search

Yelp / elastalert

Easy & Flexible Alerting With ElasticSearch
https://elastalert.readthedocs.org
Apache License 2.0
7.99k stars 1.74k forks source link

ElastAlert Kibana Plugin #897

Open RubieV opened 7 years ago

RubieV commented 7 years ago

Kibana is a fantastic frontend for ElasticSearch, yet ElastAlert still runs trough file editors. We have built a plugin for Kibana, so you can edit, run, test and save rules in a single interface.

elastalertsamplerule

It also builds a Docker container that runs ElastAlert and a RESTful wrapper. Available at elsatalert-server and kibana-plugin

Install plugin: ./bin/kibana plugin -i elastalert -u https://git.bitsensor.io/front-end/elastalert-kibana-plugin/builds/5251/artifacts/file/build/elastalert-0.0.6.zip 

git clone https://git.bitsensor.io/back-end/elastalert.git && cd elastalert
docker build . -t elastalert
docker run -d \
    -p 3030:3030 \
    -v `pwd`/config/elastalert.yaml:/opt/elastalert/config.yaml \
    -v `pwd`/config/elastalert-server.json:/opt/elastalert-server/config/config.json \
    -v `pwd`/rules:/opt/elastalert/rules \
    --net="host" \
    elastalert:latest
cd ../
./bin/kibana
iFrankWu commented 7 years ago

it is not worked on kibana 5.x!

mmetterle commented 7 years ago

I have tried to install this for kibana 5.x as well and have not had success. Does this only work for kibana 4.6?

sudhirkumar1980 commented 7 years ago

Hi All,

I am getting following error while opening elastalert in kibana 5.3.

Fatal Error

Uncaught ReferenceError: require is not defined (http://XX.XXX.XX.XXX:5601/bundles/elastalert.bundle.js?v=14823:12) Version: 5.3.0 Build: 14823 Error: Uncaught ReferenceError: require is not defined (http://XX.XXX.XX.XXX:5601/bundles/elastalert.bundle.js?v=14823:12) at window.onerror (http://XX.XXX.XX.XXX:5601/bundles/commons.bundle.js?v=14823:69:13503)

is there any workaround for it?

chettu commented 7 years ago

Any solution for the above problem ?

laghao commented 7 years ago

Can you fix this plugin for kibana 5.4.0?

Qmando commented 7 years ago

Please open an issue on https://github.com/bitsensor/elastalert

spotlesscoder commented 7 years ago

Does anyone have an idea when this will be fixed?

RubieV commented 7 years ago

We have made the CI in such a way that only Kibana 4 plugins are outputted. We apply a patch that does this. Feel free to open a PR that generates multiple artifacts in CI.

A new release of the Kibana plugin is also underway.

spotlesscoder commented 7 years ago

I don't exactly understand what I can do to make it work. I built on top of this fork to make it work with my kibana 5.4.1 instance: https://github.com/Baoban/elastalert-kibana-plugin

However, I'm still new to docker. I guess I need to build on top of the official kibana 5.4.1 docker image with my own Dockerfile that the installs the plugin and creates an image from it. I would like to have such an image available on the default public docker repository so I don't need to build it myself everytime.

Then, on the other side, the nodejs server part is needed. For this, I need to clone your repo and build the docker container myself. I also would like to have this available on the default docker repositories. Maybe you could automate the release of a new feature version of the elastalert-server part for the kibana plugin, everytime a new version of ElastAlert is released?