Splunk Cloud HEC support for port 443 #7
Description
Hi,
I was setting up Splunk Guard Duty integration. Splunk Cloud HEC listens on port 443 but the code sets it to 8088. I worked around this by updating the ./splunk-logging/node_modules/splunk-logging/splunkLogger.js
var defaultConfig = {
name: "splunk-javascript-logging/0.9.3",
host: "localhost",
path: "/services/collector/event/1.0",
protocol: "https",
port: 443,
level: SplunkLogger.prototype.levels.INFO,
maxRetries: 0,
batchInterval: 0,
maxBatchSize: 0,
maxBatchCount: 1
};
Also, I had to manually override the Guard Duty index and source type in ./splunk-logger/index.js
logger.send({
message: event,
metadata: {
time: Date.now(),
host: 'serverless',
source: `lambda:${context.functionName}`,
sourcetype: 'aws:cloudwatch:guardduty',
index: 'my_index',
},
});
Any chance you can the code to add options to set these parameters.
Thank you,
Al