Module log
ballerina/log Ballerina library
Overview
This module provides APIs to log information when running applications, with support for contextual logging, configurable log levels, formats, destinations, and key-value context.
Log Levels
The log module supports four log levels, in order of priority:
ERRORWARNINFODEBUG
By default, only INFO and higher level logs are logged. The log level can be configured globally or per module in the Config.toml file:
[ballerina.log] level = "DEBUG" # or INFO, WARN, ERROR
Per-module log level:
[[ballerina.log.modules]] name = "[ORG_NAME]/[MODULE_NAME]" level = "[LOG_LEVEL]"
Logging API
Log messages at different levels using:
log:printDebug("debug log"); log:printError("error log"); log:printInfo("info log"); log:printWarn("warn log");
You can also log errors and add contextual key-value pairs (including function pointers and templates):
log:printError("error log with cause", err); log:printInfo("info log", id = 845315, name = "foo", successful = true);
Sample output (LogFmt):
time=2025-08-20T08:49:05.484+05:30 level=INFO module="" message="info log" id=845315 name="foo" successful=true
Log Output and Format
By default, logs are written to the stderr stream in logfmt format. You can configure the output format and destinations in Config.toml:
[ballerina.log] format = "json" # or "logfmt" [[ballerina.log.destinations]] type = "stderr" # or "stdout" [[ballerina.log.destinations]] path = "./logs/app.log"
Sample output (JSON):
{"time":"2025-08-20T11:26:00.021+05:30", "level":"INFO", "module":"myorg/foo", "message":"Authenticating user"}
Note:
- Destination types can be
stderr,stdout, orfile. File Destination must point to a path with a.logextension.- The deprecated
log:setOutputFile()should be avoided; use configuration instead.
Root Context
You can add a default context to all log messages:
[ballerina.log] keyValues = {env = "prod", nodeId = "delivery-svc-001"}
Contextual Logging
The log module supports contextual logging, allowing you to create loggers with additional context or unique configurations.
-
Root Logger: The default logger, accessed via
log:root(). -
Child Logger with Context:
log:Logger parentLogger = log:root(); log:Logger childLogger = parentLogger.withContext("userId": "12345", "requestId": "abcde"); childLogger.printInfo("User logged in");The log message will include the additional context.
-
Logger with Unique Configuration:
log:Config auditLogConfig = { level: log:INFO, format: "json", destinations: ["./logs/audit.log"] }; log:Logger auditLogger = log:fromConfig(auditLogConfig); auditLogger.printInfo("Hello World from the audit logger!");
For more details and advanced usage, see the module specification and API documentation.
Sensitive Data Masking
The log module provides capabilities to mask sensitive data in log messages to maintain data privacy and security when dealing with personally identifiable information (PII) or other sensitive data.
Note: By default, sensitive data masking is disabled. Enable it in
Config.toml:[ballerina.log] enableSensitiveDataMasking = trueOr configure it per logger:
log:Config secureConfig = { enableSensitiveDataMasking: true }; log:Logger secureLogger = log:fromConfig(secureConfig);
Sensitive Data Annotation
Use the @log:Sensitive annotation to mark fields in records as sensitive. When such fields are logged, their values will be excluded or masked:
import ballerina/log; type User record { string id; @log:Sensitive string password; string name; }; public function main() { User user = {id: "U001", password: "mypassword", name: "John Doe"}; log:printInfo("user details", user = user); }
Output (with masking enabled):
time=2025-08-20T09:15:30.123+05:30 level=INFO module="" message="user details" user={"id":"U001","name":"John Doe"}
Masking Strategies
Configure masking strategies using the strategy field:
import ballerina/log; isolated function maskString(string input) returns string { if input.length() <= 2 { return "****"; } return input.substring(0, 1) + "****" + input.substring(input.length() - 1); } type User record { string id; @log:Sensitive { strategy: { replacement: "****" } } string password; @log:Sensitive { strategy: { replacement: maskString } } string ssn; string name; };
Masked String Function
Use log:toMaskedString() to get the masked version of a value for custom logging implementations:
User user = {id: "U001", password: "mypassword", name: "John Doe"}; string maskedUser = log:toMaskedString(user); io:println(maskedUser); // {"id":"U001","name":"John Doe"}
Functions
evaluateTemplate
function evaluateTemplate(PrintableRawTemplate template, boolean enableSensitiveDataMasking) returns stringEvaluates the raw template and returns the evaluated string.
Parameters
- template PrintableRawTemplate - The raw template to be evaluated
- enableSensitiveDataMasking boolean (default false) - Flag to indicate if sensitive data masking is enabled
Return Type
- string - The evaluated string
fromConfig
Creates a new logger with the given configuration.
Parameters
- config *Config - The configuration to use for the new logger
printDebug
function printDebug(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints debug logs.
log:printDebug("debug message", id = 845315)
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
printError
function printError(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints error logs.
error e = error("error occurred"); log:printError("error log with cause", 'error = e, id = 845315);
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
printInfo
function printInfo(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints info logs.
log:printInfo("info message", id = 845315)
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
printWarn
function printWarn(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints warn logs.
log:printWarn("warn message", id = 845315)
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
processTemplate
function processTemplate(PrintableRawTemplate template) returns stringProcess the raw template and return the processed string.
