jamilbk
commented
10 years ago The way this could work is as follows:
- Register an ES JSON query to a mock devo http api
- Kafka topic will be id or name of this query
- Expose a websockets endpoint through Node referencing the kafka topic
So the Kibana will consume alerts from this endpoint with a socket.io connection to something like http://localhost:5000/search?realtime=true&query=foobar. The query parameter will uniquely reference which kafka topic to stream alerts from. We can probably persistent this in Kafka itself, so when a dashboard is created, the query is converted to Elasticsearch JSON on the fly, a kafka topic is created or used (if exists), then the websockets endpoint is created and the Kibana will be able to stream results from it.
rammie
Backend component of real-time alerts