All Apps and Add-ons

Modifying webhook datapayload

SuganyaSSF
Explorer

Hi ,

We are using webhook in an alert action to posts the results using rest api.
But the rest api requires data payload (JSON Object) with some additional details that we need to send from our end.
Is it possible to customize the data payload that web hook provides.
Or we need to create customized alert action.

It would be very helpful if i get any information on this.

mroman_splunk
Splunk Employee
Splunk Employee

Hello per the documentation on the developer website:

"The webhook functionality is built into Splunk Enterprise as an app, and is located here: $SPLUNK_HOME/etc/apps/alert_webhook. If you are so inclined, you can clone it, and then modify it however you want. For example, you might choose to do this if your application accepts a specific payload that does not match to the Splunk Enterprise default."

http://dev.splunk.com/view/dev-guide/SP-CAAAE7A

0 Karma

paolananci
New Member

Any news on the topic? I am interested as well.

0 Karma

mroman_splunk
Splunk Employee
Splunk Employee

Hello per the documentation on the developer website:

"The webhook functionality is built into Splunk Enterprise as an app, and is located here: $SPLUNK_HOME/etc/apps/alert_webhook. If you are so inclined, you can clone it, and then modify it however you want. For example, you might choose to do this if your application accepts a specific payload that does not match to the Splunk Enterprise default."

http://dev.splunk.com/view/dev-guide/SP-CAAAE7A

0 Karma
Get Updates on the Splunk Community!

Developer Spotlight with Brett Adams

In our third Spotlight feature, we're excited to shine a light on Brett—a Splunk consultant, innovative ...

Index This | What can you do to make 55,555 equal 500?

April 2025 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with this ...

Say goodbye to manually analyzing phishing and malware threats with Splunk Attack ...

In today’s evolving threat landscape, we understand you’re constantly bombarded with phishing and malware ...