# Copyright (c) 2013 Flowerfire, Inc. All Rights Reserved. siteminder_apache_webagent = { plugin_version = "1.0" # 2013-09-23 - 1.0 - GMF - Initial creation info.1.manufacturer = "CA Technologies" info.1.device = "SiteMinder Apache WebAgent" info.1.version.1 = "12.5" # SiteMinder APACHE 2.2 WebAgent, Version 12.5, Update HF-02, Label 841 # The follow types of information are not supported in this format # The name of the log format log.format.format_label = "SiteMinder Apache WebAgent Log Format" log.miscellaneous.log_data_type = "http" log.miscellaneous.log_format_type = "network_device" # The log is in this format if any of the first ten lines match this regular expression log.format.autodetect_regular_expression = "SiteMinder APACHE .* WebAgent" # All log field parsing will be done using the parsing filters # log.format.parse_only_with_filters = "true" # Log fields log.fields = { date = "" time = "" source_location = "" priority = "" type = "" message = "" events = "" } # log.fields # Log Parsing Filters log.parsing_filters.parse = ` if (matches_regular_expression(current_log_line(), "^[[][0-9]+/[0-9]+[]][[][A-Za-z]+ ([A-Za-z]+ [0-9]+ [0-9]+) ([0-9:]+)[]][[]([^]]+)[]][[]([A-Z]+)[]] ([^:]+): (.*)$")) then ( date = $1; time = $2; source_location = $3; priority = $4; type = $5; message = $6; ); ` # log.parsing_filters.parse # Database fields database.fields = { date_time = "" day_of_week = "" hour_of_day = "" source_location = "" priority = "" type = "" message = "" } # database.fields # Log Filters log.filters = { mark_entry = { label = '$lang_admin.log_filters.mark_entry_label' comment = '$lang_admin.log_filters.mark_entry_comment' value = 'events = 1;' } # mark_entry } # log.filters database.numerical_fields = { events = { default = true entries_field = true } # events } # database.numerical_fields create_profile_wizard_options = { # How the reports should be grouped in the report menu report_groups = { date_time_group = "" } # report_groups } # create_profile_wizard_options } # siteminder_apache_webagent