blob: c077948f98ff09aa2bfa5d4651a6dd2c37b25e02 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
|
#!/bin/bash -x
#
# from https://raw.githubusercontent.com/elastic/beats-dashboards/master/load.sh
# Usage examples:
# env KIBANA_INDEX='.kibana_env1' ./load.sh
# ./load.sh -url http://test.com:9200
# ./load.sh -url http://test.com:9200 -user admin:secret
# ./load.sh -url http://test.com:9200 -index .kibana-test
# The default value of the variable. Initialize your own variables here
ELASTICSEARCH=http://localhost:9200
CURL='curl --netrc'
KIBANA_INDEX=".kibana"
BEAT_CONFIG=".beatconfig"
print_usage() {
echo "
Load the dashboards, visualizations and index patterns into the given
Elasticsearch instance.
Usage:
$(basename "$0") -url ${ELASTICSEARCH} -user admin:secret -index ${KIBANA_INDEX}
Options:
-h | -help
Print the help menu.
-l | -url
Elasticseacrh URL. By default is ${ELASTICSEARCH}.
-u | -user
Username and password for authenticating to Elasticsearch using Basic
Authentication. The username and password should be separated by a
colon (i.e. "admin:secret"). By default no username and password are
used.
-i | -index
Kibana index pattern where to save the dashboards, visualizations,
index patterns. By default is ${KIBANA_INDEX}.
" >&2
}
while [ "$1" != "" ]; do
case $1 in
-l | -url )
ELASTICSEARCH=$2
if [ "$ELASTICSEARCH" = "" ]; then
echo "Error: Missing Elasticsearch URL"
print_usage
exit 1
fi
;;
-u | -user )
USER=$2
if [ "$USER" = "" ]; then
echo "Error: Missing username"
print_usage
exit 1
fi
CURL="${CURL} --user ${USER}"
;;
-i | -index )
KIBANA_INDEX=$2
if [ "$KIBANA_INDEX" = "" ]; then
echo "Error: Missing Kibana index pattern"
print_usage
exit 1
fi
;;
-h | -help )
print_usage
exit 0
;;
*)
echo "Error: Unknown option $2"
print_usage
exit 1
;;
esac
shift 2
done
if [ -f ${BEAT_CONFIG} ]; then
for ln in `cat ${BEAT_CONFIG}`; do
BUILD_STRING="${BUILD_STRING}s/${ln}/g;"
done
SED_STRING=`echo ${BUILD_STRING} | sed 's/;$//'`
fi
# Failsafe
if [ -z ${SED_STRING} ]; then
SED_STRING="s/packetbeat-/packetbeat-/g;s/filebeat-/filebeat-/g;s/topbeat-/topbeat-/g;s/winlogonbeat-/winlogonbeat-/g"
fi
DIR=.
echo "Loading dashboards to ${ELASTICSEARCH} in ${KIBANA_INDEX}"
# Workaround for: https://github.com/elastic/beats-dashboards/issues/94
${CURL} -XPUT "${ELASTICSEARCH}/${KIBANA_INDEX}"
${CURL} -XPUT "${ELASTICSEARCH}/${KIBANA_INDEX}/_mapping/search" -d'{"search": {"properties": {"hits": {"type": "integer"}, "version": {"type": "integer"}}}}'
TMP_SED_FILE="${DIR}/search/tmp_search.json"
for file in ${DIR}/search/*.json
do
NAME=`basename ${file} .json`
echo "Loading search ${NAME}:"
sed ${SED_STRING} ${file} > ${TMP_SED_FILE}
${CURL} -XPUT ${ELASTICSEARCH}/${KIBANA_INDEX}/search/${NAME} \
-d @${TMP_SED_FILE} || exit 1
echo
done
rm ${TMP_SED_FILE}
for file in ${DIR}/index-pattern/*.json
do
NAME=`awk '$1 == "\"title\":" {gsub(/[",]/, "", $2); print $2}' ${file}`
echo "Loading index pattern ${NAME}:"
${CURL} -XPUT ${ELASTICSEARCH}/${KIBANA_INDEX}/index-pattern/${NAME} \
-d @${file} || exit 1
echo
done
for file in ${DIR}/visualization/*.json
do
NAME=`basename ${file} .json`
echo "Loading visualization ${NAME}:"
${CURL} -XPUT ${ELASTICSEARCH}/${KIBANA_INDEX}/visualization/${NAME} \
-d @${file} || exit 1
echo
done
for file in ${DIR}/dashboard/*.json
do
NAME=`basename ${file} .json`
echo "Loading dashboard ${NAME}:"
${CURL} -XPUT ${ELASTICSEARCH}/${KIBANA_INDEX}/dashboard/${NAME} \
-d @${file} || exit 1
echo
done
# Clear cache
${CURL} -XPOST ${ELASTICSEARCH}/_cache/clear
|