diff --git a/accuknox.spl b/accuknox.spl
deleted file mode 100644
index ffef6b0..0000000
Binary files a/accuknox.spl and /dev/null differ
diff --git a/appserver/static/logo-light-back_web_upl-removebg-preview.png b/appserver/static/logo-light-back_web_upl-removebg-preview.png
new file mode 100644
index 0000000..1f671fd
Binary files /dev/null and b/appserver/static/logo-light-back_web_upl-removebg-preview.png differ
diff --git a/bin/README b/bin/README
index 9a70db0..7619928 100644
--- a/bin/README
+++ b/bin/README
@@ -1 +1 @@
-This is where you put any scripts you want to add to this app.
+This is where you put any scripts you want to add to this app.
diff --git a/default/app.conf b/default/app.conf
index 47ee7c5..3ce7af5 100644
--- a/default/app.conf
+++ b/default/app.conf
@@ -1,16 +1,21 @@
-#
-# Splunk app configuration file
-#
+[default]
[install]
is_configured = 0
-
-[ui]
-is_visible = 1
-label = Accuknox
+install_source_checksum = 1d47704cc3e465de282777efb244bd139c26c43b
[launcher]
-author = Ab@Accuknox
-description =
+author = Abhinav Ranjan
+description = AccuKnox App for Splunk lets AccuKnox customers and KubeArmor users send alerts from Feeder or
+Workflows to visualize the data in the AccuKnox Splunk dashboards.
+AccuKnox, CNAPP that just works, from Build to Runtime.
+See what your applications are really doing and Automatically generate Zero Trust, least privilege
+policies to continuously monitor and protect your Network, Application and Data.
version = 1.0.0
+[package]
+id = SplunkforAccuKnox
+
+[ui]
+is_visible = 1
+label = AccuKnox
diff --git a/default/data/models/Actio_Block_KubeArmor_Count.json b/default/data/models/Actio_Block_KubeArmor_Count.json
deleted file mode 100644
index abd66c7..0000000
--- a/default/data/models/Actio_Block_KubeArmor_Count.json
+++ /dev/null
@@ -1,463 +0,0 @@
-{
- "modelName": "Actio_Block_KubeArmor_Count",
- "displayName": "Action Block KubeArmor Count",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646497205.6395",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor Action=Block",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Action_Audit_KubeArmor.json b/default/data/models/Action_Audit_KubeArmor.json
deleted file mode 100644
index 65552b5..0000000
--- a/default/data/models/Action_Audit_KubeArmor.json
+++ /dev/null
@@ -1,463 +0,0 @@
-{
- "modelName": "Action_Audit_KubeArmor",
- "displayName": "Action Audit KubeArmor",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646497325.6408",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor Action=Audit",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Alert_Summary_Based_on_Tags.json b/default/data/models/Alert_Summary_Based_on_Tags.json
deleted file mode 100644
index 52d2db3..0000000
--- a/default/data/models/Alert_Summary_Based_on_Tags.json
+++ /dev/null
@@ -1,519 +0,0 @@
-{
- "modelName": "Alert_Summary_Based_on_Tags",
- "displayName": "Alert Summary Based on Tags",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648633873.9079",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" Message=\"*\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Cilium_Alerts_Per_Day.json b/default/data/models/Cilium_Alerts_Per_Day.json
deleted file mode 100644
index 6ba4e60..0000000
--- a/default/data/models/Cilium_Alerts_Per_Day.json
+++ /dev/null
@@ -1,171 +0,0 @@
-{
- "modelName": "Cilium_Alerts_Per_Day",
- "displayName": "Cilium Alerts Per Day",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648626733.8008",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason_desc",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason_desc",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=cilium"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Cilium_Events_Per_Month.json b/default/data/models/Cilium_Events_Per_Month.json
deleted file mode 100644
index ee06c89..0000000
--- a/default/data/models/Cilium_Events_Per_Month.json
+++ /dev/null
@@ -1,1015 +0,0 @@
-{
- "modelName": "Cilium_Events_Per_Month",
- "displayName": "Cilium Events Per Month",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646810001.21244",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.destination_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason_desc",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason_desc",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.sub_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.sub_type",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.ICMPv4.code",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.ICMPv4.code",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.ICMPv4.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.ICMPv4.type",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.ACK",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.ACK",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.FIN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.FIN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.PSH",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.PSH",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.RST",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.RST",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.SYN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.SYN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ips{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ips{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.observation_source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.observation_source",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.qtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.qtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.query",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.query",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.rrtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.rrtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ttl",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ttl",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.code",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.code",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.latency_ns",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.latency_ns",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.policy_match_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.policy_match_type",
- "comment": ""
- },
- {
- "fieldName": "flow.reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.reply",
- "comment": ""
- },
- {
- "fieldName": "flow.source.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source_service.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_service.name",
- "comment": ""
- },
- {
- "fieldName": "flow.source_service.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_service.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "lost_events.num_events_lost",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "lost_events.num_events_lost",
- "comment": ""
- },
- {
- "fieldName": "lost_events.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "lost_events.source",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "node_status.node_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_status.node_names{}",
- "comment": ""
- },
- {
- "fieldName": "node_status.state_change",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_status.state_change",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" node_name=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Counts_of_Event_from_Hosts.json b/default/data/models/Counts_of_Event_from_Hosts.json
deleted file mode 100644
index d3e77ac..0000000
--- a/default/data/models/Counts_of_Event_from_Hosts.json
+++ /dev/null
@@ -1,427 +0,0 @@
-{
- "modelName": "Counts_of_Event_from_Hosts",
- "displayName": "Counts of Event from Hosts",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646627510.7451",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=\"*\" host=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Events_from_All_Nodes.json b/default/data/models/Events_from_All_Nodes.json
deleted file mode 100644
index 8ba86a5..0000000
--- a/default/data/models/Events_from_All_Nodes.json
+++ /dev/null
@@ -1,667 +0,0 @@
-{
- "modelName": "Events_from_All_Nodes",
- "displayName": "Events from All Nodes",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646628505.7524",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Events_from_All_Pods.json b/default/data/models/Events_from_All_Pods.json
deleted file mode 100644
index 930d62b..0000000
--- a/default/data/models/Events_from_All_Pods.json
+++ /dev/null
@@ -1,691 +0,0 @@
-{
- "modelName": "Events_from_All_Pods",
- "displayName": "Events from All Pods",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646629102.7634",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Events_from_Cilium_and_KubeArmor.json b/default/data/models/Events_from_Cilium_and_KubeArmor.json
deleted file mode 100644
index c55d638..0000000
--- a/default/data/models/Events_from_Cilium_and_KubeArmor.json
+++ /dev/null
@@ -1,427 +0,0 @@
-{
- "modelName": "Events_from_Cilium_and_KubeArmor",
