Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Introduction to Watcher

Elastic Co
July 20, 2015
Programming
0
190

Introduction to Watcher

Elastic Co

July 20, 2015
Tweet

More Decks by Elastic Co

See All by Elastic Co
Les Vendredis noirs : même pas peur ! - Breizhcamp
elastic
15
780
Confoo Montreal: Ingest node: enriching documents within Elasticsearch
elastic
16
810
Elastic{ON} 2018 - Sipping from the Firehose: Scalable Endpoint Data for Incident Response
elastic
6
4.2k
Elastic{ON} 2018 - A Security Analytics Platform for Today
elastic
3
11k
Elastic{ON} 2018 - The State of Geo in Elasticsearch
elastic
7
12k
Elastic{ON} 2018 - Reliable by design - Applying formal methods to distributed systems
elastic
5
4.7k
Elastic{ON} 2018 - Bigger, Faster, Stronger - Leveling Up Enterprise Logging
elastic
1
4.9k
Elastic{ON} 2018: Latest in Logstash
elastic
1
4.5k
Elastic{ON} 2018 - Lessons Learned from Workday's Search Application Journey from POC to Production
elastic
2
2.4k

Other Decks in Programming

See All in Programming
코틀린으로 멀티플랫폼 만들기
pangmoo
0
140
CA.swift19 恋するAIアプリ開発の裏側
oskmr
0
360
[技育CAMPアカデミア]アイディアを形に!【超入門】スマホアプリ開発〜リリースまでの流れをご紹介
teamlab
PRO
0
360
try! Swift Tokyo 2024 参加報告 / try! Swift Tokyo 2024 Report
hironytic
0
200
From Spring Boot 2 to Spring Boot 3 with Java 22 and Jakarta EE
ivargrimstad
0
1.1k
はてなにおける CSS Modules、及び CSS Modules に足りないもの / CSS Modules in Hatena, and CSS Modules missing parts
mizdra
6
900
Nealle_Autify_LT_Slide202403
nealle
0
130
Folding Cheat Sheet #3
philipschwarz
PRO
0
120
スクラムガイドのスプリントレトロスペクティブを改めて読みかえしてみた / Re-reading the Sprint Retrospective Section in the Scrum Guide
mackey0225
3
410
コードレビューで学ぶ!Kotlinオブジェクト指向デザインパターン
akkie76
2
200
デフォルトにして至高、RubyMineの大好きな所
ruzia
0
230
AWS Application Composerで始める、 サーバーレスなデータ基盤構築 / 20240406-jawsug-hokuriku-shinkansen
kasacchiful
1
260

Featured

See All Featured
Bootstrapping a Software Product
garrettdimon
PRO
301
110k
Pencils Down: Stop Designing & Start Developing
hursman
117
11k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
186
16k
RailsConf 2023
tenderlove
2
540
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
226
16k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
39
4.4k
Building a Modern Day 
E-commerce SEO Strategy
aleyda
16
6.4k
Adopting Sorbet at Scale
ufuk
67
8.6k
The Invisible Customer
myddelton
114
12k
Six Lessons from altMBA
skipperchong
20
3k
How To Stay Up To Date on Web Technology
chriscoyier
782
250k
GraphQLとの向き合い方2022年版
quramy
31
12k

Transcript

  1. INTRODUCTION TO WATCHER ALERTING AND NOTIFICATIONS FOR ELASTICSEARCH Shaunak Kashyap

    • @shaunak

  2. WHY WATCHER?

  3. Elasticsearch plugin Highly available Simple API Easy to get started

    Can integrate with Shield $ b i n / p l u g i n - i e l a s t i c s e a r c h / l i c e n s e / l a t e s t $ b i n / p l u g i n - i e l a s t i c s e a r c h / w a t c h e r / l a t e s t

  4. ANATOMY OF A WATCH P U T / _ w

    a t c h e r / w a t c h / { n a m e - o f - w a t c h } { " t r i g g e r " : . . . , " i n p u t " : . . . , " c o n d i t i o n " : . . . , " a c t i o n s " : . . . }

  5. P U T / _ w a t c h

    e r / w a t c h / { n a m e - o f - w a t c h } { " t r i g g e r " : { " s c h e d u l e " : { " i n t e r v a l " : " 1 0 s " } } , " i n p u t " : . . . , " c o n d i t i o n " : . . . , " a c t i o n s " : . . . } Other types of schedule triggers available are c r o n , h o u r l y , d a i l y , w e e k l y , m o n t h l y , and y e a r l y

  6. P U T / _ w a t c h

    e r / w a t c h / { n a m e - o f - w a t c h } { " t r i g g e r " : . . . , " i n p u t " : { " s e a r c h " : { " r e q u e s t " : { " i n d i c e s " : [ " t i c k e t s " ] , " t y p e s " : [ " t i c k e t " ] , " b o d y " : { " q u e r y " : { " m a t c h _ a l l " : { } } } } } } , " c o n d i t i o n " : . . . , " a c t i o n s " : . . . } Other types of inputs available are s i m p l e , and h t t p

  7. P U T / _ w a t c h

    e r / w a t c h / { n a m e - o f - w a t c h } { " t r i g g e r " : . . . , " i n p u t " : . . . , " c o n d i t i o n " : { " c o m p a r e " : { " c t x . p a y l o a d . h i t s . t o t a l " : { " g t e " : 5 } } } , " a c t i o n s " : . . . } Other types of conditions available are s c r i p t , a l w a y s , and n e v e r

  8. P U T / _ w a t c h

    e r / w a t c h / { n a m e - o f - w a t c h } { " t r i g g e r " : . . . , " i n p u t " : . . . , " c o n d i t i o n " : . . . , " a c t i o n s " : { " e m a i l _ a d m i n i s t r a t o r " : { " t h r o t t l e _ p e r i o d " : " 1 5 m " , " e m a i l " : { " t o " : " s y s . a d m i n @ h o s t . d o m a i n " , " s u b j e c t " : " E n c o u n t e r e d { { c t x . p a y l o a d . h i t s . t o t a l } } e r r o r s " , " b o d y " : " T o o m a n y e r r o r i n t h e s y s t e m , s e e a t t a c h e d d a t a " , " a t t a c h _ d a t a " : t r u e } } } } Other types of actions available are w e b h o o k , i n d e x , and l o g g i n g
  9. None

  10. QUESTIONS? https://discuss.elastic.co/