Request: http Notification template

jra · November 16, 2020, 7:51pm

Hi…
Would it be possible to have a template for the HTTP Notification, like the email template ?
(https://docs.graylog.org/en/3.3/pages/alerts.html)
It would be perfect if that that was possible.
It would make it sooo much more flexible…
It is more difficult to do the translation on the receiving side…
Something like:
URL: https://myserver.com{:port}/path/token/blah
Method: POST|GET|UPDATE|…
Custom Headers: …
Templare:

<EVENT>
  <TITLE>${event_definition_title}</TITLE>
 <Description>${event_definition_description}</Description>
 <EVENTTYPE>${event_definition_type}</EVENTTYPE>
<Fields>
${foreach event.fields field}  <FIELD>${field.key}</FIELD> <VALUE>${field.value}</VALUE>
${end}
</Fields>
...
${foreach backlog message}
<MESSAGE>${message}<MESSAGE>
${end}
</MESSAGES>
${end}
</EVENT>

That would be awesome.
Thanks
JR

ttsandrew · November 16, 2020, 10:47pm

Hello @jra, it looks like there’s a feature request open for this already.

Feel free to tack on!

jra · November 16, 2020, 11:05pm

Hi…

Not quite…
The one you are referencing is to make it an HTML template for mail working correctly.

This request is to make it possible to make a custom body and headers for an HTTP push notification.
Currently it only supports a fixed HTTP POST Body…

From the help file:
HTTP alert notification
The HTTP alert notification lets you configure an endpoint that will be called when the alert is triggered.

Graylog will send a POST request to the notification URL including information about the alert. The body of the request is the JSON encoded data described above.

Here is an example of the payload included in a notification:

{
  "event_definition_id": "this-is-a-test-notification",
  "event_definition_type": "test-dummy-v1",
  "event_definition_title": "Event Definition Test Title",
  "event_definition_description": "Event Definition Test Description",
  "job_definition_id": "<unknown>",
  "job_trigger_id": "<unknown>",
  "event": {
    "id": "NotificationTestId",
    "event_definition_type": "notification-test-v1",
    "event_definition_id": "EventDefinitionTestId",
    "origin_context": "urn:graylog:message:es:testIndex_42:b5e53442-12bb-4374-90ed-0deadbeefbaz",
    "timestamp": "2020-05-20T11:35:11.117Z",
    "timestamp_processing": "2020-05-20T11:35:11.117Z",
    "timerange_start": null,
    "timerange_end": null,
    "streams": [
      "000000000000000000000002"
    ],
    "source_streams": [],
    "message": "Notification test message triggered from user <admin>",
    "source": "000000000000000000000001",
    "key_tuple": [
      "testkey"
    ],
    "key": "testkey",
    "priority": 2,
    "alert": true,
    "fields": {
      "field1": "value1",
      "field2": "value2"
    }
  },
  "backlog": []
}

ttsandrew · November 16, 2020, 11:07pm

Good point. You should make a new feature request on GitHub for this.

jra · November 16, 2020, 11:18pm

Will do…

Done https://github.com/Graylog2/graylog2-server/issues/9508

system · November 30, 2020, 11:18pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to make my email alerts more descriptive? Graylog Central (peer support)	5	5027	May 21, 2020
Email Alert Notification Graylog Central (peer support)	6	1157	August 3, 2020
Adding Stream URL to Notification Template Miscellaneous	0	2154	October 22, 2021
Alert Email Template link to the messages Graylog Add-ons	2	2329	April 10, 2018
Email Alert sending separate emails for different messages Graylog Central (peer support)	6	1405	September 2, 2020

Request: http Notification template

Related topics