I am writing my own application.css to override default.css rules. I need to change the appHeader background color which hsould include till App Bar. Tried to changed appHeaderWrapper background color but no luck. when I refresh the page it shows my color at the blick of the eye but then it set to default color. I have used !important tag also but not helped. Any suggest? Thanks in advance ... View more

Trying to ask very internal thing but this is te requirement of my app. I want to change the background color of navigation menu options dropdown which is white by default. I am not able to find out which css or js file I need to approch for doing that. Any help? ... View more

I have include the html file in my view and I wrote a java script in tag in same html file and its works fine but when I write that same code in application.js file it is not picking up. I just want to ask when we write java script code in application.js how splunk view takes it like in one example I saw like we need to match the view name as if Splunk.util.getCurrentView()..or sometime window.onload ..<br> Please guide me abt application.js syntax please. I have done bump thing. :(</p> ... View more

I have customized the navigation menu in my app and one tab in Search. When user click on search it needs to open a popup box of form search. I have created a form search view and it is opening in same window in full screen. I need it to open in new window without full screen. Any thoughts for ow to achieve that? Do I need to add something in collection label tag in default xml or in redirector module true but it is not working. Please help. Thankyou ... View more

Right now I have my search like this my search..| stats list(EventID), list(Time), list(EventDescription) by CustID So in the result table it is showing more than one (group of) values of time,eventid and eventdescription for each customer (This is what my search doing) Now if I have three times per customer I need to display them in different color. How to achieve that. Any thoughts? ... View more

I have a view created using sideview, in which search result in populating in the form of table and I have one column in table as "Problem Fixed" and its values is 1 and 0 based on yes or no. Is it possible I can put right or wrong images in that column based on the field value. I really need to do that. Please help. Thanks ... View more

I am having a search in my view code and displaying results in the form of table. small example result: custid Eventid 10001 200 10001 300 10002 200 10002 100 10002 300 This time each line is coming in each row. Can we group together the same custid with different values on eventid as one row like custID eventid first row ->10001 200 300 second row->10002 200 100 300 Is there is any way to do that. Thanks ... View more

I am getting the result data in the form of table from the view's SimpleResultsTable. In result data I have the fields Custid and EventId. For one CustomerID we can have more than one eventId. CustID EventID 01 876 01 545 01 339 02 876 02 993 03 378 04 838 I want to make changes in $SPLUNK_HOME/etc/apps/ /appserver/static/my.css so that 1. Row color for each custid is different. 2. for each custid I want to make one row as custid EventID 876 01 545 339 876 02 993 03 378 The problem is that I know CSS but I don't know how to access value of CustID from simpleResultsTable and how to set row color on the basis of CustID value and group them together. I have tried to go thru documentation but I did not find the solution:( Please help me. ... View more

CustomerID Time CrashCount EventDescription 20:12:13:14:0A:45 09/19/2012 20:12:13.1 07 Poor IB SNR 20:12:13:14:0A:42 09/19/2012 20:12:13.1 04 HDD FULL 20:12:13:14:0A:45 09/19/2012 20:12:13.1 07 Poor IB SNR 20:12:13:14:0A:45 09/19/2012 20:12:13.1 02 HDD FULL 20:12:13:14:0A:41 09/19/2012 20:12:13.1 05 Poor IB SNR I have a data of the type shown above. The search that is generating this data is: <param name="search">sourcetype="$sourcetype$" | spath path="EID" output=EventID | spath path="CT" output=Critical | spath path="SID" output=StbID | search EventID="$EventID$" | search Critical="$Critical$" | search StbID="*" | fields - _raw | fields + StbID, _time, EventID | join type=inner EventID [ SEARCH sourcetype="jsonformat" | spath path="EID" output=EventID | spath path="EventDescription" output=EventDescription | FIELDS EventID, EventDescription ] | rename _time AS "Time", StbID AS "CustomerID" | convert ctime(Time) | search EventDescription="VMS*" | join type=inner EventID [ SEARCH sourcetype="jsonxmlall" | spath path="EID" output=EventID | spath path="CNT" output=CrashCount | spath path="LPD" output=LeakPerDay | spath path="IO" output=IOwait | spath path="SNR" output=SNRValue | spath path="TMP" output=HardDiskTemp | fields EventID, CrashCount, LeakPerDay, IOwait, SNRValue, HardDiskTemp ] </param> I need to sort this search on the basis of each column. Can you help me how to achieve that as I have tried so many things but not able to do that. Thanks in advance. ... View more