Easily Integrate Sumologic Webhooks with your application.
https://help.sumologic.com/Manage/Connections-and-Integrations/Webhook-Connections/Set_Up_Webhook_Connections
Steps to receive Sumologic Webhooks
- Sign up for your free Hooky account.
- Create a new Webhook Source, and select Sumologic. This will be the endpoint that receives webhooks on behalf of your application, and forwards them using the unified SDK.
- Step 1
- Step 2
- Once a webhook is received from Sumologic, you'll see it under the Live Logs section of your webhook source.
- Next, follow the examples below to integrate the Hooky SDK in ruby or javascript, and start receiving webhooks.
Integrating Sumologic Webhooks Using Javascript
- Sign up for your free Hooky account.
- Create a new Webhook Source, and select Sumologic. This will be the endpoint that receives webhooks on behalf of your application, and forwards them using the unified SDK.
- Step 1
- Step 2
- Once a webhook is received from Sumologic, you'll see it under the Live Logs section of your webhook source.
- Next, follow the examples below to integrate the Hooky SDK in ruby or javascript, and start receiving webhooks.
Integrating Sumologic webhooks with Hooky in your Javascript based application is straight forward. Just grab the SDK, and call a function when that webhook is received.
Integrating Sumologic Webhooks Using Ruby
Integrating Sumologic webhooks with Hooky in your Ruby or Ruby on Rails application is straight forward. Just grab the SDK, and call a method when that webhook is received.
Configuring Sumologic Webhook Authentication
Here's how it works
Supported Sumologic Webhook Events
Description
The description of the alert.
MonitorType
The type of alert, either Logs or Metrics.
Query
The query used to run the alert.
QueryURL
The URL to the logs or metrics query within Sumo Logic.
ResultsJson
JSON object containing the query results that triggered the alert. A maximum of 200 aggregate results or 10 raw messages for this field can be sent via webhook.
ResultsJson.fieldName
The value of the specified field name
NumQueryResults
The number of results the query returned. Results can be raw messages, time-series, or aggregates.
Id
The unique identifier of the monitor or search that triggered the alert.
DetectionMethod
This is the type of Detection Method used to detect alerts. Values are based on static or outlier triggers and data type, either logs or metrics
TriggerType
The status of the alert or recovery. Alert will have either
TriggerTimeRange
The time range of the query that triggered the alert
TriggerTimeRange
The time the monitor was triggered
TriggerCondition
The condition that triggered the alert
TriggerValue
The value that triggered the alert.
TriggerTimeStart
The start time of the time range that triggered the monitor in Unix format
TriggerTimeEnd
The end time of the time range that triggered the monitor in Unix format
SourceURL
The URL to the configuration or status page of the monitor in Sumo Logic.
AlertResponseUrl
When your Monitor is triggered it will generate a URL and provide it as the value of this variable where you can use it to open Alert Response.
SearchName
Description of the saved search or Monitor. In the delivered payload, this variable is replaced with the Name you assigned to the search or Monitor when you created it.
SearchDescription
Description of the saved search or Monitor. In the delivered payload, this variable is replaced by the Description you assigned to the search or Monitor when you created it.
SearchQuery
The query used to run the saved search. In the delivered payload, this variable is replaced by your saved search query or metric query.
SearchQueryUrl
The URL to the search or metrics query. In the delivered payload, this is a URL that you can click to run the saved logs or metric query.
TimeRange
The time range that triggered the alert
FireTime
The start time of the log search or metric query that triggered the notification.
AggregateResultsJson
JSON object containing search aggregation results.
RawResultsJson
JSON object containing raw messages.
NumRawResults
Number of results returned by the search.
Results.fieldname
The value returned from the search result for the specified field. For example, this payload specificatio
AlertThreshold
The condition that triggered the alert
AlertSource
The metric and sourceHost that triggered the alert, including associated tags for that metric.
AlertSource.fieldname
The value returned from the AlertSource object for the specified field name.
AlertID
The ID of the triggered alert.
AlertStatus
Current status of the time series that triggered
AlertCondition
The condition that triggered the alert.