Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

Alerts can be used to notify recipients about status changes to your checks. They can be sent by email address, SMS messages, or integrated 3rd party service.

Info

Complex alerting setups can be tricky. If you have any questions about alert configuration, please send a support ticket to support@apica.io, and we will help you with the setup and testing process.

Here’s an example of some configured recipients, some of which are disabled:

Image Modified

Alerts configured for a browser check, all enabled:

Image Modified

Note: The alerts are all enabled, but since most of the targets are disabled, alerts will be triggered but not sent for these.

...

  • Create or Add a User to receive the alerts (Who gets the alert?).

  • Create Targets for the recipients' delivery method (How are the alerts delivered? e.g., PagerDuty, SMS Text, Email, etc.).

  • (Optional) Create a Group containing multiple recipients for the alert.

  • Create the Alerts themselves by selecting checks and assigning recipients.

Step

Screenshot

Add Recipients

The Users and Groups you set to receive Alerts are set up in the Recipients tab.  

There is a column to define Users and their contact information, as well as Groups.

Image Modified

First Step: Add a User

Recipients are the users or groups of users you select to receive the alerts.

  • Click the Add User button.

  • Enter the necessary user information:

    • User Name

    • User Description

    • User Phone Number (doubles as Target)

    • User Email (doubles as a Target)

    • Click the Create User button.

    • The user is created, containing the two default targets.

Image ModifiedImage ModifiedImage ModifiedImage Modified

Second Step: Add Group

Recipient groups are collections of user targets you select to receive the alerts.

Info

Note: You need to create the users and targets before you can add them to a group.

Create Group

To add a recipient group:

  • Click the Add Group button.

  • Enter a name for the group

  • Find the Users you want to include in the group.

  • Click the checkbox next to each Target.

  • Click Create Group

    • The group is created, containing the selected user/targets.

Image ModifiedImage ModifiedImage Modified

Targets

When defining alert recipients, you can have the message delivered via various target services.

For each User or Group Recipient, you add delivery Targets that define the method of delivery.

User

You can select to add PagerDuty, Email, a WebHook integration, or SMS (text message) as targets.

Groups

When you have defined targets for individual users, you can add them to Groups:

Image ModifiedImage ModifiedImage Modified

Alerts Tab

The Alerts tab allows you to set Severity, Targets (individual users), and Groups (of users) to review alerts according to the parameters you prefer.

Alerts can be set for individual checks and be delivered to multiple Targets.

Image Modified

Add Alert

You can add alerts for any checks and select one or several severities to include in the alert. Each alert can have multiple Recipients, and each recipient can have multiple Targets.

Create Alert

To add an alert:

  • Find the checks you want to create alerts for

  • Search for checks with the Filter search by

OR:

  • Expand the Monitor Groups as needed

  • Mark the Checks you want to include in the alert:

  • Mark the levels of Severity you want to send alerts for

  • Mark the users or groups your want to send alerts to

  • Click the Create Alert button.

Image Modified

Image Modified

...

Configuring Different Alerting Types

...

Webhooks: When there’s a business service that needs to ingest information about an Apica monitoring check (status, alert, message), the Webhook, as a push service, is a passive way to receive this information. So, a set of alert integration placeholders has been defined and customized to your service needs.

Note

Depending on what the purpose is, two placeholder characters denote an Apica placeholder.

  • Message and Alert placeholders are each surrounded by the % character.

  • Webhook placeholders are each surrounded by the # character.

Message Placeholders

...

A placeholder has the following format:

%placeholder-name%

There is a set of predefined placeholders configured in ASM:

Placeholder

Meaning

Example

Event-based Placeholders

%E%

Event symbol. For check-based events, this is the CheckConfig.check_symbol value.

N84_M377_C1000_URL_20090227_013715_307

%M%

Event message text.

Message

%N%

The NETBIOS name of the host is the source of the event.

Node

%QM%

Event message text with any double-quotes (") replaced by single-quotes (').

Message

%S%

Event severity as one upper-case character, I, W, E, or F.

Severity

%SEV%

Event severity as one word, Info, Warning, Error, or Fatal.

