Splunk input plugin for Embulk

A simple plug-in to run a once-off Splunk query and emit the results.

Overview

• Plugin type: input
• Resume supported: no
• Cleanup supported: no
• Guess supported: no

Configuration

• type: splunk
• host: host of your splunk server (string, required)
• username: splunk username (string, required)
• password: splunk password (string, required)
• port: splunk API port (integer, default: 8089)
• query: the query you wish to run. It should be prefixed with "search" (string required)

Example

in:
  type: splunk
  host: splunk.example.com
  username: splunk_user
  password: abc123
  port: 8089
  query: "search index="main" | head 10"
out:
  type: stdout

Build

$ rake