- "displayName": "Events from Cilium and KubeArmor",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646627022.7414",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Events_from_Ip_Source.json b/default/data/models/Events_from_Ip_Source.json
deleted file mode 100644
index 6f1b0a7..0000000
--- a/default/data/models/Events_from_Ip_Source.json
+++ /dev/null
@@ -1,667 +0,0 @@
-{
- "modelName": "Events_from_Ip_Source",
- "displayName": "Events from Ip Source",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646652990.9266",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" \"flow.IP.source\"=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Flow7_Summary.json b/default/data/models/Flow7_Summary.json
deleted file mode 100644
index 77d725e..0000000
--- a/default/data/models/Flow7_Summary.json
+++ /dev/null
@@ -1,691 +0,0 @@
-{
- "modelName": "Flow7_Summary",
- "displayName": "Flow7_Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646412487.5791",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.sub_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.sub_type",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.ACK",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.ACK",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.FIN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.FIN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.PSH",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.PSH",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.SYN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.SYN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.policy_match_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.policy_match_type",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Flow_Summary_Between_Pods.json b/default/data/models/Flow_Summary_Between_Pods.json
deleted file mode 100644
index 3db01a5..0000000
--- a/default/data/models/Flow_Summary_Between_Pods.json
+++ /dev/null
@@ -1,631 +0,0 @@
-{
- "modelName": "Flow_Summary_Between_Pods",
- "displayName": "Flow Summary Between Pods",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646411287.5611",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.sub_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.sub_type",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.reply",
- "comment": ""
- },
- {
- "fieldName": "flow.source.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" \"flow.source.pod_name\"=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Flow_Destination_Ip_Count.json b/default/data/models/KA_NAMESPACE_BREAKDOWN_F.json
similarity index 79%
rename from default/data/models/Flow_Destination_Ip_Count.json
rename to default/data/models/KA_NAMESPACE_BREAKDOWN_F.json
index f065419..fbe5b94 100644
--- a/default/data/models/Flow_Destination_Ip_Count.json
+++ b/default/data/models/KA_NAMESPACE_BREAKDOWN_F.json
@@ -1,595 +1,595 @@
-{
- "modelName": "Flow_Destination_Ip_Count",
- "displayName": "Flow Destination Ip Count",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1645789318.1055",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
+{
+ "modelName": "KA_NAMESPACE_BREAKDOWN_F",
+ "displayName": "KA_NAMESPACE_BREAKDOWN_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664191675.2153",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_hour",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_hour",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_mday",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_mday",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_minute",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_minute",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_month",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_month",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_second",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_second",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_wday",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_wday",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_year",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_year",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_zone",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_zone",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" NamespaceName=\"*\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/local/data/models/Flow_Destination_Ip_Count.json b/default/data/models/KA_OPERATION_BREAKDOWN_F.json
similarity index 79%
rename from local/data/models/Flow_Destination_Ip_Count.json
rename to default/data/models/KA_OPERATION_BREAKDOWN_F.json
index f065419..4bddee6 100644
--- a/local/data/models/Flow_Destination_Ip_Count.json
+++ b/default/data/models/KA_OPERATION_BREAKDOWN_F.json
@@ -1,595 +1,595 @@
-{
- "modelName": "Flow_Destination_Ip_Count",
- "displayName": "Flow Destination Ip Count",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1645789318.1055",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
+{
+ "modelName": "KA_OPERATION_BREAKDOWN_F",
+ "displayName": "KA_OPERATION_BREAKDOWN_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664208986.2501",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_hour",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_hour",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_mday",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_mday",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_minute",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_minute",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_month",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_month",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_second",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_second",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_wday",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_wday",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_year",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_year",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_zone",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_zone",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" Operation=\"*\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/default/data/models/Network_Event_Counts.json b/default/data/models/KA_PODS_BREAKDOWN_F.json
similarity index 79%
rename from default/data/models/Network_Event_Counts.json
rename to default/data/models/KA_PODS_BREAKDOWN_F.json
index 4ad5baa..9b377d8 100644
--- a/default/data/models/Network_Event_Counts.json
+++ b/default/data/models/KA_PODS_BREAKDOWN_F.json
@@ -1,595 +1,595 @@
-{
- "modelName": "Network_Event_Counts",
- "displayName": "Network Event Counts",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1645787585.615",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
+{
+ "modelName": "KA_PODS_BREAKDOWN_F",
+ "displayName": "KA_PODS_BREAKDOWN_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664193281.2259",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_hour",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_hour",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_mday",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_mday",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_minute",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_minute",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_month",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_month",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_second",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_second",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_wday",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_wday",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_year",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_year",
+ "comment": ""
+ },
+ {
+ "fieldName": "date_zone",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "date_zone",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" PodName=\"*\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/default/data/models/kubearmorAlerts_Summary.json b/default/data/models/KA_POLICY_F.json
similarity index 88%
rename from default/data/models/kubearmorAlerts_Summary.json
rename to default/data/models/KA_POLICY_F.json
index 88e0c6c..f205c0f 100644
--- a/default/data/models/kubearmorAlerts_Summary.json
+++ b/default/data/models/KA_POLICY_F.json
@@ -1,523 +1,499 @@
-{
- "modelName": "kubearmorAlerts_Summary",
- "displayName": "kubearmorAlerts Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648631942.8519",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Message=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
+{
+ "modelName": "KA_POLICY_F",
+ "displayName": "KA_POLICY_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664213075.3166",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" PolicyName=\"*\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/local/data/models/kubearmorAlerts_Summary.json b/default/data/models/KA_SEVERITY_F.json
similarity index 88%
rename from local/data/models/kubearmorAlerts_Summary.json
rename to default/data/models/KA_SEVERITY_F.json
index 88e0c6c..430881b 100644
--- a/local/data/models/kubearmorAlerts_Summary.json
+++ b/default/data/models/KA_SEVERITY_F.json
@@ -1,523 +1,499 @@
-{
- "modelName": "kubearmorAlerts_Summary",
