch_server_infra-solr",
+              "reference": "/AMBARI_INFRA_SOLR/INFRA_SOLR/infra-solr",
+              "when" : {
+                "contains" : ["services", "AMBARI_INFRA_SOLR"]
+              }
+            }
+          ]
+        },
+        {
+          "name": "LOGSEARCH_LOGFEEDER",
+          "identities": [
+            {
+              "name": "logfeeder",
+              "principal": {
+                "value": "logfeeder/_HOST@${realm}",
+                "type": "service",
+                "configuration": "logfeeder-env/logfeeder_kerberos_principal"
+              },
+              "keytab": {
+                "file": "${keytab_dir}/logfeeder.service.keytab",
+                "owner": {
+                  "name": "root",
+                  "access": "r"
+                },
+                "group": {
+                  "name": "${cluster-env/user_group}",
+                  "access": ""
+                },
+                "configuration": "logfeeder-env/logfeeder_kerberos_keytab"
+              }
+            }
+          ]
+        }
+      ]
+    }
+  ]
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metainfo.xml b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metainfo.xml
new file mode 100644
index 00000000000..ec58163a922
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metainfo.xml
@@ -0,0 +1,204 @@
+<?xml version="1.0"?>
+<!--
+   Licensed to the Apache Software Foundation (ASF) under one or more
+   contributor license agreements.  See the NOTICE file distributed with
+   this work for additional information regarding copyright ownership.
+   The ASF licenses this file to You under the Apache License, Version 2.0
+   (the "License"); you may not use this file except in compliance with
+   the License.  You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+-->
+<metainfo>
+  <schemaVersion>2.0</schemaVersion>
+  <services>
+    <service>
+      <name>AMBARI_LOGSEARCH</name>
+      <displayName>Log Search</displayName>
+      <comment>Log aggregation, analysis, and visualization for Ambari managed services. This service is &lt;b&gt;Technical Preview&lt;/b&gt;.</comment>
+      <version>3.0.0</version>
+      <selection>TECH_PREVIEW</selection>
+
+      <credential-store>
+        <supported>true</supported>
+        <enabled>true</enabled>
+        <required>true</required>
+      </credential-store>
+
+      <components>
+
+        <component>
+          <name>LOGSEARCH_SERVER</name>
+          <timelineAppid>logsearch</timelineAppid>
+          <displayName>Log Search Server</displayName>
+          <category>MASTER</category>
+          <cardinality>0-1</cardinality>
+          <versionAdvertised>false</versionAdvertised>
+          <commandScript>
+            <script>scripts/logsearch.py</script>
+            <scriptType>PYTHON</scriptType>
+            <timeout>1800</timeout>
+          </commandScript>
+          <logs>
+            <log>
+              <logId>logsearch_app</logId>
+              <primary>true</primary>
+            </log>
+            <log>
+              <logId>logsearch_perf</logId>
+            </log>
+          </logs>
+          <customCommands>
+            <customCommand>
+              <name>UPGRADE_LOGSEARCH_PORTAL</name>
+              <hidden>true</hidden>
+              <commandScript>
+                <script>scripts/logsearch.py</script>
+                <scriptType>PYTHON</scriptType>
+                <timeout>1200</timeout>
+              </commandScript>
+            </customCommand>
+          </customCommands>
+          <dependencies>
+            <dependency>
+              <name>AMBARI_INFRA_SOLR/INFRA_SOLR_CLIENT</name>
+              <scope>host</scope>
+              <auto-deploy>
+                <enabled>true</enabled>
+              </auto-deploy>
+            </dependency>
+          </dependencies>
+          <configuration-dependencies>
+            <config-type>infra-solr-env</config-type>
+            <config-type>logsearch-properties</config-type>
+            <config-type>logsearch-env</config-type>
+            <config-type>logsearch-common-env</config-type>
+            <config-type>logsearch-log4j</config-type>
+            <config-type>logsearch-admin-json</config-type>
+            <config-type>logsearch-service_logs-solrconfig.xml</config-type>
+            <config-type>logsearch-audit_logs-solrconfig.xml</config-type>
+          </configuration-dependencies>
+        </component>
+
+        <component>
+          <name>LOGSEARCH_LOGFEEDER</name>
+          <timelineAppid>logfeeder</timelineAppid>
+          <displayName>Log Feeder</displayName>
+          <category>SLAVE</category>
+          <cardinality>ALL</cardinality>
+          <versionAdvertised>false</versionAdvertised>
+          <commandScript>
+            <script>scripts/logfeeder.py</script>
+            <scriptType>PYTHON</scriptType>
+          </commandScript>
+          <logs>
+            <log>
+              <logId>logsearch_feeder</logId>
+              <primary>true</primary>
+            </log>
+          </logs>
+
+          <customCommands>
+            <customCommand>
+              <name>UPGRADE_LOGFEEDER</name>
+              <hidden>true</hidden>
+              <commandScript>
+                <script>scripts/logfeeder.py</script>
+                <scriptType>PYTHON</scriptType>
+                <timeout>1200</timeout>
+              </commandScript>
+            </customCommand>
+          </customCommands>
+
+          <configuration-dependencies>
+            <config-type>infra-solr-env</config-type>
+            <config-type>logsearch-common-env</config-type>
+            <config-type>logfeeder-properties</config-type>
+            <config-type>logfeeder-env</config-type>
+            <config-type>logfeeder-grok</config-type>
+            <config-type>logfeeder-log4j</config-type>
+            <config-type>logfeeder-system_log-env</config-type>
+            <config-type>logfeeder-output-config</config-type>
+          </configuration-dependencies>
+        </component>
+
+      </components>
+
+      <osSpecifics>
+        <osSpecific>
+          <osFamily>redhat7,amazonlinux2,redhat6,suse11,suse12</osFamily>
+          <packages>
+            <package>
+              <name>ambari-logsearch-logfeeder</name>
+              <skipUpgrade>true</skipUpgrade>
+            </package>
+            <package>
+              <name>ambari-logsearch-portal</name>
+              <skipUpgrade>true</skipUpgrade>
+              <condition>should_install_logsearch_portal</condition>
+            </package>
+            <package>
+              <name>ambari-infra-solr-client</name>
+              <condition>should_install_infra_solr_client</condition>
+            </package>
+          </packages>
+        </osSpecific>
+        <osSpecific>
+          <osFamily>debian7,debian9,ubuntu12,ubuntu14,ubuntu16,ubuntu18</osFamily>
+          <packages>
+            <package>
+              <name>ambari-logsearch-logfeeder</name>
+              <skipUpgrade>true</skipUpgrade>
+            </package>
+            <package>
+              <name>ambari-logsearch-portal</name>
+              <skipUpgrade>true</skipUpgrade>
+              <condition>should_install_logsearch_portal</condition>
+            </package>
+            <package>
+              <name>ambari-infra-solr-client</name>
+              <condition>should_install_infra_solr_client</condition>
+            </package>
+          </packages>
+        </osSpecific>
+      </osSpecifics>
+
+      <commandScript>
+        <script>scripts/service_check.py</script>
+        <scriptType>PYTHON</scriptType>
+        <timeout>300</timeout>
+      </commandScript>
+
+      <configuration-dependencies>
+      </configuration-dependencies>
+
+      <quickLinksConfigurations>
+        <quickLinksConfiguration>
+          <fileName>quicklinks.json</fileName>
+          <default>true</default>
+        </quickLinksConfiguration>
+      </quickLinksConfigurations>
+
+      <themes>
+        <theme>
+          <fileName>theme.json</fileName>
+          <default>true</default>
+        </theme>
+        <theme>
+          <fileName>credentials.json</fileName>
+          <default>true</default>
+        </theme>
+        <theme>
+          <fileName>directories.json</fileName>
+          <default>true</default>
+        </theme>
+      </themes>
+    </service>
+  </services>
+</metainfo>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metrics.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metrics.json
new file mode 100644
index 00000000000..7ffb77ef14f
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/metrics.json
@@ -0,0 +1,53 @@
+{
+  "LOGSEARCH_LOGFEEDER": {
+    "Component": [
+      {
+        "type": "ganglia",
+        "metrics": {
+          "default": {
+            "metrics/filter/error/grok": {
+              "metric": "filter.error.grok",
+              "pointInTime": false,
+              "temporal": true
+            },
+            "metrics/filter/error/truncate": {
+              "metric": "filter.error.truncate",
+              "pointInTime": false,
+              "temporal": true
+            },
+            "metrics/input/files/read_lines": {
+              "metric": "input.files.read_lines",
+              "pointInTime": false,
+              "temporal": true
+            },
+            "metrics/input/files/read_bytes": {
+              "metric": "input.files.read_bytes",
+              "pointInTime": false,
+              "temporal": true
+            },
+            "metrics/output/kafka/write_logs": {
+              "metric": "output.kafka.write_logs",
+              "pointInTime": false,
+              "temporal": true
+            },
+            "metrics/output/kafka/write_bytes": {
+              "metric": "output.kafka.write_bytes",
+              "pointInTime": false,
+              "temporal": true
+            },
+            "metrics/output/solr/write_logs": {
+              "metric": "output.solr.write_logs",
+              "pointInTime": false,
+              "temporal": true
+            },
+            "metrics/output/solr/write_bytes": {
+              "metric": "output.solr.write_bytes",
+              "pointInTime": false,
+              "temporal": true
+            }
+          }
+        }
+      }
+    ]
+  }
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/alerts/alert_logfeeder.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/alerts/alert_logfeeder.py
new file mode 100755
index 00000000000..022be07ba13
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/alerts/alert_logfeeder.py
@@ -0,0 +1,85 @@
+#!/usr/bin/env python
+
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+"""
+
+import os
+import socket
+
+from resource_management.libraries.functions.check_process_status import check_process_status
+from resource_management.core.exceptions import ComponentIsNotRunning
+
+RESULT_CODE_OK = 'OK'
+RESULT_CODE_CRITICAL = 'CRITICAL'
+RESULT_CODE_UNKNOWN = 'UNKNOWN'
+
+LOGFEEDER_PID_DIR = '{{logfeeder-env/logfeeder_pid_dir}}'
+
+def get_tokens():
+  """
+  Returns a tuple of tokens in the format {{site/property}} that will be used
+  to build the dictionary passed into execute
+  """
+  return (LOGFEEDER_PID_DIR,)
+
+def is_logfeeder_process_live(pid_file):
+  """
+  Gets whether the LogSearch Logfeeder represented by the specified file is running.
+  :param pid_file: the PID file of the Logfeeder to check
+  :return: True if the Logfeeder is running, False otherwise
+  """
+  live = False
+
+  try:
+    check_process_status(pid_file)
+    live = True
+  except ComponentIsNotRunning:
+    pass
+
+  return live
+
+
+def execute(configurations={}, parameters={}, host_name=None):
+  """
+  Returns a tuple containing the result code and a pre-formatted result label
+
+  Keyword arguments:
+  configurations (dictionary): a mapping of configuration key to value
+  parameters (dictionary): a mapping of script parameter key to value
+  host_name (string): the name of this host where the alert is running
+  """
+
+  if configurations is None:
+    return (RESULT_CODE_UNKNOWN, ['There were no configurations supplied to the script.'])
+
+  if set([LOGFEEDER_PID_DIR]).issubset(configurations):
+    LOGFEEDER_PID_PATH = os.path.join(configurations[LOGFEEDER_PID_DIR], 'logfeeder.pid')
+  else:
+    return (RESULT_CODE_UNKNOWN, ['The logfeeder_pid_dir is a required parameter.'])
+
+  if host_name is None:
+    host_name = socket.getfqdn()
+
+  logfeeder_process_running = is_logfeeder_process_live(LOGFEEDER_PID_PATH)
+
+  alert_state = RESULT_CODE_OK if logfeeder_process_running else RESULT_CODE_CRITICAL
+
+  alert_label = 'LogFeeder is running on {0}' if logfeeder_process_running else 'LogFeeder is NOT running on {0}'
+  alert_label = alert_label.format(host_name)
+
+  return (alert_state, [alert_label])
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logfeeder.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logfeeder.py
new file mode 100644
index 00000000000..db647ff736b
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logfeeder.py
@@ -0,0 +1,70 @@
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+"""
+
+from ambari_commons.repo_manager import ManagerFactory
+from ambari_commons.shell import RepoCallContext
+from resource_management.core.resources.system import Execute
+from resource_management.libraries.functions.format import format
+from resource_management.libraries.functions.check_process_status import check_process_status
+from resource_management.libraries.script.script import Script
+from setup_logfeeder import setup_logfeeder
+
+class LogFeeder(Script):
+  def install(self, env):
+    import params
+    env.set_params(params)
+
+    self.install_packages(env)
+
+  def configure(self, env, upgrade_type=None):
+    import params
+    env.set_params(params)
+
+    setup_logfeeder()
+
+  def start(self, env, upgrade_type=None):
+    import params
+    env.set_params(params)
+    self.configure(env)
+
+    Execute((format('{logfeeder_dir}/bin/logfeeder.sh'), "start"),
+            sudo=True)
+
+  def stop(self, env, upgrade_type=None):
+    import params
+    env.set_params(params)
+
+    Execute((format('{logfeeder_dir}/bin/logfeeder.sh'), "stop"),
+            sudo=True)
+
+  def status(self, env):
+    import status_params
+    env.set_params(status_params)
+
+    check_process_status(status_params.logfeeder_pid_file)
+
+  def upgrade_logfeeder(self, env):
+    pkg_provider = ManagerFactory.get()
+    context = RepoCallContext()
+    context.log_output = True
+    pkg_provider.remove_package('ambari-logsearch-logfeeder', context, ignore_dependencies=True)
+    pkg_provider.upgrade_package('ambari-logsearch-logfeeder', context)
+
+if __name__ == "__main__":
+  LogFeeder().execute()
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logsearch.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logsearch.py
new file mode 100644
index 00000000000..fdafaaf73ce
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/logsearch.py
@@ -0,0 +1,71 @@
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+"""
+
+from ambari_commons.repo_manager import ManagerFactory
+from ambari_commons.shell import RepoCallContext
+from resource_management.core.resources.system import Execute, File
+from resource_management.libraries.functions.check_process_status import check_process_status
+from resource_management.libraries.functions.format import format
+from resource_management.libraries.script.script import Script
+from setup_logsearch import setup_logsearch
+
+class LogSearch(Script):
+  def install(self, env):
+    import params
+    env.set_params(params)
+    self.install_packages(env)
+
+  def configure(self, env, upgrade_type=None):
+    import params
+    env.set_params(params)
+
+    setup_logsearch()
+
+  def start(self, env, upgrade_type=None):
+    import params
+    env.set_params(params)
+    self.configure(env)
+
+    Execute(format("{logsearch_dir}/bin/logsearch.sh start"),
+            user=params.logsearch_user
+            )
+
+  def stop(self, env, upgrade_type=None):
+    import params
+    env.set_params(params)
+
+    Execute(format("{logsearch_dir}/bin/logsearch.sh stop"),
+            user=params.logsearch_user
+            )
+
+  def status(self, env):
+    import status_params
+    env.set_params(status_params)
+
+    check_process_status(status_params.logsearch_pid_file)
+
+  def upgrade_logsearch_portal(self, env):
+    pkg_provider = ManagerFactory.get()
+    context = RepoCallContext()
+    context.log_output = True
+    pkg_provider.remove_package('ambari-logsearch-portal', context, ignore_dependencies=True)
+    pkg_provider.upgrade_package('ambari-logsearch-portal', context)
+
+if __name__ == "__main__":
+  LogSearch().execute()
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/params.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/params.py
new file mode 100644
index 00000000000..6f30144ec79
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/params.py
@@ -0,0 +1,429 @@
+#!/usr/bin/env python
+
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+"""
+
+import os
+from ambari_commons.constants import AMBARI_SUDO_BINARY
+from resource_management.libraries.functions.default import default
+from resource_management.libraries.functions.format import format
+from resource_management.libraries.functions.is_empty import is_empty
+from resource_management.libraries.script.script import Script
+
+import status_params
+
+
+def get_port_from_url(address):
+  if not is_empty(address):
+    return address.split(':')[-1]
+  else:
+    return address
+
+def get_name_from_principal(principal):
+  if not principal:  # return if empty
+    return principal
+  slash_split = principal.split('/')
+  if len(slash_split) == 2:
+    return slash_split[0]
+  else:
+    at_split = principal.split('@')
+    return at_split[0]
+
+
+# config object that holds the configurations declared in the -site.xml file
+config = Script.get_config()
+tmp_dir = Script.get_tmp_dir()
+
+sudo = AMBARI_SUDO_BINARY
+security_enabled = status_params.security_enabled
+
+credential_store_enabled = False
+if 'credentialStoreEnabled' in config:
+  credential_store_enabled = config['credentialStoreEnabled']
+
+logsearch_server_conf = "/usr/lib/ambari-logsearch-portal/conf"
+logsearch_server_keys_folder = logsearch_server_conf + "/keys"
+logsearch_logfeeder_conf = "/usr/lib/ambari-logsearch-logfeeder/conf"
+logsearch_logfeeder_keys_folder = logsearch_logfeeder_conf + "/keys"
+
+logsearch_config_set_dir = format("{logsearch_server_conf}/solr_configsets")
+
+# logsearch pid file
+logsearch_pid_dir = status_params.logsearch_pid_dir
+logsearch_pid_file = status_params.logsearch_pid_file
+
+# logfeeder pid file
+logfeeder_pid_dir = status_params.logfeeder_pid_dir
+logfeeder_pid_file = status_params.logfeeder_pid_file
+
+user_group = config['configurations']['cluster-env']['user_group']
+
+# shared configs
+java_home = config['ambariLevelParams']['java_home']
+ambari_java_home = default("/commandParams/ambari_java_home", None)
+java64_home = ambari_java_home if ambari_java_home is not None else java_home
+cluster_name = str(config['clusterName'])
+
+configurations = config['configurations'] # need reference inside logfeeder jinja templates
+
+# for now just pick first collector
+if 'metrics_collector_hosts' in config['clusterHostInfo']:
+  metrics_http_policy = config['configurations']['ams-site']['timeline.metrics.service.http.policy']
+  metrics_collector_protocol = 'http'
+  if metrics_http_policy == 'HTTPS_ONLY':
+    metrics_collector_protocol = 'https'
+    
+  metrics_collector_hosts = ",".join(config['clusterHostInfo']['metrics_collector_hosts'])
+  metrics_collector_port = str(get_port_from_url(config['configurations']['ams-site']['timeline.metrics.service.webapp.address']))
+  metrics_collector_path = '/ws/v1/timeline/metrics'
+else:
+  metrics_collector_protocol = ''
+  metrics_collector_hosts = ''
+  metrics_collector_port = ''
+  metrics_collector_path = ''
+
+#####################################
+# Infra Solr configs
+#####################################
+infra_solr_znode = '/infra-solr'
+infra_solr_ssl_enabled = False
+infra_solr_jmx_port = ''
+
+if 'infra-solr-env' in config['configurations']:
+  infra_solr_znode = default('/configurations/infra-solr-env/infra_solr_znode', '/infra-solr')
+  infra_solr_ssl_enabled = default('configurations/infra-solr-env/infra_solr_ssl_enabled', False)
+  infra_solr_jmx_port = config['configurations']['infra-solr-env']['infra_solr_jmx_port']
+
+infra_solr_role_logsearch = default('configurations/infra-solr-security-json/infra_solr_role_logsearch', 'logsearch_user')
+infra_solr_role_logfeeder = default('configurations/infra-solr-security-json/infra_solr_role_logfeeder', 'logfeeder_user')
+infra_solr_role_dev = default('configurations/infra-solr-security-json/infra_solr_role_dev', 'dev')
+infra_solr_role_ranger_admin = default('configurations/infra-solr-security-json/infra_solr_role_ranger_admin', 'ranger_user')
+
+_hostname_lowercase = config['agentLevelParams']['hostname'].lower()
+logsearch_jaas_file = None
+if security_enabled:
+  kinit_path_local = status_params.kinit_path_local
+  logsearch_jaas_file = logsearch_server_conf + '/logsearch_jaas.conf'
+  logfeeder_jaas_file = logsearch_logfeeder_conf + '/logfeeder_jaas.conf'
+  use_external_solr_with_kerberos = default('configurations/logsearch-common-env/logsearch_external_solr_kerberos_enabled', False)
+  if use_external_solr_with_kerberos:
+    logsearch_kerberos_keytab = config['configurations']['logsearch-env']['logsearch_external_solr_kerberos_keytab']
+    logsearch_kerberos_principal = config['configurations']['logsearch-env']['logsearch_external_solr_kerberos_principal'].replace('_HOST',_hostname_lowercase)
+    logfeeder_kerberos_keytab = config['configurations']['logfeeder-env']['logfeeder_external_solr_kerberos_keytab']
+    logfeeder_kerberos_principal = config['configurations']['logfeeder-env']['logfeeder_external_solr_kerberos_principal'].replace('_HOST',_hostname_lowercase)
+  else:
+    logsearch_kerberos_keytab = config['configurations']['logsearch-env']['logsearch_kerberos_keytab']
+    logsearch_kerberos_principal = config['configurations']['logsearch-env']['logsearch_kerberos_principal'].replace('_HOST',_hostname_lowercase)
+    logfeeder_kerberos_keytab = config['configurations']['logfeeder-env']['logfeeder_kerberos_keytab']
+    logfeeder_kerberos_principal = config['configurations']['logfeeder-env']['logfeeder_kerberos_principal'].replace('_HOST',_hostname_lowercase)
+
+  zookeeper_principal_name = default("/configurations/zookeeper-env/zookeeper_principal_name", "zookeeper/_HOST@EXAMPLE.COM")
+  external_zk_principal_enabled = default("/configurations/logsearch-common-env/logsearch_zookeeper_external_principal", False)
+  external_zk_principal_name = default("/configurations/logsearch-common-env/logsearch_zookeeper_external_principal", "zookeeper/_HOST@EXAMPLE.COM")
+  zk_principal_name = external_zk_principal_name if external_zk_principal_enabled else zookeeper_principal_name
+  zk_principal_user = zk_principal_name.split('/')[0]
+  zk_security_opts = format('-Dzookeeper.sasl.client=true -Dzookeeper.sasl.client.username={zk_principal_user} -Dzookeeper.sasl.clientconfig=Client')
+
+  logsearch_solr_service_users = []
+  logsearch_kerberos_service_user = get_name_from_principal(logsearch_kerberos_principal)
+  logsearch_solr_service_users.append(logsearch_kerberos_service_user)
+  logsearch_kerberos_service_users_str = str(default('/configurations/logsearch-env/logsearch_kerberos_service_users', ''))
+  if logsearch_kerberos_service_users_str and logsearch_kerberos_service_users_str.strip():
+    logsearch_kerberos_service_users = logsearch_kerberos_service_users_str.split(',')
+    logsearch_solr_service_users.extend(logsearch_kerberos_service_users)
+
+logsearch_spnego_host = config['configurations']['logsearch-properties']['logsearch.spnego.kerberos.host'].replace('_HOST', _hostname_lowercase)
+
+#####################################
+# Logsearch configs
+#####################################
+logsearch_dir = '/usr/lib/ambari-logsearch-portal'
+
+logsearch_service_logs_max_retention = config['configurations']['logsearch-service_logs-solrconfig']['logsearch_service_logs_max_retention']
+logsearch_service_logs_merge_factor = config['configurations']['logsearch-service_logs-solrconfig']['logsearch_service_logs_merge_factor']
+
+logsearch_audit_logs_max_retention = config['configurations']['logsearch-audit_logs-solrconfig']['logsearch_audit_logs_max_retention']
+logsearch_audit_logs_merge_factor = config['configurations']['logsearch-audit_logs-solrconfig']['logsearch_audit_logs_merge_factor']
+
+logsearch_use_external_solr = default('/configurations/logsearch-common-env/logsearch_use_external_solr', False)
+
+if logsearch_use_external_solr:
+  logsearch_solr_zk_znode = config['configurations']['logsearch-common-env']['logsearch_external_solr_zk_znode']
+  logsearch_solr_zk_quorum = config['configurations']['logsearch-common-env']['logsearch_external_solr_zk_quorum']
+  logsearch_solr_ssl_enabled = default('configurations/logsearch-common-env/logsearch_external_solr_ssl_enabled', False)
+  logsearch_solr_kerberos_enabled = security_enabled and use_external_solr_with_kerberos
+else:
+  logsearch_solr_zk_znode = infra_solr_znode
+
+  logsearch_solr_zk_quorum = ""
+  zookeeper_port = default('/configurations/zoo.cfg/clientPort', None)
+  if 'zookeeper_server_hosts' in config['clusterHostInfo']:
+    for host in config['clusterHostInfo']['zookeeper_server_hosts']:
+      if logsearch_solr_zk_quorum:
+        logsearch_solr_zk_quorum += ','
+      logsearch_solr_zk_quorum += host + ":" + str(zookeeper_port)
+  
+  logsearch_solr_ssl_enabled = infra_solr_ssl_enabled
+  logsearch_solr_kerberos_enabled = security_enabled
+
+zookeeper_quorum = logsearch_solr_zk_quorum
+
+# logsearch-env configs
+logsearch_user = config['configurations']['logsearch-env']['logsearch_user']
+logsearch_log_dir = config['configurations']['logsearch-env']['logsearch_log_dir']
+logsearch_log = 'logsearch.out'
+logsearch_debug_enabled = str(config['configurations']['logsearch-env']["logsearch_debug_enabled"]).lower()
+logsearch_debug_port = config['configurations']['logsearch-env']["logsearch_debug_port"]
+logsearch_app_max_memory = config['configurations']['logsearch-env']['logsearch_app_max_memory']
+
+logsearch_keystore_location = config['configurations']['logsearch-env']['logsearch_keystore_location']
+logsearch_keystore_type = config['configurations']['logsearch-env']['logsearch_keystore_type']
+logsearch_keystore_password = config['configurations']['logsearch-env']['logsearch_keystore_password']
+logsearch_truststore_location = config['configurations']['logsearch-env']['logsearch_truststore_location']
+logsearch_truststore_type = config['configurations']['logsearch-env']['logsearch_truststore_type']
+logsearch_truststore_password = config['configurations']['logsearch-env']['logsearch_truststore_password']
+
+logsearch_env_config = dict(config['configurations']['logsearch-env'])
+logsearch_env_jceks_file = os.path.join(logsearch_server_conf, 'logsearch.jceks')
+
+#Logsearch log4j properties
+logsearch_log_maxfilesize = default('/configurations/logsearch-log4j/logsearch_log_maxfilesize',10)
+logsearch_log_maxbackupindex = default('/configurations/logsearch-log4j/logsearch_log_maxbackupindex',10)
+logsearch_json_log_maxfilesize = default('/configurations/logsearch-log4j/logsearch_json_log_maxfilesize',10)
+logsearch_json_log_maxbackupindex = default('/configurations/logsearch-log4j/logsearch_json_log_maxbackupindex',10)
+logsearch_audit_log_maxfilesize = default('/configurations/logsearch-log4j/logsearch_audit_log_maxfilesize',10)
+logsearch_audit_log_maxbackupindex =default('/configurations/logsearch-log4j/logsearch_audit_log_maxbackupindex',10)
+logsearch_perf_log_maxfilesize =default('/configurations/logsearch-log4j/logsearch_perf_log_maxfilesize',10)
+logsearch_perf_log_maxbackupindex =default('/configurations/logsearch-log4j/logsearch_perf_log_maxbackupindex',10)
+
+# store the log file for the service from the 'solr.log' property of the 'logsearch-env.xml' file
+logsearch_env_content = config['configurations']['logsearch-env']['content']
+logsearch_service_logs_solrconfig_content = config['configurations']['logsearch-service_logs-solrconfig']['content']
+logsearch_audit_logs_solrconfig_content = config['configurations']['logsearch-audit_logs-solrconfig']['content']
+logsearch_app_log4j_content = config['configurations']['logsearch-log4j']['content']
+
+# Log dirs
+ambari_server_log_dir = default('/configurations/logfeeder-env/ambari_server_log_dir', "/var/log/ambari-server")
+ambari_agent_log_dir = default('/configurations/logfeeder-env/ambari_agent_log_dir', "/var/log/ambari-agent")
+
+# System logs
+logfeeder_system_messages_content = config['configurations']['logfeeder-system_log-env']['logfeeder_system_messages_content']
+logfeeder_secure_log_content = config['configurations']['logfeeder-system_log-env']['logfeeder_secure_log_content']
+logfeeder_system_log_enabled = default('/configurations/logfeeder-system_log-env/logfeeder_system_log_enabled', False)
+
+# Logsearch auth configs
+
+logsearch_admin_credential_file = 'logsearch-admin.json'
+logsearch_admin_username = default('/configurations/logsearch-admin-json/logsearch_admin_username', "admin")
+logsearch_admin_password = default('/configurations/logsearch-admin-json/logsearch_admin_password', "")
+logsearch_admin_content = config['configurations']['logsearch-admin-json']['content']
+
+# for now just pick first collector
+if 'ambari_server_host' in config['ambariLevelParams']:
+  ambari_server_host = config['ambariLevelParams']['ambari_server_host']
+  ambari_server_port = config['ambariLevelParams']['ambari_server_port']
+  ambari_server_use_ssl = config['ambariLevelParams']['ambari_server_use_ssl']
+  
+  ambari_server_protocol = 'https' if ambari_server_use_ssl else 'http'
+
+  ambari_server_auth_host_url = format('{ambari_server_protocol}://{ambari_server_host}:{ambari_server_port}')
+else:
+  ambari_server_auth_host_url = ''
+
+# Logsearch propreties
+
+logsearch_protocol = config['configurations']['logsearch-properties']["logsearch.protocol"]
+logsearch_http_port = config['configurations']['logsearch-properties']["logsearch.http.port"]
+logsearch_https_port = config['configurations']['logsearch-properties']["logsearch.https.port"]
+
+logsearch_properties = {}
+
+# default values
+
+logsearch_properties['logsearch.solr.zk_connect_string'] = logsearch_solr_zk_quorum + logsearch_solr_zk_znode
+logsearch_properties['logsearch.solr.audit.logs.zk_connect_string'] = logsearch_solr_zk_quorum + logsearch_solr_zk_znode
+
+logsearch_properties['logsearch.solr.collection.history'] = 'history'
+logsearch_properties['logsearch.solr.history.config.name'] = 'history'
+logsearch_properties['logsearch.collection.history.replication.factor'] = '2'
+
+logsearch_properties['logsearch.solr.jmx.port'] = infra_solr_jmx_port
+
+logsearch_properties['logsearch.login.credentials.file'] = logsearch_admin_credential_file
+logsearch_properties['logsearch.auth.file.enabled'] = 'true'
+logsearch_properties['logsearch.auth.ldap.enabled'] = 'false'
+logsearch_properties['logsearch.auth.simple.enabled'] = 'false'
+
+# load config values
+
+logsearch_properties = dict(logsearch_properties.items() +\
+                       dict(config['configurations']['logsearch-common-properties']).items() +\
+                       dict(config['configurations']['logsearch-properties']).items())
+
+# load derivated values
+
+if logsearch_properties['logsearch.solr.audit.logs.use.ranger'] == 'false':
+  del logsearch_properties['logsearch.ranger.audit.logs.collection.name']
+
+del logsearch_properties['logsearch.solr.audit.logs.use.ranger']
+
+logsearch_properties['logsearch.solr.metrics.collector.hosts'] = format(logsearch_properties['logsearch.solr.metrics.collector.hosts'])
+logsearch_properties['logsearch.auth.external_auth.host_url'] = format(logsearch_properties['logsearch.auth.external_auth.host_url'])
+logsearch_properties['logsearch.spnego.kerberos.host'] = logsearch_spnego_host
+
+if not('logsearch.config.zk_connect_string' in logsearch_properties):
+  logsearch_properties['logsearch.config.zk_connect_string'] = logsearch_solr_zk_quorum
+
+if logsearch_solr_kerberos_enabled:
+  logsearch_properties['logsearch.solr.kerberos.enable'] = 'true'
+  logsearch_properties['logsearch.solr.jaas.file'] = logsearch_jaas_file
+
+
+logsearch_solr_collection_service_logs = logsearch_properties['logsearch.solr.collection.service.logs']
+logsearch_service_logs_split_interval_mins = logsearch_properties['logsearch.service.logs.split.interval.mins']
+logsearch_collection_service_logs_numshards = logsearch_properties['logsearch.collection.service.logs.numshards']
+
+logsearch_solr_collection_audit_logs = logsearch_properties['logsearch.solr.collection.audit.logs']
+logsearch_audit_logs_split_interval_mins = logsearch_properties['logsearch.audit.logs.split.interval.mins']
+logsearch_collection_audit_logs_numshards = logsearch_properties['logsearch.collection.audit.logs.numshards']
+
+# check if logsearch uses ssl in any way
+
+logsearch_use_ssl = logsearch_solr_ssl_enabled or logsearch_protocol == 'https' or ambari_server_use_ssl
+
+#####################################
+# Logfeeder configs
+#####################################
+
+logfeeder_dir = "/usr/lib/ambari-logsearch-logfeeder"
+
+# logfeeder-log4j
+logfeeder_log_maxfilesize = default('/configurations/logfeeder-log4j/logfeeder_log_maxfilesize',10)
+logfeeder_log_maxbackupindex =  default('/configurations/logfeeder-log4j/logfeeder_log_maxbackupindex',10)
+logfeeder_json_log_maxfilesize = default('/configurations/logfeeder-log4j/logfeeder_json_log_maxfilesize',10)
+logfeeder_json_log_maxbackupindex = default('/configurations/logfeeder-log4j/logfeeder_json_log_maxbackupindex',10)
+
+# logfeeder-env configs
+logfeeder_log_dir = config['configurations']['logfeeder-env']['logfeeder_log_dir']
+logfeeder_log = 'logfeeder.out'
+logfeeder_max_mem = config['configurations']['logfeeder-env']['logfeeder_max_mem']
+solr_service_logs_enable = default('/configurations/logfeeder-env/logfeeder_solr_service_logs_enable', True)
+solr_audit_logs_enable = default('/configurations/logfeeder-env/logfeeder_solr_audit_logs_enable', True)
+logfeeder_env_content = config['configurations']['logfeeder-env']['content']
+logfeeder_log4j_content = config['configurations']['logfeeder-log4j']['content']
+
+logfeeder_keystore_location = config['configurations']['logfeeder-env']['logfeeder_keystore_location']
+logfeeder_keystore_type = config['configurations']['logfeeder-env']['logfeeder_keystore_type']
+logfeeder_keystore_password = config['configurations']['logfeeder-env']['logfeeder_keystore_password']
+logfeeder_truststore_location = config['configurations']['logfeeder-env']['logfeeder_truststore_location']
+logfeeder_truststore_type = config['configurations']['logfeeder-env']['logfeeder_truststore_type']
+logfeeder_truststore_password = config['configurations']['logfeeder-env']['logfeeder_truststore_password']
+
+logfeeder_env_config = dict(config['configurations']['logfeeder-env'])
+logfeeder_env_jceks_file = os.path.join(logsearch_logfeeder_conf, 'logfeeder.jceks')
+
+logfeeder_ambari_config_content = config['configurations']['logfeeder-ambari-config']['content']
+logfeeder_output_config_content = config['configurations']['logfeeder-output-config']['content']
+logfeeder_kafka_output_config_content = config['configurations']['logfeeder-kafka-output-config']['content']
+
+logfeeder_kafka_output_enabled = False
+if 'logfeeder-kafka-output-config' in config['configurations']:
+  logfeeder_kafka_output_enabled = default('/configurations/logfeeder-kafka-output-config/logfeeder_kafka_output_enabled', False)
+  logfeeder_kafka_broker_list = default('/configurations/logfeeder-kafka-output-config/logfeeder_kafka_broker_list', 'localhost:6667')
+  logfeeder_kafka_topic = default('/configurations/logfeeder-kafka-output-config/logfeeder_kafka_topic', 'log-streaming')
+
+if logfeeder_kafka_output_enabled:
+  default_config_files = ','.join(['output.config.json','global.config.json', 'kafka-output.json'])
+else:
+  default_config_files = ','.join(['output.config.json','global.config.json'])
+
+logfeeder_grok_patterns = config['configurations']['logfeeder-grok']['default_grok_patterns']
+if config['configurations']['logfeeder-grok']['custom_grok_patterns'].strip():
+  logfeeder_grok_patterns = \
+    logfeeder_grok_patterns + '\n' + \
+    '\n' + \
+    '########################\n' +\
+    '# Custom Grok Patterns #\n' +\
+    '########################\n' +\
