Does Search Alert in 7.12 include query?

Sandra_Schlichting · April 8, 2021, 9:42am

Dear all =)

When I read the summary for https://github.com/elastic/kibana/pull/88528 it says

New stack alert for executing ES DSL (query only, no aggregation support) and evaluating the number of matches against a threshold condition.

But when reading

I don't see any mention of how to make an alert using DSL query is done. Did that not make it into 7.12, or am I missing something?

Hugs,
Sandra =)

mikecote · April 8, 2021, 9:46am

Hi @Sandra_Schlichting ,

The Elasticsearch query alert is definitely part of 7.12. You can find the documentation for it under "Alerting and Actions" -> "Alerts" -> "Elasticsearch query" (Elasticsearch query | Kibana Guide [7.12] | Elastic).

Hope this helps
Mike

Sandra_Schlichting · April 8, 2021, 12:41pm

Dear Mike

It very much did. Thanks =)

Do you know if they are supported in the REST API, so I can automate creating and deleting them?

Hugs
Sandra =)

mikecote · April 8, 2021, 1:55pm

Absolutely, you can use the Create alert API | Kibana Guide [7.12] | Elastic to do so

Feel free to observe the request sent by the browser to see how the properties map and you can automate by using our official API.

Sandra_Schlichting · April 8, 2021, 2:10pm

Wow! I had no idea that was possible. Thanks a lot =)

system · May 6, 2021, 2:11pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.