I have just one parameter I need to pass through my API, it is a string, here is how my "Response Handler Arguments" field looks in the Splunk apps settings for the REST data input:
string=abc
I've seen a few questions on here and people seem to have this format for their arguments.
Now I want to pass this string into the handler, and then add it on to the events I am streaming into Splunk. My question is, how do I access this string for use in the python program.
I've tried the traditional args method of python, but it's running rest.py or another program which isn't the same program. I've tried logging the values in the "req_args" value passed into the "call_" function, to see what they are, but they don't seem to contain my string value.
In a few other examples[1], people seem to check if the "req_args" contains a "params" key, value pair, and if it doesn't they create one, and then create the arguments in the program. I am very confused by this as I assumed the idea of arguments was to pass them from outside the program, so I'm confused as to why people are creating parameters during the programs execution and then doing nothing with them.
Thanks!
class MyJSONArrayHandler:
def __init__(self,**args):
self.somekey = args['somekey']
pass
def __call__(self, response_object,raw_response_output,response_type,req_args,endpoint):
if response_type == "json":
output = json.loads(raw_response_output)
for entry in output['value']:
entry['somekey'] = self.somekey
print_xml_stream(json.dumps(entry))
else:
print_xml_stream(raw_response_output)
class MyJSONArrayHandler:
def __init__(self,**args):
self.somekey = args['somekey']
pass
def __call__(self, response_object,raw_response_output,response_type,req_args,endpoint):
if response_type == "json":
output = json.loads(raw_response_output)
for entry in output['value']:
entry['somekey'] = self.somekey
print_xml_stream(json.dumps(entry))
else:
print_xml_stream(raw_response_output)
Worked for me, thanks a lot!