+    '\n' + \
+    config['configurations']['logfeeder-grok']['custom_grok_patterns']
+
+# logfeeder properties
+
+# load default values
+
+logfeeder_properties = {}
+
+logfeeder_properties['logfeeder.solr.core.config.name'] = 'history'
+
+# load config values
+
+logfeeder_properties = dict(logfeeder_properties.items() +\
+                       dict(config['configurations']['logsearch-common-properties']).items() +\
+                       dict(config['configurations']['logfeeder-properties']).items())
+
+# load derivated values
+
+logfeeder_properties['cluster.name'] = cluster_name
+logfeeder_properties['logfeeder.config.dir'] = logsearch_logfeeder_conf
+logfeeder_properties['logfeeder.config.files'] = format(logfeeder_properties['logfeeder.config.files'])
+logfeeder_properties['logfeeder.solr.zk_connect_string'] = logsearch_solr_zk_quorum + logsearch_solr_zk_znode
+
+logfeeder_properties['logfeeder.metrics.collector.hosts'] = format(logfeeder_properties['logfeeder.metrics.collector.hosts'])
+logfeeder_properties['logfeeder.metrics.collector.protocol'] = metrics_collector_protocol
+logfeeder_properties['logfeeder.metrics.collector.port'] = metrics_collector_port
+logfeeder_properties['logfeeder.metrics.collector.path'] = '/ws/v1/timeline/metrics'
+
+if not('logsearch.config.zk_connect_string' in logfeeder_properties):
+  logfeeder_properties['logsearch.config.zk_connect_string'] = logsearch_solr_zk_quorum
+
+if logsearch_solr_kerberos_enabled:
+  if 'logfeeder.solr.kerberos.enable' not in logfeeder_properties:
+    logfeeder_properties['logfeeder.solr.kerberos.enable'] = 'true'
+  if 'logfeeder.solr.jaas.file' not in logfeeder_properties:
+    logfeeder_properties['logfeeder.solr.jaas.file'] = logfeeder_jaas_file
+
+logfeeder_checkpoint_folder = logfeeder_properties['logfeeder.checkpoint.folder']
+
+# check if logfeeder uses ssl in any way
+
+logfeeder_use_ssl = logsearch_solr_ssl_enabled or metrics_collector_protocol == 'https'
+
+logsearch_acls = ''
+if 'infra-solr-env' in config['configurations'] and security_enabled and not logsearch_use_external_solr:
+  acl_infra_solr_principal = get_name_from_principal(config['configurations']['infra-solr-env']['infra_solr_kerberos_principal'])
+  acl_logsearch_principal = get_name_from_principal(config['configurations']['logsearch-env']['logsearch_kerberos_principal'])
+  logsearch_acls = format('world:anyone:r,sasl:{acl_infra_solr_principal}:cdrwa,sasl:{acl_logsearch_principal}:cdrwa')
+  logsearch_properties['logsearch.solr.zk.acls'] = logsearch_acls
+  logsearch_properties['logsearch.solr.audit.logs.zk.acls'] = logsearch_acls
+  if not('logsearch.config.zk_acls' in logsearch_properties):
+    logsearch_properties['logsearch.config.zk_acls'] = logsearch_acls
+  if not('logsearch.config.zk_acls' in logfeeder_properties):
+    logfeeder_properties['logsearch.config.zk_acls'] = logsearch_acls
+
+#####################################
+# Smoke command
+#####################################
+
+logsearch_server_hosts = default('/clusterHostInfo/logsearch_server_hosts', None)
+logsearch_server_host = ""
+logsearch_ui_port =  logsearch_https_port if logsearch_protocol == 'https' else logsearch_http_port
+if logsearch_server_hosts is not None and len(logsearch_server_hosts) > 0:
+  logsearch_server_host = logsearch_server_hosts[0]
+smoke_logsearch_cmd = format('curl -k -s -o /dev/null -w "%{{http_code}}" {logsearch_protocol}://{logsearch_server_host}:{logsearch_ui_port}/api/v1/info | grep 200')
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/service_check.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/service_check.py
new file mode 100644
index 00000000000..b7940365785
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/service_check.py
@@ -0,0 +1,41 @@
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+"""
+
+from resource_management.libraries.script.script import Script
+from resource_management.core.logger import Logger
+from resource_management.core.resources.system import Execute
+
+class LogSearchServiceCheck(Script):
+  def service_check(self, env):
+    import params
+    env.set_params(params)
+
+    try:
+      if params.logsearch_server_host:
+        Execute(params.smoke_logsearch_cmd, user=params.logsearch_user,
+                tries=15, try_sleep=5, timeout=10)
+        Logger.info('Log Search Server up and running')
+      else:
+        Logger.info('No portal is installed on the cluster thus no service check is required')
+    except:
+      Logger.error('Log Search Server not running')
+      raise
+
+if __name__ == "__main__":
+  LogSearchServiceCheck().execute()
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logfeeder.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logfeeder.py
new file mode 100644
index 00000000000..067da8c23a8
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logfeeder.py
@@ -0,0 +1,136 @@
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+"""
+
+from resource_management.libraries.functions.default import default
+from resource_management.core.resources.system import Directory, File
+from resource_management.libraries.functions.format import format
+from resource_management.core.source import InlineTemplate, Template
+from resource_management.libraries.functions.generate_logfeeder_input_config import generate_logfeeder_input_config
+from resource_management.libraries.resources.properties_file import PropertiesFile
+from resource_management.libraries.functions.security_commons import update_credential_provider_path, HADOOP_CREDENTIAL_PROVIDER_PROPERTY_NAME
+
+def setup_logfeeder():
+  import params
+
+  Directory([params.logfeeder_log_dir, params.logfeeder_pid_dir, params.logfeeder_checkpoint_folder],
+            mode=0755,
+            cd_access='a',
+            create_parents=True
+            )
+
+  Directory([params.logfeeder_dir, params.logsearch_logfeeder_conf],
+            mode=0755,
+            cd_access='a',
+            create_parents=True,
+            recursive_ownership=True
+            )
+
+  File(format("{logfeeder_log_dir}/{logfeeder_log}"),
+       mode=0644,
+       content=''
+       )
+
+  if params.credential_store_enabled:
+    params.logfeeder_env_config = update_credential_provider_path(params.logfeeder_env_config,
+                                                                 'logfeeder-env',
+                                                                 params.logfeeder_env_jceks_file,
+                                                                 params.logsearch_user,
+                                                                 params.user_group
+                                                                 )
+    params.logfeeder_properties[HADOOP_CREDENTIAL_PROVIDER_PROPERTY_NAME] = 'jceks://file' + params.logfeeder_env_jceks_file
+    File(format("{logsearch_logfeeder_keys_folder}/ks_pass.txt"),
+         action="delete"
+         )
+    File(format("{logsearch_logfeeder_keys_folder}/ts_pass.txt"),
+         action="delete"
+         )
+  else:
+    Directory(params.logsearch_logfeeder_keys_folder,
+              cd_access='a',
+              mode=0755,
+              owner=params.logsearch_user,
+              group=params.user_group
+              )
+   
+    File(format("{logsearch_logfeeder_keys_folder}/ks_pass.txt"),
+         content=params.logfeeder_keystore_password,
+         mode=0600,
+         owner=params.logsearch_user,
+         group=params.user_group
+         )
+
+    File(format("{logsearch_logfeeder_keys_folder}/ts_pass.txt"),
+         content=params.logfeeder_truststore_password,
+         mode=0600,
+         owner=params.logsearch_user,
+         group=params.user_group
+         )
+  
+  PropertiesFile(format("{logsearch_logfeeder_conf}/logfeeder.properties"),
+                 properties = params.logfeeder_properties
+                 )
+
+  File(format("{logsearch_logfeeder_conf}/logfeeder-env.sh"),
+       content=InlineTemplate(params.logfeeder_env_content),
+       mode=0755
+       )
+
+  File(format("{logsearch_logfeeder_conf}/log4j.xml"),
+       content=InlineTemplate(params.logfeeder_log4j_content)
+       )
+
+  File(format("{logsearch_logfeeder_conf}/grok-patterns"),
+       content=InlineTemplate(params.logfeeder_grok_patterns),
+       encoding="utf-8"
+       )
+
+  File(format("{logsearch_logfeeder_conf}/global.config.json"),
+       content=Template("global.config.json.j2")
+       )
+
+  File(format("{logsearch_logfeeder_conf}/input.config-ambari.json"),
+       content=InlineTemplate(params.logfeeder_ambari_config_content),
+       encoding="utf-8"
+       )
+
+  File(format("{logsearch_logfeeder_conf}/output.config.json"),
+       content=InlineTemplate(params.logfeeder_output_config_content),
+       encoding="utf-8"
+       )
+  if params.logfeeder_kafka_output_enabled:
+    File(format("{logsearch_logfeeder_conf}/kafka-output.json"),
+         content=InlineTemplate(params.logfeeder_kafka_output_config_content),
+         encoding="utf-8"
+         )
+
+  if params.logfeeder_system_log_enabled:
+    File(format("{logsearch_logfeeder_conf}/input.config-system_messages.json"),
+         content=params.logfeeder_system_messages_content
+         )
+    File(format("{logsearch_logfeeder_conf}/input.config-secure_log.json"),
+         content=params.logfeeder_secure_log_content
+         )
+
+  generate_logfeeder_input_config('logsearch', Template("input.config-logsearch.json.j2", extra_imports=[default]))
+
+  if params.logsearch_solr_kerberos_enabled:
+    File(format("{logfeeder_jaas_file}"),
+         content=Template("logfeeder_jaas.conf.j2")
+         )
+
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logsearch.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logsearch.py
new file mode 100644
index 00000000000..e3e9ee113d8
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/setup_logsearch.py
@@ -0,0 +1,162 @@
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+"""
+
+from resource_management.core.exceptions import Fail
+from resource_management.core.resources.system import Directory, Execute, File
+from resource_management.libraries.functions.default import default
+from resource_management.libraries.functions.format import format
+from resource_management.core.source import InlineTemplate, Template
+from resource_management.libraries.functions import solr_cloud_util
+from resource_management.libraries.functions.decorator import retry
+from resource_management.libraries.functions.generate_logfeeder_input_config import generate_logfeeder_input_config
+from resource_management.libraries.resources.properties_file import PropertiesFile
+from resource_management.libraries.functions.security_commons import update_credential_provider_path, HADOOP_CREDENTIAL_PROVIDER_PROPERTY_NAME
+
+
+def setup_logsearch():
+  import params
+
+  Directory([params.logsearch_log_dir, params.logsearch_pid_dir],
+            mode=0755,
+            cd_access='a',
+            owner=params.logsearch_user,
+            group=params.user_group,
+            create_parents=True
+            )
+
+  Directory([params.logsearch_dir, params.logsearch_server_conf, params.logsearch_config_set_dir],
+            mode=0755,
+            cd_access='a',
+            owner=params.logsearch_user,
+            group=params.user_group,
+            create_parents=True,
+            recursive_ownership=True
+            )
+
+  Directory(params.logsearch_server_keys_folder,
+            cd_access='a',
+            mode=0755,
+            owner=params.logsearch_user,
+            group=params.user_group)
+
+  File(format("{logsearch_log_dir}/{logsearch_log}"),
+       mode=0644,
+       owner=params.logsearch_user,
+       group=params.user_group,
+       content=''
+       )
+
+  if params.credential_store_enabled:
+    params.logsearch_env_config = update_credential_provider_path(params.logsearch_env_config,
+                                                                 'logsearch-env',
+                                                                 params.logsearch_env_jceks_file,
+                                                                 params.logsearch_user,
+                                                                 params.user_group
+                                                                 )
+    params.logsearch_properties[HADOOP_CREDENTIAL_PROVIDER_PROPERTY_NAME] = 'jceks://file' + params.logsearch_env_jceks_file
+    File(format("{logsearch_server_keys_folder}/ks_pass.txt"),
+         action="delete"
+         )
+    File(format("{logsearch_server_keys_folder}/ts_pass.txt"),
+         action="delete"
+         )
+  else:
+    File(format("{logsearch_server_keys_folder}/ks_pass.txt"),
+         content=params.logsearch_keystore_password,
+         mode=0600,
+         owner= params.logsearch_user,
+         group=params.user_group
+         )
+    File(format("{logsearch_server_keys_folder}/ts_pass.txt"),
+         content=params.logsearch_truststore_password,
+         mode=0600,
+         owner= params.logsearch_user,
+         group=params.user_group
+         )
+  
+  PropertiesFile(format("{logsearch_server_conf}/logsearch.properties"),
+                 properties=params.logsearch_properties
+                 )
+
+  File(format("{logsearch_server_conf}/HadoopServiceConfig.json"),
+       content=Template("HadoopServiceConfig.json.j2"),
+       owner=params.logsearch_user,
+       group=params.user_group
+       )
+
+  File(format("{logsearch_server_conf}/log4j.xml"),
+       content=InlineTemplate(params.logsearch_app_log4j_content),
+       owner=params.logsearch_user,
+       group=params.user_group
+       )
+
+  File(format("{logsearch_server_conf}/logsearch-env.sh"),
+       content=InlineTemplate(params.logsearch_env_content),
+       mode=0755,
+       owner=params.logsearch_user,
+       group=params.user_group
+       )
+
+  File(format("{logsearch_server_conf}/logsearch-admin.json"),
+       content=InlineTemplate(params.logsearch_admin_content),
+       owner=params.logsearch_user,
+       group=params.user_group
+       )
+
+  File(format("{logsearch_config_set_dir}/hadoop_logs/conf/solrconfig.xml"),
+       content=InlineTemplate(params.logsearch_service_logs_solrconfig_content),
+       owner=params.logsearch_user,
+       group=params.user_group
+       )
+
+  File(format("{logsearch_config_set_dir}/audit_logs/conf/solrconfig.xml"),
+       content=InlineTemplate(params.logsearch_audit_logs_solrconfig_content),
+       owner=params.logsearch_user,
+       group=params.user_group
+       )
+
+  if params.security_enabled:
+    File(format("{logsearch_jaas_file}"),
+         content=Template("logsearch_jaas.conf.j2"),
+         owner=params.logsearch_user
+         )
+  Execute(("chmod", "-R", "ugo+r", format("{logsearch_server_conf}/solr_configsets")),
+          sudo=True
+          )
+  generate_logfeeder_input_config('logsearch', Template("input.config-logsearch.json.j2", extra_imports=[default]))
+  check_znode()
+
+  if params.security_enabled and not params.logsearch_use_external_solr:
+    solr_cloud_util.add_solr_roles(params.config,
+                                   roles = [params.infra_solr_role_logsearch, params.infra_solr_role_ranger_admin, params.infra_solr_role_dev],
+                                   new_service_principals = params.logsearch_solr_service_users)
+    solr_cloud_util.add_solr_roles(params.config,
+                                   roles = [params.infra_solr_role_logfeeder, params.infra_solr_role_dev],
+                                   new_service_principals = [params.logfeeder_kerberos_principal])
+
+@retry(times=30, sleep_time=5, err_class=Fail)
+def check_znode():
+  import params
+  solr_cloud_util.check_znode(
+    zookeeper_quorum=params.logsearch_solr_zk_quorum,
+    solr_znode=params.logsearch_solr_zk_znode,
+    java64_home=params.java64_home,
+    retry=30, interval=5,
+    java_opts=params.zk_security_opts if params.security_enabled else None,
+    jaas_file=params.logsearch_jaas_file)
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/status_params.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/status_params.py
new file mode 100644
index 00000000000..3046452c060
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/scripts/status_params.py
@@ -0,0 +1,38 @@
+#!/usr/bin/env python
+
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+"""
+
+from resource_management.libraries.functions import get_kinit_path
+from resource_management.libraries.functions.default import default
+from resource_management.libraries.functions.format import format
+from resource_management.libraries.script.script import Script
+
+config = Script.get_config()
+
+# logsearch pid file
+logsearch_pid_dir = config['configurations']['logsearch-env']['logsearch_pid_dir']
+logsearch_pid_file = format("{logsearch_pid_dir}/logsearch.pid")
+
+# logfeeder pid file
+logfeeder_pid_dir = config['configurations']['logfeeder-env']['logfeeder_pid_dir']
+logfeeder_pid_file = format("{logfeeder_pid_dir}/logfeeder.pid")
+
+security_enabled = config['configurations']['cluster-env']['security_enabled']
+kinit_path_local = get_kinit_path(default('/configurations/kerberos-env/executable_search_paths', None))
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/HadoopServiceConfig.json.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/HadoopServiceConfig.json.j2
new file mode 100644
index 00000000000..293a772cdc0
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/HadoopServiceConfig.json.j2
@@ -0,0 +1,505 @@
+{#
+ # Licensed to the Apache Software Foundation (ASF) under one
+ # or more contributor license agreements.  See the NOTICE file
+ # distributed with this work for additional information
+ # regarding copyright ownership.  The ASF licenses this file
+ # to you under the Apache License, Version 2.0 (the
+ # "License"); you may not use this file except in compliance
+ # with the License.  You may obtain a copy of the License at
+ #
+ #   http://www.apache.org/licenses/LICENSE-2.0
+ #
+ # Unless required by applicable law or agreed to in writing, software
+ # distributed under the License is distributed on an "AS IS" BASIS,
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ # See the License for the specific language governing permissions and
+ # limitations under the License.
+ #}
+{
+  "service": {
+    "accumulo": {
+      "label": "Accumulo",
+      "components": [
+        {
+          "name": "accumulo_gc"
+        },
+        {
+          "name": "accumulo_master"
+        },
+        {
+          "name": "accumulo_monitor"
+        },
+        {
+          "name": "accumulo_tracer"
+        },
+        {
+          "name": "accumulo_tserver"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "atlas": {
+      "label": "Atlas",
+      "components": [
+        {
+          "name": "atlas_app"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "ambari": {
+      "label": "Ambari",
+      "components": [
+        {
+          "name": "ambari_agent"
+        },
+        {
+          "name": "ambari_server"
+        },
+        {
+          "name": "ambari_alerts"
+        },
+        {
+          "name": "ambari_audit"
+        },
+        {
+          "name": "ambari_config_changes"
+        },
+        {
+          "name": "ambari_eclipselink"
+        },
+        {
+          "name": "ambari_server_check_database"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "ams": {
+      "label": "AMS",
+      "components": [
+        {
+          "name": "ams_hbase_master"
+        },
+        {
+          "name": "ams_hbase_regionserver"
+        },
+        {
+          "name": "ams_collector"
+        },
+        {
+          "name": "ams_monitor"
+        },
+        {
+          "name": "ams_grafana"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "falcon": {
+      "label": "Falcon",
+      "components": [
+        {
+          "name": "falcon_app"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "flume": {
+      "label": "Flume",
+      "components": [
+        {
+          "name": "flume_handler"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "hbase": {
+      "label": "HBase",
+      "components": [
+        {
+          "name": "hbase_master"
+        },
+        {
+          "name": "hbase_regionserver"
+        },
+        {
+          "name": "hbase_phoenix_server"
+        }
+      ],
+      "dependencies": [
+        {
+          "service": "hdfs",
+          "components": [
+            "hdfs_namenode"
+          ]
+        }
+      ]
+    },
+    "hdfs": {
+      "label": "HDFS",
+      "components": [
+        {
+          "name": "hdfs_datanode"
+        },
+        {
+          "name": "hdfs_namenode"
+        },
+        {
+          "name": "hdfs_journalnode"
+        },
+        {
+          "name": "hdfs_secondarynamenode"
+        },
+        {
+          "name": "hdfs_zkfc"
+        },
+        {
+          "name": "hdfs_nfs3"
+        },
+        {
+          "name": "hdfs_audit",
+          "rowtype": "audit"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "hive": {
+      "label": "Hive",
+      "components": [
+        {
+          "name": "hive_hiveserver2"
+        },
+        {
+          "name": "hive_metastore"
+        },
+        {
+          "name": "webhcat_server"
+        }
+      ],
+      "dependencies": [
+        {
+          "service": "hdfs",
+          "components": [
+            "hdfs_namenode"
+          ]
+        }
+      ]
+    },
+    "infra" : {
+      "label" : "Infra",
+      "components": [
+        {
+          "name": "infra_solr"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "kafka": {
+      "label": "Kafka",
+      "components": [
+        {
+          "name": "kafka_controller"
+        },
+        {
+          "name": "kafka_request"
+        },
+        {
+          "name": "kafka_logcleaner"
+        },
+        {
+          "name": "kafka_server"
+        },
+        {
+          "name": "kafka_statechange"
+        }
+      ],
+      "dependencies": [
+        {
+          "service": "zookeeper",
+          "components": [
+            "zookeeper"
+          ]
+        }
+      ]
+    },
+    "knox": {
+      "label": "Knox",
+      "components": [
+        {
+          "name": "knox_gateway"
+        },
+        {
+          "name": "knox_cli"
+        },
+        {
+          "name": "knox_ldap"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "nifi": {
+      "label": "NiFi",
+      "components": [
+        {
+          "name": "nifi_app"
+        },
+        {
+          "name": "nifi_bootstrap"
+        },
+        {
+          "name": "nifi_setup"
+        },
+        {
+          "name": "nifi_user"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "mapred": {
+      "label": "MapReduce",
+      "components": [
+        {
+          "name": "mapred_historyserver"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "logsearch": {
+      "label": "Logsearch",
+      "components": [
+        {
+          "name": "logsearch_app"
+        },
+        {
+          "name": "logsearch_feeder"
+        },
+        {
+          "name": "logsearch_perf"
+        },
+        {
+          "name": "logsearch_solr"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "ranger": {
+      "label": "Ranger",
+      "components": [
+        {
+          "name": "ranger_admin"
+        },
+        {
+          "name": "ranger_dbpatch"
+        },
+        {
+          "name": "ranger_kms"
+        },
+        {
+          "name": "ranger_usersync"
+        }
+      ],
+      "dependencies": [
+        {
+          "service": "hdfs",
+          "required": "optional",
+          "components": [
+            "hdfs_namenode"
+          ]
+        },
+        {
+          "service": "hbase",
+          "required": "optional",
+          "components": [
+            "hbase_master",
+            "hbase_regionserver"
+          ]
+        },
+        {
+          "service": "hive",
+          "required": "optional",
+          "components": [
+            "hive_hiveserver2"
+          ]
+        },
+        {
+          "service": "kafka",
+          "required": "optional",
+          "components": [
+            "kafka_ranger"
+          ]
+        },
+        {
+          "service": "knox",
+          "required": "optional",
+          "components": [
+            "knox_gateway"
+          ]
+        },
+        {
+          "service": "storm",
+          "required": "optional",
+          "components": [
+            "storm_supervisor"
+          ]
+        },
+        {
+          "service": "yarn",
+          "required": "optional",
+          "components": [
+            "yarn_resourcemanager"
+          ]
+        }
+      ]
+    },
+    "oozie": {
+      "label": "Oozie",
+      "components": [
+        {
+          "name": "oozie_app"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "hst": {
+      "label": "SmartSense",
+      "components": [
+        {
+          "name": "hst_server"
+        },
+        {
+          "name": "hst_agent"
+        },
+        {
+          "name": "activity_analyzer"
+        },
+        {
+          "name": "activity_explorer"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "spark": {
+      "label": "Spark",
+      "components": [
+        {
+          "name": "spark_jobhistory_server"
+        },
+        {
+          "name": "spark_thriftserver"
+        },
+        {
+          "name": "livy_server"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "spark2": {
+      "label": "Spark 2",
+      "components": [
+        {
+          "name": "spark2_jobhistory_server"
+        },
+        {
+          "name": "spark2_thriftserver"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "storm": {
+      "label": "Storm",
+      "components": [
+        {
+          "name": "storm_drpc"
+        },
+        {
+          "name": "storm_logviewer"
+        },
+        {
+          "name": "storm_nimbus"
+        },
+        {
+          "name": "storm_supervisor"
+        },
+        {
+          "name": "storm_ui"
+        },
+        {
+          "name": "storm_worker"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "yarn": {
+      "label": "YARN",
+      "components": [
+        {
+          "name": "yarn_nodemanager"
+        },
+        {
+          "name": "yarn_resourcemanager"
+        },
+        {
+          "name": "yarn_timelineserver"
+        },
+        {
+          "name": "yarn_historyserver"
+        },
+        {
+          "name": "yarn_jobsummary"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "zeppelin": {
+      "label": "Zeppelin",
+      "components": [
+        {
+          "name": "zeppelin"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "zookeeper": {
+      "label": "ZooKeeper",
+      "components": [
+        {
+          "name": "zookeeper"
+        }
+      ],
+      "dependencies": [
+      ]
+    },
+    "System": {
+      "label": "System",
+      "components": [
+        {
+          "name": "system_message"
+        },
+        {
+          "name": "secure_log"
+        }
+      ],
+      "dependencies": [
+      ]
+    }
+  }
+}
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/global.config.json.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/global.config.json.j2
new file mode 100644
index 00000000000..1b63e2aa6b9
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/global.config.json.j2
@@ -0,0 +1,27 @@
+{#
+ # Licensed to the Apache Software Foundation (ASF) under one
+ # or more contributor license agreements.  See the NOTICE file
+ # distributed with this work for additional information
+ # regarding copyright ownership.  The ASF licenses this file
+ # to you under the Apache License, Version 2.0 (the
+ # "License"); you may not use this file except in compliance
+ # with the License.  You may obtain a copy of the License at
+ #
+ #   http://www.apache.org/licenses/LICENSE-2.0
+ #
+ # Unless required by applicable law or agreed to in writing, software
+ # distributed under the License is distributed on an "AS IS" BASIS,
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ # See the License for the specific language governing permissions and
+ # limitations under the License.
+ #}
+{
+  "global":{
+    "add_fields":{
+      "cluster":"{{cluster_name}}"
+    },
+    "source":"file",
+    "tail":"true",
+    "gen_event_md5":"true"
+  }
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/input.config-logsearch.json.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/input.config-logsearch.json.j2
new file mode 100644
index 00000000000..dc014f81216
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/input.config-logsearch.json.j2
@@ -0,0 +1,55 @@
+{#
+ # Licensed to the Apache Software Foundation (ASF) under one
+ # or more contributor license agreements.  See the NOTICE file
+ # distributed with this work for additional information
+ # regarding copyright ownership.  The ASF licenses this file
+ # to you under the Apache License, Version 2.0 (the
+ # "License"); you may not use this file except in compliance
+ # with the License.  You may obtain a copy of the License at
+ #
+ #   http://www.apache.org/licenses/LICENSE-2.0
+ #
+ # Unless required by applicable law or agreed to in writing, software
+ # distributed under the License is distributed on an "AS IS" BASIS,
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ # See the License for the specific language governing permissions and
+ # limitations under the License.
+ #}
+{
+  "input":[
+    {
+      "type":"logsearch_app",
+      "rowtype":"service",
+      "path":"{{default('/configurations/logsearch-env/logsearch_log_dir', '/var/log/ambari-logsearch-portal')}}/logsearch.json"
+    },
+    {
+      "type":"logsearch_feeder",
+      "rowtype":"service",
+      "path":"{{default('/configurations/logfeeder-env/logfeeder_log_dir', '/var/log/ambari-logsearch-logfeeder')}}/logsearch-logfeeder.json"
+    },
+    {
+      "type":"logsearch_perf",
+      "rowtype":"service",
+      "path":"{{default('/configurations/logsearch-env/logsearch_log_dir', '/var/log/ambari-logsearch-portal')}}/logsearch-performance.json"
+    }
+  ],
+  "filter":[
+    {
+      "filter":"json",
+      "conditions":{
+        "fields":{
+          "type":[
+            "logsearch_app",
+            "logsearch_feeder",
+            "logsearch_perf"
+          ]
+
+        }
+
+      }
+
+    }
+
+  ]
+
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logfeeder_jaas.conf.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logfeeder_jaas.conf.j2
new file mode 100644
index 00000000000..8c5974c9251
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logfeeder_jaas.conf.j2
@@ -0,0 +1,26 @@
+{#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements.  See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership.  The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License.  You may obtain a copy of the License at
+#
+#   http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#}
+
+Client {
+ com.sun.security.auth.module.Krb5LoginModule required
+ useKeyTab=true
+ storeKey=true
+ useTicketCache=false
+ keyTab="{{logfeeder_kerberos_keytab}}"
+ principal="{{logfeeder_kerberos_principal}}";
+};
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logsearch_jaas.conf.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logsearch_jaas.conf.j2
new file mode 100644
index 00000000000..ff016e6c223
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/package/templates/logsearch_jaas.conf.j2
@@ -0,0 +1,26 @@
+{#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements.  See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership.  The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License.  You may obtain a copy of the License at
+#
+#   http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#}
+
+Client {
+ com.sun.security.auth.module.Krb5LoginModule required
+ useKeyTab=true
+ storeKey=true
+ useTicketCache=false
+ keyTab="{{logsearch_kerberos_keytab}}"
+ principal="{{logsearch_kerberos_principal}}";
+};
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/audit_logs-solrconfig.xml.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/audit_logs-solrconfig.xml.j2
new file mode 100644
index 00000000000..f4b7d4a1372
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/audit_logs-solrconfig.xml.j2
@@ -0,0 +1,1889 @@
+<?xml version="1.0" encoding="UTF-8" ?>
+<!--
+Licensed to the Apache Software Foundation (ASF) under one or more
+contributor license agreements.  See the NOTICE file distributed with
+this work for additional information regarding copyright ownership.
+The ASF licenses this file to You under the Apache License, Version 2.0
+(the "License"); you may not use this file except in compliance with
+the License.  You may obtain a copy of the License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+
+<!--
+For more details about configurations options that may appear in
+this file, see http://wiki.apache.org/solr/SolrConfigXml.
+-->
+<config>
+  <!-- In all configuration below, a prefix of "solr." for class names
+  is an alias that causes solr to search appropriate packages,
+  including org.apache.solr.(search|update|request|core|analysis)
+
+  You may also specify a fully qualified Java classname if you
+  have your own custom plugins.
+  -->
+
+  <!-- Controls what version of Lucene various components of Solr
+  adhere to.  Generally, you want to use the latest version to
+  get all bug fixes and improvements. It is highly recommended
+  that you fully re-index after changing this setting as it can
+  affect both how text is indexed and queried.
+  -->
+  <luceneMatchVersion>7.5.0</luceneMatchVersion>
+
+  <!-- <lib/> directives can be used to instruct Solr to load any Jars
+  identified and use them to resolve any "plugins" specified in
+  your solrconfig.xml or schema.xml (ie: Analyzers, Request
+  Handlers, etc...).
+
+  All directories and paths are resolved relative to the
+  instanceDir.
+
+  Please note that <lib/> directives are processed in the order
+  that they appear in your solrconfig.xml file, and are "stacked"
+  on top of each other when building a ClassLoader - so if you have
+  plugin jars with dependencies on other jars, the "lower level"
+  dependency jars should be loaded first.
+
+  If a "./lib" directory exists in your instanceDir, all files
+  found in it are included as if you had used the following
+  syntax...
+
+  <lib dir="./lib" />
+  -->
+
+  <!-- A 'dir' option by itself adds any files found in the directory
+  to the classpath, this is useful for including all jars in a
+  directory.
+
+  When a 'regex' is specified in addition to a 'dir', only the
+  files in that directory which completely match the regex
+  (anchored on both ends) will be included.
+
+  If a 'dir' option (with or without a regex) is used and nothing
+  is found that matches, a warning will be logged.
+
+  The examples below can be used to load some solr-contribs along
+  with their external dependencies.
+  -->
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-dataimporthandler-.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/extraction/lib" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-cell-\d.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/clustering/lib/" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-clustering-\d.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/langid/lib/" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-langid-\d.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/velocity/lib" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-velocity-\d.*\.jar"/>
+
+  <!-- an exact 'path' can be used instead of a 'dir' to specify a
+  specific jar file.  This will cause a serious error to be logged
+  if it can't be loaded.
+  -->
+  <!--
+  <lib path="../a-jar-that-does-not-exist.jar" />
+  -->
+
+  <!-- Data Directory
+
+  Used to specify an alternate directory to hold all index data
+  other than the default ./data under the Solr home.  If
+  replication is in use, this should match the replication
+  configuration.
+  -->
+  <dataDir>${solr.data.dir:}</dataDir>
+
+
+  <!-- The DirectoryFactory to use for indexes.
+
+  solr.StandardDirectoryFactory is filesystem
+  based and tries to pick the best implementation for the current
+  JVM and platform.  solr.NRTCachingDirectoryFactory, the default,
+  wraps solr.StandardDirectoryFactory and caches small files in memory
+  for better NRT performance.
+
+  One can force a particular implementation via solr.MMapDirectoryFactory,
+  solr.NIOFSDirectoryFactory, or solr.SimpleFSDirectoryFactory.
+
+  solr.RAMDirectoryFactory is memory based, not
+  persistent, and doesn't work with replication.