- "displayName": "kubearmorAlerts Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648631942.8519",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Message=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
+{
+ "modelName": "KA_SEVERITY_F",
+ "displayName": "KA_SEVERITY_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664209192.2514",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" Severity=\"*\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/default/data/models/KA_SEVERITY_NAMESPACE_F.json b/default/data/models/KA_SEVERITY_NAMESPACE_F.json
new file mode 100644
index 0000000..70fa9eb
--- /dev/null
+++ b/default/data/models/KA_SEVERITY_NAMESPACE_F.json
@@ -0,0 +1,499 @@
+{
+ "modelName": "KA_SEVERITY_NAMESPACE_F",
+ "displayName": "KA_SEVERITY_NAMESPACE_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664209579.2748",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" NamespaceName=\"*\" Severity=\"*\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/default/data/models/KA_Policy.json b/default/data/models/KA_TAGS_F.json
similarity index 89%
rename from default/data/models/KA_Policy.json
rename to default/data/models/KA_TAGS_F.json
index 733943e..dab3010 100644
--- a/default/data/models/KA_Policy.json
+++ b/default/data/models/KA_TAGS_F.json
@@ -1,499 +1,499 @@
-{
- "modelName": "KA_Policy",
- "displayName": "KA_Policy",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648196664.1219",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index =\"main\" Message component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
+{
+ "modelName": "KA_TAGS_F",
+ "displayName": "KA_TAGS_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664213252.3228",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index =\"main\" Type=\"MatchedPolicy\" Tags=\"*\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/local/data/models/KA_Policy.json b/default/data/models/KA_TOTAL_ALERTS_F.json
similarity index 89%
rename from local/data/models/KA_Policy.json
rename to default/data/models/KA_TOTAL_ALERTS_F.json
index 733943e..6dcdd72 100644
--- a/local/data/models/KA_Policy.json
+++ b/default/data/models/KA_TOTAL_ALERTS_F.json
@@ -1,499 +1,499 @@
-{
- "modelName": "KA_Policy",
- "displayName": "KA_Policy",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648196664.1219",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index =\"main\" Message component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
+{
+ "modelName": "KA_TOTAL_ALERTS_F",
+ "displayName": "KA_TOTAL_ALERTS_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664079487.39",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\"",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/default/data/models/KA_TOTAL_AUDITED_ALERTS_F.json b/default/data/models/KA_TOTAL_AUDITED_ALERTS_F.json
new file mode 100644
index 0000000..720641f
--- /dev/null
+++ b/default/data/models/KA_TOTAL_AUDITED_ALERTS_F.json
@@ -0,0 +1,499 @@
+{
+ "modelName": "KA_TOTAL_AUDITED_ALERTS_F",
+ "displayName": "KA_TOTAL_AUDITED_ALERTS_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664080260.91",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" Action=Audit",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/default/data/models/KA_TOTAL_BLOCKED_ALERTS_F.json b/default/data/models/KA_TOTAL_BLOCKED_ALERTS_F.json
new file mode 100644
index 0000000..2404752
--- /dev/null
+++ b/default/data/models/KA_TOTAL_BLOCKED_ALERTS_F.json
@@ -0,0 +1,499 @@
+{
+ "modelName": "KA_TOTAL_BLOCKED_ALERTS_F",
+ "displayName": "KA_TOTAL_BLOCKED_ALERTS_F",
+ "description": "",
+ "objectSummary": {
+ "Event-Based": 1,
+ "Transaction-Based": 0,
+ "Search-Based": 0
+ },
+ "objects": [
+ {
+ "objectName": "RootObject",
+ "displayName": "1664079817.55",
+ "parentName": "BaseEvent",
+ "comment": "",
+ "fields": [
+ {
+ "fieldName": "Action",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Action",
+ "comment": ""
+ },
+ {
+ "fieldName": "ClusterName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ClusterName",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerID",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerID",
+ "comment": ""
+ },
+ {
+ "fieldName": "ContainerName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "ContainerName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Data",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Data",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostName",
+ "comment": ""
+ },
+ {
+ "fieldName": "HostPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "HostPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "Message",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Message",
+ "comment": ""
+ },
+ {
+ "fieldName": "NamespaceName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "NamespaceName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Operation",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Operation",
+ "comment": ""
+ },
+ {
+ "fieldName": "PID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PPID",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PPID",
+ "comment": ""
+ },
+ {
+ "fieldName": "PodName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PodName",
+ "comment": ""
+ },
+ {
+ "fieldName": "PolicyName",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "PolicyName",
+ "comment": ""
+ },
+ {
+ "fieldName": "Resource",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Resource",
+ "comment": ""
+ },
+ {
+ "fieldName": "Result",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Result",
+ "comment": ""
+ },
+ {
+ "fieldName": "Severity",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Severity",
+ "comment": ""
+ },
+ {
+ "fieldName": "Tags",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Tags",
+ "comment": ""
+ },
+ {
+ "fieldName": "Timestamp",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "Type",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "Type",
+ "comment": ""
+ },
+ {
+ "fieldName": "UpdatedTime",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "UpdatedTime",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_Source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_Source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_host",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_index",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_source",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "extracted_splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "extracted_splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "host",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "host",
+ "comment": ""
+ },
+ {
+ "fieldName": "index",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "index",
+ "comment": ""
+ },
+ {
+ "fieldName": "linecount",
+ "owner": "RootObject",
+ "type": "number",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "linecount",
+ "comment": ""
+ },
+ {
+ "fieldName": "punct",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "punct",
+ "comment": ""
+ },
+ {
+ "fieldName": "raw",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "raw",
+ "comment": ""
+ },
+ {
+ "fieldName": "source",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "source",
+ "comment": ""
+ },
+ {
+ "fieldName": "sourcetype",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "sourcetype",
+ "comment": ""
+ },
+ {
+ "fieldName": "splunk_server",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "splunk_server",
+ "comment": ""
+ },
+ {
+ "fieldName": "time",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "time",
+ "comment": ""
+ },
+ {
+ "fieldName": "timestamp",
+ "owner": "RootObject",
+ "type": "string",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "timestamp",
+ "comment": ""
+ },
+ {
+ "fieldName": "_time",
+ "owner": "RootObject",
+ "type": "timestamp",
+ "fieldSearch": "",
+ "required": false,
+ "multivalue": false,
+ "hidden": false,
+ "editable": true,
+ "displayName": "_time",
+ "comment": ""
+ }
+ ],
+ "calculations": [],
+ "constraints": [
+ {
+ "search": "index=\"main\" Type=\"MatchedPolicy\" Action=Block",
+ "owner": "RootObject"
+ }
+ ],
+ "lineage": "RootObject"
+ }
+ ],
+ "objectNameList": [
+ "RootObject"
+ ]
+}
diff --git a/default/data/models/KubeArmor_ALerts_Per_Hour.json b/default/data/models/KubeArmor_ALerts_Per_Hour.json
deleted file mode 100644
index c9f8e29..0000000
--- a/default/data/models/KubeArmor_ALerts_Per_Hour.json
+++ /dev/null
@@ -1,519 +0,0 @@
-{
- "modelName": "KubeArmor_ALerts_Per_Hour",
- "displayName": "KubeArmor ALerts Per Hour",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648625457.7285",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/KubeArmor_Alerts_Per_Day.json b/default/data/models/KubeArmor_Alerts_Per_Day.json
deleted file mode 100644
index 608948c..0000000
--- a/default/data/models/KubeArmor_Alerts_Per_Day.json
+++ /dev/null
@@ -1,519 +0,0 @@
-{
- "modelName": "KubeArmor_Alerts_Per_Day",
- "displayName": "KubeArmor Alerts Per Day",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648626441.7777",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/KubeArmor_Event_Counts.json b/default/data/models/KubeArmor_Event_Counts.json
deleted file mode 100644
index 99b7849..0000000