Parameters
- template PrintableRawTemplate - The raw template to be processed
Return Type
- string - The processed string
Deprecated
The processTemplate function is deprecated. Use evaluateTemplate instead.
Deprecated
The processTemplate function is deprecated. Use evaluateTemplate instead.
root
function root() returns LoggerGet the root logger instance.
Return Type
- Logger - The root logger instance
setOutputFile
function setOutputFile(string path, FileWriteOption option) returns Error?Set the log output to a file. Note that all the subsequent logs of the entire application will be written to this file.
var result = log:setOutputFile("./resources/myfile.log"); var result = log:setOutputFile("./resources/myfile.log", log:OVERWRITE);
Parameters
- path string - The path of the file
- option FileWriteOption (default APPEND) - To indicate whether to overwrite or append the log output
Return Type
- Error? - A
log:Errorif an invalid file path was providedDeprecated
Setting output file destination using this method is deprecated. Add the output file path as part of thedestinationsconfigurable instead.
Deprecated
Setting output file destination using this method is deprecated.
Add the output file path as part of the destinations configurable instead.
Deprecated
Setting output file destination using this method is deprecated.
Add the output file path as part of the destinations configurable instead.
toMaskedString
function toMaskedString(anydata data) returns stringReturns a masked string representation of the given data based on the sensitive data masking annotation. This method panics if a cyclic value reference is encountered.
Parameters
- data anydata - The data to be masked
Return Type
- string - The masked string representation of the data
Constants
log: EXCLUDE
Exclude the field from log output
Enums
log: DestinationType
Output destination types.
Members
log: FileOutputMode
File output modes.
Members
log: FileWriteOption
Represents file opening options for writing.
Members
log: Level
Represents log level types.
Members
log: LogFormat
Represents supported log formats.
Members
Annotations
log: Sensitive
record fieldMarks a record field or type as sensitive, excluding it from log output The default strategy is to exclude the field from log output
Configurables
log: format
Root logger default log format.
log: level
Root logger default log level.
log: modules
Modules with their log levels.
log: keyValues
Default key-values to add to the root logger.
log: destinations
Destinations is a list of file destinations or standard output/error.
log: enableSensitiveDataMasking
Records
log: AnydataKeyValues
Anydata key-value pairs that needs to be displayed in the log.
Fields
- msg? never - msg which cannot be a key
- 'error? never - 'error which cannot be a key
- stackTrace? never - stackTrace which cannot be a key
- module? never - module name which cannot be a key
log: Config
Configuration for the Ballerina logger
Fields
- format LogFormat(default format) - Log format to use. Default is the logger format configured in the module level
- level Level(default level) - Log level to use. Default is the logger level configured in the module level
- destinations readonly & OutputDestination[](default destinations) - List of destinations to log to. Default is the logger destinations configured in the module level
- keyValues readonly & AnydataKeyValues(default {...keyValues}) - Additional key-value pairs to include in the log messages. Default is the key-values configured in the module level
- enableSensitiveDataMasking boolean(default enableSensitiveDataMasking) - Enable sensitive data masking. Default is the module level configuration
log: FileOutputDestination
File output destination
Fields
- 'typereadonly FILE(default FILE) - Type of the file destination. Allowed value is "file".
- path string - File path(only files with .log extension are supported)
- mode FileOutputMode(default APPEND) - File output mode
log: KeyValues
Key-Value pairs that needs to be displayed in the log.
Fields
- msg? never - msg which cannot be a key
- 'error? never - 'error which cannot be a key
- stackTrace? never - error stack trace which cannot be a key
- Value... - Rest field
log: Replacement
Replacement strategy for sensitive data
Fields
- replacement string|ReplacementFunction - The replacement value. This can be a string which will be used to replace the entire value, or a function that takes the original value and returns a masked version.
log: SensitiveConfig
Represents sensitive data with a masking strategy
Fields
- strategy MaskingStrategy(default EXCLUDE) - The masking strategy to apply
log: StandardDestination
Standard destination.
Fields
Errors
log: Error
Represents Log module related errors.
Object types
log: Logger
Logger object type defines an interface for logging messages
printDebug
function printDebug(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints debug logs.
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
printInfo
function printInfo(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints info logs.
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
printWarn
function printWarn(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints warn logs.
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
printError
function printError(string|PrintableRawTemplate msg, error? 'error, StackFrame[]? stackTrace, *KeyValues keyValues)Prints error logs.
Parameters
- msg string|PrintableRawTemplate - The message to be logged
- 'error error? (default ()) - The error struct to be logged
- stackTrace StackFrame[]? (default ()) - The error stack trace to be logged
- keyValues *KeyValues - The key-value pairs to be logged
withContext
Creates a new child/derived logger with the given key-values.
Parameters
- keyValues *KeyValues - The key-value pairs to be added to the logger context
log: PrintableRawTemplate
Represents raw templates for logging.
e.g: The input value is ${val}
Fields
- Fields Included from *RawTemplate
- strings string[] & readonly - String values of the template as an array
- insertions Value[] - Parameterized values/expressions after evaluations as an array
Union types
log: Value
Value
A value of anydata type or a function pointer or raw template.
log: OutputDestination
OutputDestination
Log output destination.
log: MaskingStrategy
MaskingStrategy
Masking strategy for sensitive data