I'd like to pull in JSON data like the one that is available from dev dot moves-app dot com slash activities. (It's from an API from an iOS app called Moves which tracks people's movements.)
I can think of lots of strategies, but I'd rather not reinvent the wheel. One issue (which could be a separate question), is how to get the data from the API into Splunk. My guess for that would be to build on top of the REST API Modular Input Splunk app, or write it myself.
My main question is to how to best handle the data once it comes in. The JSON that the API serves is quite different from traditional log data.
Thanks in advance!
... View more