Tag Cloud with Tokens

nyp_kwyc · ‎02-10-2015

 <html>
                <div id="tagcloud-search"
                     class="splunk-manager splunk-searchmanager "
                     data-require="splunkjs/mvc/searchmanager"
                     data-options='{
                            "app": "simple_xml_examples",
                            "preview": true,
                            "search": "index=_internal source=*metrics.log group=pipeline host$host$ | stats max(cpu_seconds) as cpu_seconds sum(executes) as executes sum(cumulative_hits) as cumulative_hits by processor",
                            "earliest_time": { "type": "token_safe", "value": "$$earliest$$" },
                            "latest_time": { "type": "token_safe", "value": "$$latest$$" }
                        }'>
                </div>

                <div id="tagcloud"
                     class="splunk-view"
                     data-require="app/simple_xml_examples/components/tagcloud/tagcloud"
                     data-options='{
                            "minFontSize": 15,
                            "maxFontSize": 95,
                            "managerid": "tagcloud-search",
                            "valueField": { "type": "token_safe", "value": "$$metric$$" },
                            "labelField": "processor"
                         }'>
                </div>
            </html>

Is it possible to assign token on the search query for $host$

NOUMSSI · ‎03-30-2015

Hi,

It's possible to assign token on the search query for $host$. Replace your query by this:

"search": "index=_internal source=*metrics.log group=pipeline host=$host$ | stats max(cpu_seconds) as cpu_seconds sum(executes) as executes sum(cumulative_hits) as cumulative_hits by processor"

Tag Cloud with Tokens

Archived Metrics Now Available for APAC and EMEA realms

Detecting Remote Code Executions With the Splunk Threat Research Team

Enter the Dashboard Challenge and Watch the .conf24 Global Broadcast!