A Python logging handler to sends logs to Splunk using HTTP event collector (HEC)

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for vavarachen from gravatar.com vavarachen

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT License (MIT License)

Author: vavarachen

Classifiers

Project description

# Features
1. Log messages to Splunk via HTTP Event Collector (HEC). See [Splunk HEC Documentation](http://docs.splunk.com/Documentation/Splunk/latest/Data/AboutHEC)
2. All messages are logged as '_json' sourcetype by default.
3. A dictionary with 'log_level' and 'message' keys are constructed for logging records of type string.

![String log record representation in Splunk](https://github.com/vavarachen/splunk_http_handler/blob/master/resources/str_record.png)

4. Dictionary objects are preserved as JSON.

![Dictionary log record representation in Splunk](https://github.com/vavarachen/splunk_http_handler/blob/master/resources/dict_record.png)

5. If log record (dict) does not contains a '_time' field, one is added with the value set to current time.

# Examples

## Basic
```
from splunk_http_handler import SplunkHecHandler
import logging

log = logging.getLogger('')
log.addHandler(SplunkHecHandler(host, token))
log.setLevel('INFO')
log.info("Testing")
```
You should see the log message in your Splunk search.


## HTTPS Example
Additional parameters can be passed to specify port, protocol, ssl verification.

```
log.addHandler(SplunkHecHandler(host, token, port=8080, protocol='https', ssl_verify=True))
```

## Metadata Override
To override source, sourcetype and hostname:

```
log.addHandler(SplunkHecHandler(
host, token, port=8080, protocol='https', ssl_verify=True,
source='custom_source_string', sourcetype='valid_sourceytype', hostname='hostname_override'
))
```


Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for vavarachen from gravatar.com vavarachen

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT License (MIT License)

Author: vavarachen

Classifiers

Release history Release notifications | RSS feed

1.2.0

1.1.0

1.0.9

1.0.8

1.0.7

1.0.6

1.0.5

1.0.4

This version

1.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

splunk_hec_handler-1.0.1.tar.gz (3.9 kB view hashes)

Uploaded Source

Built Distribution

splunk_hec_handler-1.0.1-py3-none-any.whl (4.4 kB view hashes)

Uploaded Python 3

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page