+  -->
+  <directoryFactory name="DirectoryFactory"
+                    class="${solr.directoryFactory:solr.NRTCachingDirectoryFactory}">
+
+
+    <!-- These will be used if you are using the solr.HdfsDirectoryFactory,
+    otherwise they will be ignored. If you don't plan on using hdfs,
+    you can safely remove this section. -->
+    <!-- The root directory that collection data should be written to. -->
+    <str name="solr.hdfs.home">${solr.hdfs.home:}</str>
+    <!-- The hadoop configuration files to use for the hdfs client. -->
+    <str name="solr.hdfs.confdir">${solr.hdfs.confdir:}</str>
+    <!-- Enable/Disable the hdfs cache. -->
+    <str name="solr.hdfs.blockcache.enabled">${solr.hdfs.blockcache.enabled:true}</str>
+    <!-- Enable/Disable using one global cache for all SolrCores.
+    The settings used will be from the first HdfsDirectoryFactory created. -->
+    <str name="solr.hdfs.blockcache.global">${solr.hdfs.blockcache.global:true}</str>
+
+  </directoryFactory>
+
+  <!-- The CodecFactory for defining the format of the inverted index.
+  The default implementation is SchemaCodecFactory, which is the official Lucene
+  index format, but hooks into the schema to provide per-field customization of
+  the postings lists and per-document values in the fieldType element
+  (postingsFormat/docValuesFormat). Note that most of the alternative implementations
+  are experimental, so if you choose to customize the index format, it's a good
+  idea to convert back to the official format e.g. via IndexWriter.addIndexes(IndexReader)
+  before upgrading to a newer version to avoid unnecessary reindexing.
+  -->
+  <codecFactory class="solr.SchemaCodecFactory"/>
+
+  <!-- To enable dynamic schema REST APIs, use the following for <schemaFactory>: -->
+
+  <schemaFactory class="ManagedIndexSchemaFactory">
+    <bool name="mutable">true</bool>
+    <str name="managedSchemaResourceName">managed-schema</str>
+  </schemaFactory>
+  <!--
+  When ManagedIndexSchemaFactory is specified, Solr will load the schema from
+  the resource named in 'managedSchemaResourceName', rather than from schema.xml.
+  Note that the managed schema resource CANNOT be named schema.xml.  If the managed
+  schema does not exist, Solr will create it after reading schema.xml, then rename
+  'schema.xml' to 'schema.xml.bak'.
+
+  Do NOT hand edit the managed schema - external modifications will be ignored and
+  overwritten as a result of schema modification REST API calls.
+
+  When ManagedIndexSchemaFactory is specified with mutable = true, schema
+  modification REST API calls will be allowed; otherwise, error responses will be
+  sent back for these requests.
+
+  <schemaFactory class="ClassicIndexSchemaFactory"/>
+  -->
+
+  <!-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+  Index Config - These settings control low-level behavior of indexing
+  Most example settings here show the default value, but are commented
+  out, to more easily see where customizations have been made.
+
+  Note: This replaces <indexDefaults> and <mainIndex> from older versions
+  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -->
+  <indexConfig>
+    <!-- maxFieldLength was removed in 4.0. To get similar behavior, include a
+    LimitTokenCountFilterFactory in your fieldType definition. E.g.
+    <filter class="solr.LimitTokenCountFilterFactory" maxTokenCount="10000"/>
+    -->
+    <!-- Maximum time to wait for a write lock (ms) for an IndexWriter. Default: 1000 -->
+    <!-- <writeLockTimeout>1000</writeLockTimeout>  -->
+    <!-- LogSearch customization to avoid timeouts -->
+    <writeLockTimeout>10000</writeLockTimeout>
+
+    <!-- The maximum number of simultaneous threads that may be
+    indexing documents at once in IndexWriter; if more than this
+    many threads arrive they will wait for others to finish.
+    Default in Solr/Lucene is 8. -->
+    <!-- <maxIndexingThreads>8</maxIndexingThreads>  -->
+    <!-- LogSearch customization of increase performance -->
+    <maxIndexingThreads>50</maxIndexingThreads>
+
+    <!-- Expert: Enabling compound file will use less files for the index,
+    using fewer file descriptors on the expense of performance decrease.
+    Default in Lucene is "true". Default in Solr is "false" (since 3.6) -->
+    <!-- <useCompoundFile>false</useCompoundFile> -->
+
+    <!-- ramBufferSizeMB sets the amount of RAM that may be used by Lucene
+    indexing for buffering added documents and deletions before they are
+    flushed to the Directory.
+    maxBufferedDocs sets a limit on the number of documents buffered
+    before flushing.
+    If both ramBufferSizeMB and maxBufferedDocs is set, then
+    Lucene will flush based on whichever limit is hit first.
+    The default is 100 MB.  -->
+    <!-- <ramBufferSizeMB>100</ramBufferSizeMB> -->
+    <!-- <maxBufferedDocs>1000</maxBufferedDocs> -->
+
+    <!-- Expert: Merge Policy
+    The Merge Policy in Lucene controls how merging of segments is done.
+    The default since Solr/Lucene 3.3 is TieredMergePolicy.
+    The default since Lucene 2.3 was the LogByteSizeMergePolicy,
+    Even older versions of Lucene used LogDocMergePolicy.
+    -->
+    <!--
+    <mergePolicy class="org.apache.lucene.index.TieredMergePolicy">
+    <int name="maxMergeAtOnce">10</int>
+    <int name="segmentsPerTier">10</int>
+    </mergePolicy>
+    -->
+
+    <!-- Merge Factor
+    The merge factor controls how many segments will get merged at a time.
+    For TieredMergePolicy, mergeFactor is a convenience parameter which
+    will set both MaxMergeAtOnce and SegmentsPerTier at once.
+    For LogByteSizeMergePolicy, mergeFactor decides how many new segments
+    will be allowed before they are merged into one.
+    Default is 10 for both merge policies.
+    -->
+    <!--
+    <mergeFactor>10</mergeFactor>
+    -->
+    <!-- LogSearch customization. Set to 5 to trigger purging of deleted documents more often -->
+    <mergePolicyFactory class="org.apache.solr.index.TieredMergePolicyFactory">
+      <int name="maxMergeAtOnce">{{logsearch_audit_logs_merge_factor}}</int>
+      <int name="segmentsPerTier">{{logsearch_audit_logs_merge_factor}}</int>
+    </mergePolicyFactory>
+
+    <!-- Expert: Merge Scheduler
+    The Merge Scheduler in Lucene controls how merges are
+    performed.  The ConcurrentMergeScheduler (Lucene 2.3 default)
+    can perform merges in the background using separate threads.
+    The SerialMergeScheduler (Lucene 2.2 default) does not.
+    -->
+    <!--
+    <mergeScheduler class="org.apache.lucene.index.ConcurrentMergeScheduler"/>
+    -->
+
+    <!-- LockFactory
+
+    This option specifies which Lucene LockFactory implementation
+    to use.
+
+    single = SingleInstanceLockFactory - suggested for a
+    read-only index or when there is no possibility of
+    another process trying to modify the index.
+    native = NativeFSLockFactory - uses OS native file locking.
+    Do not use when multiple solr webapps in the same
+    JVM are attempting to share a single index.
+    simple = SimpleFSLockFactory  - uses a plain file for locking
+
+    Defaults: 'native' is default for Solr3.6 and later, otherwise
+    'simple' is the default
+
+    More details on the nuances of each LockFactory...
+    http://wiki.apache.org/lucene-java/AvailableLockFactories
+    -->
+    <lockType>${solr.lock.type:native}</lockType>
+
+    <!-- Unlock On Startup
+
+    If true, unlock any held write or commit locks on startup.
+    This defeats the locking mechanism that allows multiple
+    processes to safely access a lucene index, and should be used
+    with care. Default is "false".
+
+    This is not needed if lock type is 'single'
+    -->
+    <!--
+    <unlockOnStartup>false</unlockOnStartup>
+    -->
+
+    <!-- Commit Deletion Policy
+    Custom deletion policies can be specified here. The class must
+    implement org.apache.lucene.index.IndexDeletionPolicy.
+
+    The default Solr IndexDeletionPolicy implementation supports
+    deleting index commit points on number of commits, age of
+    commit point and optimized status.
+
+    The latest commit point should always be preserved regardless
+    of the criteria.
+    -->
+    <!--
+    <deletionPolicy class="solr.SolrDeletionPolicy">
+    -->
+    <!-- The number of commit points to be kept -->
+    <!-- <str name="maxCommitsToKeep">1</str> -->
+    <!-- The number of optimized commit points to be kept -->
+    <!-- <str name="maxOptimizedCommitsToKeep">0</str> -->
+    <!--
+    Delete all commit points once they have reached the given age.
+    Supports DateMathParser syntax e.g.
+    -->
+    <!--
+    <str name="maxCommitAge">30MINUTES</str>
+    <str name="maxCommitAge">1DAY</str>
+    -->
+    <!--
+    </deletionPolicy>
+    -->
+
+    <!-- Lucene Infostream
+
+    To aid in advanced debugging, Lucene provides an "InfoStream"
+    of detailed information when indexing.
+
+    Setting the value to true will instruct the underlying Lucene
+    IndexWriter to write its info stream to solr's log. By default,
+    this is enabled here, and controlled through log4j.properties.
+    -->
+    <infoStream>true</infoStream>
+  </indexConfig>
+
+
+  <!-- JMX
+
+  This example enables JMX if and only if an existing MBeanServer
+  is found, use this if you want to configure JMX through JVM
+  parameters. Remove this to disable exposing Solr configuration
+  and statistics to JMX.
+
+  For more details see http://wiki.apache.org/solr/SolrJmx
+  -->
+  <jmx/>
+  <!-- If you want to connect to a particular server, specify the
+  agentId
+  -->
+  <!-- <jmx agentId="myAgent" /> -->
+  <!-- If you want to start a new MBeanServer, specify the serviceUrl -->
+  <!-- <jmx serviceUrl="service:jmx:rmi:///jndi/rmi://localhost:9999/solr"/>
+  -->
+
+  <!-- The default high-performance update handler -->
+  <updateHandler class="solr.DirectUpdateHandler2">
+
+    <!-- Enables a transaction log, used for real-time get, durability, and
+    and solr cloud replica recovery.  The log can grow as big as
+    uncommitted changes to the index, so use of a hard autoCommit
+    is recommended (see below).
+    "dir" - the target directory for transaction logs, defaults to the
+    solr data directory.  -->
+    <updateLog>
+      <str name="dir">${solr.ulog.dir:}</str>
+    </updateLog>
+
+    <!-- AutoCommit
+
+    Perform a hard commit automatically under certain conditions.
+    Instead of enabling autoCommit, consider using "commitWithin"
+    when adding documents.
+
+    http://wiki.apache.org/solr/UpdateXmlMessages
+
+    maxDocs - Maximum number of documents to add since the last
+    commit before automatically triggering a new commit.
+
+    maxTime - Maximum amount of time in ms that is allowed to pass
+    since a document was added before automatically
+    triggering a new commit.
+    openSearcher - if false, the commit causes recent index changes
+    to be flushed to stable storage, but does not cause a new
+    searcher to be opened to make those changes visible.
+
+    If the updateLog is enabled, then it's highly recommended to
+    have some sort of hard autoCommit to limit the log size.
+    -->
+    <autoCommit>
+      <maxTime>${solr.autoCommit.maxTime:15000}</maxTime>
+      <openSearcher>false</openSearcher>
+    </autoCommit>
+
+    <!-- softAutoCommit is like autoCommit except it causes a
+    'soft' commit which only ensures that changes are visible
+    but does not ensure that data is synced to disk.  This is
+    faster and more near-realtime friendly than a hard commit.
+    -->
+
+    <autoSoftCommit>
+      <maxTime>${solr.autoSoftCommit.maxTime:5000}</maxTime>
+    </autoSoftCommit>
+
+    <!-- Update Related Event Listeners
+
+    Various IndexWriter related events can trigger Listeners to
+    take actions.
+
+    postCommit - fired after every commit or optimize command
+    postOptimize - fired after every optimize command
+    -->
+    <!-- The RunExecutableListener executes an external command from a
+    hook such as postCommit or postOptimize.
+
+    exe - the name of the executable to run
+    dir - dir to use as the current working directory. (default=".")
+    wait - the calling thread waits until the executable returns.
+    (default="true")
+    args - the arguments to pass to the program.  (default is none)
+    env - environment variables to set.  (default is none)
+    -->
+    <!-- This example shows how RunExecutableListener could be used
+    with the script based replication...
+    http://wiki.apache.org/solr/CollectionDistribution
+    -->
+    <!--
+    <listener event="postCommit" class="solr.RunExecutableListener">
+    <str name="exe">solr/bin/snapshooter</str>
+    <str name="dir">.</str>
+    <bool name="wait">true</bool>
+    <arr name="args"> <str>arg1</str> <str>arg2</str> </arr>
+    <arr name="env"> <str>MYVAR=val1</str> </arr>
+    </listener>
+    -->
+
+  </updateHandler>
+
+  <!-- IndexReaderFactory
+
+  Use the following format to specify a custom IndexReaderFactory,
+  which allows for alternate IndexReader implementations.
+
+  ** Experimental Feature **
+
+  Please note - Using a custom IndexReaderFactory may prevent
+  certain other features from working. The API to
+  IndexReaderFactory may change without warning or may even be
+  removed from future releases if the problems cannot be
+  resolved.
+
+
+  ** Features that may not work with custom IndexReaderFactory **
+
+  The ReplicationHandler assumes a disk-resident index. Using a
+  custom IndexReader implementation may cause incompatibility
+  with ReplicationHandler and may cause replication to not work
+  correctly. See SOLR-1366 for details.
+
+  -->
+  <!--
+  <indexReaderFactory name="IndexReaderFactory" class="package.class">
+  <str name="someArg">Some Value</str>
+  </indexReaderFactory >
+  -->
+
+  <!-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+  Query section - these settings control query time things like caches
+  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -->
+  <query>
+    <!-- Max Boolean Clauses
+
+    Maximum number of clauses in each BooleanQuery,  an exception
+    is thrown if exceeded.
+
+    ** WARNING **
+
+    This option actually modifies a global Lucene property that
+    will affect all SolrCores.  If multiple solrconfig.xml files
+    disagree on this property, the value at any given moment will
+    be based on the last SolrCore to be initialized.
+
+    -->
+    <maxBooleanClauses>1024</maxBooleanClauses>
+
+
+    <!-- Solr Internal Query Caches
+
+    There are two implementations of cache available for Solr,
+    LRUCache, based on a synchronized LinkedHashMap, and
+    FastLRUCache, based on a ConcurrentHashMap.
+
+    FastLRUCache has faster gets and slower puts in single
+    threaded operation and thus is generally faster than LRUCache
+    when the hit ratio of the cache is high (> 75%), and may be
+    faster under other scenarios on multi-cpu systems.
+    -->
+
+    <!-- Filter Cache
+
+    Cache used by SolrIndexSearcher for filters (DocSets),
+    unordered sets of *all* documents that match a query.  When a
+    new searcher is opened, its caches may be prepopulated or
+    "autowarmed" using data from caches in the old searcher.
+    autowarmCount is the number of items to prepopulate.  For
+    LRUCache, the autowarmed items will be the most recently
+    accessed items.
+
+    Parameters:
+    class - the SolrCache implementation LRUCache or
+    (LRUCache or FastLRUCache)
+    size - the maximum number of entries in the cache
+    initialSize - the initial capacity (number of entries) of
+    the cache.  (see java.util.HashMap)
+    autowarmCount - the number of entries to prepopulate from
+    and old cache.
+    -->
+    <filterCache class="solr.FastLRUCache"
+                 size="512"
+                 initialSize="512"
+                 autowarmCount="0"/>
+
+    <!-- Query Result Cache
+
+    Caches results of searches - ordered lists of document ids
+    (DocList) based on a query, a sort, and the range of documents requested.
+    -->
+    <queryResultCache class="solr.LRUCache"
+                      size="512"
+                      initialSize="512"
+                      autowarmCount="0"/>
+
+    <!-- Document Cache
+
+    Caches Lucene Document objects (the stored fields for each
+    document).  Since Lucene internal document ids are transient,
+    this cache will not be autowarmed.
+    -->
+    <documentCache class="solr.LRUCache"
+                   size="512"
+                   initialSize="512"
+                   autowarmCount="0"/>
+
+    <!-- custom cache currently used by block join -->
+    <cache name="perSegFilter"
+           class="solr.search.LRUCache"
+           size="10"
+           initialSize="0"
+           autowarmCount="10"
+           regenerator="solr.NoOpRegenerator"/>
+
+    <!-- Field Value Cache
+
+    Cache used to hold field values that are quickly accessible
+    by document id.  The fieldValueCache is created by default
+    even if not configured here.
+    -->
+    <!--
+    <fieldValueCache class="solr.FastLRUCache"
+    size="512"
+    autowarmCount="128"
+    showItems="32" />
+    -->
+
+    <!-- Custom Cache
+
+    Example of a generic cache.  These caches may be accessed by
+    name through SolrIndexSearcher.getCache(),cacheLookup(), and
+    cacheInsert().  The purpose is to enable easy caching of
+    user/application level data.  The regenerator argument should
+    be specified as an implementation of solr.CacheRegenerator
+    if autowarming is desired.
+    -->
+    <!--
+    <cache name="myUserCache"
+    class="solr.LRUCache"
+    size="4096"
+    initialSize="1024"
+    autowarmCount="1024"
+    regenerator="com.mycompany.MyRegenerator"
+    />
+    -->
+
+
+    <!-- Lazy Field Loading
+
+    If true, stored fields that are not requested will be loaded
+    lazily.  This can result in a significant speed improvement
+    if the usual case is to not load all stored fields,
+    especially if the skipped fields are large compressed text
+    fields.
+    -->
+    <enableLazyFieldLoading>true</enableLazyFieldLoading>
+
+    <!-- Use Filter For Sorted Query
+
+    A possible optimization that attempts to use a filter to
+    satisfy a search.  If the requested sort does not include
+    score, then the filterCache will be checked for a filter
+    matching the query. If found, the filter will be used as the
+    source of document ids, and then the sort will be applied to
+    that.
+
+    For most situations, this will not be useful unless you
+    frequently get the same search repeatedly with different sort
+    options, and none of them ever use "score"
+    -->
+    <!--
+    <useFilterForSortedQuery>true</useFilterForSortedQuery>
+    -->
+
+    <!-- Result Window Size
+
+    An optimization for use with the queryResultCache.  When a search
+    is requested, a superset of the requested number of document ids
+    are collected.  For example, if a search for a particular query
+    requests matching documents 10 through 19, and queryWindowSize is 50,
+    then documents 0 through 49 will be collected and cached.  Any further
+    requests in that range can be satisfied via the cache.
+    -->
+    <queryResultWindowSize>20</queryResultWindowSize>
+
+    <!-- Maximum number of documents to cache for any entry in the
+    queryResultCache.
+    -->
+    <queryResultMaxDocsCached>200</queryResultMaxDocsCached>
+
+    <!-- Query Related Event Listeners
+
+    Various IndexSearcher related events can trigger Listeners to
+    take actions.
+
+    newSearcher - fired whenever a new searcher is being prepared
+    and there is a current searcher handling requests (aka
+    registered).  It can be used to prime certain caches to
+    prevent long request times for certain requests.
+
+    firstSearcher - fired whenever a new searcher is being
+    prepared but there is no current registered searcher to handle
+    requests or to gain autowarming data from.
+
+
+    -->
+    <!-- QuerySenderListener takes an array of NamedList and executes a
+    local query request for each NamedList in sequence.
+    -->
+    <listener event="newSearcher" class="solr.QuerySenderListener">
+      <arr name="queries">
+        <!--
+        <lst><str name="q">solr</str><str name="sort">price asc</str></lst>
+        <lst><str name="q">rocks</str><str name="sort">weight asc</str></lst>
+        -->
+      </arr>
+    </listener>
+    <listener event="firstSearcher" class="solr.QuerySenderListener">
+      <arr name="queries">
+        <lst>
+          <str name="q">static firstSearcher warming in solrconfig.xml</str>
+        </lst>
+      </arr>
+    </listener>
+
+    <!-- Use Cold Searcher
+
+    If a search request comes in and there is no current
+    registered searcher, then immediately register the still
+    warming searcher and use it.  If "false" then all requests
+    will block until the first searcher is done warming.
+    -->
+    <useColdSearcher>true</useColdSearcher>
+
+    <!-- Max Warming Searchers
+
+    Maximum number of searchers that may be warming in the
+    background concurrently.  An error is returned if this limit
+    is exceeded.
+
+    Recommend values of 1-2 for read-only slaves, higher for
+    masters w/o cache warming.
+    -->
+    <maxWarmingSearchers>2</maxWarmingSearchers>
+
+  </query>
+
+
+  <!-- Request Dispatcher
+
+  This section contains instructions for how the SolrDispatchFilter
+  should behave when processing requests for this SolrCore.
+
+  handleSelect is a legacy option that affects the behavior of requests
+  such as /select?qt=XXX
+
+  handleSelect="true" will cause the SolrDispatchFilter to process
+  the request and dispatch the query to a handler specified by the
+  "qt" param, assuming "/select" isn't already registered.
+
+  handleSelect="false" will cause the SolrDispatchFilter to
+  ignore "/select" requests, resulting in a 404 unless a handler
+  is explicitly registered with the name "/select"
+
+  handleSelect="true" is not recommended for new users, but is the default
+  for backwards compatibility
+  -->
+  <requestDispatcher handleSelect="false">
+    <!-- Request Parsing
+
+    These settings indicate how Solr Requests may be parsed, and
+    what restrictions may be placed on the ContentStreams from
+    those requests
+
+    enableRemoteStreaming - enables use of the stream.file
+    and stream.url parameters for specifying remote streams.
+
+    multipartUploadLimitInKB - specifies the max size (in KiB) of
+    Multipart File Uploads that Solr will allow in a Request.
+
+    formdataUploadLimitInKB - specifies the max size (in KiB) of
+    form data (application/x-www-form-urlencoded) sent via
+    POST. You can use POST to pass request parameters not
+    fitting into the URL.
+
+    addHttpRequestToContext - if set to true, it will instruct
+    the requestParsers to include the original HttpServletRequest
+    object in the context map of the SolrQueryRequest under the
+    key "httpRequest". It will not be used by any of the existing
+    Solr components, but may be useful when developing custom
+    plugins.
+
+    *** WARNING ***
+    The settings below authorize Solr to fetch remote files, You
+    should make sure your system has some authentication before
+    using enableRemoteStreaming="true"
+
+    -->
+    <requestParsers enableRemoteStreaming="true"
+                    multipartUploadLimitInKB="2048000"
+                    formdataUploadLimitInKB="2048"
+                    addHttpRequestToContext="false"/>
+
+    <!-- HTTP Caching
+
+    Set HTTP caching related parameters (for proxy caches and clients).
+
+    The options below instruct Solr not to output any HTTP Caching
+    related headers
+    -->
+    <httpCaching never304="true"/>
+    <!-- If you include a <cacheControl> directive, it will be used to
+    generate a Cache-Control header (as well as an Expires header
+    if the value contains "max-age=")
+
+    By default, no Cache-Control header is generated.
+
+    You can use the <cacheControl> option even if you have set
+    never304="true"
+    -->
+    <!--
+    <httpCaching never304="true" >
+    <cacheControl>max-age=30, public</cacheControl>
+    </httpCaching>
+    -->
+    <!-- To enable Solr to respond with automatically generated HTTP
+    Caching headers, and to response to Cache Validation requests
+    correctly, set the value of never304="false"
+
+    This will cause Solr to generate Last-Modified and ETag
+    headers based on the properties of the Index.
+
+    The following options can also be specified to affect the
+    values of these headers...
+
+    lastModFrom - the default value is "openTime" which means the
+    Last-Modified value (and validation against If-Modified-Since
+    requests) will all be relative to when the current Searcher
+    was opened.  You can change it to lastModFrom="dirLastMod" if
+    you want the value to exactly correspond to when the physical
+    index was last modified.
+
+    etagSeed="..." is an option you can change to force the ETag
+    header (and validation against If-None-Match requests) to be
+    different even if the index has not changed (ie: when making
+    significant changes to your config file)
+
+    (lastModifiedFrom and etagSeed are both ignored if you use
+    the never304="true" option)
+    -->
+    <!--
+    <httpCaching lastModifiedFrom="openTime"
+    etagSeed="Solr">
+    <cacheControl>max-age=30, public</cacheControl>
+    </httpCaching>
+    -->
+  </requestDispatcher>
+
+  <!-- Request Handlers
+
+  http://wiki.apache.org/solr/SolrRequestHandler
+
+  Incoming queries will be dispatched to a specific handler by name
+  based on the path specified in the request.
+
+  Legacy behavior: If the request path uses "/select" but no Request
+  Handler has that name, and if handleSelect="true" has been specified in
+  the requestDispatcher, then the Request Handler is dispatched based on
+  the qt parameter.  Handlers without a leading '/' are accessed this way
+  like so: http://host/app/[core/]select?qt=name  If no qt is
+  given, then the requestHandler that declares default="true" will be
+  used or the one named "standard".
+
+  If a Request Handler is declared with startup="lazy", then it will
+  not be initialized until the first request that uses it.
+
+  -->
+
+  <requestHandler name="/dataimport" class="solr.DataImportHandler">
+    <lst name="defaults">
+      <str name="config">solr-data-config.xml</str>
+    </lst>
+  </requestHandler>
+
+  <!-- SearchHandler
+
+  http://wiki.apache.org/solr/SearchHandler
+
+  For processing Search Queries, the primary Request Handler
+  provided with Solr is "SearchHandler" It delegates to a sequent
+  of SearchComponents (see below) and supports distributed
+  queries across multiple shards
+  -->
+  <requestHandler name="/select" class="solr.SearchHandler">
+    <!-- default values for query parameters can be specified, these
+    will be overridden by parameters in the request
+    -->
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <int name="rows">10</int>
+      <str name="df">text</str>
+    </lst>
+    <!-- In addition to defaults, "appends" params can be specified
+    to identify values which should be appended to the list of
+    multi-val params from the query (or the existing "defaults").
+    -->
+    <!-- In this example, the param "fq=instock:true" would be appended to
+    any query time fq params the user may specify, as a mechanism for
+    partitioning the index, independent of any user selected filtering
+    that may also be desired (perhaps as a result of faceted searching).
+
+    NOTE: there is *absolutely* nothing a client can do to prevent these
+    "appends" values from being used, so don't use this mechanism
+    unless you are sure you always want it.
+    -->
+    <!--
+    <lst name="appends">
+    <str name="fq">inStock:true</str>
+    </lst>
+    -->
+    <!-- "invariants" are a way of letting the Solr maintainer lock down
+    the options available to Solr clients.  Any params values
+    specified here are used regardless of what values may be specified
+    in either the query, the "defaults", or the "appends" params.
+
+    In this example, the facet.field and facet.query params would
+    be fixed, limiting the facets clients can use.  Faceting is
+    not turned on by default - but if the client does specify
+    facet=true in the request, these are the only facets they
+    will be able to see counts for; regardless of what other
+    facet.field or facet.query params they may specify.
+
+    NOTE: there is *absolutely* nothing a client can do to prevent these
+    "invariants" values from being used, so don't use this mechanism
+    unless you are sure you always want it.
+    -->
+    <!--
+    <lst name="invariants">
+    <str name="facet.field">cat</str>
+    <str name="facet.field">manu_exact</str>
+    <str name="facet.query">price:[* TO 500]</str>
+    <str name="facet.query">price:[500 TO *]</str>
+    </lst>
+    -->
+    <!-- If the default list of SearchComponents is not desired, that
+    list can either be overridden completely, or components can be
+    prepended or appended to the default list.  (see below)
+    -->
+    <!--
+    <arr name="components">
+    <str>nameOfCustomComponent1</str>
+    <str>nameOfCustomComponent2</str>
+    </arr>
+    -->
+  </requestHandler>
+
+  <!-- A request handler that returns indented JSON by default -->
+  <requestHandler name="/query" class="solr.SearchHandler">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <str name="wt">json</str>
+      <str name="indent">true</str>
+      <str name="df">text</str>
+    </lst>
+  </requestHandler>
+
+
+  <!-- realtime get handler, guaranteed to return the latest stored fields of
+  any document, without the need to commit or open a new searcher.  The
+  current implementation relies on the updateLog feature being enabled.
+
+  ** WARNING **
+  Do NOT disable the realtime get handler at /get if you are using
+  SolrCloud otherwise any leader election will cause a full sync in ALL
+  replicas for the shard in question. Similarly, a replica recovery will
+  also always fetch the complete index from the leader because a partial
+  sync will not be possible in the absence of this handler.
+  -->
+  <requestHandler name="/get" class="solr.RealTimeGetHandler">
+    <lst name="defaults">
+      <str name="omitHeader">true</str>
+      <str name="wt">json</str>
+      <str name="indent">true</str>
+    </lst>
+  </requestHandler>
+
+
+  <!-- A Robust Example
+
+  This example SearchHandler declaration shows off usage of the
+  SearchHandler with many defaults declared
+
+  Note that multiple instances of the same Request Handler
+  (SearchHandler) can be registered multiple times with different
+  names (and different init parameters)
+  -->
+  <requestHandler name="/browse" class="solr.SearchHandler">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+
+      <!-- VelocityResponseWriter settings -->
+      <str name="wt">velocity</str>
+      <str name="v.template">browse</str>
+      <str name="v.layout">layout</str>
+
+      <!-- Query settings -->
+      <str name="defType">edismax</str>
+      <str name="q.alt">*:*</str>
+      <str name="rows">10</str>
+      <str name="fl">*,score</str>
+
+      <!-- Faceting defaults -->
+      <str name="facet">on</str>
+      <str name="facet.mincount">1</str>
+    </lst>
+  </requestHandler>
+
+
+  <initParams path="/update/**,/query,/select,/tvrh,/elevate,/spell,/browse">
+    <lst name="defaults">
+      <str name="df">text</str>
+      <str name="update.chain">add-unknown-fields-to-the-schema</str>
+    </lst>
+  </initParams>
+
+  <!-- Update Request Handler.
+
+  http://wiki.apache.org/solr/UpdateXmlMessages
+
+  The canonical Request Handler for Modifying the Index through
+  commands specified using XML, JSON, CSV, or JAVABIN
+
+  Note: Since solr1.1 requestHandlers requires a valid content
+  type header if posted in the body. For example, curl now
+  requires: -H 'Content-type:text/xml; charset=utf-8'
+
+  To override the request content type and force a specific
+  Content-type, use the request parameter:
+  ?update.contentType=text/csv
+
+  This handler will pick a response format to match the input
+  if the 'wt' parameter is not explicit
+  -->
+  <requestHandler name="/update" class="solr.UpdateRequestHandler">
+    <!-- See below for information on defining
+    updateRequestProcessorChains that can be used by name
+    on each Update Request
+    -->
+    <!--
+    <lst name="defaults">
+    <str name="update.chain">dedupe</str>
+    </lst>
+    -->
+  </requestHandler>
+
+  <!-- Solr Cell Update Request Handler
+
+  http://wiki.apache.org/solr/ExtractingRequestHandler
+
+  -->
+  <requestHandler name="/update/extract"
+                  startup="lazy"
+                  class="solr.extraction.ExtractingRequestHandler">
+    <lst name="defaults">
+      <str name="lowernames">true</str>
+      <str name="uprefix">ignored_</str>
+
+      <!-- capture link hrefs but ignore div attributes -->
+      <str name="captureAttr">true</str>
+      <str name="fmap.a">links</str>
+      <str name="fmap.div">ignored_</str>
+    </lst>
+  </requestHandler>
+
+
+  <!-- Field Analysis Request Handler
+
+  RequestHandler that provides much the same functionality as
+  analysis.jsp. Provides the ability to specify multiple field
+  types and field names in the same request and outputs
+  index-time and query-time analysis for each of them.
+
+  Request parameters are:
+  analysis.fieldname - field name whose analyzers are to be used
+
+  analysis.fieldtype - field type whose analyzers are to be used
+  analysis.fieldvalue - text for index-time analysis
+  q (or analysis.q) - text for query time analysis
+  analysis.showmatch (true|false) - When set to true and when
+  query analysis is performed, the produced tokens of the
+  field value analysis will be marked as "matched" for every
+  token that is produces by the query analysis
+  -->
+  <requestHandler name="/analysis/field"
+                  startup="lazy"
+                  class="solr.FieldAnalysisRequestHandler"/>
+
+
+  <!-- Document Analysis Handler
+
+  http://wiki.apache.org/solr/AnalysisRequestHandler
+
+  An analysis handler that provides a breakdown of the analysis
+  process of provided documents. This handler expects a (single)
+  content stream with the following format:
+
+  <docs>
+  <doc>
+  <field name="id">1</field>
+  <field name="name">The Name</field>
+  <field name="text">The Text Value</field>
+  </doc>
+  <doc>...</doc>
+  <doc>...</doc>
+  ...
+  </docs>
+
+  Note: Each document must contain a field which serves as the
+  unique key. This key is used in the returned response to associate
+  an analysis breakdown to the analyzed document.
+
+  Like the FieldAnalysisRequestHandler, this handler also supports
+  query analysis by sending either an "analysis.query" or "q"
+  request parameter that holds the query text to be analyzed. It
+  also supports the "analysis.showmatch" parameter which when set to
+  true, all field tokens that match the query tokens will be marked
+  as a "match".
+  -->
+  <requestHandler name="/analysis/document"
+                  class="solr.DocumentAnalysisRequestHandler"
+                  startup="lazy"/>
+
+  <!-- Admin Handlers
+
+  Admin Handlers - This will register all the standard admin
+  RequestHandlers.
+  -->
+
+  <!-- This single handler is equivalent to the following... -->
+  <!--
+  <requestHandler name="/admin/luke"       class="solr.admin.LukeRequestHandler" />
+  <requestHandler name="/admin/system"     class="solr.admin.SystemInfoHandler" />
+  <requestHandler name="/admin/plugins"    class="solr.admin.PluginInfoHandler" />
+  <requestHandler name="/admin/threads"    class="solr.admin.ThreadDumpHandler" />
+  <requestHandler name="/admin/properties" class="solr.admin.PropertiesRequestHandler" />
+  <requestHandler name="/admin/file"       class="solr.admin.ShowFileRequestHandler" >
+  -->
+  <!-- If you wish to hide files under ${solr.home}/conf, explicitly
+  register the ShowFileRequestHandler using the definition below.
