update

ZachtimusPrime · ZachtimusPrime · commit 189ee1fdad18 · 2017-01-05T10:15:37.000-06:00
diff --git a/.travis.yml b/.travis.yml
@@ -9,11 +9,9 @@ before_install:
 install:
         - #
 before_script:
-        - gofmt -d -s .
-        - go vet ./...                        # some lint type checking
-        - echo "vetting all go files?"
-        - go tool vet ./*.go
+        - gofmt -d -s .                       # gofmt code so it's pretty
+        - go vet ./...                        # some lint-type checking
 script:
         # - diff -u <(echo -n) <(gofmt -d -s .)
         # - go test -v -race ./...            # run go tests
-        - $HOME/gopath/bin/goveralls -service=travis-ci
+        - $HOME/gopath/bin/goveralls -service=travis-ci   # run code coverage
diff --git a/splunk/splunk.go b/splunk/splunk.go
@@ -0,0 +1,84 @@
+package splunk
+
+import (
+	"crypto/tls"
+	"time"
+	"bytes"
+	"os"
+	"net/http"
+	"encoding/json"
+	"errors"
+)
+
+// event represents the log event object that is sent to Splunk when *HTTPCollector.Log is called.
+type Event struct {
+	Time 		int64		`json:"time" binding:"required"`	// epoch time in seconds
+	Host		string  	`json:"host" binding:"required"`	// hostname
+	Source		string  	`json:"source" binding:"required"`	// app name
+	SourceType	string 		`json:"sourcetype" binding:"required"`	// Splunk bucket to group logs in
+	Index		string		`json:"index" binding:"required"`	// idk what it does..
+	Event		map[string]string `json:"event" binding:"required"`	// throw any useful key/val pairs here
+}
+
+// HTTPCollector handles the connection to the Splunk server. Once initialized, you just call the *HTTPCollector.Log
+// function to send off an HTTP log event.
+type HTTPCollector struct {
+	Url		string		`json:"url" binding:"required"`
+	Token		string		`json:"token" binding:"required"`
+	Source 		string		`json:"source" binding:"required"`
+	SourceType 	string		`json:"sourcetype" binding:"required"`
+	Index		string		`json:"index" binding:"required"`
+}
+
+// Log takes in a map[string]string of key/val pairs that you would like sent to Splunk in a log event, and bundles them
+// with the timestamp, hostname, source, sourcetype, and index specified in the HTTPCollector initialization.
+//
+// These can be any values/variables available to you that are of use.
+// i.e. {"error": "critical info here", "status_code": "404"}
+func (sl *HTTPCollector) Log(event map[string]string) (err error){
+	hostname, _ := os.Hostname()
+	// create Splunk log
+	splunklog := Event{
+		Time: time.Now().Unix(),
+		Host: hostname,
+		Source: sl.Source,
+		SourceType: sl.SourceType,
+		Index: sl.Index,
+		Event: event,
+	}
+
+	// Convert requestBody struct to byte slice to prep for http.NewRequest
+	b, err := json.Marshal(splunklog)
+	if err != nil {
+		return err
+	}
+
+	//log.Print(string(b[:])) // print what the splunk post body will be for checking/debugging
+
+	// make new request
+	url := sl.Url
+	req, err := http.NewRequest("POST", url, bytes.NewBuffer(b))
+	req.Header.Add("Content-Type", "application/json")
+	req.Header.Add("Authorization", "Splunk " + sl.Token)
+	tr := &http.Transport{TLSClientConfig: &tls.Config{InsecureSkipVerify: true}} // turn off certificate checking
+	client := &http.Client{Transport: tr}
+
+	// receive response
+	res, err := client.Do(req)
+	if err != nil {
+		return err
+	}
+
+	// If statusCode is not good, return error string
+	switch res.StatusCode {
+	case 200:
+	default:
+		// Turn response into string and return it
+		buf := new(bytes.Buffer)
+		buf.ReadFrom(res.Body)
+		responseBody := buf.String()
+		err = errors.New(responseBody)
+		//log.Print(responseBody)	// print error to screen for checking/debugging
+	}
+	return err
+}
