本文整理汇总了Python中splunklib.client.connect函数的典型用法代码示例。如果您正苦于以下问题:Python connect函数的具体用法?Python connect怎么用?Python connect使用的例子?那么恭喜您, 这里精选的函数代码示例或许可以为您提供帮助。
在下文中一共展示了connect函数的15个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的Python代码示例。
示例1: test_read_outputs_with_type
def test_read_outputs_with_type(self):
name = testlib.tmpname()
service = client.connect(**self.opts.kwargs)
service.post('data/outputs/tcp/syslog', name=name, type='tcp')
entity = client.Entity(service, 'data/outputs/tcp/syslog/' + name)
self.assertTrue('tcp', entity.content.type)
if service.restart_required:
self.restartSplunk()
service = client.connect(**self.opts.kwargs)
client.Entity(service, 'data/outputs/tcp/syslog/' + name).delete()
if service.restart_required:
self.restartSplunk()示例2: on_message
def on_message(identifier, channel, payload):
print "on_message: %s" % payload
print identifier
print channel
print payload
service = client.connect(username="admin", password="yuchin1234")
cn = service.indexes["testing"].attach()
try:
decoded = json.loads(str(payload))
except:
decoded = {'raw': payload}
if not 'md5' in decoded or not 'data' in decoded:
log.info("Received message does not contain hash or data - Ignoring it")
return
csv = ', '.join(['{0} = {1}'.format(i, decoded[i]) for i in ['url', 'md5', 'sha1', 'type']])
outmsg = 'PUBLISH channel = %s, identifier = %s, %s' % (channel, identifier, csv)
log.info(outmsg)
cn.write(outmsg)
filedata = decoded['data'].decode('base64')
fpath = os.path.join(OUTDIR, decoded['md5'])
with open(fpath, 'wb') as fd:
fd.write(filedata)示例3: test_read
def test_read(self):
service = client.connect(**self.opts.kwargs)
for alert_group in service.fired_alerts:
alert_group.count
for alert in alert_group.alerts:
alert.content示例4: main
def main():
usage = "usage: follow.py <search>"
opts = utils.parse(sys.argv[1:], {}, ".splunkrc", usage=usage)
if len(opts.args) != 1:
utils.error("Search expression required", 2)
search = opts.args[0]
service = client.connect(**opts.kwargs)
job = service.jobs.create(search, earliest_time="rt", latest_time="rt", search_mode="realtime")
# Wait for the job to transition out of QUEUED and PARSING so that
# we can if its a transforming search, or not.
while True:
job.refresh()
if job["dispatchState"] not in ["QUEUED", "PARSING"]:
break
time.sleep(2) # Wait
if job["reportSearch"] is not None: # Is it a transforming search?
count = lambda: int(job["numPreviews"])
items = lambda _: job.preview()
else:
count = lambda: int(job["eventCount"])
items = lambda offset: job.events(offset=offset)
try:
follow(job, count, items)
except KeyboardInterrupt:
print "\nInterrupted."
finally:
job.cancel()示例5: main
def main():
usage = "usage: %prog <search>"
opts = utils.parse(sys.argv[1:], {}, ".splunkrc", usage=usage)
if len(opts.args) != 1:
utils.error("Search expression required", 2)
search = opts.args[0]
service = connect(**opts.kwargs)
try:
result = service.get(
"search/jobs/export", search=search, earliest_time="rt", latest_time="rt", search_mode="realtime"
)
reader = results.ResultsReader(result.body)
while True:
kind = reader.read()
if kind == None:
break
if kind == results.RESULT:
event = reader.value
pprint(event)
except KeyboardInterrupt:
print "\nInterrupted."示例6: connect
def connect(self):
try:
self.service = client.connect(host=self.host, port=self.port, username=self.user, password=self.pasw)
except Exception as e:
msg = '[!] Error: %s' % str(e)
if self.verbose:
print msg示例7: test_crud
def test_crud(self):
service = client.connect(**self.opts.kwargs)
event_types = service.event_types
if 'sdk-test' in event_types:
event_types.delete('sdk-test')
self.assertFalse('sdk-test' in event_types)
kwargs = {}
kwargs['search'] = "index=_internal *"
kwargs['description'] = "An internal event"
kwargs['disabled'] = 1
kwargs['priority'] = 2
event_type = event_types.create('sdk-test', **kwargs)
self.assertTrue('sdk-test' in event_types)
self.assertEqual('sdk-test', event_type.name)
self.check_content(event_type, **kwargs)
kwargs['search'] = "index=_audit *"
kwargs['description'] = "An audit event"
kwargs['priority'] = 3
event_type.update(**kwargs)
event_type.refresh()
self.check_content(event_type, **kwargs)
event_type.enable()
event_type.refresh()
self.check_content(event_type, disabled=0)
event_types.delete('sdk-test')
self.assertFalse('sdk-teset' in event_types)示例8: rds_controller
def rds_controller(rds_list, username, password, hostname, splunkusername, splunkpassword, port, indexname):
for item in rds_list:
rds_host_endpoint = item["Endpoint"]
