Can't get document message fields printed in my alerts using ctx

danona45 · July 24, 2020, 12:52pm

Hi,

I am trying to setup my trigger to send message to slack and embed some fields from documents sampled by my monitor.

I am using Opendistro 7.4.0 in AWS.

I only managed to reference the total hits though using the following:

Monitor {{ctx.monitor.name}} just entered alert status. Please investigate the issue.
- Trigger: {{ctx.trigger.name}}
- Severity: {{ctx.trigger.severity}}
- Period start: {{ctx.periodStart}}
- Period end: {{ctx.periodEnd}}

Total hits: {{#ctx.results}}{{#hits}}{{total}}{{/hits}}{{/ctx.results}}

Severity: 1

Period start: 2020-07-24T12:35:09.949Z

Period end: 2020-07-24T12:36:09.949Z
Total hits: {value=2, relation=eq}

How do I reference fields in my message like the following?

Marta_Bondyra · August 12, 2020, 7:09am

Hi @danona45,

I'd recommend to open an issue at Opendistro forum: https://discuss.opendistrocommunity.dev/latest

Regards,
Marta

system · September 9, 2020, 7:09am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kibana Alerting : Need to include the hit count Kibana painless	11	1807	December 7, 2020
Kibana Alerts configuration - Using ctx.results[0].hits.total Kibana	3	2583	November 2, 2019
How to access _resource in context? Kibana	8	562	March 20, 2020
Log entry payload is not present in the trigger's ctx Kibana elastic-stack-alerting	5	1134	October 1, 2020
How to return results with ctx.payload Kibana elastic-stack-alerting , painless	6	2972	December 2, 2020

Can't get document message fields printed in my alerts using ctx

Related topics