+  NOTE: The glob pattern ('*') is the only pattern supported at present, *.xml will
+  not exclude all files ending in '.xml'. Use it to exclude _all_ updates
+  -->
+  <!--
+  <requestHandler name="/admin/file"
+  class="solr.admin.ShowFileRequestHandler" >
+  <lst name="invariants">
+  <str name="hidden">synonyms.txt</str>
+  <str name="hidden">anotherfile.txt</str>
+  <str name="hidden">*</str>
+  </lst>
+  </requestHandler>
+  -->
+
+  <!--
+  Enabling this request handler (which is NOT a default part of the admin handler) will allow the Solr UI to edit
+  all the config files. This is intended for secure/development use ONLY! Leaving available and publically
+  accessible is a security vulnerability and should be done with extreme caution!
+  -->
+  <!--
+  <requestHandler name="/admin/fileedit" class="solr.admin.EditFileRequestHandler" >
+  <lst name="invariants">
+  <str name="hidden">synonyms.txt</str>
+  <str name="hidden">anotherfile.txt</str>
+  </lst>
+  </requestHandler>
+  -->
+  <!-- ping/healthcheck -->
+  <requestHandler name="/admin/ping" class="solr.PingRequestHandler">
+    <lst name="invariants">
+      <str name="q">solrpingquery</str>
+    </lst>
+    <lst name="defaults">
+      <str name="echoParams">all</str>
+    </lst>
+    <!-- An optional feature of the PingRequestHandler is to configure the
+    handler with a "healthcheckFile" which can be used to enable/disable
+    the PingRequestHandler.
+    relative paths are resolved against the data dir
+    -->
+    <!-- <str name="healthcheckFile">server-enabled.txt</str> -->
+  </requestHandler>
+
+  <!-- Echo the request contents back to the client -->
+  <requestHandler name="/debug/dump" class="solr.DumpRequestHandler">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <str name="echoHandler">true</str>
+    </lst>
+  </requestHandler>
+
+  <!-- Solr Replication
+
+  The SolrReplicationHandler supports replicating indexes from a
+  "master" used for indexing and "slaves" used for queries.
+
+  http://wiki.apache.org/solr/SolrReplication
+
+  It is also necessary for SolrCloud to function (in Cloud mode, the
+  replication handler is used to bulk transfer segments when nodes
+  are added or need to recover).
+
+  https://wiki.apache.org/solr/SolrCloud/
+  -->
+  <requestHandler name="/replication" class="solr.ReplicationHandler">
+    <!--
+    To enable simple master/slave replication, uncomment one of the
+    sections below, depending on whether this solr instance should be
+    the "master" or a "slave".  If this instance is a "slave" you will
+    also need to fill in the masterUrl to point to a real machine.
+    -->
+    <!--
+    <lst name="master">
+    <str name="replicateAfter">commit</str>
+    <str name="replicateAfter">startup</str>
+    <str name="confFiles">schema.xml,stopwords.txt</str>
+    </lst>
+    -->
+    <!--
+    <lst name="slave">
+    <str name="masterUrl">http://your-master-hostname:8983/solr</str>
+    <str name="pollInterval">00:00:60</str>
+    </lst>
+    -->
+  </requestHandler>
+
+  <!-- Search Components
+
+  Search components are registered to SolrCore and used by
+  instances of SearchHandler (which can access them by name)
+
+  By default, the following components are available:
+
+  <searchComponent name="query"     class="solr.QueryComponent" />
+  <searchComponent name="facet"     class="solr.FacetComponent" />
+  <searchComponent name="mlt"       class="solr.MoreLikeThisComponent" />
+  <searchComponent name="highlight" class="solr.HighlightComponent" />
+  <searchComponent name="stats"     class="solr.StatsComponent" />
+  <searchComponent name="debug"     class="solr.DebugComponent" />
+
+  Default configuration in a requestHandler would look like:
+
+  <arr name="components">
+  <str>query</str>
+  <str>facet</str>
+  <str>mlt</str>
+  <str>highlight</str>
+  <str>stats</str>
+  <str>debug</str>
+  </arr>
+
+  If you register a searchComponent to one of the standard names,
+  that will be used instead of the default.
+
+  To insert components before or after the 'standard' components, use:
+
+  <arr name="first-components">
+  <str>myFirstComponentName</str>
+  </arr>
+
+  <arr name="last-components">
+  <str>myLastComponentName</str>
+  </arr>
+
+  NOTE: The component registered with the name "debug" will
+  always be executed after the "last-components"
+
+  -->
+
+  <!-- Spell Check
+
+  The spell check component can return a list of alternative spelling
+  suggestions.
+
+  http://wiki.apache.org/solr/SpellCheckComponent
+  -->
+  <searchComponent name="spellcheck" class="solr.SpellCheckComponent">
+
+    <str name="queryAnalyzerFieldType">key_lower_case</str>
+
+    <!-- Multiple "Spell Checkers" can be declared and used by this
+    component
+    -->
+
+    <!-- a spellchecker built from a field of the main index -->
+    <lst name="spellchecker">
+      <str name="name">default</str>
+      <str name="field">text</str>
+      <str name="classname">solr.DirectSolrSpellChecker</str>
+      <!-- the spellcheck distance measure used, the default is the internal levenshtein -->
+      <str name="distanceMeasure">internal</str>
+      <!-- minimum accuracy needed to be considered a valid spellcheck suggestion -->
+      <float name="accuracy">0.5</float>
+      <!-- the maximum #edits we consider when enumerating terms: can be 1 or 2 -->
+      <int name="maxEdits">2</int>
+      <!-- the minimum shared prefix when enumerating terms -->
+      <int name="minPrefix">1</int>
+      <!-- maximum number of inspections per result. -->
+      <int name="maxInspections">5</int>
+      <!-- minimum length of a query term to be considered for correction -->
+      <int name="minQueryLength">4</int>
+      <!-- maximum threshold of documents a query term can appear to be considered for correction -->
+      <float name="maxQueryFrequency">0.01</float>
+      <!-- uncomment this to require suggestions to occur in 1% of the documents
+      <float name="thresholdTokenFrequency">.01</float>
+      -->
+    </lst>
+
+    <!-- a spellchecker that can break or combine words.  See "/spell" handler below for usage -->
+    <lst name="spellchecker">
+      <str name="name">wordbreak</str>
+      <str name="classname">solr.WordBreakSolrSpellChecker</str>
+      <str name="field">name</str>
+      <str name="combineWords">true</str>
+      <str name="breakWords">true</str>
+      <int name="maxChanges">10</int>
+    </lst>
+
+    <!-- a spellchecker that uses a different distance measure -->
+    <!--
+    <lst name="spellchecker">
+    <str name="name">jarowinkler</str>
+    <str name="field">spell</str>
+    <str name="classname">solr.DirectSolrSpellChecker</str>
+    <str name="distanceMeasure">
+    org.apache.lucene.search.spell.JaroWinklerDistance
+    </str>
+    </lst>
+    -->
+
+    <!-- a spellchecker that use an alternate comparator
+
+    comparatorClass be one of:
+    1. score (default)
+    2. freq (Frequency first, then score)
+    3. A fully qualified class name
+    -->
+    <!--
+    <lst name="spellchecker">
+    <str name="name">freq</str>
+    <str name="field">lowerfilt</str>
+    <str name="classname">solr.DirectSolrSpellChecker</str>
+    <str name="comparatorClass">freq</str>
+    -->
+
+    <!-- A spellchecker that reads the list of words from a file -->
+    <!--
+    <lst name="spellchecker">
+    <str name="classname">solr.FileBasedSpellChecker</str>
+    <str name="name">file</str>
+    <str name="sourceLocation">spellings.txt</str>
+    <str name="characterEncoding">UTF-8</str>
+    <str name="spellcheckIndexDir">spellcheckerFile</str>
+    </lst>
+    -->
+  </searchComponent>
+
+  <!-- A request handler for demonstrating the spellcheck component.
+
+  NOTE: This is purely as an example.  The whole purpose of the
+  SpellCheckComponent is to hook it into the request handler that
+  handles your normal user queries so that a separate request is
+  not needed to get suggestions.
+
+  IN OTHER WORDS, THERE IS REALLY GOOD CHANCE THE SETUP BELOW IS
+  NOT WHAT YOU WANT FOR YOUR PRODUCTION SYSTEM!
+
+  See http://wiki.apache.org/solr/SpellCheckComponent for details
+  on the request parameters.
+  -->
+  <requestHandler name="/spell" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="df">text</str>
+      <!-- Solr will use suggestions from both the 'default' spellchecker
+      and from the 'wordbreak' spellchecker and combine them.
+      collations (re-written queries) can include a combination of
+      corrections from both spellcheckers -->
+      <str name="spellcheck.dictionary">default</str>
+      <str name="spellcheck.dictionary">wordbreak</str>
+      <str name="spellcheck">on</str>
+      <str name="spellcheck.extendedResults">true</str>
+      <str name="spellcheck.count">10</str>
+      <str name="spellcheck.alternativeTermCount">5</str>
+      <str name="spellcheck.maxResultsForSuggest">5</str>
+      <str name="spellcheck.collate">true</str>
+      <str name="spellcheck.collateExtendedResults">true</str>
+      <str name="spellcheck.maxCollationTries">10</str>
+      <str name="spellcheck.maxCollations">5</str>
+    </lst>
+    <arr name="last-components">
+      <str>spellcheck</str>
+    </arr>
+  </requestHandler>
+
+  <searchComponent name="suggest" class="solr.SuggestComponent">
+    <lst name="suggester">
+      <str name="name">mySuggester</str>
+      <str name="lookupImpl">FuzzyLookupFactory</str>      <!-- org.apache.solr.spelling.suggest.fst -->
+      <str name="dictionaryImpl">DocumentDictionaryFactory</str>    <!-- org.apache.solr.spelling.suggest.HighFrequencyDictionaryFactory -->
+      <str name="field">cat</str>
+      <str name="weightField">price</str>
+      <str name="suggestAnalyzerFieldType">string</str>
+    </lst>
+  </searchComponent>
+
+  <requestHandler name="/suggest" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="suggest">true</str>
+      <str name="suggest.count">10</str>
+    </lst>
+    <arr name="components">
+      <str>suggest</str>
+    </arr>
+  </requestHandler>
+  <!-- Term Vector Component
+
+  http://wiki.apache.org/solr/TermVectorComponent
+  -->
+  <searchComponent name="tvComponent" class="solr.TermVectorComponent"/>
+
+  <!-- A request handler for demonstrating the term vector component
+
+  This is purely as an example.
+
+  In reality you will likely want to add the component to your
+  already specified request handlers.
+  -->
+  <requestHandler name="/tvrh" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="df">text</str>
+      <bool name="tv">true</bool>
+    </lst>
+    <arr name="last-components">
+      <str>tvComponent</str>
+    </arr>
+  </requestHandler>
+
+  <!-- Clustering Component
+
+  You'll need to set the solr.clustering.enabled system property
+  when running solr to run with clustering enabled:
+
+  java -Dsolr.clustering.enabled=true -jar start.jar
+
+  http://wiki.apache.org/solr/ClusteringComponent
+  http://carrot2.github.io/solr-integration-strategies/
+  -->
+  <searchComponent name="clustering"
+                   enable="${solr.clustering.enabled:false}"
+                   class="solr.clustering.ClusteringComponent">
+    <lst name="engine">
+      <str name="name">lingo</str>
+
+      <!-- Class name of a clustering algorithm compatible with the Carrot2 framework.
+
+      Currently available open source algorithms are:
+      * org.carrot2.clustering.lingo.LingoClusteringAlgorithm
+      * org.carrot2.clustering.stc.STCClusteringAlgorithm
+      * org.carrot2.clustering.kmeans.BisectingKMeansClusteringAlgorithm
+
+      See http://project.carrot2.org/algorithms.html for more information.
+
+      A commercial algorithm Lingo3G (needs to be installed separately) is defined as:
+      * com.carrotsearch.lingo3g.Lingo3GClusteringAlgorithm
+      -->
+      <str name="carrot.algorithm">org.carrot2.clustering.lingo.LingoClusteringAlgorithm</str>
+
+      <!-- Override location of the clustering algorithm's resources
+      (attribute definitions and lexical resources).
+
+      A directory from which to load algorithm-specific stop words,
+      stop labels and attribute definition XMLs.
+
+      For an overview of Carrot2 lexical resources, see:
+      http://download.carrot2.org/head/manual/#chapter.lexical-resources
+
+      For an overview of Lingo3G lexical resources, see:
+      http://download.carrotsearch.com/lingo3g/manual/#chapter.lexical-resources
+      -->
+      <str name="carrot.resourcesDir">clustering/carrot2</str>
+    </lst>
+
+    <!-- An example definition for the STC clustering algorithm. -->
+    <lst name="engine">
+      <str name="name">stc</str>
+      <str name="carrot.algorithm">org.carrot2.clustering.stc.STCClusteringAlgorithm</str>
+    </lst>
+
+    <!-- An example definition for the bisecting kmeans clustering algorithm. -->
+    <lst name="engine">
+      <str name="name">kmeans</str>
+      <str name="carrot.algorithm">org.carrot2.clustering.kmeans.BisectingKMeansClusteringAlgorithm</str>
+    </lst>
+  </searchComponent>
+
+  <!-- A request handler for demonstrating the clustering component
+
+  This is purely as an example.
+
+  In reality you will likely want to add the component to your
+  already specified request handlers.
+  -->
+  <requestHandler name="/clustering"
+                  startup="lazy"
+                  enable="${solr.clustering.enabled:false}"
+                  class="solr.SearchHandler">
+    <lst name="defaults">
+      <bool name="clustering">true</bool>
+      <bool name="clustering.results">true</bool>
+      <!-- Field name with the logical "title" of a each document (optional) -->
+      <str name="carrot.title">name</str>
+      <!-- Field name with the logical "URL" of a each document (optional) -->
+      <str name="carrot.url">id</str>
+      <!-- Field name with the logical "content" of a each document (optional) -->
+      <str name="carrot.snippet">features</str>
+      <!-- Apply highlighter to the title/ content and use this for clustering. -->
+      <bool name="carrot.produceSummary">true</bool>
+      <!-- the maximum number of labels per cluster -->
+      <!--<int name="carrot.numDescriptions">5</int>-->
+      <!-- produce sub clusters -->
+      <bool name="carrot.outputSubClusters">false</bool>
+
+      <!-- Configure the remaining request handler parameters. -->
+      <str name="defType">edismax</str>
+      <str name="qf">
+        text^0.5 features^1.0 name^1.2 sku^1.5 id^10.0 manu^1.1 cat^1.4
+      </str>
+      <str name="q.alt">*:*</str>
+      <str name="rows">10</str>
+      <str name="fl">*,score</str>
+    </lst>
+    <arr name="last-components">
+      <str>clustering</str>
+    </arr>
+  </requestHandler>
+
+  <!-- Terms Component
+
+  http://wiki.apache.org/solr/TermsComponent
+
+  A component to return terms and document frequency of those
+  terms
+  -->
+  <searchComponent name="terms" class="solr.TermsComponent"/>
+
+  <!-- A request handler for demonstrating the terms component -->
+  <requestHandler name="/terms" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <bool name="terms">true</bool>
+      <bool name="distrib">false</bool>
+    </lst>
+    <arr name="components">
+      <str>terms</str>
+    </arr>
+  </requestHandler>
+
+
+  <!-- Query Elevation Component
+
+  http://wiki.apache.org/solr/QueryElevationComponent
+
+  a search component that enables you to configure the top
+  results for a given query regardless of the normal lucene
+  scoring.
+  -->
+  <searchComponent name="elevator" class="solr.QueryElevationComponent">
+    <!-- pick a fieldType to analyze queries -->
+    <str name="queryFieldType">string</str>
+    <str name="config-file">elevate.xml</str>
+  </searchComponent>
+
+  <!-- A request handler for demonstrating the elevator component -->
+  <requestHandler name="/elevate" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <str name="df">text</str>
+    </lst>
+    <arr name="last-components">
+      <str>elevator</str>
+    </arr>
+  </requestHandler>
+
+  <!-- Highlighting Component
+
+  http://wiki.apache.org/solr/HighlightingParameters
+  -->
+  <searchComponent class="solr.HighlightComponent" name="highlight">
+    <highlighting>
+      <!-- Configure the standard fragmenter -->
+      <!-- This could most likely be commented out in the "default" case -->
+      <fragmenter name="gap"
+                  default="true"
+                  class="solr.highlight.GapFragmenter">
+        <lst name="defaults">
+          <int name="hl.fragsize">100</int>
+        </lst>
+      </fragmenter>
+
+      <!-- A regular-expression-based fragmenter
+      (for sentence extraction)
+      -->
+      <fragmenter name="regex"
+                  class="solr.highlight.RegexFragmenter">
+        <lst name="defaults">
+          <!-- slightly smaller fragsizes work better because of slop -->
+          <int name="hl.fragsize">70</int>
+          <!-- allow 50% slop on fragment sizes -->
+          <float name="hl.regex.slop">0.5</float>
+          <!-- a basic sentence pattern -->
+          <str name="hl.regex.pattern">[-\w ,/\n\&amp;quot;&amp;apos;]{20,200}</str>
+        </lst>
+      </fragmenter>
+
+      <!-- Configure the standard formatter -->
+      <formatter name="html"
+                 default="true"
+                 class="solr.highlight.HtmlFormatter">
+        <lst name="defaults">
+          <str name="hl.simple.pre"><![CDATA[<em>]]></str>
+          <str name="hl.simple.post"><![CDATA[</em>]]></str>
+        </lst>
+      </formatter>
+
+      <!-- Configure the standard encoder -->
+      <encoder name="html"
+               class="solr.highlight.HtmlEncoder"/>
+
+      <!-- Configure the standard fragListBuilder -->
+      <fragListBuilder name="simple"
+                       class="solr.highlight.SimpleFragListBuilder"/>
+
+      <!-- Configure the single fragListBuilder -->
+      <fragListBuilder name="single"
+                       class="solr.highlight.SingleFragListBuilder"/>
+
+      <!-- Configure the weighted fragListBuilder -->
+      <fragListBuilder name="weighted"
+                       default="true"
+                       class="solr.highlight.WeightedFragListBuilder"/>
+
+      <!-- default tag FragmentsBuilder -->
+      <fragmentsBuilder name="default"
+                        default="true"
+                        class="solr.highlight.ScoreOrderFragmentsBuilder">
+        <!--
+        <lst name="defaults">
+        <str name="hl.multiValuedSeparatorChar">/</str>
+        </lst>
+        -->
+      </fragmentsBuilder>
+
+      <!-- multi-colored tag FragmentsBuilder -->
+      <fragmentsBuilder name="colored"
+                        class="solr.highlight.ScoreOrderFragmentsBuilder">
+        <lst name="defaults">
+          <str name="hl.tag.pre"><![CDATA[
+  <b style="background:yellow">,<b style="background:lawgreen">,
+  <b style="background:aquamarine">,<b style="background:magenta">,
+  <b style="background:palegreen">,<b style="background:coral">,
+  <b style="background:wheat">,<b style="background:khaki">,
+  <b style="background:lime">,<b style="background:deepskyblue">]]></str>
+          <str name="hl.tag.post"><![CDATA[</b>]]></str>
+        </lst>
+      </fragmentsBuilder>
+
+      <boundaryScanner name="default"
+                       default="true"
+                       class="solr.highlight.SimpleBoundaryScanner">
+        <lst name="defaults">
+          <str name="hl.bs.maxScan">10</str>
+          <str name="hl.bs.chars">.,!? &amp;#9;&amp;#10;&amp;#13;</str>
+        </lst>
+      </boundaryScanner>
+
+      <boundaryScanner name="breakIterator"
+                       class="solr.highlight.BreakIteratorBoundaryScanner">
+        <lst name="defaults">
+          <!-- type should be one of CHARACTER, WORD(default), LINE and SENTENCE -->
+          <str name="hl.bs.type">WORD</str>
+          <!-- language and country are used when constructing Locale object.  -->
+          <!-- And the Locale object will be used when getting instance of BreakIterator -->
+          <str name="hl.bs.language">en</str>
+          <str name="hl.bs.country">US</str>
+        </lst>
+      </boundaryScanner>
+    </highlighting>
+  </searchComponent>
+
+  <!-- Update Processors
+
+  Chains of Update Processor Factories for dealing with Update
+  Requests can be declared, and then used by name in Update
+  Request Processors
+
+  http://wiki.apache.org/solr/UpdateRequestProcessor
+
+  -->
+
+  <!-- Add unknown fields to the schema
+
+  An example field type guessing update processor that will
+  attempt to parse string-typed field values as Booleans, Longs,
+  Doubles, or Dates, and then add schema fields with the guessed
+  field types.
+
+  This requires that the schema is both managed and mutable, by
+  declaring schemaFactory as ManagedIndexSchemaFactory, with
+  mutable specified as true.
+
+  See http://wiki.apache.org/solr/GuessingFieldTypes
+  -->
+  <updateRequestProcessorChain name="add-unknown-fields-to-the-schema">
+
+    <processor class="solr.DefaultValueUpdateProcessorFactory">
+      <str name="fieldName">_ttl_</str>
+      <str name="value">+{{logsearch_audit_logs_max_retention}}DAYS</str>
+    </processor>
+    <processor class="solr.processor.DocExpirationUpdateProcessorFactory">
+      <int name="autoDeletePeriodSeconds">30</int>
+      <str name="ttlFieldName">_ttl_</str>
+      <str name="expirationFieldName">_expire_at_</str>
+    </processor>
+    <processor class="solr.FirstFieldValueUpdateProcessorFactory">
+      <str name="fieldName">_expire_at_</str>
+    </processor>
+
+
+    <processor class="solr.RemoveBlankFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseBooleanFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseLongFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseDoubleFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseDateFieldUpdateProcessorFactory">
+      <arr name="format">
+        <str>yyyy-MM-dd'T'HH:mm:ss.SSSZ</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss,SSSZ</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss.SSS</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss,SSS</str>
+        <str>yyyy-MM-dd'T'HH:mm:ssZ</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss</str>
+        <str>yyyy-MM-dd'T'HH:mmZ</str>
+        <str>yyyy-MM-dd'T'HH:mm</str>
+        <str>yyyy-MM-dd HH:mm:ss.SSSZ</str>
+        <str>yyyy-MM-dd HH:mm:ss,SSSZ</str>
+        <str>yyyy-MM-dd HH:mm:ss.SSS</str>
+        <str>yyyy-MM-dd HH:mm:ss,SSS</str>
+        <str>yyyy-MM-dd HH:mm:ssZ</str>
+        <str>yyyy-MM-dd HH:mm:ss</str>
+        <str>yyyy-MM-dd HH:mmZ</str>
+        <str>yyyy-MM-dd HH:mm</str>
+        <str>yyyy-MM-dd</str>
+      </arr>
+    </processor>
+    <processor class="solr.AddSchemaFieldsUpdateProcessorFactory">
+      <str name="defaultFieldType">key_lower_case</str>
+      <lst name="typeMapping">
+        <str name="valueClass">java.lang.Boolean</str>
+        <str name="fieldType">boolean</str>
+      </lst>
+      <lst name="typeMapping">
+        <str name="valueClass">java.util.Date</str>
+        <str name="fieldType">tdate</str>
+      </lst>
+      <lst name="typeMapping">
+        <str name="valueClass">java.lang.Long</str>
+        <str name="valueClass">java.lang.Integer</str>
+        <str name="fieldType">tlong</str>
+      </lst>
+      <lst name="typeMapping">
+        <str name="valueClass">java.lang.Number</str>
+        <str name="fieldType">tdouble</str>
+      </lst>
+    </processor>
+
+    <processor class="solr.LogUpdateProcessorFactory"/>
+    <processor class="solr.RunUpdateProcessorFactory"/>
+  </updateRequestProcessorChain>
+
+
+  <!-- Deduplication
+
+  An example dedup update processor that creates the "id" field
+  on the fly based on the hash code of some other fields.  This
+  example has overwriteDupes set to false since we are using the
+  id field as the signatureField and Solr will maintain
+  uniqueness based on that anyway.
+
+  -->
+  <!--
+  <updateRequestProcessorChain name="dedupe">
+  <processor class="solr.processor.SignatureUpdateProcessorFactory">
+  <bool name="enabled">true</bool>
+  <str name="signatureField">id</str>
+  <bool name="overwriteDupes">false</bool>
+  <str name="fields">name,features,cat</str>
+  <str name="signatureClass">solr.processor.Lookup3Signature</str>
+  </processor>
+  <processor class="solr.LogUpdateProcessorFactory" />
+  <processor class="solr.RunUpdateProcessorFactory" />
+  </updateRequestProcessorChain>
+  -->
+
+  <!-- Language identification
+
+  This example update chain identifies the language of the incoming
+  documents using the langid contrib. The detected language is
+  written to field language_s. No field name mapping is done.
+  The fields used for detection are text, title, subject and description,
+  making this example suitable for detecting languages form full-text
+  rich documents injected via ExtractingRequestHandler.
+  See more about langId at http://wiki.apache.org/solr/LanguageDetection
+  -->
+  <!--
+  <updateRequestProcessorChain name="langid">
+  <processor class="org.apache.solr.update.processor.TikaLanguageIdentifierUpdateProcessorFactory">
+  <str name="langid.fl">text,title,subject,description</str>
+  <str name="langid.langField">language_s</str>
+  <str name="langid.fallback">en</str>
+  </processor>
+  <processor class="solr.LogUpdateProcessorFactory" />
+  <processor class="solr.RunUpdateProcessorFactory" />
+  </updateRequestProcessorChain>
+  -->
+
+  <!-- Script update processor
+
+  This example hooks in an update processor implemented using JavaScript.
+
+  See more about the script update processor at http://wiki.apache.org/solr/ScriptUpdateProcessor
+  -->
+  <!--
+  <updateRequestProcessorChain name="script">
+  <processor class="solr.StatelessScriptUpdateProcessorFactory">
+  <str name="script">update-script.js</str>
+  <lst name="params">
+  <str name="config_param">example config parameter</str>
+  </lst>
+  </processor>
+  <processor class="solr.RunUpdateProcessorFactory" />
+  </updateRequestProcessorChain>
+  -->
+
+  <!-- Response Writers
+
+  http://wiki.apache.org/solr/QueryResponseWriter
+
+  Request responses will be written using the writer specified by
+  the 'wt' request parameter matching the name of a registered
+  writer.
+
+  The "default" writer is the default and will be used if 'wt' is
+  not specified in the request.
+  -->
+  <!-- The following response writers are implicitly configured unless
+  overridden...
+  -->
+  <!--
+  <queryResponseWriter name="xml"
+  default="true"
+  class="solr.XMLResponseWriter" />
+  <queryResponseWriter name="json" class="solr.JSONResponseWriter"/>
+  <queryResponseWriter name="python" class="solr.PythonResponseWriter"/>
+  <queryResponseWriter name="ruby" class="solr.RubyResponseWriter"/>
+  <queryResponseWriter name="php" class="solr.PHPResponseWriter"/>
+  <queryResponseWriter name="phps" class="solr.PHPSerializedResponseWriter"/>
+  <queryResponseWriter name="csv" class="solr.CSVResponseWriter"/>
+  <queryResponseWriter name="schema.xml" class="solr.SchemaXmlResponseWriter"/>
+  -->
+
+  <queryResponseWriter name="json" class="solr.JSONResponseWriter">
+    <!-- For the purposes of the tutorial, JSON responses are written as
+    plain text so that they are easy to read in *any* browser.
+    If you expect a MIME type of "application/json" just remove this override.
+    -->
+    <str name="content-type">text/plain; charset=UTF-8</str>
+  </queryResponseWriter>
+
+  <!--
+  Custom response writers can be declared as needed...
+  -->
+  <queryResponseWriter name="velocity" class="solr.VelocityResponseWriter" startup="lazy">
+    <str name="template.base.dir">${velocity.template.base.dir:}</str>
+  </queryResponseWriter>
+
+  <!-- XSLT response writer transforms the XML output by any xslt file found
+  in Solr's conf/xslt directory.  Changes to xslt files are checked for
+  every xsltCacheLifetimeSeconds.
+  -->
+  <queryResponseWriter name="xslt" class="solr.XSLTResponseWriter">
+    <int name="xsltCacheLifetimeSeconds">5</int>
+  </queryResponseWriter>
+
+  <!-- Query Parsers
+
+  http://wiki.apache.org/solr/SolrQuerySyntax
+
+  Multiple QParserPlugins can be registered by name, and then
+  used in either the "defType" param for the QueryComponent (used
+  by SearchHandler) or in LocalParams
+  -->
+  <!-- example of registering a query parser -->
+  <!--
+  <queryParser name="myparser" class="com.mycompany.MyQParserPlugin"/>
+  -->
+
+  <!-- Function Parsers
+
+  http://wiki.apache.org/solr/FunctionQuery
+
+  Multiple ValueSourceParsers can be registered by name, and then
+  used as function names when using the "func" QParser.
+  -->
+  <!-- example of registering a custom function parser  -->
+  <!--
+  <valueSourceParser name="myfunc"
+  class="com.mycompany.MyValueSourceParser" />
+  -->
+
+
+  <!-- Document Transformers
+  http://wiki.apache.org/solr/DocTransformers
+  -->
+  <!--
+  Could be something like:
+  <transformer name="db" class="com.mycompany.LoadFromDatabaseTransformer" >
+  <int name="connection">jdbc://....</int>
+  </transformer>
+
+  To add a constant value to all docs, use:
+  <transformer name="mytrans2" class="org.apache.solr.response.transform.ValueAugmenterFactory" >
+  <int name="value">5</int>
+  </transformer>
+
+  If you want the user to still be able to change it with _value:something_ use this:
+  <transformer name="mytrans3" class="org.apache.solr.response.transform.ValueAugmenterFactory" >
+  <double name="defaultValue">5</double>
+  </transformer>
+
+  If you are using the QueryElevationComponent, you may wish to mark documents that get boosted.  The
+  EditorialMarkerFactory will do exactly that:
+  <transformer name="qecBooster" class="org.apache.solr.response.transform.EditorialMarkerFactory" />
+  -->
+
+
+  <!-- Legacy config for the admin interface -->
+  <admin>
+    <defaultQuery>*:*</defaultQuery>
+  </admin>
+
+</config>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/input.config-ambari.json.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/input.config-ambari.json.j2
new file mode 100644
index 00000000000..d231907adbc
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/input.config-ambari.json.j2
@@ -0,0 +1,858 @@
+{#
+ # Licensed to the Apache Software Foundation (ASF) under one
+ # or more contributor license agreements.  See the NOTICE file
+ # distributed with this work for additional information
+ # regarding copyright ownership.  The ASF licenses this file
+ # to you under the Apache License, Version 2.0 (the
+ # "License"); you may not use this file except in compliance
+ # with the License.  You may obtain a copy of the License at
+ #
+ #   http://www.apache.org/licenses/LICENSE-2.0
+ #
+ # Unless required by applicable law or agreed to in writing, software
+ # distributed under the License is distributed on an "AS IS" BASIS,
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ # See the License for the specific language governing permissions and
+ # limitations under the License.