Severity

%T%

Agent-local timestamp. Format YYYY-MM-DD HH:MM:SS.

Timestamp

%UTC-T%

UTC timestamp with a 'T' between the date and time portions. Format YYYY-MM-DDTHH:MM:SS.

Timestamp (UTC)

%UTC%

The timestamp of the event is expressed in UTC. Format YYYY-MM-DD HH:MM:SS.

Timestamp (UTC)

For Check-based Events, Use the Following Placeholders

%CHECK_ID%

Check id (32-bit positive integer from CheckConfig.id)

%CHECK_GUID%

Check GUID.

A UUID from CheckConfig.check_guid, in the format XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX

%CHECK_NAME%

Check descriptor (from CheckConfig.check_descriptor)

%CHECK_TYPE%

Check descriptor (based on CheckConfig.check_type)

URL, Command, Ping, Port, Scenario, Fullpage (IE), or Fullpage

%MODULE_NAME%

Check module descriptor (from NodeModule.amm_descriptor)

%OLD_SEV_CHAR%

Previous check severity as an uppercase letter

(I, W, E, or F)

%NEW_SEV_CHAR%

Current check severity as an uppercase letter

(I, W, E, or F)

%OLD_SEV_WORD%

Previous check severity as a word

(Info, Warning, Error or Fatal)

%NEW_SEV_WORD%

Current check severity as a word

(Info, Warning, Error or Fatal)

%RESULT_GUID%

Check Result UUID without dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d718fa949cb86c9ccfc93ff1876

%RESULT_G-U-I-D%

Check Result UUID with dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d71-8fa9-49cb-86c9-ccfc93ff1876. Replaced by an empty string if no result identifier is part of the event.

%TT%

Timestamp adjusted to the timezone of the current dispatch target (maybe based on user/customer). Falls back to UTC.

Format YYYY-MM-DD HH:MM:SS (TZ-offset) or YYYY-MM-DD HH:MM:SS if UTC.

%CHECK_TAGS%

A set of Key, Value pairs assigned to the check.

"Key 1: Value 1, Value 2, Value 3; Key 2: Value 1, Value 2, Value 3"

Placeholders that may be available if the Alerter uses a check information cache

%CHECK_DESCRIPTION%

Check description (from CheckConfig.check_description). For CLI-targets, any embedded carriage return/newline (CR/LF) character combinations (\r\n) s are replaced by a space, then the remaining CR and LF are replaced by empty strings.

%xmlsafe:CHECK_DESCRIPTION%

Check description (from CheckConfig.check_description) with any XML-unsafe characters replaced by character entities.

e.g. & -> &. Same rules apply for embedded CR and LF as for %CHECK_DESCRIPTION%.

%GROUPS%

List of monitor groups to which the check belongs. A comma-separated list of "top group/subgroup" entries. Since a check can be associated with more than one monitor group (possibly belonging to different users), the list can contain more than one entry.

Event-Related Placeholders

Placeholder

Description

Example

%E%

Event symbol. For check-based events, this is the CheckConfig.check_symbol value.

 

%M%

Event message text.

%QM%

Event message text with any double-quotes (") replaced by single-quotes (').

%S%

Event severity as one upper-case character, I, W, E, or F.

%SEV%

Event severity as one word, Info, Warning, Error, or Fatal.

%UTC%

The timestamp of the event is expressed in UTC.

 Format YYYY-MM-DD HH:MM:SS.

%UTC-T%

UTC timestamp with a 'T' between the date and time portions.

Format YYYY-MM-DDTHH:MM:SS.

Check-related Placeholders

Placeholder

Description

Example

%CHECK_DESCRIPTION%

Check description. For CLI-targets, any embedded carriage return/newline (CR/LF) character combinations (\r\n) are replaced by a space, then the remaining CR and LF are replaced by empty strings.

%CHECK_GUID%

Check GUID.

A UUID in the format XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX.

%CHECK_ID%

Check ID.

%CHECK_NAME%

Check name.

%CHECK_TAGS%

A set of Key: Value pair(s) assigned to the check, with the format: "Key 1: Value 1, Value 2, Value 3; Key 2: Value 1, Value 2, Value 3"

%CHECK_TYPE%

Check descriptor.

