Confluence's audit log is only available via
What would be a good solution to ship these entries to Elasticsearch?
I had a look at the http_poller input plugin.
While it looks like a good candidate, I'd have to re-read all the audit events everytime.
I'd need something like an internal counter so that I could use the query parameter start to limit where the results should begin.