Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ability to create rules with a Graylog query #124

Open
frantz45 opened this issue Dec 15, 2023 · 1 comment
Open

Ability to create rules with a Graylog query #124

frantz45 opened this issue Dec 15, 2023 · 1 comment
Assignees
@VincentD06

Comments

@frantz45
Copy link
Collaborator

When we started this plugin the only possibility to filter logs in an Event Definition were the Streams.
But now Graylog can also use a query.

image

So when creating a rule with the Wizard we could also be able to set a query in addition to optionnaly use Streams.
@c8y3
Copy link
Collaborator

c8y3 commented Jan 3, 2024
edited
Loading

  • In the wizard, add a "Search Query" field which corresponds to the "Search Query" of the event definition
  • allow the creation of a rule where there is only a Search Query, but no conditions (in which case the Event Definition Streams should be empty)
  • allow the creation of a rule with only condition, but no Search Query (like today)
  • allow the case where both are configured: the Event Definition Stream is connected to the Stream which carries the conditions

@VincentD06 VincentD06 self-assigned this Jun 18, 2024
VincentD06 added a commit that referenced this issue Jun 18, 2024
@VincentD06
#124 Add Search Query in Create/Update Count Rule
eb9b980
VincentD06 added a commit that referenced this issue Jun 19, 2024
@VincentD06
#124 Always init search_query with empty string
26f4ec5
VincentD06 added a commit that referenced this issue Jun 19, 2024
@VincentD06
#124 Add Search Query in Create/Update Statistic and Group-Distinct R…
489697b 
…ules
VincentD06 added a commit that referenced this issue Jun 19, 2024
@VincentD06
#124 Add Search Query in Create/Update THEN-AND-OR Rules
8b09d01
VincentD06 added a commit that referenced this issue Jun 24, 2024
@VincentD06
#124 Use separate search query on THEN/AND/OR rules
dca347e
VincentD06 added a commit that referenced this issue Jun 25, 2024
@VincentD06
#124 Alert Form validation
10254bc
VincentD06 added a commit that referenced this issue Jun 25, 2024
@VincentD06
#124 Fix import from older version
b1e3da0
VincentD06 added a commit that referenced this issue Jun 28, 2024
@VincentD06
#124 fix searchquery value on import during normalization step
f837390
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@VincentD06 VincentD06

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@c8y3 @frantz45 @VincentD06