+ #}
+{
+  "input":[
+    {
+      "type":"ambari_agent",
+      "rowtype":"service",
+      "path":"{{ambari_agent_log_dir}}/ambari-agent.log"
+    },
+    {
+      "type":"ambari_server",
+      "rowtype":"service",
+      "path":"{{ambari_server_log_dir}}/ambari-server.log"
+    },
+    {
+      "type":"ambari_alerts",
+      "rowtype":"service",
+      "add_fields":{
+        "level":"UNKNOWN"
+      },
+      "path":"{{ambari_server_log_dir}}/ambari-alerts.log"
+    },
+    {
+      "type":"ambari_config_changes",
+      "rowtype":"service",
+      "path":"{{ambari_server_log_dir}}/ambari-config-changes.log"
+    },
+    {
+      "type":"ambari_eclipselink",
+      "rowtype":"service",
+      "path":"{{ambari_server_log_dir}}/ambari-eclipselink.log"
+    },
+    {
+      "type":"ambari_server_check_database",
+      "rowtype":"service",
+      "path":"{{ambari_server_log_dir}}/ambari-server-check-database.log"
+    },
+    {
+      "type":"ambari_audit",
+      "rowtype":"audit",
+      "add_fields":{
+        "logType":"AmbariAudit",
+        "enforcer":"ambari-acl",
+        "repoType":"1",
+        "repo":"ambari",
+        "level":"INFO"
+      },
+      "path":"{{ambari_server_log_dir}}/ambari-audit.log"
+    }
+
+  ],
+  "filter":[
+    {
+      "filter":"grok",
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_agent"
+          ]
+
+        }
+
+      },
+      "log4j_format":"",
+      "multiline_pattern":"^(%{LOGLEVEL:level} %{TIMESTAMP_ISO8601:logtime})",
+      "message_pattern":"(?m)^%{LOGLEVEL:level} %{TIMESTAMP_ISO8601:logtime} %{JAVAFILE:file}:%{INT:line_number} - %{GREEDYDATA:log_message}",
+      "post_map_values":{
+        "logtime":{
+          "map_date":{
+            "target_date_pattern":"yyyy-MM-dd HH:mm:ss,SSS"
+          }
+
+        },
+        "level":{
+          "map_field_value":{
+            "pre_value":"WARNING",
+            "post_value":"WARN"
+          }
+
+        }
+
+      }
+
+    },
+    {
+      "filter":"grok",
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_server"
+          ]
+          
+        }
+        
+      },
+      "log4j_format":"%d{ISO8601} %5p [%t] %c{1}:%L - %m%n",
+      "multiline_pattern":"^(%{TIMESTAMP_ISO8601:logtime})",
+      "message_pattern":"(?m)^%{TIMESTAMP_ISO8601:logtime}%{SPACE}%{LOGLEVEL:level}%{SPACE}\\[%{DATA:thread_name}\\]%{SPACE}%{JAVACLASS:logger_name}:%{INT:line_number}%{SPACE}-%{SPACE}%{GREEDYDATA:log_message}",
+      "post_map_values":{
+        "logtime":{
+          "map_date":{
+            "target_date_pattern":"yyyy-MM-dd HH:mm:ss,SSS"
+          }
+
+        }
+
+      }
+
+    },
+    {
+      "filter":"grok",
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_alerts"
+          ]
+          
+        }
+        
+      },
+      "log4j_format":"%d{DATE} %5p [%t] %c{1}:%L - %m%n",
+      "multiline_pattern":"^(%{TIMESTAMP_ISO8601:logtime})",
+      "message_pattern":"(?m)^%{TIMESTAMP_ISO8601:logtime}%{SPACE}%{GREEDYDATA:log_message}",
+      "post_map_values":{
+        "logtime":{
+          "map_date":{
+            "target_date_pattern":"yyyy-MM-dd HH:mm:ss,SSS"
+          }
+
+        }
+
+      }
+
+    },
+    {
+      "filter":"grok",
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_config_changes"
+          ]
+          
+        }
+        
+      },
+      "log4j_format":"%d{DATE} %5p [%t] %c{1}:%L - %m%n",
+      "multiline_pattern":"^(%{TIMESTAMP_ISO8601:logtime})",
+      "message_pattern":"(?m)^%{TIMESTAMP_ISO8601:logtime}%{SPACE}%{LOGLEVEL:level}%{SPACE}-%{SPACE}%{GREEDYDATA:log_message}",
+      "post_map_values":{
+        "logtime":{
+          "map_date":{
+            "target_date_pattern":"yyyy-MM-dd HH:mm:ss,SSS"
+          }
+
+        }
+
+      }
+
+    },
+    {
+      "filter":"grok",
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_eclipselink"
+          ]
+          
+        }
+        
+      },
+      "log4j_format":"%d{DATE} %5p [%t] %c{1}:%L - %m%n",
+      "multiline_pattern":"^(\\[EL%{SPACE}%{DATA:level}\\])",
+      "message_pattern":"(?m)^\\[EL%{SPACE}%{DATA:level}\\]:%{SPACE}%{TIMESTAMP_ISO8601:logtime}%{GREEDYDATA:log_message}",
+      "post_map_values":{
+        "logtime":{
+          "map_date":{
+            "target_date_pattern":"yyyy-MM-dd HH:mm:ss.SSS"
+          }
+        },
+        "level":[
+          {
+            "map_field_value":{
+              "pre_value":"Severe",
+              "post_value":"ERROR"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Warning",
+              "post_value":"WARN"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Finer",
+              "post_value":"WARN"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Info",
+              "post_value":"INFO"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Config",
+              "post_value":"INFO"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Fine",
+              "post_value":"DEBUG"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Finest",
+              "post_value":"TRACE"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"All",
+              "post_value":"TRACE"
+            }
+          }
+        ]
+      }
+    },
+    {
+      "filter":"grok",
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_server_check_database"
+          ]
+          
+        }
+        
+      },
+      "log4j_format":"%d{DATE} %5p [%t] %c{1}:%L - %m%n",
+      "multiline_pattern":"^(%{TIMESTAMP_ISO8601:logtime})",
+      "message_pattern":"(?m)^%{TIMESTAMP_ISO8601:logtime}%{SPACE}%{LOGLEVEL:level}%{SPACE}-%{SPACE}%{GREEDYDATA:log_message}",
+      "post_map_values":{
+        "logtime":{
+          "map_date":{
+            "target_date_pattern":"yyyy-MM-dd HH:mm:ss,SSS"
+          }
+
+        }
+
+      }
+
+    },
+    {
+      "filter":"grok",
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_audit"
+          ]
+
+        }
+
+      },
+      "log4j_format":"%d{ISO8601} %-5p %c{2} (%F:%M(%L)) - %m%n",
+      "multiline_pattern":"^(%{TIMESTAMP_ISO8601:evtTime})",
+      "message_pattern":"(?m)^%{TIMESTAMP_ISO8601:evtTime},%{SPACE}%{GREEDYDATA:log_message}",
+      "post_map_values":{
+        "evtTime":{
+          "map_date":{
+            "target_date_pattern":"yyyy-MM-dd'T'HH:mm:ss.SSSXX"
+          }
+
+        }
+
+      }
+
+    },
+    {
+      "filter":"keyvalue",
+      "sort_order":1,
+      "conditions":{
+        "fields":{
+          "type":[
+            "ambari_audit"
+          ]
+
+        }
+
+      },
+      "source_field":"log_message",
+      "field_split":", ",
+      "value_borders":"()",
+      "post_map_values":{
+        "User":{
+          "map_field_value":{
+            "pre_value":"null",
+            "post_value":"unknown"
+          },
+          "map_field_name":{
+            "new_field_name":"reqUser"
+          }
+        },
+        "Hostname":{
+          "map_field_name":{
+            "new_field_name":"host"
+          }
+        },
+        "Host name":{
+          "map_field_name":{
+            "new_field_name":"host"
+          }
+        },
+        "RemoteIp":{
+          "map_field_name":{
+            "new_field_name":"cliIP"
+          }
+        },
+        "RequestType":{
+          "map_field_name":{
+            "new_field_name":"cliType"
+          }
+        },
+        "TaskId":{
+          "map_field_name":{
+            "new_field_name":"task_id"
+          }
+        },
+        "Operation":{
+          "map_field_name":{
+            "new_field_name":"action"
+          }
+        },
+        "Service":{
+          "map_field_name":{
+            "new_field_name":"ws_service"
+          }
+        },
+        "url":{
+          "map_field_name":{
+            "new_field_name":"resource"
+          }
+        },
+        "ResourcePath":{
+          "map_field_name":{
+            "new_field_name":"resource"
+          }
+        },
+        "Cluster name":{
+          "map_field_name":{
+            "new_field_name":"cluster"
+          }
+        },
+        "Old name":{
+          "map_field_name":{
+            "new_field_name":"ws_old_name"
+          }
+        },
+        "New name":{
+          "map_field_name":{
+            "new_field_name":"ws_new_name"
+          }
+        },
+        "Reason":{
+          "map_field_name":{
+            "new_field_name":"reason"
+          }
+        },
+        "Base URL":{
+          "map_field_name":{
+            "new_field_name":"ws_base_url"
+          }
+        },
+        "Base url":{
+          "map_field_name":{
+            "new_field_name":"ws_base_url"
+          }
+        },
+        "Command":{
+          "map_field_value":{
+            "pre_value":"null",
+            "post_value":"unknown"
+          },
+          "map_field_name":{
+            "new_field_name":"ws_command"
+          }
+        },
+        "Component":{
+          "map_field_name":{
+            "new_field_name":"ws_component"
+          }
+        },
+        "Type":{
+          "map_field_name":{
+            "new_field_name":"ws_type"
+          }
+        },
+        "Consecutive failures": {
+          "map_field_name":{
+            "new_field_name":"ws_consecutive_failures"
+          }
+        },
+        "Created Username": {
+          "map_field_name":{
+            "new_field_name":"ws_username"
+          }
+        },
+        "Affected username": {
+          "map_field_name":{
+            "new_field_name":"ws_username"
+          }
+        },
+        "Deleted Username": {
+          "map_field_name":{
+            "new_field_name":"ws_username"
+          }
+        },
+        "Alert group name": {
+          "map_field_name":{
+            "new_field_name":"ws_alert_group_name"
+          }
+        },
+        "Alert group ID": {
+          "map_field_name":{
+            "new_field_name":"ws_alert_group_id"
+          }
+        },
+        "Definition IDs": {
+          "map_field_name":{
+            "new_field_name":"std_alert_definition_ids"
+          }
+        },
+        "Notification ID": {
+          "map_field_name":{
+            "new_field_name":"ws_alert_notification_id"
+          }
+        },
+        "Notification IDs": {
+          "map_field_name":{
+            "new_field_name":"std_alert_notification_ids"
+          }
+        },
+        "Notification name": {
+          "map_field_name":{
+            "new_field_name":"ws_alert_notification_name"
+          }
+        },
+        "Notification type": {
+          "map_field_name":{
+            "new_field_name":"ws_alert_notification_type"
+          }
+        },
+        "Members": {
+          "map_field_name":{
+            "new_field_name":"std_members"
+          }
+        },
+        "Description": {
+          "map_field_name":{
+            "new_field_name":"ws_description"
+          }
+        },
+        "Email from": {
+          "map_field_name":{
+            "new_field_name":"ws_alert_email_from"
+          }
+        },
+        "Email to": {
+          "map_field_name":{
+            "new_field_name":"ws_alert_email_to"
+          }
+        },
+        "Group": {
+          "map_field_name":{
+            "new_field_name":"ws_group"
+          }
+        },
+        "Group IDs": {
+          "map_field_name":{
+            "new_field_name":"std_alert_group_ids"
+          }
+        },
+        "Alert states": {
+          "map_field_name":{
+            "new_field_name":"std_alert_states"
+          }
+        },
+        "Blueprint": {
+          "map_field_name":{
+            "new_field_name":"ws_blueprint"
+          }
+        },
+        "Blueprint name": {
+          "map_field_name":{
+            "new_field_name":"ws_blueprint_name"
+          }
+        },
+        "State": {
+          "map_field_name":{
+            "new_field_name":"ws_state"
+          }
+        },
+        "Principal": {
+          "map_field_name":{
+            "new_field_name":"ws_principal"
+          }
+        },
+        "Alias": {
+          "map_field_name":{
+            "new_field_name":"ws_alias"
+          }
+        },
+        "Keytab file": {
+          "map_field_name":{
+            "new_field_name":"ws_keytab_file"
+          }
+        },
+        "Upgrade type":{
+          "map_field_name":{
+            "new_field_name":"ws_upgrade_type"
+          }
+        },
+        "Details":{
+          "map_field_name":{
+            "new_field_name":"ws_details"
+          }
+        },
+        "Name":{
+          "map_field_name":{
+            "new_field_name":"ws_name"
+          }
+        },
+        "Display name":{
+          "map_field_value":{
+            "pre_value":"null",
+            "post_value":"unknown"
+          },
+          "map_field_name":{
+            "new_field_name":"ws_display_name"
+          }
+        },
+        "OS":{
+          "map_field_name":{
+            "new_field_name":"ws_os"
+          }
+        },
+        "Repo id":{
+          "map_field_name":{
+            "new_field_name":"ws_repo_id"
+          }
+        },
+        "Repo version":{
+          "map_field_value":{
+            "pre_value":"null",
+            "post_value":"unknown"
+          },
+          "map_field_name":{
+            "new_field_name":"ws_repo_version"
+          }
+        },
+        "Repo version ID":{
+          "map_field_name":{
+            "new_field_name":"ws_repo_version_id"
+          }
+        },
+        "Repositories":{
+          "map_field_name":{
+            "new_field_name":"ws_repositories"
+          }
+        },
+        "RequestId":{
+          "map_field_name":{
+            "new_field_name":"ws_request_id"
+          }
+        },
+        "Request id":{
+          "map_field_name":{
+            "new_field_name":"ws_request_id"
+          }
+        },
+        "Repository ID":{
+          "map_field_name":{
+            "new_field_name":"ws_repo_id"
+          }
+        },
+        "Repository name":{
+          "map_field_name":{
+            "new_field_name":"ws_repo_name"
+          }
+        },
+        "Roles":{
+          "map_field_name":{
+            "new_field_name":"ws_roles"
+          }
+        },
+        "Permissions":{
+          "map_field_name":{
+            "new_field_name":"std_permissions"
+          }
+        },
+        "Stack":{
+          "map_field_name":{
+            "new_field_name":"ws_stack"
+          }
+        },
+        "Stack version":{
+          "map_field_name":{
+            "new_field_name":"ws_stack_version"
+          }
+        },
+        "Stage id":{
+          "map_field_name":{
+            "new_field_name":"ws_stage_id"
+          }
+        },
+        "Administrator":{
+          "map_field_value":{
+            "pre_value":"yes",
+            "post_value":"1"
+          },
+          "map_field_value":{
+            "pre_value":"no",
+            "post_value":"0"
+          },
+          "map_field_name":{
+            "new_field_name":"ws_admin"
+          }
+        },
+        "Active":{
+          "map_field_value":{
+            "pre_value":"y",
+            "post_value":"1"
+          },
+          "map_field_value":{
+            "pre_value":"n",
+            "post_value":"0"
+          },
+          "map_field_name":{
+            "new_field_name":"ws_active"
+          }
+        },
+        "Version":{
+          "map_field_name":{
+            "new_field_name":"ws_version"
+          }
+        },
+        "VersionNote":{
+          "map_field_value":{
+            "pre_value":"null",
+            "post_value":"unknown"
+          },
+          "map_field_name":{
+            "new_field_name":"ws_version_note"
+          }
+        },
+        "VersionNumber":{
+          "map_field_value":{
+            "pre_value":"Vnull",
+            "post_value":"unknown"
+          },
+          "map_field_name":{
+            "new_field_name":"ws_version_number"
+          }
+        },
+        "Status":[
+          {
+            "map_field_copy":{
+              "copy_name": "ws_status"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Success",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Successfully queued",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"QUEUED",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"PENDING",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"COMPLETED",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"IN_PROGRESS",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Failed",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"Failed to queue",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"HOLDING",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"HOLDING_FAILED",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"HOLDING_TIMEDOUT",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"FAILED",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"TIMEDOUT",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"ABORTED",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"SKIPPED_FAILED",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_name":{
+              "new_field_name":"result"
+            }
+          }
+        ],
+        "ResultStatus":[
+          {
+            "map_field_copy":{
+              "copy_name": "ws_result_status"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"200 OK",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"201 Created",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"202 Accepted",
+              "post_value":"1"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"400 Bad Request",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"401 Unauthorized",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"403 Forbidden",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"404 Not Found",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"409 Resource Conflict",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_value":{
+              "pre_value":"500 Internal Server Error",
+              "post_value":"0"
+            }
+          },
+          {
+            "map_field_name":{
+              "new_field_name":"result"
+            }
+          }
+        ]
+
+      }
+
+    }
+
+  ]
+
+}
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/kafka-output.json.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/kafka-output.json.j2
new file mode 100644
index 00000000000..ceb1f94bdf9
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/kafka-output.json.j2
@@ -0,0 +1,34 @@
+{#
+ # Licensed to the Apache Software Foundation (ASF) under one
+ # or more contributor license agreements.  See the NOTICE file
+ # distributed with this work for additional information
+ # regarding copyright ownership.  The ASF licenses this file
+ # to you under the Apache License, Version 2.0 (the
+ # "License"); you may not use this file except in compliance
+ # with the License.  You may obtain a copy of the License at
+ #
+ #   http://www.apache.org/licenses/LICENSE-2.0
+ #
+ # Unless required by applicable law or agreed to in writing, software
+ # distributed under the License is distributed on an "AS IS" BASIS,
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ # See the License for the specific language governing permissions and
+ # limitations under the License.
+ #}
+ {
+   "output": [
+     {
+       "is_enabled": "{{ logfeeder_kafka_output_enabled | lower }}",
+       "destination": "kafka",
+       "broker_list": "{{ logfeeder_kafka_broker_list }}",
+       "topic": "{{ logfeeder_kafka_topic }}",
+       "conditions": {
+         "fields": {
+           "rowtype": [
+             "service"
+           ]
+         }
+       }
+     }
+   ]
+ }
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-default_grok_patterns.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-default_grok_patterns.j2
new file mode 100644
index 00000000000..78670061a15
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-default_grok_patterns.j2
@@ -0,0 +1,148 @@
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements.  See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License.  You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+#Updated JAVACLASS to be same as JAVAFILE. Because if class doesn't have package, then it doesn't work.
+JAVACLASS (?:[A-Za-z$0-9_. -]+)
+#JAVACLASS (?:[a-zA-Z$_][a-zA-Z$_0-9]*\.)*[a-zA-Z$_][a-zA-Z$_0-9]*
+#JAVACLASS (?:[a-zA-Z0-9-]+\.)+[A-Za-z0-9$]+
+
+#Space is an allowed character to match special cases like 'Native Method' or 'Unknown Source'
+JAVAFILE (?:[A-Za-z0-9_. -]+)
+#Allow special <init> or <clinit> method
+JAVAMETHOD (?:(<init>)|(<clinit>)|[a-zA-Z$_][a-zA-Z$_0-9]*)
+#Line number is optional in special cases 'Native method' or 'Unknown source'
+JAVASTACKTRACEPART %{SPACE}at %{JAVACLASS:class}\.%{JAVAMETHOD:method}\(%{JAVAFILE:file}(?::%{NUMBER:line})?\)
+# Java Logs
+JAVATHREAD (?:[A-Z]{2}-Processor[\d]+)
+
+JAVASTACKTRACEPART at %{JAVACLASS:class}\.%{WORD:method}\(%{JAVAFILE:file}:%{NUMBER:line}\)
+JAVALOGMESSAGE (.*)
+# MMM dd, yyyy HH:mm:ss eg: Jan 9, 2014 7:13:13 AM
+CATALINA_DATESTAMP %{MONTH} %{MONTHDAY}, 20%{YEAR} %{HOUR}:?%{MINUTE}(?::?%{SECOND}) (?:AM|PM)
+# yyyy-MM-dd HH:mm:ss,SSS ZZZ eg: 2014-01-09 17:32:25,527 -0800
+TOMCAT_DATESTAMP 20%{YEAR}-%{MONTHNUM}-%{MONTHDAY} %{HOUR}:?%{MINUTE}(?::?%{SECOND}) %{ISO8601_TIMEZONE}
+CATALINALOG %{CATALINA_DATESTAMP:timestamp} %{JAVACLASS:class} %{JAVALOGMESSAGE:logmessage}
+# 2014-01-09 20:03:28,269 -0800 | ERROR | com.example.service.ExampleService - something compeletely unexpected happened...
+TOMCATLOG %{TOMCAT_DATESTAMP:timestamp} \| %{LOGLEVEL:level} \| %{JAVACLASS:class} - %{JAVALOGMESSAGE:logmessage}
+
+USERNAME [a-zA-Z0-9._-]+
+USER %{USERNAME}
+EMAILLOCALPART [a-zA-Z][a-zA-Z0-9_.+-=:]+
+EMAILADDRESS %{EMAILLOCALPART}@%{HOSTNAME}
+HTTPDUSER %{EMAILADDRESS}|%{USER}
+INT (?:[+-]?(?:[0-9]+))
+BASE10NUM (?<![0-9.+-])(?>[+-]?(?:(?:[0-9]+(?:\.[0-9]+)?)|(?:\.[0-9]+)))
+NUMBER (?:%{BASE10NUM})
+BASE16NUM (?<![0-9A-Fa-f])(?:[+-]?(?:0x)?(?:[0-9A-Fa-f]+))
+BASE16FLOAT \b(?<![0-9A-Fa-f.])(?:[+-]?(?:0x)?(?:(?:[0-9A-Fa-f]+(?:\.[0-9A-Fa-f]*)?)|(?:\.[0-9A-Fa-f]+)))\b
+
+POSINT \b(?:[1-9][0-9]*)\b
+NONNEGINT \b(?:[0-9]+)\b
+WORD \b\w+\b
+NOTSPACE \S+
+SPACE \s*
+DATA .*?
+GREEDYDATA .*
+QUOTEDSTRING (?>(?<!\\)(?>"(?>\\.|[^\\"]+)+"|""|(?>'(?>\\.|[^\\']+)+')|''|(?>`(?>\\.|[^\\`]+)+`)|``))
+UUID [A-Fa-f0-9]{8}-(?:[A-Fa-f0-9]{4}-){3}[A-Fa-f0-9]{12}
+
+# Networking
+MAC (?:%{CISCOMAC}|%{WINDOWSMAC}|%{COMMONMAC})
+CISCOMAC (?:(?:[A-Fa-f0-9]{4}\.){2}[A-Fa-f0-9]{4})
+WINDOWSMAC (?:(?:[A-Fa-f0-9]{2}-){5}[A-Fa-f0-9]{2})
+COMMONMAC (?:(?:[A-Fa-f0-9]{2}:){5}[A-Fa-f0-9]{2})
+IPV6 ((([0-9A-Fa-f]{1,4}:){7}([0-9A-Fa-f]{1,4}|:))|(([0-9A-Fa-f]{1,4}:){6}(:[0-9A-Fa-f]{1,4}|((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3})|:))|(([0-9A-Fa-f]{1,4}:){5}(((:[0-9A-Fa-f]{1,4}){1,2})|:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3})|:))|(([0-9A-Fa-f]{1,4}:){4}(((:[0-9A-Fa-f]{1,4}){1,3})|((:[0-9A-Fa-f]{1,4})?:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){3}(((:[0-9A-Fa-f]{1,4}){1,4})|((:[0-9A-Fa-f]{1,4}){0,2}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){2}(((:[0-9A-Fa-f]{1,4}){1,5})|((:[0-9A-Fa-f]{1,4}){0,3}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){1}(((:[0-9A-Fa-f]{1,4}){1,6})|((:[0-9A-Fa-f]{1,4}){0,4}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:))|(:(((:[0-9A-Fa-f]{1,4}){1,7})|((:[0-9A-Fa-f]{1,4}){0,5}:((25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}))|:)))(%.+)?
+IPV4 (?<![0-9])(?:(?:[0-1]?[0-9]{1,2}|2[0-4][0-9]|25[0-5])[.](?:[0-1]?[0-9]{1,2}|2[0-4][0-9]|25[0-5])[.](?:[0-1]?[0-9]{1,2}|2[0-4][0-9]|25[0-5])[.](?:[0-1]?[0-9]{1,2}|2[0-4][0-9]|25[0-5]))(?![0-9])
+IP (?:%{IPV6}|%{IPV4})
+HOSTNAME \b(?:[0-9A-Za-z][0-9A-Za-z-]{0,62})(?:\.(?:[0-9A-Za-z][0-9A-Za-z-]{0,62}))*(\.?|\b)
+IPORHOST (?:%{IP}|%{HOSTNAME})
+HOSTPORT %{IPORHOST}:%{POSINT}
+
+# paths
+PATH (?:%{UNIXPATH}|%{WINPATH})
+UNIXPATH (/([\w_%!$@:.,~-]+|\\.)*)+
+TTY (?:/dev/(pts|tty([pq])?)(\w+)?/?(?:[0-9]+))
+WINPATH (?>[A-Za-z]+:|\\)(?:\\[^\\?*]*)+
+URIPROTO [A-Za-z]+(\+[A-Za-z+]+)?
+URIHOST %{IPORHOST}(?::%{POSINT:port})?
+# uripath comes loosely from RFC1738, but mostly from what Firefox
+# doesn't turn into %XX
+URIPATH (?:/[A-Za-z0-9$.+!*'(){},~:;=@#%_\-]*)+
+#URIPARAM \?(?:[A-Za-z0-9]+(?:=(?:[^&]*))?(?:&(?:[A-Za-z0-9]+(?:=(?:[^&]*))?)?)*)?
+URIPARAM \?[A-Za-z0-9$.+!*'|(){},~@#%&/=:;_?\-\[\]<>]*
+URIPATHPARAM %{URIPATH}(?:%{URIPARAM})?
+URI %{URIPROTO}://(?:%{USER}(?::[^@]*)?@)?(?:%{URIHOST})?(?:%{URIPATHPARAM})?
+
+# Months: January, Feb, 3, 03, 12, December
+MONTH \b(?:Jan(?:uary)?|Feb(?:ruary)?|Mar(?:ch)?|Apr(?:il)?|May?|Jun(?:e)?|Jul(?:y)?|Aug(?:ust)?|Sep(?:tember)?|Oct(?:ober)?|Nov(?:ember)?|Dec(?:ember)?)\b
+MONTHNUM (?:0?[1-9]|1[0-2])
+MONTHNUM2 (?:0[1-9]|1[0-2])
+MONTHDAY (?:(?:0[1-9])|(?:[12][0-9])|(?:3[01])|[1-9])
+
+# Days: Monday, Tue, Thu, etc...
+DAY (?:Mon(?:day)?|Tue(?:sday)?|Wed(?:nesday)?|Thu(?:rsday)?|Fri(?:day)?|Sat(?:urday)?|Sun(?:day)?)
+
+# Years?
+YEAR (?>\d\d){1,2}
+HOUR (?:2[0123]|[01]?[0-9])
+MINUTE (?:[0-5][0-9])
+# '60' is a leap second in most time standards and thus is valid.
+SECOND (?:(?:[0-5]?[0-9]|60)(?:[:.,][0-9]+)?)
+TIME (?!<[0-9])%{HOUR}:%{MINUTE}(?::%{SECOND})(?![0-9])
+# datestamp is YYYY/MM/DD-HH:MM:SS.UUUU (or something like it)
+DATE_US %{MONTHNUM}[/-]%{MONTHDAY}[/-]%{YEAR}
+DATE_EU %{MONTHDAY}[./-]%{MONTHNUM}[./-]%{YEAR}
+DATE_EU2 %{YEAR}[./-]%{MONTHNUM}[./-]%{MONTHDAY}
+ISO8601_TIMEZONE (?:Z|[+-]%{HOUR}(?::?%{MINUTE}))
+ISO8601_SECOND (?:%{SECOND}|60)
+TIMESTAMP_ISO8601 %{YEAR}-%{MONTHNUM}-%{MONTHDAY}[T ]%{HOUR}:?%{MINUTE}(?::?%{SECOND})?%{ISO8601_TIMEZONE}?
+DATE %{DATE_US}|%{DATE_EU}|%{DATE_EU2}
+DATESTAMP %{DATE}[- ]%{TIME}
+TZ (?:[PMCE][SD]T|UTC)
+DATESTAMP_RFC822 %{DAY} %{MONTH} %{MONTHDAY} %{YEAR} %{TIME} %{TZ}
+DATESTAMP_RFC2822 %{DAY}, %{MONTHDAY} %{MONTH} %{YEAR} %{TIME} %{ISO8601_TIMEZONE}
+DATESTAMP_OTHER %{DAY} %{MONTH} %{MONTHDAY} %{TIME} %{TZ} %{YEAR}
+DATESTAMP_EVENTLOG %{YEAR}%{MONTHNUM2}%{MONTHDAY}%{HOUR}%{MINUTE}%{SECOND}
+HTTPDERROR_DATE %{DAY} %{MONTH} %{MONTHDAY} %{TIME} %{YEAR}
+
+# Syslog Dates: Month Day HH:MM:SS
+SYSLOGTIMESTAMP %{MONTH} +%{MONTHDAY} %{TIME}
+PROG [\x21-\x5a\x5c\x5e-\x7e]+
+SYSLOGPROG %{PROG:program}(?:\[%{POSINT:pid}\])?
+SYSLOGHOST %{IPORHOST}
+SYSLOGFACILITY <%{NONNEGINT:facility}.%{NONNEGINT:priority}>
+HTTPDATE %{MONTHDAY}/%{MONTH}/%{YEAR}:%{TIME} %{INT}
+
+# Shortcuts
+QS %{QUOTEDSTRING}
+
+# Log formats
+SYSLOGBASE %{SYSLOGTIMESTAMP:timestamp} (?:%{SYSLOGFACILITY} )?%{SYSLOGHOST:logsource} %{SYSLOGPROG}:
+COMMONAPACHELOG %{IPORHOST:clientip} %{HTTPDUSER:ident} %{USER:auth} \[%{HTTPDATE:timestamp}\] "(?:%{WORD:verb} %{NOTSPACE:request}(?: HTTP/%{NUMBER:httpversion})?|%{DATA:rawrequest})" %{NUMBER:response} (?:%{NUMBER:bytes}|-)
+COMBINEDAPACHELOG %{COMMONAPACHELOG} %{QS:referrer} %{QS:agent}
+HTTPD20_ERRORLOG \[%{HTTPDERROR_DATE:timestamp}\] \[%{LOGLEVEL:loglevel}\] (?:\[client %{IPORHOST:clientip}\] ){0,1}%{GREEDYDATA:errormsg}
+HTTPD24_ERRORLOG \[%{HTTPDERROR_DATE:timestamp}\] \[%{WORD:module}:%{LOGLEVEL:loglevel}\] \[pid %{POSINT:pid}:tid %{NUMBER:tid}\]( \(%{POSINT:proxy_errorcode}\)%{DATA:proxy_errormessage}:)?( \[client %{IPORHOST:client}:%{POSINT:clientport}\])? %{DATA:errorcode}: %{GREEDYDATA:message}
+HTTPD_ERRORLOG %{HTTPD20_ERRORLOG}|%{HTTPD24_ERRORLOG}
+
+
+# Log Levels
+LOGLEVEL ([Aa]lert|ALERT|[Tt]race|TRACE|[Dd]ebug|DEBUG|[Nn]otice|NOTICE|[Ii]nfo|INFO|[Ww]arn?(?:ing)?|WARN?(?:ING)?|[Ee]rr?(?:or)?|ERR?(?:OR)?|[Cc]rit?(?:ical)?|CRIT?(?:ICAL)?|[Ff]atal|FATAL|[Ss]evere|SEVERE|EMERG(?:ENCY)?|[Ee]merg(?:ency)?)
+
+
+# Log specific patterns
+USER_SYNC_DATE %{MONTHDAY} %{MONTH} %{YEAR} %{TIME}
+SPARK_DATESTAMP %{YEAR}[/-]%{MONTHNUM2}[/-]%{MONTHDAY} %{TIME}
+CUSTOM_DATESTAMP %{MONTHDAY} %{MONTH} %{YEAR} %{TIME}
+CUSTOM_SEPARATOR %{SPACE}\|%{SPACE}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-env.sh.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-env.sh.j2
new file mode 100644
index 00000000000..b05c48c81ed
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-env.sh.j2
@@ -0,0 +1,47 @@
+#!/bin/bash
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements.  See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License.  You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -e
+
+export LOGFEEDER_PATH={{logfeeder_dir}}
+
+export LOGFEEDER_CONF_DIR={{logsearch_logfeeder_conf}}
+
+#Logfile e.g. /var/log/logfeeder.log
+export LOG_PATH={{logfeeder_log_dir}}
+export LOG_FILE={{logfeeder_log}}
+
+#pid file e.g. /var/run/logfeeder.pid
+export LOGFEEDER_PID_FILE={{logfeeder_pid_file}}
+
+export JAVA_HOME={{java64_home}}
+
+if [ "$LOGFEEDER_JAVA_MEM" = "" ]; then
+  export LOGFEEDER_JAVA_MEM=-Xmx{{logfeeder_max_mem}}
+fi
+
+{% if logfeeder_use_ssl %}
+export LOGFEEDER_SSL="true"
+export LOGFEEDER_KEYSTORE_LOCATION={{logfeeder_keystore_location}}
+export LOGFEEDER_KEYSTORE_TYPE={{logfeeder_keystore_type}}
+export LOGFEEDER_TRUSTSTORE_LOCATION={{logfeeder_truststore_location}}
+export LOGFEEDER_TRUSTSTORE_TYPE={{logfeeder_truststore_type}}
+{% endif %}
+
+{% if security_enabled -%}
+LOGFEEDER_KERBEROS_OPTS="-Djava.security.auth.login.config=/usr/lib/ambari-logsearch-logfeeder/conf/logfeeder_jaas.conf -Dsolr.httpclient.builder.factory=org.apache.solr.client.solrj.impl.Krb5HttpClientBuilder"
+export LOGFEEDER_JAVA_OPTS="{{zk_security_opts}} $LOGFEEDER_KERBEROS_OPTS"
+{% endif %}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-log4j.xml.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-log4j.xml.j2
new file mode 100644
index 00000000000..0f535b24ece
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logfeeder-log4j.xml.j2
@@ -0,0 +1,72 @@
+<?xml version="1.0" encoding="UTF-8" ?>
+<!--
+Licensed to the Apache Software Foundation (ASF) under one or more
+contributor license agreements.  See the NOTICE file distributed with
+this work for additional information regarding copyright ownership.
+The ASF licenses this file to You under the Apache License, Version 2.0
+(the "License"); you may not use this file except in compliance with
+the License.  You may obtain a copy of the License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+<!DOCTYPE log4j:configuration SYSTEM "http://logging.apache.org/log4j/1.2/apidocs/org/apache/log4j/xml/doc-files/log4j.dtd">
+<log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
+  <appender name="console" class="org.apache.log4j.ConsoleAppender">
+    <param name="Target" value="System.out"/>
+    <layout class="org.apache.log4j.PatternLayout">
+      <param name="ConversionPattern" value="%d [%t] %-5p %C{6} (%F:%L) - %m%n"/>
+    </layout>
+  </appender>
+
+  <appender name="rolling_file" class="org.apache.log4j.RollingFileAppender">
+    <param name="file" value="{{logfeeder_log_dir}}/logfeeder.log"/>
+    <param name="append" value="true"/>
+    <param name="maxFileSize" value="{{logfeeder_log_maxfilesize}}MB"/>
+    <param name="maxBackupIndex" value="{{logfeeder_log_maxbackupindex}}"/>
+    <layout class="org.apache.log4j.PatternLayout">
+      <param name="ConversionPattern" value="%d [%t] %-5p %C{6} (%F:%L) - %m%n"/>
+    </layout>
+  </appender>
+
+  <appender name="rolling_file_json"
+    class="org.apache.ambari.logsearch.appender.LogsearchRollingFileAppender">
+    <param name="file" value="{{logfeeder_log_dir}}/logsearch-logfeeder.json" />
+    <param name="append" value="true" />
+    <param name="maxFileSize" value="{{logfeeder_json_log_maxfilesize}}MB" />
+    <param name="maxBackupIndex" value="{{logfeeder_json_log_maxbackupindex}}" />
+    <layout class="org.apache.ambari.logsearch.appender.LogsearchConversion" />
+  </appender>
+
+
+  <!-- Logs to suppress BEGIN -->
+  <category name="org.apache.solr.common.cloud.ZkStateReader" additivity="false">
+    <priority value="error" />
+    <appender-ref ref="rolling_file" />
+  </category>
+
+  <category name="apache.solr.client.solrj.impl.CloudSolrClient" additivity="false">
+    <priority value="fatal" />
+    <appender-ref ref="rolling_file" />
+  </category>
+  <!-- Logs to suppress END -->
+
+  <category name="org.apache.ambari.logfeeder" additivity="false">
+    <priority value="INFO" />
+    <!-- <appender-ref ref="console" /> -->
+    <appender-ref ref="rolling_file" />
+    <appender-ref ref="rolling_file_json"/>
+  </category>
+
+  <root>
+    <priority value="warn"/>
+    <!-- <appender-ref ref="console" /> -->
+    <appender-ref ref="rolling_file" />
+    <appender-ref ref="rolling_file_json"/>
+  </root>
+</log4j:configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-admin.json.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-admin.json.j2
new file mode 100644
index 00000000000..abb0ddb447d
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-admin.json.j2
@@ -0,0 +1,25 @@
+{#
+ # Licensed to the Apache Software Foundation (ASF) under one
+ # or more contributor license agreements.  See the NOTICE file
+ # distributed with this work for additional information
+ # regarding copyright ownership.  The ASF licenses this file
+ # to you under the Apache License, Version 2.0 (the
+ # "License"); you may not use this file except in compliance
+ # with the License.  You may obtain a copy of the License at
+ #
+ #   http://www.apache.org/licenses/LICENSE-2.0
+ #
+ # Unless required by applicable law or agreed to in writing, software
+ # distributed under the License is distributed on an "AS IS" BASIS,
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ # See the License for the specific language governing permissions and
+ # limitations under the License.