--- a/default/data/models/KubeArmor_Event_Counts.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Event_Counts",
- "displayName": "KubeArmor Event Counts",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646496859.6307",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/KubeArmor_Events_Per_Month.json b/default/data/models/KubeArmor_Events_Per_Month.json
deleted file mode 100644
index 941216b..0000000
--- a/default/data/models/KubeArmor_Events_Per_Month.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Events_Per_Month",
- "displayName": "KubeArmor Events Per Month",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646810568.21491",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/KubeArmor_Operation_Count.json b/default/data/models/KubeArmor_Operation_Count.json
deleted file mode 100644
index 6fa9176..0000000
--- a/default/data/models/KubeArmor_Operation_Count.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Operation_Count",
- "displayName": "KubeArmor Operation Count",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646805779.19474",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "(index=\"main\") component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/KubeArmor_Policy_Report.json b/default/data/models/KubeArmor_Policy_Report.json
deleted file mode 100644
index d356092..0000000
--- a/default/data/models/KubeArmor_Policy_Report.json
+++ /dev/null
@@ -1,463 +0,0 @@
-{
- "modelName": "KubeArmor_Policy_Report",
- "displayName": "KubeArmor Policy Report",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646497643.6461",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" PolicyName=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/KubeArmor_Severity.json b/default/data/models/KubeArmor_Severity.json
deleted file mode 100644
index d1d857d..0000000
--- a/default/data/models/KubeArmor_Severity.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Severity",
- "displayName": "KubeArmor_Severity",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646409895.5394",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Severity=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/L7_Summary.json b/default/data/models/L7_Summary.json
deleted file mode 100644
index ec43f1f..0000000
--- a/default/data/models/L7_Summary.json
+++ /dev/null
@@ -1,747 +0,0 @@
-{
- "modelName": "L7_Summary",
- "displayName": "L7 Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646499601.6692",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.destination_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ips{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ips{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.observation_source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.observation_source",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.qtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.qtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.query",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.query",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.rrtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.rrtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ttl",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ttl",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.code",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.code",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.latency_ns",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.latency_ns",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.reply",
- "comment": ""
- },
- {
- "fieldName": "flow.source.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=cilium \"flow.l7.type\"=\"*\""
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Network_Event_Counts2.json b/default/data/models/Network_Event_Counts2.json
deleted file mode 100644
index e9da4be..0000000
--- a/default/data/models/Network_Event_Counts2.json
+++ /dev/null
@@ -1,591 +0,0 @@
-{
- "modelName": "Network_Event_Counts2",
- "displayName": "Network Event Counts2",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646027397.2171",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=cilium"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Network_Info.json b/default/data/models/Network_Info.json
deleted file mode 100644
index 007e7fe..0000000
--- a/default/data/models/Network_Info.json
+++ /dev/null
@@ -1,595 +0,0 @@
-{
- "modelName": "Network_Info",
- "displayName": "Network Info",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1645790088.1132",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/PolicyTags_Summary.json b/default/data/models/PolicyTags_Summary.json
deleted file mode 100644
index fb1af84..0000000
--- a/default/data/models/PolicyTags_Summary.json
+++ /dev/null
@@ -1,495 +0,0 @@
-{
- "modelName": "PolicyTags_Summary",
- "displayName": "PolicyTags Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648197524.1277",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index =\"main\" component_name=kubearmor | spath Tags | search Tags=\"*\""
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Policy_Result.json b/default/data/models/Policy_Result.json
deleted file mode 100644
index e6231b6..0000000
--- a/default/data/models/Policy_Result.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "Policy_Result",
- "displayName": "Policy Result",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646807053.19930",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Result=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Policy_Rule_Type_OperationKubeArmor.json b/default/data/models/Policy_Rule_Type_OperationKubeArmor.json
deleted file mode 100644
index dba4743..0000000
--- a/default/data/models/Policy_Rule_Type_OperationKubeArmor.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "Policy_Rule_Type_OperationKubeArmor",
- "displayName": "Policy Rule Type OperationKubeArmor",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646498579.6536",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Operation=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Policy_Summary.json b/default/data/models/Policy_Summary.json
deleted file mode 100644
index 5ae6526..0000000
--- a/default/data/models/Policy_Summary.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "Policy_Summary",
- "displayName": "Policy Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646805130.19266",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "(index=\"main\") component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/System_Event_Counts.json b/default/data/models/System_Event_Counts.json
deleted file mode 100644
index 4fd1139..0000000
--- a/default/data/models/System_Event_Counts.json
+++ /dev/null
@@ -1,483 +0,0 @@
-{
- "modelName": "System_Event_Counts",
- "displayName": "System Event Counts",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646027268.2153",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/models/Threat_Report_From_Tags.json b/default/data/models/Threat_Report_From_Tags.json
deleted file mode 100644
index be643fd..0000000
--- a/default/data/models/Threat_Report_From_Tags.json
+++ /dev/null
@@ -1,495 +0,0 @@
-{
- "modelName": "Threat_Report_From_Tags",
- "displayName": "Threat Report From Tags",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648287294.2360",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index = \"main\" | spath Tags | search Tags=\"STIG,RHEL\""
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/default/data/ui/nav/default.xml b/default/data/ui/nav/default.xml
new file mode 100644
index 0000000..0ae4c0a
--- /dev/null
+++ b/default/data/ui/nav/default.xml
@@ -0,0 +1,5 @@
+
\ No newline at end of file
diff --git a/default/data/ui/views/README b/default/data/ui/views/README
new file mode 100644
index 0000000..d518a88
--- /dev/null
+++ b/default/data/ui/views/README
@@ -0,0 +1 @@
+Add all the views that your app needs in this directory
diff --git a/default/data/ui/views/accuknox.xml b/default/data/ui/views/accuknox.xml
deleted file mode 100644
index 18d4206..0000000
--- a/default/data/ui/views/accuknox.xml
+++ /dev/null
@@ -1,445 +0,0 @@
-
\ No newline at end of file
diff --git a/default/data/ui/views/accuknox_clone.xml b/default/data/ui/views/accuknox_clone.xml
deleted file mode 100644
index ec3eee3..0000000
--- a/default/data/ui/views/accuknox_clone.xml
+++ /dev/null
@@ -1,98 +0,0 @@
-
-
-
-
- Network Event Counts
-
-
- | pivot Network_Event_Counts RootObject count(RootObject) AS "Count of 1645787585.615" ROWSUMMARY 0 COLSUMMARY 0 SHOWOTHER 1
- 0
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- Flow Destination Ip Count
-
-
- | pivot Flow_Destination_Ip_Count RootObject count(flow.IP.destination) AS "Count of flow.IP.destination" SPLITROW _time AS _time PERIOD auto SPLITCOL flow.destination.ID SORT 0 _time ROWSUMMARY 0 COLSUMMARY 0 NUMCOLS 1000 SHOWOTHER 0
- -24h@h
- now
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- flowL7
-
-
- | pivot Network_Info RootObject count(flow.IP.ipVersion) AS "Count of flow.IP.ipVersion" SPLITROW _time AS _time PERIOD auto SPLITROW flow.IP.ipVersion AS flow.IP.ipVersion SPLITCOL flow.l7.http.method SORT 100 _time ROWSUMMARY 0 COLSUMMARY 0 NUMCOLS 100 SHOWOTHER 1
