Refine your search:

REST API fired alerts php sdk

0

hi

im using the splunk php sdk. And i cant find any functions in there to get the information i want from searches saved as alerts. I can find the search in /search/jobs/<job_id> and i can get the events.

the information i want is, severity of the search, when it was triggered.

Thanks In Advance!

asked 10 May '11, 06:01

tallak's gravatar image

tallak
11
accept rate: 0%

One Answer:
oldestnewestmost voted
1

This is not supported by the php sdk.

If you're willing to extend it, you'll want to use this endpoint https://localhost:8089/services/alerts/fired_alerts/ as your source. It lists all the fired alerts and their properties. Make an authenticated http request by example of the existing sdk and parse the resulting xml to get the data.

link

answered 10 May '11, 10:56

Leo's gravatar image

Leo ♦
817111
accept rate: 47%

Post your answer
toggle preview

Follow this question

Log In to enable email subscriptions

RSS:

Answers

Answers + Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "Title")
  • image?![alt text](/path/img.jpg "Title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

learn more about Markdown

Tags:

×93
×23

Asked: 10 May '11, 06:01

Seen: 1,108 times

Last updated: 10 May '11, 10:56

Related questions

wheres the php SDK gone? code.google.com/p/splunk-php-sdk/

REST API JAVA SDK

Java Splunk REST API SDK

Create new Field Extraction regex expression via REST API Java SDK

Problem Creating new search time field extraction Thru the REST API and Java Splunk SDK

Inserting new events via the REST API using the Receivers endpoints thru Java SDK

Editing search results using Splunk Java SDK API.

Java Splunk REST SDK missing class??

Copyright © 2005-2012 Splunk, Inc. All rights reserved.