Monitor Response

Plugins Alerting
1

Hi

I am trying to create a monitor with the below extraction query. Which need to list out if any API_ERROR for every 5 minutes from the logs.

{
“query”: {
“match”: {
“LogType”: {
“query”: “API_ERROR”,
“operator”: “OR”,
“prefix_length”: 0,
“max_expansions”: 50,
“fuzzy_transpositions”: true,
“lenient”: false,
“zero_terms_query”: “NONE”,
“auto_generate_synonyms_phrase_query”: true,
“boost”: 1
}
}
}
}

But I am not sure this is correct or not. Because am receiving the alert with the below message,

API_ERROR Alerts
Monitor StoreApp API_ERROR Alerts just entered alert status. Please investigate the issue.

  • Trigger: StoreApp API_ERROR Trigger
  • Severity: 1
  • Period start: 2020-01-22T20:38:07.747Z
  • Period end: 2020-01-22T20:39:07.747Z

Is there anyway to publish the error message in the Trigger result.

2

Hi everyone,

I have the same question/problem:
Is there a way to get the _source.message of the ctx.results or to say triggered results,
to send the complete message(s) from the error(s) also via webhook ?

thx in advance

br
nuss

3

Hi @priyanmurugan,

Are you looking for the actual hits of the query? You can use {{ctx.results.0}}. Or is there something wrong with your current message that I’m not seeing?

Hi @nuss,

Similar answer to above, you should be able to access the ctx.results to look at the source of your hits. I don’t believe we show the results of the trigger itself though. Can you give an example of what you’re trying to send?