Sidehistorik
...
This ways has Pros and Cons - read Access Logging in Confluence. On Pro is that the POST to Splunk in in the backend; so we dont need to open for the receiving system in the Firewall
In this in the sample, we will post to a Splunk HTTP Event Collector - after setup and getting the Splunk Key, the collector need a POST like this:
| Kodeblok |
|---|
{
"time": 1426279439,
"host": "localhost",
"source": "datasource",
"sourcetype": "txt",
"index": "main",
"event": { "hello": "world" }
} |
We do eliminate the "Time" field, as the POST is instantly from the Confluence server.
To achive this, we have setup a Script Event Handler:
...