Humio Alerts can be set to trigger various acts, such as informing an administrator of a potential problem with your servers. Said another way, an Action is a module that can be invoked from a trigger. A trigger runs a query in Humio, and if the query result contains any events, these are sent to the Action. A trigger can be either an Alert or a Scheduled Search.

Incidentally, prior to version 1.19 of Humio, Actions were previously called Notifiers.

Humio currently supports the following Action types:

Configuring an Action

To configure an Action in Humio, go to Alerts → Actions → New Action. From there, select a type of Action from the Action Type dropdown list. You will need to assign each Action a name.

For self-hosted installations, remember to set the PUBLIC_URL field in the Humio config. This will ensure that links in messages will go to the correct URL.

See the Message Template documentation page for more information on variables that may be used in a message.

Custom Actions

If the built-in Actions are not enough and you need to make something custom, Humio supports webhooks that allow you to call an external service with HTTP. You can add headers and customize the body of the message as seen below.

HTTP Proxy

If Humio is set up to use an HTTP proxy, it will per default be used for all Actions communicating via HTTP.

It is possible to configure an individual Action to not use the globally configured HTTP proxy.