- -6d@w1
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
\ No newline at end of file
diff --git a/default/data/ui/views/cilium_logs.xml b/default/data/ui/views/cilium_logs.xml
deleted file mode 100644
index 2f292b0..0000000
--- a/default/data/ui/views/cilium_logs.xml
+++ /dev/null
@@ -1,199 +0,0 @@
-
\ No newline at end of file
diff --git a/default/data/ui/views/kubearmor_alerts.xml b/default/data/ui/views/kubearmor_alerts.xml
index 3352d60..9d7f887 100644
--- a/default/data/ui/views/kubearmor_alerts.xml
+++ b/default/data/ui/views/kubearmor_alerts.xml
@@ -1,54 +1,457 @@
-
-
-
-
- KubeArmor Alerts
-
-
- | pivot kubearmorAlerts_Summary RootObject count(Message) AS "Count of Alerts" SPLITROW _time AS _time PERIOD minute SPLITROW Message AS Alerts SPLITROW Severity AS Severity SORT 100 _time ROWSUMMARY 0 COLSUMMARY 0 SHOWOTHER 1
- -7d@h
- now
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- Alert Summary Based on Tags
-
-
- | pivot Alert_Summary_Based_on_Tags RootObject count(Message) AS "Count of Message" SPLITROW PolicyName AS PolicyName SPLITROW Message AS Message SPLITROW PodName AS PodName SPLITROW Severity AS Severity SORT 100 PolicyName ROWSUMMARY 0 COLSUMMARY 0 SHOWOTHER 1
- -7d@h
- now
- 1
-
-
-
-
-
-
-
-
-
-
-
-
\ No newline at end of file
+
\ No newline at end of file
diff --git a/default/data/ui/views/kubearmor_logs.xml b/default/data/ui/views/kubearmor_logs.xml
index 7497af7..eeea29a 100644
--- a/default/data/ui/views/kubearmor_logs.xml
+++ b/default/data/ui/views/kubearmor_logs.xml
@@ -1,268 +1,112 @@
-
\ No newline at end of file
diff --git a/default/datamodels.conf b/default/datamodels.conf
new file mode 100644
index 0000000..f041a88
--- /dev/null
+++ b/default/datamodels.conf
@@ -0,0 +1,30 @@
+
+[KA_TOTAL_ALERTS_F]
+dataset.type =
+
+[KA_TOTAL_BLOCKED_ALERTS_F]
+dataset.type =
+
+[KA_TOTAL_AUDITED_ALERTS_F]
+dataset.type =
+
+[KA_NAMESPACE_BREAKDOWN_F]
+dataset.type =
+
+[KA_PODS_BREAKDOWN_F]
+dataset.type =
+
+[KA_OPERATION_BREAKDOWN_F]
+dataset.type =
+
+[KA_SEVERITY_F]
+dataset.type =
+
+[KA_SEVERITY_NAMESPACE_F]
+dataset.type =
+
+[KA_POLICY_F]
+dataset.type =
+
+[KA_TAGS_F]
+dataset.type =
diff --git a/local/data/models/Actio_Block_KubeArmor_Count.json b/local/data/models/Actio_Block_KubeArmor_Count.json
deleted file mode 100644
index abd66c7..0000000
--- a/local/data/models/Actio_Block_KubeArmor_Count.json
+++ /dev/null
@@ -1,463 +0,0 @@
-{
- "modelName": "Actio_Block_KubeArmor_Count",
- "displayName": "Action Block KubeArmor Count",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646497205.6395",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor Action=Block",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Action_Audit_KubeArmor.json b/local/data/models/Action_Audit_KubeArmor.json
deleted file mode 100644
index 65552b5..0000000
--- a/local/data/models/Action_Audit_KubeArmor.json
+++ /dev/null
@@ -1,463 +0,0 @@
-{
- "modelName": "Action_Audit_KubeArmor",
- "displayName": "Action Audit KubeArmor",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646497325.6408",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor Action=Audit",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Alert_Summary_Based_on_Tags.json b/local/data/models/Alert_Summary_Based_on_Tags.json
deleted file mode 100644
index 52d2db3..0000000
--- a/local/data/models/Alert_Summary_Based_on_Tags.json
+++ /dev/null
@@ -1,519 +0,0 @@
-{
- "modelName": "Alert_Summary_Based_on_Tags",
- "displayName": "Alert Summary Based on Tags",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648633873.9079",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" Message=\"*\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Cilium_Alerts_Per_Day.json b/local/data/models/Cilium_Alerts_Per_Day.json
deleted file mode 100644
index 6ba4e60..0000000
--- a/local/data/models/Cilium_Alerts_Per_Day.json
+++ /dev/null
@@ -1,171 +0,0 @@
-{
- "modelName": "Cilium_Alerts_Per_Day",
- "displayName": "Cilium Alerts Per Day",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648626733.8008",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason_desc",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason_desc",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=cilium"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Cilium_Events_Per_Month.json b/local/data/models/Cilium_Events_Per_Month.json
deleted file mode 100644
index ee06c89..0000000
--- a/local/data/models/Cilium_Events_Per_Month.json
+++ /dev/null
@@ -1,1015 +0,0 @@
-{
- "modelName": "Cilium_Events_Per_Month",
- "displayName": "Cilium Events Per Month",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646810001.21244",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.destination_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason",
- "comment": ""
- },
- {
- "fieldName": "flow.drop_reason_desc",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.drop_reason_desc",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.sub_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.sub_type",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.ICMPv4.code",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.ICMPv4.code",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.ICMPv4.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.ICMPv4.type",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.ACK",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.ACK",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.FIN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.FIN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.PSH",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.PSH",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.RST",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.RST",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.SYN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.SYN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ips{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ips{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.observation_source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.observation_source",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.qtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.qtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.query",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.query",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.rrtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.rrtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ttl",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ttl",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.code",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.code",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.latency_ns",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.latency_ns",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.policy_match_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.policy_match_type",
- "comment": ""
- },
- {
- "fieldName": "flow.reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.reply",
- "comment": ""
- },
- {
- "fieldName": "flow.source.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source_service.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_service.name",
- "comment": ""
- },
- {
- "fieldName": "flow.source_service.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_service.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "lost_events.num_events_lost",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "lost_events.num_events_lost",
- "comment": ""
- },
- {
- "fieldName": "lost_events.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "lost_events.source",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "node_status.node_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_status.node_names{}",
- "comment": ""
- },
- {
- "fieldName": "node_status.state_change",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_status.state_change",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" node_name=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Counts_of_Event_from_Hosts.json b/local/data/models/Counts_of_Event_from_Hosts.json
deleted file mode 100644
index d3e77ac..0000000
--- a/local/data/models/Counts_of_Event_from_Hosts.json
+++ /dev/null
@@ -1,427 +0,0 @@
-{
- "modelName": "Counts_of_Event_from_Hosts",
- "displayName": "Counts of Event from Hosts",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646627510.7451",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=\"*\" host=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Events_from_All_Nodes.json b/local/data/models/Events_from_All_Nodes.json
deleted file mode 100644
index 8ba86a5..0000000
--- a/local/data/models/Events_from_All_Nodes.json
+++ /dev/null
@@ -1,667 +0,0 @@
-{
- "modelName": "Events_from_All_Nodes",
- "displayName": "Events from All Nodes",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646628505.7524",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Events_from_All_Pods.json b/local/data/models/Events_from_All_Pods.json
deleted file mode 100644
index 930d62b..0000000
--- a/local/data/models/Events_from_All_Pods.json
+++ /dev/null
@@ -1,691 +0,0 @@
