[ 1 Connect Opensearch with Devo SOAR ] [ 1.1 Run Query ] [ 1.1.1 Input Field ] [ 1.1.2 Output ] [ 2 Release Notes ]

OpenSearch is a scalable, flexible, and extensible open-source software suite for search, analytics, and observability applications licensed under Apache 2.0.

Connect Opensearch with Devo SOAR

Navigate to Automations > Integrations.
Search for Opensearch.
Click Details, then the + icon. Enter the required information in the following fields.
Label: Enter a connection name.
Reference Values: Define variables here to templatize integration connections and actions. For example, you can use https://www.{{hostname}}.com where, hostname is a variable defined in this input. For more information on how to add data, see 'Add Data' Input Type for Integrations.
Verify SSL: Select option to verify connecting server's SSL certificate (Default is Verify SSL Certificate).
Remote Agent: Run this integration using the Devo SOAR Remote Agent.
Host: Host for the OpenSearch. Example: 'search-test-pe.us-west-2.es.amazonaws.com'.
Port: Port for the OpenSearch (Default is '443').
Access Key: Access key for the AWS Account.
Secret Key: Secret key for the AWS account.
Region (Optional): Region for the AWS account (Default is 'us-west-2').
After you've entered all the details, click Connect.

Run Query

Run query.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input Name	Description	Required

Input Name	Description	Required
Role ARN	Jinja-templated text containing the role ARN for the AWS account.	Required
Query	Jinja-templated text containing the query for the OpenSearch.	Required
Explode Result	Explode each result in a separate row. (Default is Yes)	Optional

Output

JSON containing the following items:

{
   "FlightDelayMin":0,
   "FlightTimeHour":"17.179506930998397",
   "DestCityName":"Sydney",
   "dayOfWeek":0,
   "timestamp":"2022-10-10 00:00:00",
   "OriginRegion":"DE-HE",
   "DestWeather":"Rain",
   "AvgTicketPrice":841.2656,
   "Dest":"Sydney Kingsford Smith International Airport",
   "FlightTimeMin":1030.7704,
   "OriginCityName":"Frankfurt am Main",
   "FlightNum":"9HY9SWR",
   "OriginWeather":"Sunny",
   "DestAirportID":"SYD",
   "Origin":"Frankfurt am Main Airport",
   "OriginCountry":"DE",
   "DestLocation":{
      "lat":-33.94609833,
      "lon":151.177002
   },
   "DestCountry":"AU",
   "Cancelled":false,
   "has_error":false,
   "error":null,
   "OriginAirportID":"FRA",
   "OriginLocation":{
      "lat":50.033333,
      "lon":8.570556
   },
   "DestRegion":"SE-BD",
   "FlightDelayType":"No Delay",
   "Carrier":"OpenSearch Dashboards Airlines",
   "DistanceMiles":10247.856,
   "FlightDelay":false,
   "DistanceKilometers":16492.326
}

Release Notes

v1.1.8 - Updated architecture to support IO via filesystem
v1.1.1 - Bug fix in Run Query action: Original column name in results even when alias is defined in query.
v1.1.0 - Added explode result field in Run Query action.
v1.0.0 - Added 1 new action: Run Query.