Hi,
Alert is getting triggered, sendmail works fine but webhook not working.
if i search index=_internal action=webhook
I see below error :
ERROR sendmodalert - action=webhook - Execution of alert action script failed
INFO sendmodalert - action=webhook STDERR - Sending POST request to url=http://XXXXXXXX/ with size=448 bytes payload
And in the splunkd.log i see below error :
07-15-2020 18:35:41.311 +0200 WARN ScriptRunner - Killing script, probably timed out, grace=5sec, script="bla/bla/splunk/etc/apps/alert_webhook/bin/webhook.py --execute"
07-15-2020 18:35:41.314 +0200 ERROR sendmodalert - action=webhook - Execution of alert action script failed
07-15-2020 18:35:41.314 +0200 ERROR sendmodalert - Error in 'sendalert' command: Alert script execution failed.
07-15-2020 18:35:41.314 +0200 ERROR SearchScheduler - Error in 'sendalert' command: Alert script execution failed., search='sendalert webhook results_file=
Do I have to pass the token also along with the url in the webhook configuration page ?
Currently in the triggeracgtion -> Webhook -> url -> i have just added the client url like this : http://IPoftheclientmachine:port/
DO i have to append this with some token or something else at the end of the url ?
#metoo