-{
- "modelName": "Events_from_All_Pods",
- "displayName": "Events from All Pods",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646629102.7634",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Events_from_Cilium_and_KubeArmor.json b/local/data/models/Events_from_Cilium_and_KubeArmor.json
deleted file mode 100644
index c55d638..0000000
--- a/local/data/models/Events_from_Cilium_and_KubeArmor.json
+++ /dev/null
@@ -1,427 +0,0 @@
-{
- "modelName": "Events_from_Cilium_and_KubeArmor",
- "displayName": "Events from Cilium and KubeArmor",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646627022.7414",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Events_from_Ip_Source.json b/local/data/models/Events_from_Ip_Source.json
deleted file mode 100644
index 6f1b0a7..0000000
--- a/local/data/models/Events_from_Ip_Source.json
+++ /dev/null
@@ -1,667 +0,0 @@
-{
- "modelName": "Events_from_Ip_Source",
- "displayName": "Events from Ip Source",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646652990.9266",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" \"flow.IP.source\"=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Flow7_Summary.json b/local/data/models/Flow7_Summary.json
deleted file mode 100644
index 77d725e..0000000
--- a/local/data/models/Flow7_Summary.json
+++ /dev/null
@@ -1,691 +0,0 @@
-{
- "modelName": "Flow7_Summary",
- "displayName": "Flow7_Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646412487.5791",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.sub_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.sub_type",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.ACK",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.ACK",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.FIN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.FIN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.PSH",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.PSH",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.flags.SYN",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.flags.SYN",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.policy_match_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.policy_match_type",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Flow_Summary_Between_Pods.json b/local/data/models/Flow_Summary_Between_Pods.json
deleted file mode 100644
index 3db01a5..0000000
--- a/local/data/models/Flow_Summary_Between_Pods.json
+++ /dev/null
@@ -1,631 +0,0 @@
-{
- "modelName": "Flow_Summary_Between_Pods",
- "displayName": "Flow Summary Between Pods",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646411287.5611",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.sub_type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.sub_type",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.index",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.index",
- "comment": ""
- },
- {
- "fieldName": "flow.interface.name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.interface.name",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.reply",
- "comment": ""
- },
- {
- "fieldName": "flow.source.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" \"flow.source.pod_name\"=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/KubeArmor_ALerts_Per_Hour.json b/local/data/models/KubeArmor_ALerts_Per_Hour.json
deleted file mode 100644
index c9f8e29..0000000
--- a/local/data/models/KubeArmor_ALerts_Per_Hour.json
+++ /dev/null
@@ -1,519 +0,0 @@
-{
- "modelName": "KubeArmor_ALerts_Per_Hour",
- "displayName": "KubeArmor ALerts Per Hour",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648625457.7285",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/KubeArmor_Alerts_Per_Day.json b/local/data/models/KubeArmor_Alerts_Per_Day.json
deleted file mode 100644
index 608948c..0000000
--- a/local/data/models/KubeArmor_Alerts_Per_Day.json
+++ /dev/null
@@ -1,519 +0,0 @@
-{
- "modelName": "KubeArmor_Alerts_Per_Day",
- "displayName": "KubeArmor Alerts Per Day",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648626441.7777",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostIP",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostIP",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Level",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Level",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/KubeArmor_Event_Counts.json b/local/data/models/KubeArmor_Event_Counts.json
deleted file mode 100644
index 99b7849..0000000
--- a/local/data/models/KubeArmor_Event_Counts.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Event_Counts",
- "displayName": "KubeArmor Event Counts",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646496859.6307",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/KubeArmor_Events_Per_Month.json b/local/data/models/KubeArmor_Events_Per_Month.json
deleted file mode 100644
index 941216b..0000000
--- a/local/data/models/KubeArmor_Events_Per_Month.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Events_Per_Month",
- "displayName": "KubeArmor Events Per Month",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646810568.21491",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/KubeArmor_Operation_Count.json b/local/data/models/KubeArmor_Operation_Count.json
deleted file mode 100644
index 6fa9176..0000000
--- a/local/data/models/KubeArmor_Operation_Count.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Operation_Count",
- "displayName": "KubeArmor Operation Count",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646805779.19474",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "(index=\"main\") component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/KubeArmor_Policy_Report.json b/local/data/models/KubeArmor_Policy_Report.json
deleted file mode 100644
index d356092..0000000
--- a/local/data/models/KubeArmor_Policy_Report.json
+++ /dev/null
@@ -1,463 +0,0 @@
-{
- "modelName": "KubeArmor_Policy_Report",
- "displayName": "KubeArmor Policy Report",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646497643.6461",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" PolicyName=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/KubeArmor_Severity.json b/local/data/models/KubeArmor_Severity.json
deleted file mode 100644
index d1d857d..0000000
--- a/local/data/models/KubeArmor_Severity.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "KubeArmor_Severity",
- "displayName": "KubeArmor_Severity",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646409895.5394",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Severity=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/L7_Summary.json b/local/data/models/L7_Summary.json
deleted file mode 100644
index ec43f1f..0000000
--- a/local/data/models/L7_Summary.json
+++ /dev/null
@@ -1,747 +0,0 @@
-{
- "modelName": "L7_Summary",
- "displayName": "L7 Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646499601.6692",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.destination_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.UDP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.UDP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ips{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ips{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.observation_source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.observation_source",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.qtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.qtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.query",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.query",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.rrtypes{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.rrtypes{}",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.dns.ttl",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.dns.ttl",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.code",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.code",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.latency_ns",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.latency_ns",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.reply",
- "comment": ""
- },
- {
- "fieldName": "flow.source.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.source.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.source.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source_names{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source_names{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=cilium \"flow.l7.type\"=\"*\""
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Network_Event_Counts.json b/local/data/models/Network_Event_Counts.json
deleted file mode 100644
index 4ad5baa..0000000
--- a/local/data/models/Network_Event_Counts.json
+++ /dev/null
@@ -1,595 +0,0 @@
-{
- "modelName": "Network_Event_Counts",
- "displayName": "Network Event Counts",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1645787585.615",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Network_Event_Counts2.json b/local/data/models/Network_Event_Counts2.json
deleted file mode 100644
index e9da4be..0000000
--- a/local/data/models/Network_Event_Counts2.json
+++ /dev/null
@@ -1,591 +0,0 @@
-{