+ #}
+{
+ "users": [{
+ "name": "Logsearch Admin",
+ "username": "{{logsearch_admin_username}}",
+ "password": "{{logsearch_admin_password}}",
+ "en_password": ""
+  }]
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-env.sh.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-env.sh.j2
new file mode 100644
index 00000000000..1aa628b6652
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-env.sh.j2
@@ -0,0 +1,51 @@
+#!/bin/bash
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -e
+
+# path containing LogSearch.jar file
+export LOGSEARCH_PATH={{logsearch_dir}}
+
+export LOGSEARCH_CONF_DIR={{logsearch_server_conf}}
+
+export LOG_PATH={{logsearch_log_dir}}
+export LOG_FILE={{logsearch_log}}
+
+export LOGSEARCH_PID_FILE={{logsearch_pid_file}}
+
+export JAVA_HOME={{java64_home}}
+
+export LOGSEARCH_JAVA_MEM=-Xmx{{logsearch_app_max_memory}}m
+if [ "$LOGSEARCH_JAVA_MEM" = "" ]; then
+  export LOGSEARCH_JAVA_MEM="-Xmx1g"
+fi
+
+export LOGSEARCH_DEBUG={{logsearch_debug_enabled}}
+
+export LOGSEARCH_DEBUG_PORT={{logsearch_debug_port}}
+
+{% if logsearch_use_ssl %}
+export LOGSEARCH_SSL="true"
+export LOGSEARCH_KEYSTORE_LOCATION={{logsearch_keystore_location}}
+export LOGSEARCH_KEYSTORE_TYPE={{logsearch_keystore_type}}
+export LOGSEARCH_TRUSTSTORE_LOCATION={{logsearch_truststore_location}}
+export LOGSEARCH_TRUSTSTORE_TYPE={{logsearch_truststore_type}}
+{% endif %}
+
+{% if security_enabled -%}
+LOGSEARCH_KERBEROS_OPTS="-Djava.security.auth.login.config=/usr/lib/ambari-logsearch-portal/conf/logsearch_jaas.conf -Dsolr.httpclient.builder.factory=org.apache.solr.client.solrj.impl.Krb5HttpClientBuilder"
+export LOGSEARCH_JAVA_OPTS="{{zk_security_opts}} $LOGSEARCH_KERBEROS_OPTS"
+{% endif %}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-log4j.xml.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-log4j.xml.j2
new file mode 100644
index 00000000000..98f58f29166
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/logsearch-log4j.xml.j2
@@ -0,0 +1,82 @@
+<?xml version="1.0" encoding="UTF-8" ?>
+<!--
+Licensed to the Apache Software Foundation (ASF) under one or more
+contributor license agreements.  See the NOTICE file distributed with
+this work for additional information regarding copyright ownership.
+The ASF licenses this file to You under the Apache License, Version 2.0
+(the "License"); you may not use this file except in compliance with
+the License.  You may obtain a copy of the License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+<!DOCTYPE log4j:configuration SYSTEM "http://logging.apache.org/log4j/1.2/apidocs/org/apache/log4j/xml/doc-files/log4j.dtd">
+<log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
+  <appender name="console" class="org.apache.log4j.ConsoleAppender">
+    <param name="Target" value="System.out"/>
+    <layout class="org.apache.log4j.PatternLayout">
+      <param name="ConversionPattern" value="%d [%t] %-5p %C{6} (%F:%L) - %m%n"/>
+    </layout>
+  </appender>
+
+  <appender name="rolling_file" class="org.apache.log4j.RollingFileAppender">
+    <param name="file" value="{{logsearch_log_dir}}/logsearch.log"/>
+    <param name="Threshold" value="info"/>
+    <param name="append" value="true"/>
+    <param name="maxFileSize" value="{{logsearch_log_maxfilesize}}MB"/>
+    <param name="maxBackupIndex" value="{{logsearch_log_maxbackupindex}}"/>
+    <layout class="org.apache.log4j.PatternLayout">
+      <param name="ConversionPattern" value="%d [%t] %-5p %C{6} (%F:%L) - %m%n"/>
+    </layout>
+  </appender>
+
+  <appender name="rolling_file_json" class="org.apache.ambari.logsearch.appender.LogsearchRollingFileAppender">
+    <param name="file" value="{{logsearch_log_dir}}/logsearch.json"/>
+    <param name="append" value="true"/>
+    <param name="maxFileSize" value="{{logsearch_json_log_maxfilesize}}MB"/>
+    <param name="maxBackupIndex" value="{{logsearch_json_log_maxbackupindex}}"/>
+    <layout class="org.apache.ambari.logsearch.appender.LogsearchConversion"/>
+  </appender>
+
+  <appender name="audit_rolling_file_json" class="org.apache.ambari.logsearch.appender.LogsearchRollingFileAppender">
+    <param name="file" value="{{logsearch_log_dir}}/logsearch-audit.json"/>
+    <param name="append" value="true"/>
+    <param name="maxFileSize" value="{{logsearch_audit_log_maxfilesize}}MB"/>
+    <param name="maxBackupIndex" value="{{logsearch_audit_log_maxbackupindex}}"/>
+    <layout class="org.apache.ambari.logsearch.appender.LogsearchConversion"/>
+  </appender>
+
+  <appender name="performance_analyzer_json" class="org.apache.ambari.logsearch.appender.LogsearchRollingFileAppender">
+    <param name="file" value="{{logsearch_log_dir}}/logsearch-performance.json"/>
+    <param name="Threshold" value="info"/>
+    <param name="append" value="true"/>
+    <param name="maxFileSize" value="{{logsearch_perf_log_maxfilesize}}MB"/>
+    <param name="maxBackupIndex" value="{{logsearch_perf_log_maxbackupindex}}"/>
+    <layout class="org.apache.ambari.logsearch.appender.LogsearchConversion"/>
+  </appender>
+
+  <logger name="org.apache.ambari.logsearch.audit" additivity="true">
+    <appender-ref ref="audit_rolling_file_json"/>
+  </logger>
+
+  <logger name="org.apache.ambari.logsearch.performance" additivity="false">
+    <appender-ref ref="performance_analyzer_json"/>
+  </logger>
+
+  <category name="org.apache.ambari.logsearch" additivity="false">
+    <priority value="info"/>
+    <appender-ref ref="rolling_file_json"/>
+  </category>
+
+  <root>
+    <priority value="info"/>
+    <!-- <appender-ref ref="console" /> -->
+    <appender-ref ref="rolling_file" />
+    <appender-ref ref="rolling_file_json"/>
+  </root>
+</log4j:configuration>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/output.config.json.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/output.config.json.j2
new file mode 100644
index 00000000000..ffcfeaf6c5f
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/output.config.json.j2
@@ -0,0 +1,59 @@
+{#
+ # Licensed to the Apache Software Foundation (ASF) under one
+ # or more contributor license agreements.  See the NOTICE file
+ # distributed with this work for additional information
+ # regarding copyright ownership.  The ASF licenses this file
+ # to you under the Apache License, Version 2.0 (the
+ # "License"); you may not use this file except in compliance
+ # with the License.  You may obtain a copy of the License at
+ #
+ #   http://www.apache.org/licenses/LICENSE-2.0
+ #
+ # Unless required by applicable law or agreed to in writing, software
+ # distributed under the License is distributed on an "AS IS" BASIS,
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ # See the License for the specific language governing permissions and
+ # limitations under the License.
+ #}
+{
+  "output":[
+    {
+      "comment":"Output to solr for service logs",
+      "is_enabled":"{{solr_service_logs_enable}}",
+      "destination":"solr",
+      "collection": "{{logsearch_solr_collection_service_logs}}",
+      "zk_connect_string":"{{logsearch_solr_zk_quorum}}{{logsearch_solr_zk_znode}}",
+      "type": "service",
+      "conditions":{
+        "fields":{
+          "rowtype":[
+            "service"
+          ]
+
+        }
+
+      }
+
+    },
+    {
+      "comment":"Output to solr for audit records",
+      "is_enabled":"{{solr_audit_logs_enable}}",
+      "destination":"solr",
+      "collection": "{{logsearch_solr_collection_audit_logs}}",
+      "zk_connect_string":"{{logsearch_solr_zk_quorum}}{{logsearch_solr_zk_znode}}",
+      "type": "audit",
+      "conditions":{
+        "fields":{
+          "rowtype":[
+            "audit"
+          ]
+
+        }
+
+      }
+
+    }
+
+  ]
+  
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/secure_log.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/secure_log.json
new file mode 100644
index 00000000000..9d9585ec7ea
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/secure_log.json
@@ -0,0 +1,31 @@
+{
+  "input": [
+    {
+      "type": "secure_log",
+      "rowtype": "service",
+      "path": "/var/log/secure"
+    }
+  ],
+  "filter": [
+    {
+      "filter": "grok",
+      "conditions": {
+        "fields": {
+          "type": [
+            "secure_log"
+          ]
+        }
+      },
+      "multiline_pattern": "^(%{SYSLOGTIMESTAMP:logtime})",
+      "message_pattern": "(?m)^%{SYSLOGTIMESTAMP:logtime}%{SPACE}%{SYSLOGHOST:host}%{SPACE}%{GREEDYDATA:log_message}",
+      "post_map_values": {
+        "logtime": {
+          "map_date": {
+            "target_date_pattern": "yyyy-MM-dd HH:mm:ss,SSS",
+            "src_date_pattern" :"MMM dd HH:mm:ss"
+          }
+        }
+      }
+    }
+  ]
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/service_logs-solrconfig.xml.j2 b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/service_logs-solrconfig.xml.j2
new file mode 100644
index 00000000000..b631860741f
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/service_logs-solrconfig.xml.j2
@@ -0,0 +1,1889 @@
+<?xml version="1.0" encoding="UTF-8" ?>
+<!--
+Licensed to the Apache Software Foundation (ASF) under one or more
+contributor license agreements.  See the NOTICE file distributed with
+this work for additional information regarding copyright ownership.
+The ASF licenses this file to You under the Apache License, Version 2.0
+(the "License"); you may not use this file except in compliance with
+the License.  You may obtain a copy of the License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+
+<!--
+For more details about configurations options that may appear in
+this file, see http://wiki.apache.org/solr/SolrConfigXml.
+-->
+<config>
+  <!-- In all configuration below, a prefix of "solr." for class names
+  is an alias that causes solr to search appropriate packages,
+  including org.apache.solr.(search|update|request|core|analysis)
+
+  You may also specify a fully qualified Java classname if you
+  have your own custom plugins.
+  -->
+
+  <!-- Controls what version of Lucene various components of Solr
+  adhere to.  Generally, you want to use the latest version to
+  get all bug fixes and improvements. It is highly recommended
+  that you fully re-index after changing this setting as it can
+  affect both how text is indexed and queried.
+  -->
+  <luceneMatchVersion>7.7.0</luceneMatchVersion>
+
+  <!-- <lib/> directives can be used to instruct Solr to load any Jars
+  identified and use them to resolve any "plugins" specified in
+  your solrconfig.xml or schema.xml (ie: Analyzers, Request
+  Handlers, etc...).
+
+  All directories and paths are resolved relative to the
+  instanceDir.
+
+  Please note that <lib/> directives are processed in the order
+  that they appear in your solrconfig.xml file, and are "stacked"
+  on top of each other when building a ClassLoader - so if you have
+  plugin jars with dependencies on other jars, the "lower level"
+  dependency jars should be loaded first.
+
+  If a "./lib" directory exists in your instanceDir, all files
+  found in it are included as if you had used the following
+  syntax...
+
+  <lib dir="./lib" />
+  -->
+
+  <!-- A 'dir' option by itself adds any files found in the directory
+  to the classpath, this is useful for including all jars in a
+  directory.
+
+  When a 'regex' is specified in addition to a 'dir', only the
+  files in that directory which completely match the regex
+  (anchored on both ends) will be included.
+
+  If a 'dir' option (with or without a regex) is used and nothing
+  is found that matches, a warning will be logged.
+
+  The examples below can be used to load some solr-contribs along
+  with their external dependencies.
+  -->
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-dataimporthandler-.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/extraction/lib" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-cell-\d.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/clustering/lib/" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-clustering-\d.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/langid/lib/" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-langid-\d.*\.jar"/>
+
+  <lib dir="${solr.install.dir:../../../..}/contrib/velocity/lib" regex=".*\.jar"/>
+  <lib dir="${solr.install.dir:../../../..}/dist/" regex="solr-velocity-\d.*\.jar"/>
+
+  <!-- an exact 'path' can be used instead of a 'dir' to specify a
+  specific jar file.  This will cause a serious error to be logged
+  if it can't be loaded.
+  -->
+  <!--
+  <lib path="../a-jar-that-does-not-exist.jar" />
+  -->
+
+  <!-- Data Directory
+
+  Used to specify an alternate directory to hold all index data
+  other than the default ./data under the Solr home.  If
+  replication is in use, this should match the replication
+  configuration.
+  -->
+  <dataDir>${solr.data.dir:}</dataDir>
+
+
+  <!-- The DirectoryFactory to use for indexes.
+
+  solr.StandardDirectoryFactory is filesystem
+  based and tries to pick the best implementation for the current
+  JVM and platform.  solr.NRTCachingDirectoryFactory, the default,
+  wraps solr.StandardDirectoryFactory and caches small files in memory
+  for better NRT performance.
+
+  One can force a particular implementation via solr.MMapDirectoryFactory,
+  solr.NIOFSDirectoryFactory, or solr.SimpleFSDirectoryFactory.
+
+  solr.RAMDirectoryFactory is memory based, not
+  persistent, and doesn't work with replication.
+  -->
+  <directoryFactory name="DirectoryFactory"
+                    class="${solr.directoryFactory:solr.NRTCachingDirectoryFactory}">
+
+
+    <!-- These will be used if you are using the solr.HdfsDirectoryFactory,
+    otherwise they will be ignored. If you don't plan on using hdfs,
+    you can safely remove this section. -->
+    <!-- The root directory that collection data should be written to. -->
+    <str name="solr.hdfs.home">${solr.hdfs.home:}</str>
+    <!-- The hadoop configuration files to use for the hdfs client. -->
+    <str name="solr.hdfs.confdir">${solr.hdfs.confdir:}</str>
+    <!-- Enable/Disable the hdfs cache. -->
+    <str name="solr.hdfs.blockcache.enabled">${solr.hdfs.blockcache.enabled:true}</str>
+    <!-- Enable/Disable using one global cache for all SolrCores.
+    The settings used will be from the first HdfsDirectoryFactory created. -->
+    <str name="solr.hdfs.blockcache.global">${solr.hdfs.blockcache.global:true}</str>
+
+  </directoryFactory>
+
+  <!-- The CodecFactory for defining the format of the inverted index.
+  The default implementation is SchemaCodecFactory, which is the official Lucene
+  index format, but hooks into the schema to provide per-field customization of
+  the postings lists and per-document values in the fieldType element
+  (postingsFormat/docValuesFormat). Note that most of the alternative implementations
+  are experimental, so if you choose to customize the index format, it's a good
+  idea to convert back to the official format e.g. via IndexWriter.addIndexes(IndexReader)
+  before upgrading to a newer version to avoid unnecessary reindexing.
+  -->
+  <codecFactory class="solr.SchemaCodecFactory"/>
+
+  <!-- To enable dynamic schema REST APIs, use the following for <schemaFactory>: -->
+
+  <schemaFactory class="ManagedIndexSchemaFactory">
+    <bool name="mutable">true</bool>
+    <str name="managedSchemaResourceName">managed-schema</str>
+  </schemaFactory>
+  <!--
+  When ManagedIndexSchemaFactory is specified, Solr will load the schema from
+  the resource named in 'managedSchemaResourceName', rather than from schema.xml.
+  Note that the managed schema resource CANNOT be named schema.xml.  If the managed
+  schema does not exist, Solr will create it after reading schema.xml, then rename
+  'schema.xml' to 'schema.xml.bak'.
+
+  Do NOT hand edit the managed schema - external modifications will be ignored and
+  overwritten as a result of schema modification REST API calls.
+
+  When ManagedIndexSchemaFactory is specified with mutable = true, schema
+  modification REST API calls will be allowed; otherwise, error responses will be
+  sent back for these requests.
+
+  <schemaFactory class="ClassicIndexSchemaFactory"/>
+  -->
+
+  <!-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+  Index Config - These settings control low-level behavior of indexing
+  Most example settings here show the default value, but are commented
+  out, to more easily see where customizations have been made.
+
+  Note: This replaces <indexDefaults> and <mainIndex> from older versions
+  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -->
+  <indexConfig>
+    <!-- maxFieldLength was removed in 4.0. To get similar behavior, include a
+    LimitTokenCountFilterFactory in your fieldType definition. E.g.
+    <filter class="solr.LimitTokenCountFilterFactory" maxTokenCount="10000"/>
+    -->
+    <!-- Maximum time to wait for a write lock (ms) for an IndexWriter. Default: 1000 -->
+    <!-- <writeLockTimeout>1000</writeLockTimeout>  -->
+    <!-- LogSearch customization to avoid timeouts -->
+    <writeLockTimeout>10000</writeLockTimeout>
+
+    <!-- The maximum number of simultaneous threads that may be
+    indexing documents at once in IndexWriter; if more than this
+    many threads arrive they will wait for others to finish.
+    Default in Solr/Lucene is 8. -->
+    <!-- <maxIndexingThreads>8</maxIndexingThreads>  -->
+    <!-- LogSearch customization of increase performance -->
+    <maxIndexingThreads>50</maxIndexingThreads>
+
+    <!-- Expert: Enabling compound file will use less files for the index,
+    using fewer file descriptors on the expense of performance decrease.
+    Default in Lucene is "true". Default in Solr is "false" (since 3.6) -->
+    <!-- <useCompoundFile>false</useCompoundFile> -->
+
+    <!-- ramBufferSizeMB sets the amount of RAM that may be used by Lucene
+    indexing for buffering added documents and deletions before they are
+    flushed to the Directory.
+    maxBufferedDocs sets a limit on the number of documents buffered
+    before flushing.
+    If both ramBufferSizeMB and maxBufferedDocs is set, then
+    Lucene will flush based on whichever limit is hit first.
+    The default is 100 MB.  -->
+    <!-- <ramBufferSizeMB>100</ramBufferSizeMB> -->
+    <!-- <maxBufferedDocs>1000</maxBufferedDocs> -->
+
+    <!-- Expert: Merge Policy
+    The Merge Policy in Lucene controls how merging of segments is done.
+    The default since Solr/Lucene 3.3 is TieredMergePolicy.
+    The default since Lucene 2.3 was the LogByteSizeMergePolicy,
+    Even older versions of Lucene used LogDocMergePolicy.
+    -->
+    <!--
+    <mergePolicy class="org.apache.lucene.index.TieredMergePolicy">
+    <int name="maxMergeAtOnce">10</int>
+    <int name="segmentsPerTier">10</int>
+    </mergePolicy>
+    -->
+
+    <!-- Merge Factor
+    The merge factor controls how many segments will get merged at a time.
+    For TieredMergePolicy, mergeFactor is a convenience parameter which
+    will set both MaxMergeAtOnce and SegmentsPerTier at once.
+    For LogByteSizeMergePolicy, mergeFactor decides how many new segments
+    will be allowed before they are merged into one.
+    Default is 10 for both merge policies.
+    -->
+    <!--
+    <mergeFactor>10</mergeFactor>
+    -->
+    <!-- LogSearch customization. Set to 5 to trigger purging of deleted documents more often -->
+    <mergePolicyFactory class="org.apache.solr.index.TieredMergePolicyFactory">
+      <int name="maxMergeAtOnce">{{logsearch_service_logs_merge_factor}}</int>
+      <int name="segmentsPerTier">{{logsearch_service_logs_merge_factor}}</int>
+    </mergePolicyFactory>
+
+    <!-- Expert: Merge Scheduler
+    The Merge Scheduler in Lucene controls how merges are
+    performed.  The ConcurrentMergeScheduler (Lucene 2.3 default)
+    can perform merges in the background using separate threads.
+    The SerialMergeScheduler (Lucene 2.2 default) does not.
+    -->
+    <!--
+    <mergeScheduler class="org.apache.lucene.index.ConcurrentMergeScheduler"/>
+    -->
+
+    <!-- LockFactory
+
+    This option specifies which Lucene LockFactory implementation
+    to use.
+
+    single = SingleInstanceLockFactory - suggested for a
+    read-only index or when there is no possibility of
+    another process trying to modify the index.
+    native = NativeFSLockFactory - uses OS native file locking.
+    Do not use when multiple solr webapps in the same
+    JVM are attempting to share a single index.
+    simple = SimpleFSLockFactory  - uses a plain file for locking
+
+    Defaults: 'native' is default for Solr3.6 and later, otherwise
+    'simple' is the default
+
+    More details on the nuances of each LockFactory...
+    http://wiki.apache.org/lucene-java/AvailableLockFactories
+    -->
+    <lockType>${solr.lock.type:native}</lockType>
+
+    <!-- Unlock On Startup
+
+    If true, unlock any held write or commit locks on startup.
+    This defeats the locking mechanism that allows multiple
+    processes to safely access a lucene index, and should be used
+    with care. Default is "false".
+
+    This is not needed if lock type is 'single'
+    -->
+    <!--
+    <unlockOnStartup>false</unlockOnStartup>
+    -->
+
+    <!-- Commit Deletion Policy
+    Custom deletion policies can be specified here. The class must
+    implement org.apache.lucene.index.IndexDeletionPolicy.
+
+    The default Solr IndexDeletionPolicy implementation supports
+    deleting index commit points on number of commits, age of
+    commit point and optimized status.
+
+    The latest commit point should always be preserved regardless
+    of the criteria.
+    -->
+    <!--
+    <deletionPolicy class="solr.SolrDeletionPolicy">
+    -->
+    <!-- The number of commit points to be kept -->
+    <!-- <str name="maxCommitsToKeep">1</str> -->
+    <!-- The number of optimized commit points to be kept -->
+    <!-- <str name="maxOptimizedCommitsToKeep">0</str> -->
+    <!--
+    Delete all commit points once they have reached the given age.
+    Supports DateMathParser syntax e.g.
+    -->
+    <!--
+    <str name="maxCommitAge">30MINUTES</str>
+    <str name="maxCommitAge">1DAY</str>
+    -->
+    <!--
+    </deletionPolicy>
+    -->
+
+    <!-- Lucene Infostream
+
+    To aid in advanced debugging, Lucene provides an "InfoStream"
+    of detailed information when indexing.
+
+    Setting the value to true will instruct the underlying Lucene
+    IndexWriter to write its info stream to solr's log. By default,
+    this is enabled here, and controlled through log4j.properties.
+    -->
+    <infoStream>true</infoStream>
+  </indexConfig>
+
+
+  <!-- JMX
+
+  This example enables JMX if and only if an existing MBeanServer
+  is found, use this if you want to configure JMX through JVM
+  parameters. Remove this to disable exposing Solr configuration
+  and statistics to JMX.
+
+  For more details see http://wiki.apache.org/solr/SolrJmx
+  -->
+  <jmx/>
+  <!-- If you want to connect to a particular server, specify the
+  agentId
+  -->
+  <!-- <jmx agentId="myAgent" /> -->
+  <!-- If you want to start a new MBeanServer, specify the serviceUrl -->
+  <!-- <jmx serviceUrl="service:jmx:rmi:///jndi/rmi://localhost:9999/solr"/>
+  -->
+
+  <!-- The default high-performance update handler -->
+  <updateHandler class="solr.DirectUpdateHandler2">
+
+    <!-- Enables a transaction log, used for real-time get, durability, and
+    and solr cloud replica recovery.  The log can grow as big as
+    uncommitted changes to the index, so use of a hard autoCommit
+    is recommended (see below).
+    "dir" - the target directory for transaction logs, defaults to the
+    solr data directory.  -->
+    <updateLog>
+      <str name="dir">${solr.ulog.dir:}</str>
+    </updateLog>
+
+    <!-- AutoCommit
+
+    Perform a hard commit automatically under certain conditions.
+    Instead of enabling autoCommit, consider using "commitWithin"
+    when adding documents.
+
+    http://wiki.apache.org/solr/UpdateXmlMessages
+
+    maxDocs - Maximum number of documents to add since the last
+    commit before automatically triggering a new commit.
+
+    maxTime - Maximum amount of time in ms that is allowed to pass
+    since a document was added before automatically
+    triggering a new commit.
+    openSearcher - if false, the commit causes recent index changes
+    to be flushed to stable storage, but does not cause a new
+    searcher to be opened to make those changes visible.
+
+    If the updateLog is enabled, then it's highly recommended to
+    have some sort of hard autoCommit to limit the log size.
+    -->
+    <autoCommit>
+      <maxTime>${solr.autoCommit.maxTime:15000}</maxTime>
+      <openSearcher>false</openSearcher>
+    </autoCommit>
+
+    <!-- softAutoCommit is like autoCommit except it causes a
+    'soft' commit which only ensures that changes are visible
+    but does not ensure that data is synced to disk.  This is
+    faster and more near-realtime friendly than a hard commit.
+    -->
+
+    <autoSoftCommit>
+      <maxTime>${solr.autoSoftCommit.maxTime:5000}</maxTime>
+    </autoSoftCommit>
+
+    <!-- Update Related Event Listeners
+
+    Various IndexWriter related events can trigger Listeners to
+    take actions.
+
+    postCommit - fired after every commit or optimize command
+    postOptimize - fired after every optimize command
+    -->
+    <!-- The RunExecutableListener executes an external command from a
+    hook such as postCommit or postOptimize.
+
+    exe - the name of the executable to run
+    dir - dir to use as the current working directory. (default=".")
+    wait - the calling thread waits until the executable returns.
+    (default="true")
+    args - the arguments to pass to the program.  (default is none)
+    env - environment variables to set.  (default is none)
+    -->
+    <!-- This example shows how RunExecutableListener could be used
+    with the script based replication...
+    http://wiki.apache.org/solr/CollectionDistribution
+    -->
+    <!--
+    <listener event="postCommit" class="solr.RunExecutableListener">
+    <str name="exe">solr/bin/snapshooter</str>
+    <str name="dir">.</str>
+    <bool name="wait">true</bool>
+    <arr name="args"> <str>arg1</str> <str>arg2</str> </arr>
+    <arr name="env"> <str>MYVAR=val1</str> </arr>
+    </listener>
+    -->
+
+  </updateHandler>
+
+  <!-- IndexReaderFactory
+
+  Use the following format to specify a custom IndexReaderFactory,
+  which allows for alternate IndexReader implementations.
+
+  ** Experimental Feature **
+
+  Please note - Using a custom IndexReaderFactory may prevent
+  certain other features from working. The API to
+  IndexReaderFactory may change without warning or may even be
+  removed from future releases if the problems cannot be
+  resolved.
+
+
+  ** Features that may not work with custom IndexReaderFactory **
+
+  The ReplicationHandler assumes a disk-resident index. Using a
+  custom IndexReader implementation may cause incompatibility
+  with ReplicationHandler and may cause replication to not work
+  correctly. See SOLR-1366 for details.
+
+  -->
+  <!--
+  <indexReaderFactory name="IndexReaderFactory" class="package.class">
+  <str name="someArg">Some Value</str>
+  </indexReaderFactory >
+  -->
+
+  <!-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+  Query section - these settings control query time things like caches
+  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -->
+  <query>
+    <!-- Max Boolean Clauses
+
+    Maximum number of clauses in each BooleanQuery,  an exception
+    is thrown if exceeded.
+
+    ** WARNING **
+
+    This option actually modifies a global Lucene property that
+    will affect all SolrCores.  If multiple solrconfig.xml files
+    disagree on this property, the value at any given moment will
+    be based on the last SolrCore to be initialized.
+
+    -->
+    <maxBooleanClauses>1024</maxBooleanClauses>
+
+
+    <!-- Solr Internal Query Caches
+
+    There are two implementations of cache available for Solr,
+    LRUCache, based on a synchronized LinkedHashMap, and
+    FastLRUCache, based on a ConcurrentHashMap.
+
+    FastLRUCache has faster gets and slower puts in single
+    threaded operation and thus is generally faster than LRUCache
+    when the hit ratio of the cache is high (> 75%), and may be
+    faster under other scenarios on multi-cpu systems.
+    -->
+
+    <!-- Filter Cache
+
+    Cache used by SolrIndexSearcher for filters (DocSets),
+    unordered sets of *all* documents that match a query.  When a
+    new searcher is opened, its caches may be prepopulated or
+    "autowarmed" using data from caches in the old searcher.
+    autowarmCount is the number of items to prepopulate.  For
+    LRUCache, the autowarmed items will be the most recently
+    accessed items.
+
+    Parameters:
+    class - the SolrCache implementation LRUCache or
+    (LRUCache or FastLRUCache)
+    size - the maximum number of entries in the cache
+    initialSize - the initial capacity (number of entries) of
+    the cache.  (see java.util.HashMap)
+    autowarmCount - the number of entries to prepopulate from
+    and old cache.
+    -->
+    <filterCache class="solr.FastLRUCache"
+                 size="512"
+                 initialSize="512"
+                 autowarmCount="0"/>
+
+    <!-- Query Result Cache
+
+    Caches results of searches - ordered lists of document ids
+    (DocList) based on a query, a sort, and the range of documents requested.
+    -->
+    <queryResultCache class="solr.LRUCache"
+                      size="512"
+                      initialSize="512"
+                      autowarmCount="0"/>
+
+    <!-- Document Cache
+
+    Caches Lucene Document objects (the stored fields for each
+    document).  Since Lucene internal document ids are transient,
+    this cache will not be autowarmed.
+    -->
+    <documentCache class="solr.LRUCache"
+                   size="512"
+                   initialSize="512"
+                   autowarmCount="0"/>
+
+    <!-- custom cache currently used by block join -->
+    <cache name="perSegFilter"
+           class="solr.search.LRUCache"
+           size="10"
+           initialSize="0"
+           autowarmCount="10"
+           regenerator="solr.NoOpRegenerator"/>
+
+    <!-- Field Value Cache
+
+    Cache used to hold field values that are quickly accessible
+    by document id.  The fieldValueCache is created by default
+    even if not configured here.
+    -->
+    <!--
+    <fieldValueCache class="solr.FastLRUCache"
+    size="512"
+    autowarmCount="128"
+    showItems="32" />
+    -->
+
+    <!-- Custom Cache
+
+    Example of a generic cache.  These caches may be accessed by
+    name through SolrIndexSearcher.getCache(),cacheLookup(), and
+    cacheInsert().  The purpose is to enable easy caching of
+    user/application level data.  The regenerator argument should
+    be specified as an implementation of solr.CacheRegenerator
+    if autowarming is desired.
+    -->
+    <!--
+    <cache name="myUserCache"
+    class="solr.LRUCache"
+    size="4096"
+    initialSize="1024"
+    autowarmCount="1024"
+    regenerator="com.mycompany.MyRegenerator"
+    />
+    -->
+
+
+    <!-- Lazy Field Loading
+
+    If true, stored fields that are not requested will be loaded
+    lazily.  This can result in a significant speed improvement
+    if the usual case is to not load all stored fields,
+    especially if the skipped fields are large compressed text
+    fields.
+    -->
+    <enableLazyFieldLoading>true</enableLazyFieldLoading>
+
+    <!-- Use Filter For Sorted Query
+
+    A possible optimization that attempts to use a filter to
+    satisfy a search.  If the requested sort does not include
+    score, then the filterCache will be checked for a filter
+    matching the query. If found, the filter will be used as the
+    source of document ids, and then the sort will be applied to
+    that.
+
+    For most situations, this will not be useful unless you
+    frequently get the same search repeatedly with different sort
+    options, and none of them ever use "score"
+    -->
+    <!--
+    <useFilterForSortedQuery>true</useFilterForSortedQuery>
+    -->
+
+    <!-- Result Window Size
+
+    An optimization for use with the queryResultCache.  When a search
+    is requested, a superset of the requested number of document ids
+    are collected.  For example, if a search for a particular query
+    requests matching documents 10 through 19, and queryWindowSize is 50,
+    then documents 0 through 49 will be collected and cached.  Any further
+    requests in that range can be satisfied via the cache.
+    -->
+    <queryResultWindowSize>20</queryResultWindowSize>
+
+    <!-- Maximum number of documents to cache for any entry in the
+    queryResultCache.
+    -->
+    <queryResultMaxDocsCached>200</queryResultMaxDocsCached>
+
+    <!-- Query Related Event Listeners
+
+    Various IndexSearcher related events can trigger Listeners to
+    take actions.
+
+    newSearcher - fired whenever a new searcher is being prepared
+    and there is a current searcher handling requests (aka
+    registered).  It can be used to prime certain caches to
+    prevent long request times for certain requests.
+
+    firstSearcher - fired whenever a new searcher is being
+    prepared but there is no current registered searcher to handle
+    requests or to gain autowarming data from.
+
+
+    -->
+    <!-- QuerySenderListener takes an array of NamedList and executes a
+    local query request for each NamedList in sequence.
+    -->
+    <listener event="newSearcher" class="solr.QuerySenderListener">
+      <arr name="queries">
+        <!--
+        <lst><str name="q">solr</str><str name="sort">price asc</str></lst>
+        <lst><str name="q">rocks</str><str name="sort">weight asc</str></lst>
+        -->
+      </arr>
+    </listener>
+    <listener event="firstSearcher" class="solr.QuerySenderListener">
+      <arr name="queries">
+        <lst>
+          <str name="q">static firstSearcher warming in solrconfig.xml</str>
+        </lst>
+      </arr>
+    </listener>
+
+    <!-- Use Cold Searcher
+
+    If a search request comes in and there is no current
+    registered searcher, then immediately register the still
+    warming searcher and use it.  If "false" then all requests
+    will block until the first searcher is done warming.
+    -->
+    <useColdSearcher>true</useColdSearcher>
+
+    <!-- Max Warming Searchers
+
+    Maximum number of searchers that may be warming in the
+    background concurrently.  An error is returned if this limit
+    is exceeded.
+
+    Recommend values of 1-2 for read-only slaves, higher for
+    masters w/o cache warming.
+    -->
+    <maxWarmingSearchers>2</maxWarmingSearchers>
+
+  </query>
+
+
+  <!-- Request Dispatcher
+
+  This section contains instructions for how the SolrDispatchFilter
+  should behave when processing requests for this SolrCore.
+
+  handleSelect is a legacy option that affects the behavior of requests
+  such as /select?qt=XXX
+
+  handleSelect="true" will cause the SolrDispatchFilter to process
+  the request and dispatch the query to a handler specified by the
+  "qt" param, assuming "/select" isn't already registered.
+
+  handleSelect="false" will cause the SolrDispatchFilter to
+  ignore "/select" requests, resulting in a 404 unless a handler
+  is explicitly registered with the name "/select"
+
+  handleSelect="true" is not recommended for new users, but is the default
+  for backwards compatibility
+  -->
+  <requestDispatcher handleSelect="false">
+    <!-- Request Parsing
+
+    These settings indicate how Solr Requests may be parsed, and
+    what restrictions may be placed on the ContentStreams from
+    those requests
+
+    enableRemoteStreaming - enables use of the stream.file
+    and stream.url parameters for specifying remote streams.