rds_port = item["Port"]
connection = pymysql.connect(host=rds_host_endpoint, port=rds_port,
user=username, password=password)
cursor = connection.cursor()
cursor.execute("""
SHOW ENGINE INNODB STATUS;
""")
rds_result = cursor.fetchall()
cursor.close()
connection.close()
regex = r"-{4,}\sLATEST DETECTED DEADLOCK\s-{4,}\s((.*)\s)*?-{4,}"
global_str = ""
for row in rds_result:
matches = re.finditer(regex, row[2])
for matchNum, match in enumerate(matches, start=1):
global_str = match.group()
expr = re.compile(r"\d{4}-\d{2}-\d{2} \d{2}:\d{2}:\d{2}")
global_str = re.sub(expr, '', global_str)
#to avoid empty dead locks
if len(global_str) > 0:
service = splunk_client.connect(host=hostname, port=port, username=splunkusername, password=splunkpassword)
myindex = service.indexes[indexname]
# Open a socket
mysocket = myindex.attach(host=rds_host_endpoint, source="INNODB STATUS", sourcetype="RDS")
# Send events to it
mysocket.send(global_str)
# Close the socket
mysocket.close()示例9: test_read
def test_read(self):
service = client.connect(**self.opts.kwargs)
for message in service.messages:
self.check_message(message)
message.refresh()
self.check_message(message)示例10: test_settings
def test_settings(self):
service = client.connect(**self.opts.kwargs)
settings = service.settings
# Verify that settings contains the keys we expect
keys = [
"SPLUNK_DB", "SPLUNK_HOME", "enableSplunkWebSSL", "host",
"httpport", "mgmtHostPort", "minFreeSpace", "pass4SymmKey",
"serverName", "sessionTimeout", "startwebserver", "trustedIP"
]
for key in keys: self.assertTrue(key in settings.content)
# Verify that we can update the settings
original = settings['sessionTimeout']
self.assertTrue(original != "42h")
settings.update(sessionTimeout="42h")
settings.refresh()
updated = settings['sessionTimeout']
self.assertEqual(updated, "42h")
# Restore (and verify) original value
settings.update(sessionTimeout=original)
settings.refresh()
updated = settings['sessionTimeout']
self.assertEqual(updated, original)示例11: test_crud
def test_crud(self):
service = client.connect(**self.opts.kwargs)
saved_searches = service.saved_searches
if 'sdk-test1' in saved_searches:
saved_searches.delete('sdk-test1')
self.assertFalse('sdk-test1' in saved_searches)
search = "search index=sdk-tests * earliest=-1m"
saved_search = saved_searches.create('sdk-test1', search)
self.assertEqual('sdk-test1', saved_search.name)
self.assertTrue('sdk-test1' in saved_searches)
saved_search = saved_searches['sdk-test1']
self.check_content(saved_search, is_visible=1)
saved_search.update(is_visible=False)
saved_search.refresh()
self.check_content(saved_search, is_visible=0)
saved_searches.delete('sdk-test1')
self.assertFalse('sdk-test1' in saved_searches)
saved_search = saved_searches.create(
'sdk-test1', search, is_visible=False)
self.assertEqual('sdk-test1', saved_search.name)
self.assertTrue('sdk-test1' in saved_searches)
self.check_content(saved_search, is_visible=0)
saved_searches.delete('sdk-test1')
self.assertFalse('sdk-test1' in saved_searches)示例12: test_dispatch
def test_dispatch(self):
service = client.connect(**self.opts.kwargs)
saved_searches = service.saved_searches
if 'sdk-test1' in saved_searches:
saved_searches.delete('sdk-test1')
self.assertFalse('sdk-test1' in saved_searches)
search = "search index=sdk-tests * earliest=-1m"
saved_search = saved_searches.create('sdk-test1', search)
self.assertEqual('sdk-test1', saved_search.name)
self.assertTrue('sdk-test1' in saved_searches)
job = saved_search.dispatch()
testlib.wait(job, lambda job: bool(int(job['isDone'])))
job.results().close()
job.cancel()
# Dispatch with some additional options
kwargs = { 'dispatch.buckets': 100 }
job = saved_search.dispatch(**kwargs)
testlib.wait(job, lambda job: bool(int(job['isDone'])))
job.timeline().close()
job.cancel()
saved_searches.delete('sdk-test1')
self.assertFalse('sdk-test1' in saved_searches)示例13: __init__
def __init__(self, splunk_conf, splunk_evt, splunk_index):
self.splunk = client.connect(**splunk_conf)
if not splunk_index in self.splunk.indexes:
self.index = self.splunk.indexes.create(splunk_index)
else:
self.index = self.splunk.indexes[splunk_index]
self.socket = self.index.attach(**splunk_evt)示例14: test_read
def test_read(self):
service = client.connect(**self.opts.kwargs)
for index in service.indexes:
self.check_index(index)
index.refresh()
self.check_index(index)示例15: test_read
def test_read(self):
service = client.connect(**self.opts.kwargs)
for role in service.roles:
self.check_role(role)
role.refresh()
self.check_role(role)