Slack/Mattermost Plugin for Graylog
Required Graylog version: 2.0 and later.
Please use version 2.1.0 of this plugin if you are still running Graylog 1.x
Detailed alarm notification and message output:
This plugin can notify Slack or Mattermost channels about triggered alerts in Graylog (Alarm Callback) and also forward each message routed into a stream (Message Output) in realtime.
Short mode message output:
Great for streams with higher message throughput. The screenshot shows the output of a nightly task that updates information of the Graylog Marketplace.
Changes in v3.0
- Templated message are now supported. They use the same format as email alerts.
Download the plugin
and place the
.jar file in your Graylog plugin directory. The plugin directory
plugins/ folder relative from your
graylog-server directory by default
and can be configured in your
Step 1: Create Slack Incoming Webhook
graylog-server and you are done.
Create a new Slack Incoming Webhook (
Step 1: Create Mattermost Incoming Webhook
https://<organization>.slack.com/services/new/incoming-webhook) and copy the URL it will present to you. It will ask you to select a Slack channel but you can override it in the plugin configuration later.
Enable Webhooks in general and create an incoming Webhook for Graylog as described in the Mattermost docs.
Step 2: Create alarm callback or message output
Create a "Slack alarm callback" on the "Manage alerts" page of your stream. Enter the requested configuration (use the Incoming Webhook URL you created in step 1) and save. Make sure you also configured alert conditions for the stream so that the alerts are actually triggered.
The same applies for message outputs which you can configure in Stream - > Manage Outputs.
HTTPS connection fails
If the Java runtime environment and the included SSL certificate trust store is too old, HTTPS connections to Slack might fail with the following error message:
Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
In this case, add the Slack SSL certificate manually to Java's trust store similar to the process described in the Graylog documentation.
This project is using Maven and requires Java 8 or higher.
You can build a plugin (JAR) with
DEB and RPM packages can be build with
mvn jdeb:jdeb and
mvn rpm:rpm respectively.
We are using the maven release plugin:
$ mvn release:prepare
$ mvn release:perform
This sets the version numbers, creates a tag and pushes to GitHub. TravisCI will build the release artifacts and upload to GitHub automatically.