All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to configure request payload in a POST HTTP Method with REST API Modular Input?

erwan_raulet
Explorer
‎03-26-2019 09:54 AM

I want to use REST API Modular Input to count alarms from my Spectrum monitoring tool.
Here's the query I'm using with Postman to query my Spectrum server:

POST /spectrum/restful/alarms/count HTTP/1.1 
Host: MyServer:8080
Content-Type: application/xml,application/json
Authorization: Basic YmNpdC1waWwdcnBpbG90ZTE=
cache-control: no-cache 
<?xml version="1.0" encoding="UTF-8"?>
<rs:alarms-count-request xmlns:rs="http://www.ca.com/spectrum/restful/schema/request"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.ca.com/spectrum/restful/schema/request
../../../xsd/Request.xsd ">
<rs:alarm-filter name="def"/> 
</rs:alarms-count-request>

And the response:

<?xml version="1.0" encoding="UTF-8"
standalone="yes"?>
<alarmcount-response
xmlns="http://www.ca.com/spectrum/restful/schema/response">
    <critical>3</critical>
    <major>2</major>
    <minor>4</minor> </alarmcount-response>

Now its configuration in the module REST_ta of Splunk.

alt text

I get an HTTP 500 error in splunkd.log
I think this comes from the Request Payload field but I do not see my error. Can someone help me?

Preview file
97 KB
0 Karma
Reply

AKG1_old1
Builder
‎09-24-2021 12:11 PM

@erwan_raulet : Did you able to solve it  ? I have the same requirements. Not sure what format required in payload 

0 Karma
Reply
Get Updates on the Splunk Community!

From GPU to Application: Monitoring Cisco AI Infrastructure with Splunk Observability ...

AI workloads are different. They demand specialized infrastructure—powerful GPUs, enterprise-grade networking, ...

Application management with Targeted Application Install for Victoria Experience

  Experience a new era of flexibility in managing your Splunk Cloud Platform apps! With Targeted Application ...

Index This | What goes up and never comes down?

January 2026 Edition  Hayyy Splunk Education Enthusiasts and the Eternally Curious!   We’re back with this ...