- "modelName": "Network_Event_Counts2",
- "displayName": "Network Event Counts2",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646027397.2171",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=cilium"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Network_Info.json b/local/data/models/Network_Info.json
deleted file mode 100644
index 007e7fe..0000000
--- a/local/data/models/Network_Info.json
+++ /dev/null
@@ -1,595 +0,0 @@
-{
- "modelName": "Network_Info",
- "displayName": "Network Info",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1645790088.1132",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.ipVersion",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.ipVersion",
- "comment": ""
- },
- {
- "fieldName": "flow.IP.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.IP.source",
- "comment": ""
- },
- {
- "fieldName": "flow.Summary",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Summary",
- "comment": ""
- },
- {
- "fieldName": "flow.Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.Type",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.ID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.ID",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.namespace",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.namespace",
- "comment": ""
- },
- {
- "fieldName": "flow.destination.pod_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.destination.pod_name",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.destination",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.destination",
- "comment": ""
- },
- {
- "fieldName": "flow.ethernet.source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.ethernet.source",
- "comment": ""
- },
- {
- "fieldName": "flow.event_type.type",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.event_type.type",
- "comment": ""
- },
- {
- "fieldName": "flow.is_reply",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.is_reply",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.destination_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.destination_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l4.TCP.source_port",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l4.TCP.source_port",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.key",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.headers{}.value",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.headers{}.value",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.method",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.method",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.protocol",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.protocol",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.http.url",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.http.url",
- "comment": ""
- },
- {
- "fieldName": "flow.l7.type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.l7.type",
- "comment": ""
- },
- {
- "fieldName": "flow.node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.node_name",
- "comment": ""
- },
- {
- "fieldName": "flow.source.identity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.identity",
- "comment": ""
- },
- {
- "fieldName": "flow.source.labels{}",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.source.labels{}",
- "comment": ""
- },
- {
- "fieldName": "flow.time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.time",
- "comment": ""
- },
- {
- "fieldName": "flow.trace_observation_point",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.trace_observation_point",
- "comment": ""
- },
- {
- "fieldName": "flow.traffic_direction",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.traffic_direction",
- "comment": ""
- },
- {
- "fieldName": "flow.verdict",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "flow.verdict",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "node_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "node_name",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "time",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "time",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/PolicyTags_Summary.json b/local/data/models/PolicyTags_Summary.json
deleted file mode 100644
index fb1af84..0000000
--- a/local/data/models/PolicyTags_Summary.json
+++ /dev/null
@@ -1,495 +0,0 @@
-{
- "modelName": "PolicyTags_Summary",
- "displayName": "PolicyTags Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648197524.1277",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index =\"main\" component_name=kubearmor | spath Tags | search Tags=\"*\""
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Policy_Result.json b/local/data/models/Policy_Result.json
deleted file mode 100644
index e6231b6..0000000
--- a/local/data/models/Policy_Result.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "Policy_Result",
- "displayName": "Policy Result",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646807053.19930",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Result=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Policy_Rule_Type_OperationKubeArmor.json b/local/data/models/Policy_Rule_Type_OperationKubeArmor.json
deleted file mode 100644
index dba4743..0000000
--- a/local/data/models/Policy_Rule_Type_OperationKubeArmor.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "Policy_Rule_Type_OperationKubeArmor",
- "displayName": "Policy Rule Type OperationKubeArmor",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646498579.6536",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "index=\"main\" Operation=\"*\"",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Policy_Summary.json b/local/data/models/Policy_Summary.json
deleted file mode 100644
index 5ae6526..0000000
--- a/local/data/models/Policy_Summary.json
+++ /dev/null
@@ -1,487 +0,0 @@
-{
- "modelName": "Policy_Summary",
- "displayName": "Policy Summary",
- "description": "",
- "objectSummary": {
- "Event-Based": 1,
- "Transaction-Based": 0,
- "Search-Based": 0
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646805130.19266",
- "parentName": "BaseEvent",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [
- {
- "search": "(index=\"main\") component_name=kubearmor",
- "owner": "RootObject"
- }
- ],
- "lineage": "RootObject"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/System_Event_Counts.json b/local/data/models/System_Event_Counts.json
deleted file mode 100644
index 4fd1139..0000000
--- a/local/data/models/System_Event_Counts.json
+++ /dev/null
@@ -1,483 +0,0 @@
-{
- "modelName": "System_Event_Counts",
- "displayName": "System Event Counts",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1646027268.2153",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index=\"main\" | spath component_name | search component_name=kubearmor"
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/models/Threat_Report_From_Tags.json b/local/data/models/Threat_Report_From_Tags.json
deleted file mode 100644
index be643fd..0000000
--- a/local/data/models/Threat_Report_From_Tags.json
+++ /dev/null
@@ -1,495 +0,0 @@
-{
- "modelName": "Threat_Report_From_Tags",
- "displayName": "Threat Report From Tags",
- "description": "",
- "objectSummary": {
- "Event-Based": 0,
- "Transaction-Based": 0,
- "Search-Based": 1
- },
- "objects": [
- {
- "objectName": "RootObject",
- "displayName": "1648287294.2360",
- "parentName": "BaseSearch",
- "comment": "",
- "fields": [
- {
- "fieldName": "Action",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Action",
- "comment": ""
- },
- {
- "fieldName": "ClusterName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ClusterName",
- "comment": ""
- },
- {
- "fieldName": "ContainerID",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerID",
- "comment": ""
- },
- {
- "fieldName": "ContainerName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "ContainerName",
- "comment": ""
- },
- {
- "fieldName": "Data",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Data",
- "comment": ""
- },
- {
- "fieldName": "HostName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostName",
- "comment": ""
- },
- {
- "fieldName": "HostPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "HostPID",
- "comment": ""
- },
- {
- "fieldName": "Message",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Message",
- "comment": ""
- },
- {
- "fieldName": "NamespaceName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "NamespaceName",
- "comment": ""
- },
- {
- "fieldName": "Operation",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Operation",
- "comment": ""
- },
- {
- "fieldName": "PID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PID",
- "comment": ""
- },
- {
- "fieldName": "PPID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PPID",
- "comment": ""
- },
- {
- "fieldName": "PodName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PodName",
- "comment": ""
- },
- {
- "fieldName": "PolicyName",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "PolicyName",
- "comment": ""
- },
- {
- "fieldName": "Resource",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Resource",
- "comment": ""
- },
- {
- "fieldName": "Result",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Result",
- "comment": ""
- },
