Logz.io provides the world’s most popular open-source log management platform, ELK (Elasticsearch, Logstash and Kibana), as a fast, secure and scalable cloud-based service with enterprise-grade enhancements. This xM Labs Integration allows you to connect up a Logz.io trial instance to an xMatters On Demand account to showcase the ease of passing log alerts (based on specified triggers) to xMatters.
Check out the video:
An updated version of this integration is available. You can install the new version right from the Workflow Templates directory within your xMatters instance. Learn more.
- logz.io account (https://logz.io/)
- xMatters account
- LogzioElkAlert.zip - The workflow
- logzio.png - Logz.io Logo
- Create a free trial at https://logz.io/ if you need an account
- Once logged in, goto Alerts and click ALERT ENDPOINTS
- ADD ENDPOINT, selecting a CUSTOM type
- Give it a Name (xMatters is usually useful) and a Description
- Add in the Integration URL from the Workflows's Inbound Integration
- Select POST Method
- Under headers add
content-type=application/json
- Add in the following Code to the BODY (You can amend this as you see fit, but this will get you started):
{
"alert_title": "{{alert_title}}",
"alert_description": "{{message}}",
"alert_severity": "{{alert_severity}}",
"alert_event_samples": "{{alert_event_samples}}",
"text": "{{text}}"
}
- Save it.
- Now, add an alert definition that uses the alert endpoint.
- Load in the LogzioElkAlert.zip workflow
- Review the Form's (Elk Alert from Logz.io) configuration - add a default group or user in the recipients section
- In the Elk Alert workflow, update the Create Event step to include any recipients.
Test the notification endpoint by editing it and clicking Test at the bottom of the page. This should show up in the activity log inside of Flow Designer for the Elk Alert workflow in xMatters.
If the activity stream does not contain errors, check to see if an event was created and check the event log for more details.