URL, Command, Ping, Port, Scenario, Fullpage (IE), or Fullpage

%GROUPS%

List of monitor groups to which the check belongs.

A comma-separated list of "top group/subgroup" entries. Since a check can be associated with more than one monitor group (possibly belonging to different users), the list can contain more than one entry.

%LOCATION%

The location from which the check is executed.

%NEW_SEV_CHAR%

Current check severity as an uppercase letter.

(I, W, E or F)

%NEW_SEV_WORD%

Current check severity as a word.

(Info, Warning, Error or Fatal)

%OLD_SEV_CHAR%

Previous check severity as an uppercase letter.

(I, W, E or F)

%OLD_SEV_WORD%

Previous check severity as a word.

(Info, Warning, Error or Fatal)

%RESULT_G-U-I-D%

Check Result UUID with dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d71-8fa9-49cb-86c9-ccfc93ff1876. Replaced by an empty string if no result identifier is part of the event.

%RESULT_GUID%

Check Result UUID without dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d718fa949cb86c9ccfc93ff1876.

%TT%

Timestamp adjusted to the timezone of the current dispatch target (maybe based on user/customer). Falls back to UTC.

Format YYYY-MM-DD HH:MM:SS (TZ-offset) or YYYY-MM-DD HH:MM:SS if UTC.

%xmlsafe:CHECK_DESCRIPTION%

Check description with any XML-unsafe characters replaced by character entities.

Check description (from CheckConfig.check_description) with any XML-unsafe characters replaced by character entities, e.g. & -> & Same rules apply for embedded CR and LF as for %CHECK_DESCRIPTION%.

Webhook Placeholders

Default placeholders are surrounded by a pound/hashtag # character.

A default set of placeholders has been provided. These can be configured with the Webhook alert integration, or you may customize your Webhook placeholders as necessary.

Placeholder

Used For/Definition/Comment

#ALERT_TITLE#

#API_ID#

Slack, ServiceNow

#API_KEY#

VictorOps, OpsGenie, Datadog

#BASE64#

#HOST_ADDRESS#

#INCIDENT_ID#

#MESSAGE#

#MESSAGE_TYPE#

#TARGET_USER#

HipChat, VictorOps

#TITLE#

Splunk

#TOKEN#

Defining Your Own Webhook Placeholders in Custom Webhooks

The default placeholders above should only be considered suggestions. It is also possible to define your own webhook placeholders, which will pull their value from some response content which comes back from an API call. These custom-defined placeholders are also surrounded by a pound/hashtag # character.

Consider the following example:

...

Here, after the main alert text is sent to Slack (via hooks.slack.com), a second URL call is made to https://api-wpmasm-eu1.apicasystemapica.comio/. It is a GET request which returns response data in JSON format:

...

Essentially, in the above example, when the GET request is resolved, the value of #url# becomes whatever is found in the “url” property of the response body. In the above example, the recipient of the check will instantly know that the check goes to https://www.msn.com.

Alert Configuration Examples

The following examples explain various advanced configurations. For explicit instructions on how to set up the Webhook configurations shown below, refer to the article Configuring Webhook Alerts.

API keys/dynamic tokens/etc. are always generated on the recipient alerting platform side. For instructions on how to generate these tokens, refer to the alerting platform’s API documentation.

Info

If you have any questions about alert configuration, please send a support ticket to support@apica.io, and we will help you with the setup and testing process.

E-mail

...

Custom Message:

Code Block
The status changed to %SEV% from %OLD_SEV_WORD% %TT% (%UTC% UTC) for check "%CHECK_NAME%" (id %CHECK_ID%   from  %LOCATION%  ).

Message:

%M%

The check is run from %LOCATION%.

http://wpm.apicasystem.com/check/details/%CHECK_ID%

The above E-mail message uses placeholders. See

OpsGenie

...

Host: https://api.opsgenie.com

API key: generated on the OpsGenie side

Message: %CHECK_NAME% Status Has Changed

Alias: %CHECK_NAME%

Description: a custom description for the alert which gives identifying information about the Alert.