+
+    multipartUploadLimitInKB - specifies the max size (in KiB) of
+    Multipart File Uploads that Solr will allow in a Request.
+
+    formdataUploadLimitInKB - specifies the max size (in KiB) of
+    form data (application/x-www-form-urlencoded) sent via
+    POST. You can use POST to pass request parameters not
+    fitting into the URL.
+
+    addHttpRequestToContext - if set to true, it will instruct
+    the requestParsers to include the original HttpServletRequest
+    object in the context map of the SolrQueryRequest under the
+    key "httpRequest". It will not be used by any of the existing
+    Solr components, but may be useful when developing custom
+    plugins.
+
+    *** WARNING ***
+    The settings below authorize Solr to fetch remote files, You
+    should make sure your system has some authentication before
+    using enableRemoteStreaming="true"
+
+    -->
+    <requestParsers enableRemoteStreaming="true"
+                    multipartUploadLimitInKB="2048000"
+                    formdataUploadLimitInKB="2048"
+                    addHttpRequestToContext="false"/>
+
+    <!-- HTTP Caching
+
+    Set HTTP caching related parameters (for proxy caches and clients).
+
+    The options below instruct Solr not to output any HTTP Caching
+    related headers
+    -->
+    <httpCaching never304="true"/>
+    <!-- If you include a <cacheControl> directive, it will be used to
+    generate a Cache-Control header (as well as an Expires header
+    if the value contains "max-age=")
+
+    By default, no Cache-Control header is generated.
+
+    You can use the <cacheControl> option even if you have set
+    never304="true"
+    -->
+    <!--
+    <httpCaching never304="true" >
+    <cacheControl>max-age=30, public</cacheControl>
+    </httpCaching>
+    -->
+    <!-- To enable Solr to respond with automatically generated HTTP
+    Caching headers, and to response to Cache Validation requests
+    correctly, set the value of never304="false"
+
+    This will cause Solr to generate Last-Modified and ETag
+    headers based on the properties of the Index.
+
+    The following options can also be specified to affect the
+    values of these headers...
+
+    lastModFrom - the default value is "openTime" which means the
+    Last-Modified value (and validation against If-Modified-Since
+    requests) will all be relative to when the current Searcher
+    was opened.  You can change it to lastModFrom="dirLastMod" if
+    you want the value to exactly correspond to when the physical
+    index was last modified.
+
+    etagSeed="..." is an option you can change to force the ETag
+    header (and validation against If-None-Match requests) to be
+    different even if the index has not changed (ie: when making
+    significant changes to your config file)
+
+    (lastModifiedFrom and etagSeed are both ignored if you use
+    the never304="true" option)
+    -->
+    <!--
+    <httpCaching lastModifiedFrom="openTime"
+    etagSeed="Solr">
+    <cacheControl>max-age=30, public</cacheControl>
+    </httpCaching>
+    -->
+  </requestDispatcher>
+
+  <!-- Request Handlers
+
+  http://wiki.apache.org/solr/SolrRequestHandler
+
+  Incoming queries will be dispatched to a specific handler by name
+  based on the path specified in the request.
+
+  Legacy behavior: If the request path uses "/select" but no Request
+  Handler has that name, and if handleSelect="true" has been specified in
+  the requestDispatcher, then the Request Handler is dispatched based on
+  the qt parameter.  Handlers without a leading '/' are accessed this way
+  like so: http://host/app/[core/]select?qt=name  If no qt is
+  given, then the requestHandler that declares default="true" will be
+  used or the one named "standard".
+
+  If a Request Handler is declared with startup="lazy", then it will
+  not be initialized until the first request that uses it.
+
+  -->
+
+  <requestHandler name="/dataimport" class="solr.DataImportHandler">
+    <lst name="defaults">
+      <str name="config">solr-data-config.xml</str>
+    </lst>
+  </requestHandler>
+
+  <!-- SearchHandler
+
+  http://wiki.apache.org/solr/SearchHandler
+
+  For processing Search Queries, the primary Request Handler
+  provided with Solr is "SearchHandler" It delegates to a sequent
+  of SearchComponents (see below) and supports distributed
+  queries across multiple shards
+  -->
+  <requestHandler name="/select" class="solr.SearchHandler">
+    <!-- default values for query parameters can be specified, these
+    will be overridden by parameters in the request
+    -->
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <int name="rows">10</int>
+      <str name="df">text</str>
+    </lst>
+    <!-- In addition to defaults, "appends" params can be specified
+    to identify values which should be appended to the list of
+    multi-val params from the query (or the existing "defaults").
+    -->
+    <!-- In this example, the param "fq=instock:true" would be appended to
+    any query time fq params the user may specify, as a mechanism for
+    partitioning the index, independent of any user selected filtering
+    that may also be desired (perhaps as a result of faceted searching).
+
+    NOTE: there is *absolutely* nothing a client can do to prevent these
+    "appends" values from being used, so don't use this mechanism
+    unless you are sure you always want it.
+    -->
+    <!--
+    <lst name="appends">
+    <str name="fq">inStock:true</str>
+    </lst>
+    -->
+    <!-- "invariants" are a way of letting the Solr maintainer lock down
+    the options available to Solr clients.  Any params values
+    specified here are used regardless of what values may be specified
+    in either the query, the "defaults", or the "appends" params.
+
+    In this example, the facet.field and facet.query params would
+    be fixed, limiting the facets clients can use.  Faceting is
+    not turned on by default - but if the client does specify
+    facet=true in the request, these are the only facets they
+    will be able to see counts for; regardless of what other
+    facet.field or facet.query params they may specify.
+
+    NOTE: there is *absolutely* nothing a client can do to prevent these
+    "invariants" values from being used, so don't use this mechanism
+    unless you are sure you always want it.
+    -->
+    <!--
+    <lst name="invariants">
+    <str name="facet.field">cat</str>
+    <str name="facet.field">manu_exact</str>
+    <str name="facet.query">price:[* TO 500]</str>
+    <str name="facet.query">price:[500 TO *]</str>
+    </lst>
+    -->
+    <!-- If the default list of SearchComponents is not desired, that
+    list can either be overridden completely, or components can be
+    prepended or appended to the default list.  (see below)
+    -->
+    <!--
+    <arr name="components">
+    <str>nameOfCustomComponent1</str>
+    <str>nameOfCustomComponent2</str>
+    </arr>
+    -->
+  </requestHandler>
+
+  <!-- A request handler that returns indented JSON by default -->
+  <requestHandler name="/query" class="solr.SearchHandler">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <str name="wt">json</str>
+      <str name="indent">true</str>
+      <str name="df">text</str>
+    </lst>
+  </requestHandler>
+
+
+  <!-- realtime get handler, guaranteed to return the latest stored fields of
+  any document, without the need to commit or open a new searcher.  The
+  current implementation relies on the updateLog feature being enabled.
+
+  ** WARNING **
+  Do NOT disable the realtime get handler at /get if you are using
+  SolrCloud otherwise any leader election will cause a full sync in ALL
+  replicas for the shard in question. Similarly, a replica recovery will
+  also always fetch the complete index from the leader because a partial
+  sync will not be possible in the absence of this handler.
+  -->
+  <requestHandler name="/get" class="solr.RealTimeGetHandler">
+    <lst name="defaults">
+      <str name="omitHeader">true</str>
+      <str name="wt">json</str>
+      <str name="indent">true</str>
+    </lst>
+  </requestHandler>
+
+
+  <!-- A Robust Example
+
+  This example SearchHandler declaration shows off usage of the
+  SearchHandler with many defaults declared
+
+  Note that multiple instances of the same Request Handler
+  (SearchHandler) can be registered multiple times with different
+  names (and different init parameters)
+  -->
+  <requestHandler name="/browse" class="solr.SearchHandler">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+
+      <!-- VelocityResponseWriter settings -->
+      <str name="wt">velocity</str>
+      <str name="v.template">browse</str>
+      <str name="v.layout">layout</str>
+
+      <!-- Query settings -->
+      <str name="defType">edismax</str>
+      <str name="q.alt">*:*</str>
+      <str name="rows">10</str>
+      <str name="fl">*,score</str>
+
+      <!-- Faceting defaults -->
+      <str name="facet">on</str>
+      <str name="facet.mincount">1</str>
+    </lst>
+  </requestHandler>
+
+
+  <initParams path="/update/**,/query,/select,/tvrh,/elevate,/spell,/browse">
+    <lst name="defaults">
+      <str name="df">text</str>
+      <str name="update.chain">add-unknown-fields-to-the-schema</str>
+    </lst>
+  </initParams>
+
+  <!-- Update Request Handler.
+
+  http://wiki.apache.org/solr/UpdateXmlMessages
+
+  The canonical Request Handler for Modifying the Index through
+  commands specified using XML, JSON, CSV, or JAVABIN
+
+  Note: Since solr1.1 requestHandlers requires a valid content
+  type header if posted in the body. For example, curl now
+  requires: -H 'Content-type:text/xml; charset=utf-8'
+
+  To override the request content type and force a specific
+  Content-type, use the request parameter:
+  ?update.contentType=text/csv
+
+  This handler will pick a response format to match the input
+  if the 'wt' parameter is not explicit
+  -->
+  <requestHandler name="/update" class="solr.UpdateRequestHandler">
+    <!-- See below for information on defining
+    updateRequestProcessorChains that can be used by name
+    on each Update Request
+    -->
+    <!--
+    <lst name="defaults">
+    <str name="update.chain">dedupe</str>
+    </lst>
+    -->
+  </requestHandler>
+
+  <!-- Solr Cell Update Request Handler
+
+  http://wiki.apache.org/solr/ExtractingRequestHandler
+
+  -->
+  <requestHandler name="/update/extract"
+                  startup="lazy"
+                  class="solr.extraction.ExtractingRequestHandler">
+    <lst name="defaults">
+      <str name="lowernames">true</str>
+      <str name="uprefix">ignored_</str>
+
+      <!-- capture link hrefs but ignore div attributes -->
+      <str name="captureAttr">true</str>
+      <str name="fmap.a">links</str>
+      <str name="fmap.div">ignored_</str>
+    </lst>
+  </requestHandler>
+
+
+  <!-- Field Analysis Request Handler
+
+  RequestHandler that provides much the same functionality as
+  analysis.jsp. Provides the ability to specify multiple field
+  types and field names in the same request and outputs
+  index-time and query-time analysis for each of them.
+
+  Request parameters are:
+  analysis.fieldname - field name whose analyzers are to be used
+
+  analysis.fieldtype - field type whose analyzers are to be used
+  analysis.fieldvalue - text for index-time analysis
+  q (or analysis.q) - text for query time analysis
+  analysis.showmatch (true|false) - When set to true and when
+  query analysis is performed, the produced tokens of the
+  field value analysis will be marked as "matched" for every
+  token that is produces by the query analysis
+  -->
+  <requestHandler name="/analysis/field"
+                  startup="lazy"
+                  class="solr.FieldAnalysisRequestHandler"/>
+
+
+  <!-- Document Analysis Handler
+
+  http://wiki.apache.org/solr/AnalysisRequestHandler
+
+  An analysis handler that provides a breakdown of the analysis
+  process of provided documents. This handler expects a (single)
+  content stream with the following format:
+
+  <docs>
+  <doc>
+  <field name="id">1</field>
+  <field name="name">The Name</field>
+  <field name="text">The Text Value</field>
+  </doc>
+  <doc>...</doc>
+  <doc>...</doc>
+  ...
+  </docs>
+
+  Note: Each document must contain a field which serves as the
+  unique key. This key is used in the returned response to associate
+  an analysis breakdown to the analyzed document.
+
+  Like the FieldAnalysisRequestHandler, this handler also supports
+  query analysis by sending either an "analysis.query" or "q"
+  request parameter that holds the query text to be analyzed. It
+  also supports the "analysis.showmatch" parameter which when set to
+  true, all field tokens that match the query tokens will be marked
+  as a "match".
+  -->
+  <requestHandler name="/analysis/document"
+                  class="solr.DocumentAnalysisRequestHandler"
+                  startup="lazy"/>
+
+  <!-- Admin Handlers
+
+  Admin Handlers - This will register all the standard admin
+  RequestHandlers.
+  -->
+
+  <!-- This single handler is equivalent to the following... -->
+  <!--
+  <requestHandler name="/admin/luke"       class="solr.admin.LukeRequestHandler" />
+  <requestHandler name="/admin/system"     class="solr.admin.SystemInfoHandler" />
+  <requestHandler name="/admin/plugins"    class="solr.admin.PluginInfoHandler" />
+  <requestHandler name="/admin/threads"    class="solr.admin.ThreadDumpHandler" />
+  <requestHandler name="/admin/properties" class="solr.admin.PropertiesRequestHandler" />
+  <requestHandler name="/admin/file"       class="solr.admin.ShowFileRequestHandler" >
+  -->
+  <!-- If you wish to hide files under ${solr.home}/conf, explicitly
+  register the ShowFileRequestHandler using the definition below.
+  NOTE: The glob pattern ('*') is the only pattern supported at present, *.xml will
+  not exclude all files ending in '.xml'. Use it to exclude _all_ updates
+  -->
+  <!--
+  <requestHandler name="/admin/file"
+  class="solr.admin.ShowFileRequestHandler" >
+  <lst name="invariants">
+  <str name="hidden">synonyms.txt</str>
+  <str name="hidden">anotherfile.txt</str>
+  <str name="hidden">*</str>
+  </lst>
+  </requestHandler>
+  -->
+
+  <!--
+  Enabling this request handler (which is NOT a default part of the admin handler) will allow the Solr UI to edit
+  all the config files. This is intended for secure/development use ONLY! Leaving available and publically
+  accessible is a security vulnerability and should be done with extreme caution!
+  -->
+  <!--
+  <requestHandler name="/admin/fileedit" class="solr.admin.EditFileRequestHandler" >
+  <lst name="invariants">
+  <str name="hidden">synonyms.txt</str>
+  <str name="hidden">anotherfile.txt</str>
+  </lst>
+  </requestHandler>
+  -->
+  <!-- ping/healthcheck -->
+  <requestHandler name="/admin/ping" class="solr.PingRequestHandler">
+    <lst name="invariants">
+      <str name="q">solrpingquery</str>
+    </lst>
+    <lst name="defaults">
+      <str name="echoParams">all</str>
+    </lst>
+    <!-- An optional feature of the PingRequestHandler is to configure the
+    handler with a "healthcheckFile" which can be used to enable/disable
+    the PingRequestHandler.
+    relative paths are resolved against the data dir
+    -->
+    <!-- <str name="healthcheckFile">server-enabled.txt</str> -->
+  </requestHandler>
+
+  <!-- Echo the request contents back to the client -->
+  <requestHandler name="/debug/dump" class="solr.DumpRequestHandler">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <str name="echoHandler">true</str>
+    </lst>
+  </requestHandler>
+
+  <!-- Solr Replication
+
+  The SolrReplicationHandler supports replicating indexes from a
+  "master" used for indexing and "slaves" used for queries.
+
+  http://wiki.apache.org/solr/SolrReplication
+
+  It is also necessary for SolrCloud to function (in Cloud mode, the
+  replication handler is used to bulk transfer segments when nodes
+  are added or need to recover).
+
+  https://wiki.apache.org/solr/SolrCloud/
+  -->
+  <requestHandler name="/replication" class="solr.ReplicationHandler">
+    <!--
+    To enable simple master/slave replication, uncomment one of the
+    sections below, depending on whether this solr instance should be
+    the "master" or a "slave".  If this instance is a "slave" you will
+    also need to fill in the masterUrl to point to a real machine.
+    -->
+    <!--
+    <lst name="master">
+    <str name="replicateAfter">commit</str>
+    <str name="replicateAfter">startup</str>
+    <str name="confFiles">schema.xml,stopwords.txt</str>
+    </lst>
+    -->
+    <!--
+    <lst name="slave">
+    <str name="masterUrl">http://your-master-hostname:8983/solr</str>
+    <str name="pollInterval">00:00:60</str>
+    </lst>
+    -->
+  </requestHandler>
+
+  <!-- Search Components
+
+  Search components are registered to SolrCore and used by
+  instances of SearchHandler (which can access them by name)
+
+  By default, the following components are available:
+
+  <searchComponent name="query"     class="solr.QueryComponent" />
+  <searchComponent name="facet"     class="solr.FacetComponent" />
+  <searchComponent name="mlt"       class="solr.MoreLikeThisComponent" />
+  <searchComponent name="highlight" class="solr.HighlightComponent" />
+  <searchComponent name="stats"     class="solr.StatsComponent" />
+  <searchComponent name="debug"     class="solr.DebugComponent" />
+
+  Default configuration in a requestHandler would look like:
+
+  <arr name="components">
+  <str>query</str>
+  <str>facet</str>
+  <str>mlt</str>
+  <str>highlight</str>
+  <str>stats</str>
+  <str>debug</str>
+  </arr>
+
+  If you register a searchComponent to one of the standard names,
+  that will be used instead of the default.
+
+  To insert components before or after the 'standard' components, use:
+
+  <arr name="first-components">
+  <str>myFirstComponentName</str>
+  </arr>
+
+  <arr name="last-components">
+  <str>myLastComponentName</str>
+  </arr>
+
+  NOTE: The component registered with the name "debug" will
+  always be executed after the "last-components"
+
+  -->
+
+  <!-- Spell Check
+
+  The spell check component can return a list of alternative spelling
+  suggestions.
+
+  http://wiki.apache.org/solr/SpellCheckComponent
+  -->
+  <searchComponent name="spellcheck" class="solr.SpellCheckComponent">
+
+    <str name="queryAnalyzerFieldType">lowercase</str>
+
+    <!-- Multiple "Spell Checkers" can be declared and used by this
+    component
+    -->
+
+    <!-- a spellchecker built from a field of the main index -->
+    <lst name="spellchecker">
+      <str name="name">default</str>
+      <str name="field">text</str>
+      <str name="classname">solr.DirectSolrSpellChecker</str>
+      <!-- the spellcheck distance measure used, the default is the internal levenshtein -->
+      <str name="distanceMeasure">internal</str>
+      <!-- minimum accuracy needed to be considered a valid spellcheck suggestion -->
+      <float name="accuracy">0.5</float>
+      <!-- the maximum #edits we consider when enumerating terms: can be 1 or 2 -->
+      <int name="maxEdits">2</int>
+      <!-- the minimum shared prefix when enumerating terms -->
+      <int name="minPrefix">1</int>
+      <!-- maximum number of inspections per result. -->
+      <int name="maxInspections">5</int>
+      <!-- minimum length of a query term to be considered for correction -->
+      <int name="minQueryLength">4</int>
+      <!-- maximum threshold of documents a query term can appear to be considered for correction -->
+      <float name="maxQueryFrequency">0.01</float>
+      <!-- uncomment this to require suggestions to occur in 1% of the documents
+      <float name="thresholdTokenFrequency">.01</float>
+      -->
+    </lst>
+
+    <!-- a spellchecker that can break or combine words.  See "/spell" handler below for usage -->
+    <lst name="spellchecker">
+      <str name="name">wordbreak</str>
+      <str name="classname">solr.WordBreakSolrSpellChecker</str>
+      <str name="field">name</str>
+      <str name="combineWords">true</str>
+      <str name="breakWords">true</str>
+      <int name="maxChanges">10</int>
+    </lst>
+
+    <!-- a spellchecker that uses a different distance measure -->
+    <!--
+    <lst name="spellchecker">
+    <str name="name">jarowinkler</str>
+    <str name="field">spell</str>
+    <str name="classname">solr.DirectSolrSpellChecker</str>
+    <str name="distanceMeasure">
+    org.apache.lucene.search.spell.JaroWinklerDistance
+    </str>
+    </lst>
+    -->
+
+    <!-- a spellchecker that use an alternate comparator
+
+    comparatorClass be one of:
+    1. score (default)
+    2. freq (Frequency first, then score)
+    3. A fully qualified class name
+    -->
+    <!--
+    <lst name="spellchecker">
+    <str name="name">freq</str>
+    <str name="field">lowerfilt</str>
+    <str name="classname">solr.DirectSolrSpellChecker</str>
+    <str name="comparatorClass">freq</str>
+    -->
+
+    <!-- A spellchecker that reads the list of words from a file -->
+    <!--
+    <lst name="spellchecker">
+    <str name="classname">solr.FileBasedSpellChecker</str>
+    <str name="name">file</str>
+    <str name="sourceLocation">spellings.txt</str>
+    <str name="characterEncoding">UTF-8</str>
+    <str name="spellcheckIndexDir">spellcheckerFile</str>
+    </lst>
+    -->
+  </searchComponent>
+
+  <!-- A request handler for demonstrating the spellcheck component.
+
+  NOTE: This is purely as an example.  The whole purpose of the
+  SpellCheckComponent is to hook it into the request handler that
+  handles your normal user queries so that a separate request is
+  not needed to get suggestions.
+
+  IN OTHER WORDS, THERE IS REALLY GOOD CHANCE THE SETUP BELOW IS
+  NOT WHAT YOU WANT FOR YOUR PRODUCTION SYSTEM!
+
+  See http://wiki.apache.org/solr/SpellCheckComponent for details
+  on the request parameters.
+  -->
+  <requestHandler name="/spell" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="df">text</str>
+      <!-- Solr will use suggestions from both the 'default' spellchecker
+      and from the 'wordbreak' spellchecker and combine them.
+      collations (re-written queries) can include a combination of
+      corrections from both spellcheckers -->
+      <str name="spellcheck.dictionary">default</str>
+      <str name="spellcheck.dictionary">wordbreak</str>
+      <str name="spellcheck">on</str>
+      <str name="spellcheck.extendedResults">true</str>
+      <str name="spellcheck.count">10</str>
+      <str name="spellcheck.alternativeTermCount">5</str>
+      <str name="spellcheck.maxResultsForSuggest">5</str>
+      <str name="spellcheck.collate">true</str>
+      <str name="spellcheck.collateExtendedResults">true</str>
+      <str name="spellcheck.maxCollationTries">10</str>
+      <str name="spellcheck.maxCollations">5</str>
+    </lst>
+    <arr name="last-components">
+      <str>spellcheck</str>
+    </arr>
+  </requestHandler>
+
+  <searchComponent name="suggest" class="solr.SuggestComponent">
+    <lst name="suggester">
+      <str name="name">mySuggester</str>
+      <str name="lookupImpl">FuzzyLookupFactory</str>      <!-- org.apache.solr.spelling.suggest.fst -->
+      <str name="dictionaryImpl">DocumentDictionaryFactory</str>     <!-- org.apache.solr.spelling.suggest.HighFrequencyDictionaryFactory -->
+      <str name="field">cat</str>
+      <str name="weightField">price</str>
+      <str name="suggestAnalyzerFieldType">string</str>
+    </lst>
+  </searchComponent>
+
+  <requestHandler name="/suggest" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="suggest">true</str>
+      <str name="suggest.count">10</str>
+    </lst>
+    <arr name="components">
+      <str>suggest</str>
+    </arr>
+  </requestHandler>
+  <!-- Term Vector Component
+
+  http://wiki.apache.org/solr/TermVectorComponent
+  -->
+  <searchComponent name="tvComponent" class="solr.TermVectorComponent"/>
+
+  <!-- A request handler for demonstrating the term vector component
+
+  This is purely as an example.
+
+  In reality you will likely want to add the component to your
+  already specified request handlers.
+  -->
+  <requestHandler name="/tvrh" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="df">text</str>
+      <bool name="tv">true</bool>
+    </lst>
+    <arr name="last-components">
+      <str>tvComponent</str>
+    </arr>
+  </requestHandler>
+
+  <!-- Clustering Component
+
+  You'll need to set the solr.clustering.enabled system property
+  when running solr to run with clustering enabled:
+
+  java -Dsolr.clustering.enabled=true -jar start.jar
+
+  http://wiki.apache.org/solr/ClusteringComponent
+  http://carrot2.github.io/solr-integration-strategies/
+  -->
+  <searchComponent name="clustering"
+                   enable="${solr.clustering.enabled:false}"
+                   class="solr.clustering.ClusteringComponent">
+    <lst name="engine">
+      <str name="name">lingo</str>
+
+      <!-- Class name of a clustering algorithm compatible with the Carrot2 framework.
+
+      Currently available open source algorithms are:
+      * org.carrot2.clustering.lingo.LingoClusteringAlgorithm
+      * org.carrot2.clustering.stc.STCClusteringAlgorithm
+      * org.carrot2.clustering.kmeans.BisectingKMeansClusteringAlgorithm
+
+      See http://project.carrot2.org/algorithms.html for more information.
+
+      A commercial algorithm Lingo3G (needs to be installed separately) is defined as:
+      * com.carrotsearch.lingo3g.Lingo3GClusteringAlgorithm
+      -->
+      <str name="carrot.algorithm">org.carrot2.clustering.lingo.LingoClusteringAlgorithm</str>
+
+      <!-- Override location of the clustering algorithm's resources
+      (attribute definitions and lexical resources).
+
+      A directory from which to load algorithm-specific stop words,
+      stop labels and attribute definition XMLs.
+
+      For an overview of Carrot2 lexical resources, see:
+      http://download.carrot2.org/head/manual/#chapter.lexical-resources
+
+      For an overview of Lingo3G lexical resources, see:
+      http://download.carrotsearch.com/lingo3g/manual/#chapter.lexical-resources
+      -->
+      <str name="carrot.resourcesDir">clustering/carrot2</str>
+    </lst>
+
+    <!-- An example definition for the STC clustering algorithm. -->
+    <lst name="engine">
+      <str name="name">stc</str>
+      <str name="carrot.algorithm">org.carrot2.clustering.stc.STCClusteringAlgorithm</str>
+    </lst>
+
+    <!-- An example definition for the bisecting kmeans clustering algorithm. -->
+    <lst name="engine">
+      <str name="name">kmeans</str>
+      <str name="carrot.algorithm">org.carrot2.clustering.kmeans.BisectingKMeansClusteringAlgorithm</str>
+    </lst>
+  </searchComponent>
+
+  <!-- A request handler for demonstrating the clustering component
+
+  This is purely as an example.
+
+  In reality you will likely want to add the component to your
+  already specified request handlers.
+  -->
+  <requestHandler name="/clustering"
+                  startup="lazy"
+                  enable="${solr.clustering.enabled:false}"
+                  class="solr.SearchHandler">
+    <lst name="defaults">
+      <bool name="clustering">true</bool>
+      <bool name="clustering.results">true</bool>
+      <!-- Field name with the logical "title" of a each document (optional) -->
+      <str name="carrot.title">name</str>
+      <!-- Field name with the logical "URL" of a each document (optional) -->
+      <str name="carrot.url">id</str>
+      <!-- Field name with the logical "content" of a each document (optional) -->
+      <str name="carrot.snippet">features</str>
+      <!-- Apply highlighter to the title/ content and use this for clustering. -->
+      <bool name="carrot.produceSummary">true</bool>
+      <!-- the maximum number of labels per cluster -->
+      <!--<int name="carrot.numDescriptions">5</int>-->
+      <!-- produce sub clusters -->
+      <bool name="carrot.outputSubClusters">false</bool>
+
+      <!-- Configure the remaining request handler parameters. -->
+      <str name="defType">edismax</str>
+      <str name="qf">
+        text^0.5 features^1.0 name^1.2 sku^1.5 id^10.0 manu^1.1 cat^1.4
+      </str>
+      <str name="q.alt">*:*</str>
+      <str name="rows">10</str>
+      <str name="fl">*,score</str>
+    </lst>
+    <arr name="last-components">
+      <str>clustering</str>
+    </arr>
+  </requestHandler>
+
+  <!-- Terms Component
+
+  http://wiki.apache.org/solr/TermsComponent
+
+  A component to return terms and document frequency of those
+  terms
+  -->
+  <searchComponent name="terms" class="solr.TermsComponent"/>
+
+  <!-- A request handler for demonstrating the terms component -->
+  <requestHandler name="/terms" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <bool name="terms">true</bool>
+      <bool name="distrib">false</bool>
+    </lst>
+    <arr name="components">
+      <str>terms</str>
+    </arr>
+  </requestHandler>
+
+
+  <!-- Query Elevation Component
+
+  http://wiki.apache.org/solr/QueryElevationComponent
+
+  a search component that enables you to configure the top
+  results for a given query regardless of the normal lucene
+  scoring.
+  -->
+  <searchComponent name="elevator" class="solr.QueryElevationComponent">
+    <!-- pick a fieldType to analyze queries -->
+    <str name="queryFieldType">string</str>
+    <str name="config-file">elevate.xml</str>
+  </searchComponent>
+
+  <!-- A request handler for demonstrating the elevator component -->
+  <requestHandler name="/elevate" class="solr.SearchHandler" startup="lazy">
+    <lst name="defaults">
+      <str name="echoParams">explicit</str>
+      <str name="df">text</str>
+    </lst>
+    <arr name="last-components">
+      <str>elevator</str>
+    </arr>
+  </requestHandler>
+
+  <!-- Highlighting Component
+
+  http://wiki.apache.org/solr/HighlightingParameters
+  -->
+  <searchComponent class="solr.HighlightComponent" name="highlight">
+    <highlighting>
+      <!-- Configure the standard fragmenter -->
+      <!-- This could most likely be commented out in the "default" case -->
+      <fragmenter name="gap"
+                  default="true"
+                  class="solr.highlight.GapFragmenter">
+        <lst name="defaults">
+          <int name="hl.fragsize">100</int>
+        </lst>
+      </fragmenter>
+
+      <!-- A regular-expression-based fragmenter
+      (for sentence extraction)
+      -->
+      <fragmenter name="regex"
+                  class="solr.highlight.RegexFragmenter">
+        <lst name="defaults">
+          <!-- slightly smaller fragsizes work better because of slop -->
+          <int name="hl.fragsize">70</int>
+          <!-- allow 50% slop on fragment sizes -->
+          <float name="hl.regex.slop">0.5</float>
+          <!-- a basic sentence pattern -->
+          <str name="hl.regex.pattern">[-\w ,/\n\&amp;quot;&amp;apos;]{20,200}</str>
+        </lst>
+      </fragmenter>
+
+      <!-- Configure the standard formatter -->
+      <formatter name="html"
+                 default="true"
+                 class="solr.highlight.HtmlFormatter">
+        <lst name="defaults">
+          <str name="hl.simple.pre"><![CDATA[<em>]]></str>
+          <str name="hl.simple.post"><![CDATA[</em>]]></str>
+        </lst>
+      </formatter>
+
+      <!-- Configure the standard encoder -->
+      <encoder name="html"
+               class="solr.highlight.HtmlEncoder"/>
+
+      <!-- Configure the standard fragListBuilder -->
+      <fragListBuilder name="simple"
+                       class="solr.highlight.SimpleFragListBuilder"/>
+
+      <!-- Configure the single fragListBuilder -->
+      <fragListBuilder name="single"
+                       class="solr.highlight.SingleFragListBuilder"/>
+
+      <!-- Configure the weighted fragListBuilder -->
+      <fragListBuilder name="weighted"
+                       default="true"
+                       class="solr.highlight.WeightedFragListBuilder"/>
+
+      <!-- default tag FragmentsBuilder -->
+      <fragmentsBuilder name="default"
+                        default="true"
+                        class="solr.highlight.ScoreOrderFragmentsBuilder">
+        <!--
+        <lst name="defaults">
+        <str name="hl.multiValuedSeparatorChar">/</str>
+        </lst>
+        -->
+      </fragmentsBuilder>
+
+      <!-- multi-colored tag FragmentsBuilder -->
+      <fragmentsBuilder name="colored"
+                        class="solr.highlight.ScoreOrderFragmentsBuilder">
+        <lst name="defaults">
+          <str name="hl.tag.pre"><![CDATA[
+  <b style="background:yellow">,<b style="background:lawgreen">,
+  <b style="background:aquamarine">,<b style="background:magenta">,
+  <b style="background:palegreen">,<b style="background:coral">,
+  <b style="background:wheat">,<b style="background:khaki">,
+  <b style="background:lime">,<b style="background:deepskyblue">]]></str>
+          <str name="hl.tag.post"><![CDATA[</b>]]></str>
+        </lst>
+      </fragmentsBuilder>
+
+      <boundaryScanner name="default"
+                       default="true"
+                       class="solr.highlight.SimpleBoundaryScanner">
+        <lst name="defaults">
+          <str name="hl.bs.maxScan">10</str>
+          <str name="hl.bs.chars">.,!? &amp;#9;&amp;#10;&amp;#13;</str>
+        </lst>
+      </boundaryScanner>
+
+      <boundaryScanner name="breakIterator"
+                       class="solr.highlight.BreakIteratorBoundaryScanner">
+        <lst name="defaults">
+          <!-- type should be one of CHARACTER, WORD(default), LINE and SENTENCE -->
+          <str name="hl.bs.type">WORD</str>
+          <!-- language and country are used when constructing Locale object.  -->
+          <!-- And the Locale object will be used when getting instance of BreakIterator -->
+          <str name="hl.bs.language">en</str>
+          <str name="hl.bs.country">US</str>
+        </lst>
+      </boundaryScanner>
+    </highlighting>
+  </searchComponent>
+
+  <!-- Update Processors
+
+  Chains of Update Processor Factories for dealing with Update
+  Requests can be declared, and then used by name in Update
+  Request Processors
+
+  http://wiki.apache.org/solr/UpdateRequestProcessor
+
+  -->
+
+  <!-- Add unknown fields to the schema
+
+  An example field type guessing update processor that will
+  attempt to parse string-typed field values as Booleans, Longs,
+  Doubles, or Dates, and then add schema fields with the guessed
+  field types.
+
+  This requires that the schema is both managed and mutable, by
+  declaring schemaFactory as ManagedIndexSchemaFactory, with
+  mutable specified as true.
