Getting Data In

Hello,

I write a xxx.sh in the /splunk/etc/apps/my_apps/bin and by the commande line

./xxx.sh

to execute the code.

Could I add a bouton or something else in the interface of my app in Splunk

to trigger the xxx.sh.

Thank you very much
Hanzhi

http://answers.splunk.com/answers/25658/whats-the-point-of-custom-python-scripts.html

This is what I did
Put my custom python script in this folder
/var/sky/splunk/etc/system/bin

import csv
import sys
import splunk.Intersplunk
import string
(isgetinfo, sys.argv) = splunk.Intersplunk.isGetInfo(sys.argv)
if len(sys.argv) < 2:
splunk.Intersplunk.parseError("No arguments provided to custom script")

results = splunk.Intersplunk.readResults(None, None, True)
splunk.Intersplunk.outputResults(results)

Modify commands.conf file in below folder
/var/sky/splunk/etc/system/local

defaults for all external commands, exceptions are below in individual stanzas

type of script: 'python', 'perl'

TYPE = python

default FILENAME would be .py for python, .pl for perl and otherwise

is command streamable?

STREAMING = true

maximum data that can be passed to command (0 = no limit)

MAXINPUTS = 50000

end defaults

[customtest]
filename = customtest.py

To reload the setting run this URL in your browser (Just in case, if required)
https://SPLUNK_HOSTNAME:PORT/debug/refresh

And this is how we can use custom command in splunk
| customtest GETINFO [Inputparameters]

Get Updates on the Splunk Community!

Calling All Security Pros: Ready to Race Through Boston?

Hey Splunkers, .conf25 is heading to Boston and we’re kicking things off with something bold, competitive, and ...

Beyond Detection: How Splunk and Cisco Integrated Security Platforms Transform ...

Financial services organizations face an impossible equation: maintain 99.9% uptime for mission-critical ...

Customer success is front and center at .conf25

Hi Splunkers, If you are not able to be at .conf25 in person, you can still learn about all the latest news ...