Here is an example Description (some identifying information removed):

The status changed to *Error* (from Info) at *2022-07-05 14:54:39 (GMT-04:00)* for the check <https://wpm.apicasystem.com/BrowserResult/Details?checkId={checkId}&resultId={resultId}> Message: *Fullpage (FF) check 'test waitForText' failed [Error on 4 URL(s) Time (8272) was above upper limit (2000 ms)]* The check is run from *Check Location*.

Slack

URL: generated on the Slack side

...

Custom Webhook w/ message placeholder (Microsoft Teams)

For instructions on setting up the URL which will be used as both the “Trigger URL” and the “Resolution URL”, refer to the official Microsoft documentation here.

...

Data: For both the trigger and resolution request sequences, the placeholder %CHECK_ID% is used along with a custom message to inform the user that the alert has been triggered/resolved.

Example alert trigger/resolution within a configured Microsoft Teams channel:

...

Custom Webhook w/ message placeholder (OpsGenie)

...

Trigger URL: https://api.opsgenie.com/v2/alerts?apiKey={opsGenieApiKey} (opsGenieApiKey is generated on the OpsGenie end)

Data:

Code Block
{
   "message":"%CHECK_NAME%",
   "alias":"%CHECK_ID%",
   "description":"%CHECK_DESCRIPTION%",
   "responders":[
      {
         "name":"SAT",
         "type":"team"
      }
   ],
   "visibleTo":[
      {
         "name":"SAT",
         "type":"team"
      }
   ],
   "priority":"P1",
   "user":"ASM"
}

This JSON data is an example which we’ve created based on your current OpsGenie integration. The payload can be customized by referring to this documentation: https://docs.opsgenie.com/docs/alert-api#create-alert

%CHECK_NAME%, %CHECK_ID%, and %CHECK_DESCRIPTION% are message placeholders. Alias must be %CHECK_ID% in order for the resolution request to function correctly.

Resolve URL: https://api.opsgenie.com/v2/alerts/%CHECK_ID%/close?identifierType=alias&apiKey={opsGenieApiKey} (opsGenieApiKey is generated on the OpsGenie end)

%CHECK_ID% is a string which dynamically grabs the check ID of the check, which has ALSO been set as the Alias of the alert. It is possible to close Alerts via alert Alias, which we defined to be the Check ID in the Trigger Sequence request body. Thus, by specifying the Check ID as both the alias of the alert, we are able to dynamically identify and close the alert we created before. “identifierType=alias” is required.

Data (resolution request):

Code Block
{“user”:”ASM”}

The response body of the resolution alert cannot be empty. Thus, at least one property must be present in the JSON body, although the POST call does not require any data from the OpsGenie end. It is possible to add a resolution note as well; see https://docs.opsgenie.com/docs/alert-api#close-alert for more details concerning closing alerts.

Custom Webhook w/ message placeholder, a custom placeholder (Slack)

...

Response Parameters: although the UI asks for the XPath for finding XML, it is also capable of finding JSON properties with the XPath. In this instance, we want to capture the value of the URL property of the HTTP response of our Sub Request (the api-wpm.apicasystem.com request).

As such, we will use #url# to display the “url” property of the api-wpm API call in our resolution message.

Trigger Request: the initial API call we make when the Alert is Triggered. Generated from the Slack end. Example: https://hooks.slack.com/services/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

Data: Note that the data contains a Message Placeholder, %CHECK_NAME%, which allows us to display dynamic data in the Slack message body.

Severity: We can have different Payload data (that is, different request messages) for different severities if we so desire. That is not needed for our use case, so we will use one payload for Warning, Error, and Fatal.

Sub Requests: After the initial request to https://hooks.slack.com is made, we want to get ADDITIONAL information about the check from an API call which gives us more check data. We store that data in the Response Parameter we explained above. Example: https://api-wpm.apicasystem.com/v3/checks/{check_id}?auth_ticket={auth_ticket}

Resolution Request: the final API call we make when the Alert is Resolved. Note the usage of both Message and Webhook placeholders to give our resolution message that dynamic data we need. Generated from the Slack end. Example: https://hooks.slack.com/services/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

Here are examples of the request/resolution messages that are sent to Slack based on the above configuration:

...