+
+  See http://wiki.apache.org/solr/GuessingFieldTypes
+  -->
+  <updateRequestProcessorChain name="add-unknown-fields-to-the-schema">
+
+    <processor class="solr.DefaultValueUpdateProcessorFactory">
+      <str name="fieldName">_ttl_</str>
+      <str name="value">+{{logsearch_service_logs_max_retention}}DAYS</str>
+    </processor>
+    <processor class="solr.processor.DocExpirationUpdateProcessorFactory">
+      <int name="autoDeletePeriodSeconds">86400</int>
+      <str name="ttlFieldName">_ttl_</str>
+      <str name="expirationFieldName">_expire_at_</str>
+    </processor>
+    <processor class="solr.FirstFieldValueUpdateProcessorFactory">
+      <str name="fieldName">_expire_at_</str>
+    </processor>
+
+
+    <processor class="solr.RemoveBlankFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseBooleanFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseLongFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseDoubleFieldUpdateProcessorFactory"/>
+    <processor class="solr.ParseDateFieldUpdateProcessorFactory">
+      <arr name="format">
+        <str>yyyy-MM-dd'T'HH:mm:ss.SSSZ</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss,SSSZ</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss.SSS</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss,SSS</str>
+        <str>yyyy-MM-dd'T'HH:mm:ssZ</str>
+        <str>yyyy-MM-dd'T'HH:mm:ss</str>
+        <str>yyyy-MM-dd'T'HH:mmZ</str>
+        <str>yyyy-MM-dd'T'HH:mm</str>
+        <str>yyyy-MM-dd HH:mm:ss.SSSZ</str>
+        <str>yyyy-MM-dd HH:mm:ss,SSSZ</str>
+        <str>yyyy-MM-dd HH:mm:ss.SSS</str>
+        <str>yyyy-MM-dd HH:mm:ss,SSS</str>
+        <str>yyyy-MM-dd HH:mm:ssZ</str>
+        <str>yyyy-MM-dd HH:mm:ss</str>
+        <str>yyyy-MM-dd HH:mmZ</str>
+        <str>yyyy-MM-dd HH:mm</str>
+        <str>yyyy-MM-dd</str>
+      </arr>
+    </processor>
+    <processor class="solr.AddSchemaFieldsUpdateProcessorFactory">
+      <str name="defaultFieldType">lowercase</str>
+      <lst name="typeMapping">
+        <str name="valueClass">java.lang.Boolean</str>
+        <str name="fieldType">boolean</str>
+      </lst>
+      <lst name="typeMapping">
+        <str name="valueClass">java.util.Date</str>
+        <str name="fieldType">tdate</str>
+      </lst>
+      <lst name="typeMapping">
+        <str name="valueClass">java.lang.Long</str>
+        <str name="valueClass">java.lang.Integer</str>
+        <str name="fieldType">tlong</str>
+      </lst>
+      <lst name="typeMapping">
+        <str name="valueClass">java.lang.Number</str>
+        <str name="fieldType">tdouble</str>
+      </lst>
+    </processor>
+
+    <processor class="solr.LogUpdateProcessorFactory"/>
+    <processor class="solr.RunUpdateProcessorFactory"/>
+  </updateRequestProcessorChain>
+
+
+  <!-- Deduplication
+
+  An example dedup update processor that creates the "id" field
+  on the fly based on the hash code of some other fields.  This
+  example has overwriteDupes set to false since we are using the
+  id field as the signatureField and Solr will maintain
+  uniqueness based on that anyway.
+
+  -->
+  <!--
+  <updateRequestProcessorChain name="dedupe">
+  <processor class="solr.processor.SignatureUpdateProcessorFactory">
+  <bool name="enabled">true</bool>
+  <str name="signatureField">id</str>
+  <bool name="overwriteDupes">false</bool>
+  <str name="fields">name,features,cat</str>
+  <str name="signatureClass">solr.processor.Lookup3Signature</str>
+  </processor>
+  <processor class="solr.LogUpdateProcessorFactory" />
+  <processor class="solr.RunUpdateProcessorFactory" />
+  </updateRequestProcessorChain>
+  -->
+
+  <!-- Language identification
+
+  This example update chain identifies the language of the incoming
+  documents using the langid contrib. The detected language is
+  written to field language_s. No field name mapping is done.
+  The fields used for detection are text, title, subject and description,
+  making this example suitable for detecting languages form full-text
+  rich documents injected via ExtractingRequestHandler.
+  See more about langId at http://wiki.apache.org/solr/LanguageDetection
+  -->
+  <!--
+  <updateRequestProcessorChain name="langid">
+  <processor class="org.apache.solr.update.processor.TikaLanguageIdentifierUpdateProcessorFactory">
+  <str name="langid.fl">text,title,subject,description</str>
+  <str name="langid.langField">language_s</str>
+  <str name="langid.fallback">en</str>
+  </processor>
+  <processor class="solr.LogUpdateProcessorFactory" />
+  <processor class="solr.RunUpdateProcessorFactory" />
+  </updateRequestProcessorChain>
+  -->
+
+  <!-- Script update processor
+
+  This example hooks in an update processor implemented using JavaScript.
+
+  See more about the script update processor at http://wiki.apache.org/solr/ScriptUpdateProcessor
+  -->
+  <!--
+  <updateRequestProcessorChain name="script">
+  <processor class="solr.StatelessScriptUpdateProcessorFactory">
+  <str name="script">update-script.js</str>
+  <lst name="params">
+  <str name="config_param">example config parameter</str>
+  </lst>
+  </processor>
+  <processor class="solr.RunUpdateProcessorFactory" />
+  </updateRequestProcessorChain>
+  -->
+
+  <!-- Response Writers
+
+  http://wiki.apache.org/solr/QueryResponseWriter
+
+  Request responses will be written using the writer specified by
+  the 'wt' request parameter matching the name of a registered
+  writer.
+
+  The "default" writer is the default and will be used if 'wt' is
+  not specified in the request.
+  -->
+  <!-- The following response writers are implicitly configured unless
+  overridden...
+  -->
+  <!--
+  <queryResponseWriter name="xml"
+  default="true"
+  class="solr.XMLResponseWriter" />
+  <queryResponseWriter name="json" class="solr.JSONResponseWriter"/>
+  <queryResponseWriter name="python" class="solr.PythonResponseWriter"/>
+  <queryResponseWriter name="ruby" class="solr.RubyResponseWriter"/>
+  <queryResponseWriter name="php" class="solr.PHPResponseWriter"/>
+  <queryResponseWriter name="phps" class="solr.PHPSerializedResponseWriter"/>
+  <queryResponseWriter name="csv" class="solr.CSVResponseWriter"/>
+  <queryResponseWriter name="schema.xml" class="solr.SchemaXmlResponseWriter"/>
+  -->
+
+  <queryResponseWriter name="json" class="solr.JSONResponseWriter">
+    <!-- For the purposes of the tutorial, JSON responses are written as
+    plain text so that they are easy to read in *any* browser.
+    If you expect a MIME type of "application/json" just remove this override.
+    -->
+    <str name="content-type">text/plain; charset=UTF-8</str>
+  </queryResponseWriter>
+
+  <!--
+  Custom response writers can be declared as needed...
+  -->
+  <queryResponseWriter name="velocity" class="solr.VelocityResponseWriter" startup="lazy">
+    <str name="template.base.dir">${velocity.template.base.dir:}</str>
+  </queryResponseWriter>
+
+  <!-- XSLT response writer transforms the XML output by any xslt file found
+  in Solr's conf/xslt directory.  Changes to xslt files are checked for
+  every xsltCacheLifetimeSeconds.
+  -->
+  <queryResponseWriter name="xslt" class="solr.XSLTResponseWriter">
+    <int name="xsltCacheLifetimeSeconds">5</int>
+  </queryResponseWriter>
+
+  <!-- Query Parsers
+
+  http://wiki.apache.org/solr/SolrQuerySyntax
+
+  Multiple QParserPlugins can be registered by name, and then
+  used in either the "defType" param for the QueryComponent (used
+  by SearchHandler) or in LocalParams
+  -->
+  <!-- example of registering a query parser -->
+  <!--
+  <queryParser name="myparser" class="com.mycompany.MyQParserPlugin"/>
+  -->
+
+  <!-- Function Parsers
+
+  http://wiki.apache.org/solr/FunctionQuery
+
+  Multiple ValueSourceParsers can be registered by name, and then
+  used as function names when using the "func" QParser.
+  -->
+  <!-- example of registering a custom function parser  -->
+  <!--
+  <valueSourceParser name="myfunc"
+  class="com.mycompany.MyValueSourceParser" />
+  -->
+
+
+  <!-- Document Transformers
+  http://wiki.apache.org/solr/DocTransformers
+  -->
+  <!--
+  Could be something like:
+  <transformer name="db" class="com.mycompany.LoadFromDatabaseTransformer" >
+  <int name="connection">jdbc://....</int>
+  </transformer>
+
+  To add a constant value to all docs, use:
+  <transformer name="mytrans2" class="org.apache.solr.response.transform.ValueAugmenterFactory" >
+  <int name="value">5</int>
+  </transformer>
+
+  If you want the user to still be able to change it with _value:something_ use this:
+  <transformer name="mytrans3" class="org.apache.solr.response.transform.ValueAugmenterFactory" >
+  <double name="defaultValue">5</double>
+  </transformer>
+
+  If you are using the QueryElevationComponent, you may wish to mark documents that get boosted.  The
+  EditorialMarkerFactory will do exactly that:
+  <transformer name="qecBooster" class="org.apache.solr.response.transform.EditorialMarkerFactory" />
+  -->
+
+
+  <!-- Legacy config for the admin interface -->
+  <admin>
+    <defaultQuery>*:*</defaultQuery>
+  </admin>
+
+</config>
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/system_messages.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/system_messages.json
new file mode 100644
index 00000000000..e2ea3ebb3d0
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/properties/system_messages.json
@@ -0,0 +1,31 @@
+{
+  "input": [
+    {
+      "type": "system_message",
+      "rowtype": "service",
+      "path": "/var/log/messages"
+    }
+  ],
+  "filter": [
+    {
+      "filter": "grok",
+      "conditions": {
+        "fields": {
+          "type": [
+            "system_message"
+          ]
+        }
+      },
+      "multiline_pattern": "^(%{SYSLOGTIMESTAMP:logtime})",
+      "message_pattern": "(?m)^%{SYSLOGTIMESTAMP:logtime}%{SPACE}%{SYSLOGHOST:host}%{SPACE}%{GREEDYDATA:log_message}",
+      "post_map_values": {
+        "logtime": {
+          "map_date": {
+            "target_date_pattern": "yyyy-MM-dd HH:mm:ss,SSS",
+            "src_date_pattern" :"MMM dd HH:mm:ss"
+          }
+        }
+      }
+    }
+  ]
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/quicklinks/quicklinks.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/quicklinks/quicklinks.json
new file mode 100644
index 00000000000..105796747dd
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/quicklinks/quicklinks.json
@@ -0,0 +1,35 @@
+{
+  "name": "default",
+  "description": "default quick links configuration",
+  "configuration": {
+    "protocol": {
+      "type":"https",
+      "checks":[
+        {
+          "property":"logsearch.protocol",
+          "desired":"https",
+          "site":"logsearch-properties"
+        }
+      ]
+    },
+    "links": [
+      {
+        "name": "logsearch_ui",
+        "label": "Log Search UI",
+        "component_name": "LOGSEARCH_SERVER",
+        "url": "%@://%@:%@",
+        "requires_user_name": "false",
+        "attributes": ["authenticated", "sso"],
+        "port": {
+          "http_property": "logsearch.http.port",
+          "http_default_port": "8888",
+          "https_property": "logsearch.https.port",
+          "https_default_port": "8888",
+          "regex": "^(\\d+)$",
+          "site": "logsearch-properties"
+        }
+      }
+    ]
+  }
+}
+
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/role_command_order.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/role_command_order.json
new file mode 100644
index 00000000000..4356bebbd23
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/role_command_order.json
@@ -0,0 +1,9 @@
+{
+  "general_deps" : {
+    "_comment" : "dependencies for AMBARI_LOGSEARCH",
+    "LOGSEARCH_SERVER-START": ["INFRA_SOLR-START", "ZOOKEEPER_SERVER-START"],
+    "LOGSEARCH_LOGFEEDER-START": ["INFRA_SOLR-START", "LOGSEARCH_SERVER-START"],
+    "AMBARI_LOGSEARCH_SERVICE_CHECK-SERVICE_CHECK": ["INFRA_SOLR-START", "LOGSEARCH_SERVER-START"],
+    "LOGSEARCH_SERVER-RESTART" : ["INFRA_SOLR-RESTART"]
+  }
+}
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/service_advisor.py b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/service_advisor.py
new file mode 100644
index 00000000000..97ff5cfaf37
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/service_advisor.py
@@ -0,0 +1,176 @@
+#!/usr/bin/env ambari-python-wrap
+"""
+Licensed to the Apache Software Foundation (ASF) under one
+or more contributor license agreements.  See the NOTICE file
+distributed with this work for additional information
+regarding copyright ownership.  The ASF licenses this file
+to you under the Apache License, Version 2.0 (the
+"License"); you may not use this file except in compliance
+with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+"""
+
+# Python imports
+import imp
+import os
+import traceback
+
+SCRIPT_DIR = os.path.dirname(os.path.abspath(__file__))
+STACKS_DIR = os.path.join(SCRIPT_DIR, '../../../stacks/')
+PARENT_FILE = os.path.join(STACKS_DIR, 'service_advisor.py')
+if "BASE_SERVICE_ADVISOR" in os.environ:
+  PARENT_FILE = os.environ["BASE_SERVICE_ADVISOR"]
+
+try:
+  with open(PARENT_FILE, 'rb') as fp:
+    service_advisor = imp.load_module('service_advisor', fp, PARENT_FILE, ('.py', 'rb', imp.PY_SOURCE))
+except Exception as e:
+  traceback.print_exc()
+  print "Failed to load parent"
+
+class AmbariLogSearchServiceAdvisor(service_advisor.ServiceAdvisor):
+
+  def __init__(self, *args, **kwargs):
+    self.as_super = super(AmbariLogSearchServiceAdvisor, self)
+    self.as_super.__init__(*args, **kwargs)
+
+    # Always call these methods
+    self.modifyMastersWithMultipleInstances()
+    self.modifyCardinalitiesDict()
+    self.modifyHeapSizeProperties()
+    self.modifyNotValuableComponents()
+    self.modifyComponentsNotPreferableOnServer()
+    self.modifyComponentLayoutSchemes()
+
+  def modifyMastersWithMultipleInstances(self):
+    """
+    Modify the set of masters with multiple instances.
+    Must be overriden in child class.
+    """
+    # Nothing to do
+    pass
+
+  def modifyCardinalitiesDict(self):
+    """
+    Modify the dictionary of cardinalities.
+    Must be overriden in child class.
+    """
+    # Nothing to do
+    pass
+
+  def modifyHeapSizeProperties(self):
+    """
+    Modify the dictionary of heap size properties.
+    Must be overriden in child class.
+    """
+    pass
+
+  def modifyNotValuableComponents(self):
+    """
+    Modify the set of components whose host assignment is based on other services.
+    Must be overriden in child class.
+    """
+    # Nothing to do
+    pass
+
+  def modifyComponentsNotPreferableOnServer(self):
+    """
+    Modify the set of components that are not preferable on the server.
+    Must be overriden in child class.
+    """
+    # Nothing to do
+    pass
+
+  def modifyComponentLayoutSchemes(self):
+    """
+    Modify layout scheme dictionaries for components.
+    The scheme dictionary basically maps the number of hosts to
+    host index where component should exist.
+    Must be overriden in child class.
+    """
+    # Nothing to do
+    pass
+
+  def getServiceComponentLayoutValidations(self, services, hosts):
+    """
+    Get a list of errors.
+    Must be overriden in child class.
+    """
+
+    return self.getServiceComponentCardinalityValidations(services, hosts, "AMBARI_LOGSEARCH")
+
+  def getServiceConfigurationRecommendations(self, configurations, clusterData, services, hosts):
+    putLogSearchProperty = self.putProperty(configurations, "logsearch-properties", services)
+    putLogSearchAttribute = self.putPropertyAttribute(configurations, "logsearch-properties")
+    putLogSearchCommonEnvProperty = self.putProperty(configurations, "logsearch-common-env", services)
+    putLogSearchCommonEnvAttribute = self.putPropertyAttribute(configurations, "logsearch-common-env")
+    putLogSearchEnvAttribute = self.putPropertyAttribute(configurations, "logsearch-env")
+    putLogFeederEnvAttribute = self.putPropertyAttribute(configurations, "logfeeder-env")
+
+    logSearchServerHosts = self.getComponentHostNames(services, "LOGSEARCH", "LOGSEARCH_SERVER")
+    # if there is no Log Search server on the cluster, i.e. there is an external server
+    if logSearchServerHosts is None or len(logSearchServerHosts) == 0:
+      # hide logsearch specific attributes
+      for key in services['configurations']['logsearch-env']['properties']:
+        putLogSearchEnvAttribute(key, 'visible', 'false')
+      for key in services['configurations']['logsearch-properties']['properties']:
+        putLogSearchAttribute(key, 'visible', 'false')
+      for key in services['configurations']['logsearch-audit_logs-solrconfig']['properties']:
+        self.putPropertyAttribute(configurations, "logsearch-audit_logs-solrconfig")(key, 'visible', 'false')
+      for key in services['configurations']['logsearch-service_logs-solrconfig']['properties']:
+        self.putPropertyAttribute(configurations, "logsearch-service_logs-solrconfig")(key, 'visible', 'false')
+      for key in services['configurations']['logsearch-log4j']['properties']:
+        self.putPropertyAttribute(configurations, "logsearch-log4j")(key, 'visible', 'false')
+      for key in services['configurations']['logsearch-admin-json']['properties']:
+        self.putPropertyAttribute(configurations, "logsearch-admin-json")(key, 'visible', 'false')
+    # if there is a Log Search server on the cluster
+    else:
+      infraSolrHosts = self.getComponentHostNames(services, "AMBARI_INFRA_SOLR", "INFRA_SOLR")
+      # if there is AMBARI_INFRA, calculate the min/max shards and recommendations based on the number of infra solr hosts
+      if infraSolrHosts is not None and len(infraSolrHosts) > 0 and "logsearch-properties" in services["configurations"]:
+        recommendedMinShards = len(infraSolrHosts)
+        recommendedShards = 2 * len(infraSolrHosts)
+        recommendedMaxShards = 10 * len(infraSolrHosts)
+      else:
+        # if there is no AMBARI_INFRA (i.e. external solr is used), use default values for min/max shards and recommendations
+        recommendedMinShards = 1
+        recommendedShards = 1
+        recommendedMaxShards = 100
+        putLogSearchCommonEnvProperty('logsearch_use_external_solr', 'true')
+        
+      # recommend number of shard
+      putLogSearchAttribute('logsearch.collection.service.logs.numshards', 'minimum', recommendedMinShards)
+      putLogSearchAttribute('logsearch.collection.service.logs.numshards', 'maximum', recommendedMaxShards)
+      putLogSearchProperty("logsearch.collection.service.logs.numshards", recommendedShards)
+
+      putLogSearchAttribute('logsearch.collection.audit.logs.numshards', 'minimum', recommendedMinShards)
+      putLogSearchAttribute('logsearch.collection.audit.logs.numshards', 'maximum', recommendedMaxShards)
+      putLogSearchProperty("logsearch.collection.audit.logs.numshards", recommendedShards)
+
+    kerberos_authentication_enabled = self.isSecurityEnabled(services)
+    # if there is no kerberos enabled hide kerberor related properties
+    if not kerberos_authentication_enabled:
+       putLogSearchCommonEnvProperty('logsearch_external_solr_kerberos_enabled', 'false')
+       putLogSearchCommonEnvAttribute('logsearch_external_solr_kerberos_enabled', 'visible', 'false')
+       putLogSearchEnvAttribute('logsearch_external_solr_kerberos_keytab', 'visible', 'false')
+       putLogSearchEnvAttribute('logsearch_external_solr_kerberos_principal', 'visible', 'false')
+       putLogFeederEnvAttribute('logfeeder_external_solr_kerberos_keytab', 'visible', 'false')
+       putLogFeederEnvAttribute('logfeeder_external_solr_kerberos_principal', 'visible', 'false')
+
+  def getServiceConfigurationsValidationItems(self, configurations, recommendedDefaults, services, hosts):
+    """
+    Entry point.
+    Validate configurations for the service. Return a list of errors.
+    The code for this function should be the same for each Service Advisor.
+    """
+    #Logger.info("Class: %s, Method: %s. Validating Configurations." %
+    #            (self.__class__.__name__, inspect.stack()[0][3]))
+
+    return []
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/credentials.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/credentials.json
new file mode 100644
index 00000000000..e1b18cccf14
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/credentials.json
@@ -0,0 +1,42 @@
+{
+  "name": "credentials",
+  "configuration": {
+    "placement": {
+      "configs": [
+        {
+          "config": "logsearch-admin-json/logsearch_admin_password",
+          "subsection-name": "subsection-log-search"
+        },
+        {
+          "config": "logsearch-admin-json/logsearch_admin_username",
+          "subsection-name": "subsection-log-search"
+        }
+      ],
+      "configuration-layout": "credentials"
+    },
+    "widgets": [],
+    "layouts": [
+      {
+        "name": "credentials",
+        "tabs": [
+          {
+            "name": "credentials",
+            "layout": {
+              "sections": [
+                {
+                  "subsections": [
+                    {
+                      "name": "subsection-log-search",
+                      "display-name": "Log Search"
+                    }
+                  ],
+                  "name": "credentials"
+                }
+              ]
+            }
+          }
+        ]
+      }
+    ]
+  }
+}
\ No newline at end of file
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/directories.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/directories.json
new file mode 100644
index 00000000000..3c180ddbfba
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/directories.json
@@ -0,0 +1,137 @@
+{
+  "name": "directories",
+  "description": "Directories theme for AMBARI_LOGSEARCH service",
+  "configuration": {
+    "layouts": [
+      {
+        "name": "directories",
+        "tabs": [
+          {
+            "name": "directories",
+            "display-name": "Directories",
+            "layout": {
+              "tab-columns": "1",
+              "tab-rows": "4",
+              "sections": [
+                {
+                  "name": "subsection-data-dirs",
+                  "display-name": "DATA DIRS",
+                  "row-index": "0",
+                  "column-index": "0",
+                  "row-span": "1",
+                  "column-span": "1",
+                  "section-columns": "1",
+                  "section-rows": "1",
+                  "subsections": [
+                    {
+                      "name": "subsection-data-dirs",
+                      "row-index": "0",
+                      "column-index": "0",
+                      "row-span": "1",
+                      "column-span": "1"
+                    }
+                  ]
+                },
+                {
+                  "name": "subsection-log-dirs",
+                  "display-name": "LOG DIRS",
+                  "row-index": "1",
+                  "column-index": "0",
+                  "row-span": "1",
+                  "column-span": "1",
+                  "section-columns": "1",
+                  "section-rows": "1",
+                  "subsections": [
+                    {
+                      "name": "subsection-log-dirs",
+                      "row-index": "0",
+                      "column-index": "0",
+                      "row-span": "1",
+                      "column-span": "1"
+                    }
+                  ]
+                },
+                {
+                  "name": "subsection-pid-dirs",
+                  "display-name": "PID DIRS",
+                  "row-index": "2",
+                  "column-index": "0",
+                  "row-span": "1",
+                  "column-span": "1",
+                  "section-columns": "1",
+                  "section-rows": "1",
+                  "subsections": [
+                    {
+                      "name": "subsection-pid-dirs",
+                      "row-index": "0",
+                      "column-index": "0",
+                      "row-span": "1",
+                      "column-span": "1"
+                    }
+                  ]
+                }
+              ]
+            }
+          }
+        ]
+      }
+    ],
+    "placement": {
+      "configuration-layout": "default",
+      "configs": [
+        {
+          "config": "logfeeder-properties/logfeeder.checkpoint.folder",
+          "subsection-name": "subsection-data-dirs"
+        },
+        {
+          "config": "logsearch-env/logsearch_log_dir",
+          "subsection-name": "subsection-log-dirs"
+        },
+        {
+          "config": "logfeeder-env/logfeeder_log_dir",
+          "subsection-name": "subsection-log-dirs"
+        },
+        {
+          "config": "logsearch-env/logsearch_pid_dir",
+          "subsection-name": "subsection-pid-dirs"
+        },
+        {
+          "config": "logfeeder-env/logfeeder_pid_dir",
+          "subsection-name": "subsection-pid-dirs"
+        }
+      ]
+    },
+    "widgets": [
+      {
+        "config": "logfeeder-properties/logfeeder.checkpoint.folder",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logsearch-env/logsearch_log_dir",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logfeeder-env/logfeeder_log_dir",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logsearch-env/logsearch_pid_dir",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logfeeder-env/logfeeder_pid_dir",
+        "widget": {
+          "type": "text-field"
+        }
+      }
+    ]
+  }
+}
diff --git a/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/theme.json b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/theme.json
new file mode 100644
index 00000000000..6de89f121c8
--- /dev/null
+++ b/ambari-server/src/main/resources/common-services/AMBARI_LOGSEARCH/3.0.0/themes/theme.json
@@ -0,0 +1,480 @@
+{
+  "name": "default",
+  "description": "Default theme for AMBARI_LOGSEARCH service",
+  "configuration": {
+    "layouts": [
+      {
+        "name": "default",
+        "tabs": [
+          {
+            "name": "settings",
+            "display-name": "Settings",
+            "layout": {
+              "tab-columns": "2",
+              "tab-rows": "2",
+              "sections": [
+                {
+                  "name": "section-logsearch-server",
+                  "display-name": "Log Search Server",
+                  "row-index": "0",
+                  "column-index": "1",
+                  "row-span": "1",
+                  "column-span": "1",
+                  "section-columns": "1",
+                  "section-rows": "5",
+                  "subsections": [
+                    {
+                      "name": "subsection-logsearch-server-col1",
+                      "row-index": "0",
+                      "column-index": "0",
+                      "row-span": "1",
+                      "column-span": "1"
+                    },
+                    {
+                      "name": "subsection-logsearch-server-col2",
+                      "row-index": "0",
+                      "column-index": "1",
+                      "row-span": "1",
+                      "column-span": "1"
+                    }
+                  ]
+                },
+                {
+                  "name": "section-logsearch-sso",
+                  "display-name": "Single Sign-On",
+                  "row-index": "1",
+                  "column-index": "1",
+                  "row-span": "3",
+                  "column-span": "1",
+                  "section-columns": "1",
+                  "section-rows": "5",
+                  "subsections": [
+                    {
+                      "name": "subsection-logsearch-server-sso-col1",
+                      "row-index": "1",
+                      "column-index": "0",
+                      "row-span": "3",
+                      "column-span": "1"
+                    }
+                  ]
+                },
+                {
+                  "name": "section-logsearch-solr-connection",
+                  "display-name": "Solr Connection",
+                  "row-index": "4",
+                  "column-index": "1",
+                  "row-span": "3",
+                  "column-span": "1",
+                  "section-columns": "1",
+                  "section-rows": "4",
+                  "subsections": [
+                    {
+                      "name": "subsection-logsearch-solr-connection-col1",
+                      "row-index": "4",
+                      "column-index": "0",
+                      "row-span": "3",
+                      "column-span": "1"
+                    }
+                  ]
+                }
+              ]
+            }
+          }
+        ]
+      }
+    ],
+    "placement": {
+      "configuration-layout": "default",
+      "configs": [
+        {
+          "config" : "logfeeder-properties/logfeeder.include.default.level",
+          "subsection-name": "subsection-logsearch-server-col1"
+        },
+        {
+          "config": "logsearch-env/logsearch_app_max_memory",
+          "subsection-name": "subsection-logsearch-server-col1"
+        },
+        {
+          "config": "logsearch-properties/logsearch.collection.service.logs.numshards",
+          "subsection-name": "subsection-logsearch-server-col2"
+        },
+        {
+          "config": "logsearch-properties/logsearch.collection.service.logs.replication.factor",
+          "subsection-name": "subsection-logsearch-server-col2"
+        },
+        {
+          "config": "logsearch-properties/logsearch.collection.audit.logs.numshards",
+          "subsection-name": "subsection-logsearch-server-col2"
+        },
+        {
+          "config": "logsearch-properties/logsearch.collection.audit.logs.replication.factor",
+          "subsection-name": "subsection-logsearch-server-col2"
+        },
+        {
+          "config": "logsearch-properties/logsearch.auth.jwt.enabled",
+          "subsection-name": "subsection-logsearch-server-sso-col1"
+        },
+        {
+          "config": "logsearch-properties/logsearch.auth.jwt.provider_url",
+          "subsection-name": "subsection-logsearch-server-sso-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-properties/logsearch.auth.jwt.enabled"
+              ],
+              "if": "${logsearch-properties/logsearch.auth.jwt.enabled}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logsearch-properties/logsearch.auth.jwt.public_key",
+          "subsection-name": "subsection-logsearch-server-sso-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-properties/logsearch.auth.jwt.enabled"
+              ],
+              "if": "${logsearch-properties/logsearch.auth.jwt.enabled}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logsearch-common-env/logsearch_use_external_solr",
+          "subsection-name": "subsection-logsearch-solr-connection-col1"
+        },
+        {
+          "config": "logsearch-common-env/logsearch_external_solr_zk_znode",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_use_external_solr"
+              ],
+              "if": "${logsearch-common-env/logsearch_use_external_solr}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logsearch-common-env/logsearch_external_solr_zk_quorum",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_use_external_solr"
+              ],
+              "if": "${logsearch-common-env/logsearch_use_external_solr}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logsearch-common-env/logsearch_external_solr_ssl_enabled",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_use_external_solr"
+              ],
+              "if": "${logsearch-common-env/logsearch_use_external_solr}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logsearch-common-env/logsearch_external_solr_kerberos_enabled",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_use_external_solr"
+              ],
+              "if": "${logsearch-common-env/logsearch_use_external_solr}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logsearch-env/logsearch_external_solr_kerberos_keytab",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_external_solr_kerberos_enabled"
+              ],
+              "if": "${logsearch-common-env/logsearch_external_solr_kerberos_enabled}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logsearch-env/logsearch_external_solr_kerberos_principal",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_external_solr_kerberos_enabled"
+              ],
+              "if": "${logsearch-common-env/logsearch_external_solr_kerberos_enabled}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logfeeder-env/logfeeder_external_solr_kerberos_keytab",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_external_solr_kerberos_enabled"
+              ],
+              "if": "${logsearch-common-env/logsearch_external_solr_kerberos_enabled}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        },
+        {
+          "config": "logfeeder-env/logfeeder_external_solr_kerberos_principal",
+          "subsection-name": "subsection-logsearch-solr-connection-col1",
+          "depends-on": [
+            {
+              "configs":[
+                "logsearch-common-env/logsearch_external_solr_kerberos_enabled"
+              ],
+              "if": "${logsearch-common-env/logsearch_external_solr_kerberos_enabled}",
+              "then": {
+                "property_value_attributes": {
+                  "visible": true
+                }
+              },
+              "else": {
+                "property_value_attributes": {
+                  "visible": false
+                }
+              }
+            }
+          ]
+        }
+      ]
+    },
+    "widgets": [
+      {
+        "config": "logsearch-env/logsearch_app_max_memory",
+        "widget": {
+          "type": "slider",
+          "units": [
+            {
+              "unit-name": "GB"
+            }
+          ]
+        }
+      },
+      {
+        "config": "logfeeder-properties/logfeeder.include.default.level",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logsearch-properties/logsearch.collection.service.logs.numshards",
+        "widget": {
+          "type": "slider",
+          "units": [
+            {
+              "unit-name": "int"
+            }
+          ]
+        }
+      },
+      {
+        "config": "logsearch-properties/logsearch.collection.service.logs.replication.factor",
+        "widget": {
+          "type": "slider",
+          "units": [
+            {
+              "unit-name": "int"
+            }
+          ]
+        }
+      },
+      {
+        "config": "logsearch-properties/logsearch.collection.audit.logs.numshards",
+        "widget": {
+          "type": "slider",
+          "units": [
+            {
+              "unit-name": "int"
+            }
+          ]
+        }
+      },
+      {
+        "config": "logsearch-properties/logsearch.collection.audit.logs.replication.factor",
+        "widget": {
+          "type": "slider",
+          "units": [
+            {
+              "unit-name": "int"
+            }
+          ]
+        }
+      },
+      {
+        "config": "logsearch-properties/logsearch.auth.jwt.enabled",
+        "widget": {
+          "type": "toggle"
+        }
+      },
+      {
+        "config": "logsearch-properties/logsearch.auth.jwt.provider_url",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logsearch-properties/logsearch.auth.jwt.public_key",
+        "widget": {
+          "type": "directories"
+        }
+      },
+      {
+        "config": "logsearch-common-env/logsearch_use_external_solr",
+        "widget": {
+          "type": "toggle"
+        }
+      },
+      {
+        "config": "logsearch-common-env/logsearch_external_solr_zk_znode",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logsearch-common-env/logsearch_external_solr_zk_quorum",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logsearch-common-env/logsearch_external_solr_ssl_enabled",
+        "widget": {
+          "type": "toggle"
+        }
+      },
+      {
+        "config": "logsearch-common-env/logsearch_external_solr_kerberos_enabled",
+        "widget": {
+          "type": "toggle"
+        }
+      },
+      {
+        "config": "logsearch-env/logsearch_external_solr_kerberos_keytab",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logsearch-env/logsearch_external_solr_kerberos_principal",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logfeeder-env/logfeeder_external_solr_kerberos_keytab",
+        "widget": {
+          "type": "text-field"
+        }
+      },
+      {
+        "config": "logfeeder-env/logfeeder_external_solr_kerberos_principal",
+        "widget": {
+          "type": "text-field"
+        }
+      }
+    ]
+  }
+}
+

From a998acb7a4ff02d07b6f117373e8f270e3add305 Mon Sep 17 00:00:00 2001
From: rzuo <rongguo.zuo@gmail.com>
Date: Fri, 11 Aug 2023 16:51:24 +0800
Subject: [PATCH 2/2] add AMBARI_LOGSEARCH service

---
 .../services/AMBARI_LOGSEARCH/metainfo.xml    | 26 +++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100755 ambari-server/src/main/resources/stacks/BIGTOP/3.2.0/services/AMBARI_LOGSEARCH/metainfo.xml

diff --git a/ambari-server/src/main/resources/stacks/BIGTOP/3.2.0/services/AMBARI_LOGSEARCH/metainfo.xml b/ambari-server/src/main/resources/stacks/BIGTOP/3.2.0/services/AMBARI_LOGSEARCH/metainfo.xml
new file mode 100755
index 00000000000..3bdedd15df6
--- /dev/null
+++ b/ambari-server/src/main/resources/stacks/BIGTOP/3.2.0/services/AMBARI_LOGSEARCH/metainfo.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0"?>
+<!--
+   Licensed to the Apache Software Foundation (ASF) under one or more
+   contributor license agreements.  See the NOTICE file distributed with
+   this work for additional information regarding copyright ownership.
+   The ASF licenses this file to You under the Apache License, Version 2.0
+   (the "License"); you may not use this file except in compliance with
+   the License.  You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+-->
+<metainfo>
+  <schemaVersion>2.0</schemaVersion>
+  <services>
+    <service>
+      <name>AMBARI_LOGSEARCH</name>
+      <extends>common-services/AMBARI_LOGSEARCH/3.0.0</extends>
+    </service>
+  </services>
+</metainfo>