"schedule": {
"later": "every 5 minutes"
}
},
"disable": true,
"report": false,
"title": "watcher\_title"
}
}
测试结果:
7.3 使用sentinl 执行多个watcher方案
原理:将第一个watcher的结果写入es index 中,以供其他watcher使用(可以作为触发其他watcher方式)
7.3.1 新建第一个watcher,内容如下:
{ "actions": { "New console action txv1ad1yazr": { "throttle_period": "0h0m1s", "console": { "message": "{\n{{#payload.hits.hits}}\n"name":"{{_source.name}}",\n"age":{{_source.age}}\n{{/payload.hits.hits}}\n}" } }, "New webhook action 20wm9sojv9j": { "throttle_period": "0h0m1s", "webhook": { "method": "POST", "host": "10.16.232.163", , "proxy": false, "path": "/twoindex/doc", "body": "{\n{{#payload.hits.hits}}\n"name":"{{_source.name}}",\n"age":{{_source.age}}\n{{/payload.hits.hits}}\n}", "save_payload": false, "headers": { "content-type": "application/json" } } } }, "input": { "search": { "request": { "index": [ "trumantest" ], "body": { "query": { "match": { " } } } } } }, "condition": { "script": { "script": "payload.hits.total > 0" } }, "transform": {}, "trigger": { "schedule": { "later": "every 1 minutes" } }, "disable": false, "report": false, "title": "first_watcher" }
第一个watcher 主要是检测 trumantest是否含有"age": “19” 数据,如果有,将该结果写入twoindex 中。
7.3.2新建第二个watcher,主要检测index 数量,如果大于1,则在console 中输出
{ "actions": { "New console action 34fsgrz5dhd": { "throttle_period": "0h0m1s", "console": { "message": "this is a measage :{{payload.hits.total}}" } } }, "input": { "search": { "request": { "index": [ "twoindex" ], "body": { "query": { "match_all": {} } } } } }, "condition": { "script": { "script": "payload.hits.total > 1" } }, "transform": {}, "trigger": { "schedule": { "later": "every 1 minutes" } }, "disable": false, "report": false, "title": "two_watcher" }
7.3.3实验结果:
参考链接:
https://www.bbsmax.com/A/gGdXbgXmJ4/
Kibana插件sentinl实现邮件报警(centos) : https://www.bbsmax.com/A/kPzO731wzx/
