Having problems building a Splunk Add-On?
During Splunk .conf19 we were proud to present ‘Building an Add-On Live’. James Odom’s presentation had a great reception and the ‘Demo Gods’ were with him on this occasion, check it out below:
It is a step by step guide to developing a Splunk Add-On. In particular a Google Traffic Add-On to pull Google Maps Traffic Data into Splunk.
Add-Ons can also be developed for key business applications, allowing important operational activities to be monitored. Furthermore by observing key activities, efficiencies and cost savings can be identified.
You can see Add-Ons working in practice by Big Data Beard on their .conf19 Road Trip. The 3 Big Data Beard engineers drove their Recreational Vehicle across the US to .conf19 in Las Vegas and they Splunked all kinds of data along the way, including bathroom usage……..
Step by Step Add-On Guide
Step 1 – Go to Splunkbase to check if the Add-On you’re looking for already exists
Step 2 – Research the APIs
- Do the APIs exist?
- Are there limitations with the APIs? (eg. cost)
- What are the query options?
Step 3 – Review the data
- How is the data structured?
- What format is the data in? (eg. JSON, XML)
- Which fields are returned by the search?
- How do the data values look?