Httpjson Input

Hani_Atalla · July 28, 2022, 2:37pm

I am configuring an HTTPJSON Input from Fleet using the UI and doing a POST on a REST endpoint. I need to send a body in the request. The documentation isn't too clear about the format it should be in inside the request body field in the UI. The name/value fields I need to submit in the HTTPJSON request body from the UI are:

search=search index=phantom_container earliest=-7d | head 100 | addinfo 
output_mode=json

The endpoint the HTTPJSON Input hits is Splunk's search API and I am trying to ingest the JSON response from the Splunk search in Elasticsearch

Thanks for your help.

Hani

system · August 25, 2022, 4:37pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Httpjson Input Config Issue Beats fleet , filebeat	2	499	April 15, 2022
How to input response type of "application/yang-data+json" in filebeat httpjson module Beats elastic-stack-monitoring , filebeat	2	204	April 17, 2024
Split json in string from packetbeat Logstash	3	341	December 10, 2020
HTTPJSON input : share request identifier among events Beats filebeat	6	644	February 11, 2022
HTTP JSON input with Split but keeping other fields Beats filebeat	2	584	November 30, 2021

Httpjson Input

Related topics