[OPSGENIE-604] Add regex or key/value based filter option for array fields

Type: Suggestion
Resolution: Unresolved
Component/s: Integrations - Common Framework
Labels:
None

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

User Problem

Some integrations send fields to Opsgenie as arrays. These fields are limited to only filter using Contains, Contains Key, Contains Value, and Is Empty.

This seems to exist with a few different integrations such as Splunk's Result Object field, Graylog's Event Field field, etc.

Current Workarounds

Use the existing options available to filter; Contains, Contains Key, Contains Value, and Is Empty.

Extract each key/value field into the alert as an extra property (or another alert field):

Then use an Alert policy to filter on where this is extracted after alert creation, and modify the alert following:

Global Alert Policy
Team Alert Policy

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List

image-2022-06-16-10-39-51-985.png
178 kB
16/Jun/2022 2:39 PM
image-2022-06-16-10-43-58-528.png
164 kB
16/Jun/2022 2:43 PM
image-2022-06-16-10-46-16-047.png
133 kB
16/Jun/2022 2:46 PM
image-2022-06-16-10-47-35-776.png
179 kB
16/Jun/2022 2:47 PM

relates to

OPSGENIE-651 As an admin, I want to use regex or any way on the Filter of Action Filter of an integration to configure the filter with non-predefined fields

Reviewing

mentioned in: Page Failed to load

There are no comments yet on this issue.

Assignee:: Unassigned

Reporter:: Nick Haller

Votes:: 2 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 16/Jun/2022 2:51 PM

Updated:: 15/Mar/2023 3:24 PM

Opsgenie

Details

Description

User Problem

Suggested Solutions

Current Workarounds

Attachments

Attachments

Issue Links

Forms

Activity

People

Dates