Support for Heroku log drains packaged as a Splunk app.
The log drain messages contain Syslog-formatted messages, framed using the Syslog TCP protocol octet counting framing method.
This Splunk app is compatible with the Splunk Common Information Model (CIM) for Web and Change.
Source type | Description |
---|---|
heroku:app |
Logging output from the application itself, including logs generated by your app’s code and dependencies. |
heroku:router |
Request logs produced by the Heroku HTTP routers. |
heroku:system |
Messages about actions taken by the Heroku platform. |
heroku:api |
Messages about Heroku app administrative actions taken by users. |
heroku |
To be used as the default source type for Splunk HEC tokens, updates events to a more specific source type using transforms. |
Create a release in GitHub to trigger a workflow that builds and uploads an package to the GitHub release assets, e.g. splunk_heroku-1.0.8.tar.gz
. This file can be installed on Splunk.
The version number in app/default/app.conf
will automatically be updated in the default branch to match the release via a pull request.