- {
- "fieldName": "Severity",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Severity",
- "comment": ""
- },
- {
- "fieldName": "Source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Source",
- "comment": ""
- },
- {
- "fieldName": "Tags",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Tags",
- "comment": ""
- },
- {
- "fieldName": "Timestamp",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Timestamp",
- "comment": ""
- },
- {
- "fieldName": "Type",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "Type",
- "comment": ""
- },
- {
- "fieldName": "UID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UID",
- "comment": ""
- },
- {
- "fieldName": "UpdatedTime",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "UpdatedTime",
- "comment": ""
- },
- {
- "fieldName": "cluster_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_id",
- "comment": ""
- },
- {
- "fieldName": "cluster_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "cluster_name",
- "comment": ""
- },
- {
- "fieldName": "component_name",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "component_name",
- "comment": ""
- },
- {
- "fieldName": "host",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "host",
- "comment": ""
- },
- {
- "fieldName": "index",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "index",
- "comment": ""
- },
- {
- "fieldName": "instanceGroup",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceGroup",
- "comment": ""
- },
- {
- "fieldName": "instanceID",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "instanceID",
- "comment": ""
- },
- {
- "fieldName": "linecount",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "linecount",
- "comment": ""
- },
- {
- "fieldName": "punct",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "punct",
- "comment": ""
- },
- {
- "fieldName": "secret_key",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "secret_key",
- "comment": ""
- },
- {
- "fieldName": "source",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "source",
- "comment": ""
- },
- {
- "fieldName": "sourcetype",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "sourcetype",
- "comment": ""
- },
- {
- "fieldName": "splunk_server",
- "owner": "RootObject",
- "type": "string",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "splunk_server",
- "comment": ""
- },
- {
- "fieldName": "tenant_id",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "tenant_id",
- "comment": ""
- },
- {
- "fieldName": "workload",
- "owner": "RootObject",
- "type": "number",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "workload",
- "comment": ""
- },
- {
- "fieldName": "_time",
- "owner": "RootObject",
- "type": "timestamp",
- "fieldSearch": "",
- "required": false,
- "multivalue": false,
- "hidden": false,
- "editable": true,
- "displayName": "_time",
- "comment": ""
- }
- ],
- "calculations": [],
- "constraints": [],
- "lineage": "RootObject",
- "baseSearch": "index = \"main\" | spath Tags | search Tags=\"STIG,RHEL\""
- }
- ],
- "objectNameList": [
- "RootObject"
- ]
-}
diff --git a/local/data/ui/views/accuknox.xml b/local/data/ui/views/accuknox.xml
deleted file mode 100644
index 18d4206..0000000
--- a/local/data/ui/views/accuknox.xml
+++ /dev/null
@@ -1,445 +0,0 @@
-
\ No newline at end of file
diff --git a/local/data/ui/views/accuknox_clone.xml b/local/data/ui/views/accuknox_clone.xml
deleted file mode 100644
index ec3eee3..0000000
--- a/local/data/ui/views/accuknox_clone.xml
+++ /dev/null
@@ -1,98 +0,0 @@
-
-
-
-
- Network Event Counts
-
-
- | pivot Network_Event_Counts RootObject count(RootObject) AS "Count of 1645787585.615" ROWSUMMARY 0 COLSUMMARY 0 SHOWOTHER 1
- 0
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- Flow Destination Ip Count
-
-
- | pivot Flow_Destination_Ip_Count RootObject count(flow.IP.destination) AS "Count of flow.IP.destination" SPLITROW _time AS _time PERIOD auto SPLITCOL flow.destination.ID SORT 0 _time ROWSUMMARY 0 COLSUMMARY 0 NUMCOLS 1000 SHOWOTHER 0
- -24h@h
- now
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- flowL7
-
-
- | pivot Network_Info RootObject count(flow.IP.ipVersion) AS "Count of flow.IP.ipVersion" SPLITROW _time AS _time PERIOD auto SPLITROW flow.IP.ipVersion AS flow.IP.ipVersion SPLITCOL flow.l7.http.method SORT 100 _time ROWSUMMARY 0 COLSUMMARY 0 NUMCOLS 100 SHOWOTHER 1
- -6d@w1
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
\ No newline at end of file
diff --git a/local/data/ui/views/cilium_logs.xml b/local/data/ui/views/cilium_logs.xml
deleted file mode 100644
index 2f292b0..0000000
--- a/local/data/ui/views/cilium_logs.xml
+++ /dev/null
@@ -1,199 +0,0 @@
-
\ No newline at end of file
diff --git a/local/data/ui/views/kubearmor_alerts.xml b/local/data/ui/views/kubearmor_alerts.xml
deleted file mode 100644
index 3352d60..0000000
--- a/local/data/ui/views/kubearmor_alerts.xml
+++ /dev/null
@@ -1,54 +0,0 @@
-
-
-
-
- KubeArmor Alerts
-
-
- | pivot kubearmorAlerts_Summary RootObject count(Message) AS "Count of Alerts" SPLITROW _time AS _time PERIOD minute SPLITROW Message AS Alerts SPLITROW Severity AS Severity SORT 100 _time ROWSUMMARY 0 COLSUMMARY 0 SHOWOTHER 1
- -7d@h
- now
- 1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- Alert Summary Based on Tags
-
-
- | pivot Alert_Summary_Based_on_Tags RootObject count(Message) AS "Count of Message" SPLITROW PolicyName AS PolicyName SPLITROW Message AS Message SPLITROW PodName AS PodName SPLITROW Severity AS Severity SORT 100 PolicyName ROWSUMMARY 0 COLSUMMARY 0 SHOWOTHER 1
- -7d@h
- now
- 1
-
-
-
-
-
-
-
-
-
-
-
-
\ No newline at end of file
diff --git a/local/data/ui/views/kubearmor_logs.xml b/local/data/ui/views/kubearmor_logs.xml
deleted file mode 100644
index 7497af7..0000000
--- a/local/data/ui/views/kubearmor_logs.xml
+++ /dev/null
@@ -1,268 +0,0 @@
-
\ No newline at end of file
diff --git a/local/datamodels.conf b/local/datamodels.conf
deleted file mode 100644
index d4d0265..0000000
--- a/local/datamodels.conf
+++ /dev/null
@@ -1,95 +0,0 @@
-[Network_Event_Counts]
-dataset.type =
-
-[Flow_Destination_Ip_Count]
-dataset.type =
-
-[Network_Info]
-dataset.type =
-
-[System_Event_Counts]
-dataset.type =
-
-[Network_Event_Counts2]
-dataset.type =
-
-[KubeArmor_Severity]
-dataset.type =
-
-[Flow_Summary_Between_Pods]
-dataset.type =
-
-[Flow7_Summary]
-dataset.type =
-
-[KubeArmor_Event_Counts]
-dataset.type =
-
-[Action_Audit_KubeArmor]
-dataset.type =
-
-[KubeArmor_Policy_Report]
-dataset.type =
-
-[Policy_Rule_Type_OperationKubeArmor]
-dataset.type =
-
-[L7_Summary]
-dataset.type =
-
-[Events_from_Cilium_and_KubeArmor]
-dataset.type =
-
-[Counts_of_Event_from_Hosts]
-dataset.type =
-
-[Events_from_All_Nodes]
-acceleration.hunk.dfs_block_size = 0
-
-[Events_from_All_Pods]
-dataset.type =
-
-[Events_from_Ip_Source]
-dataset.type =
-
-[Policy_Summary]
-dataset.type =
-
-[KubeArmor_Operation_Count]
-dataset.type =
-
-[Policy_Result]
-dataset.type =
-
-[Cilium_Events_Per_Month]
-dataset.type =
-
-[KubeArmor_Events_Per_Month]
-dataset.type =
-
-[KA_Policy]
-dataset.type =
-
-[PolicyTags_Summary]
-dataset.type =
-
-[Threat_Report_From_Tags]
-dataset.type =
-
-[Actio_Block_KubeArmor_Count]
-acceleration.hunk.dfs_block_size = 0
-
-[KubeArmor_ALerts_Per_Hour]
-dataset.type =
-
-[KubeArmor_Alerts_Per_Day]
-dataset.type =
-
-[Cilium_Alerts_Per_Day]
-dataset.type =
-
-[kubearmorAlerts_Summary]
-dataset.type =
-
-[Alert_Summary_Based_on_Tags]
-dataset.type =
diff --git a/local/savedsearches.conf b/local/savedsearches.conf
deleted file mode 100644
index aa90024..0000000
--- a/local/savedsearches.conf
+++ /dev/null
@@ -1,11 +0,0 @@
-[Threat Report]
-dispatch.earliest_time = -30d@d
-dispatch.latest_time = now
-display.general.type = statistics
-display.statistics.format.0 = color
-display.statistics.format.0.colorPalette = map
-display.statistics.format.0.field = Severity
-display.visualizations.show = 0
-request.ui_dispatch_app = apps
-request.ui_dispatch_view = search
-search = | pivot Threat_Report_From_Tags RootObject count(RootObject) AS "Count of 1648287294.2360" SPLITROW PolicyName AS PolicyName SPLITROW Message AS Message SPLITROW Severity AS Severity SPLITROW Resource AS Resource SPLITROW Action AS Action SPLITROW Result AS Result SPLITROW Source AS Source SPLITROW Type AS Type SPLITROW ContainerName AS ContainerName SORT 100 PolicyName ROWSUMMARY 0 COLSUMMARY 0 SHOWOTHER 1
diff --git a/local/ui-prefs.conf b/local/ui-prefs.conf
deleted file mode 100644
index bb4059a..0000000
--- a/local/ui-prefs.conf
+++ /dev/null
@@ -1,10 +0,0 @@
-[dashboards]
-display.prefs.aclFilter = owner
-
-[search]
-display.events.fields = ["PolicyName","Action","ContainerName","NamespaceName","Operation","PodName","Severity","Source","Result","instanceGroup","cluster_id","cluster_name","component_name","flow.is_reply","flow.IP.source","flow.IP.destination","flow.Summary","flow.destination.labels{}","flow.drop_reason","flow.drop_reason_desc"]
-display.page.search.mode = verbose
-display.page.search.patterns.sensitivity = 0.5
-display.prefs.statistics.count = 10
-display.visualizations.charting.chart = line
-display.visualizations.type = singlevalue
diff --git a/metadata/default.meta b/metadata/default.meta
new file mode 100644
index 0000000..91f9bb3
--- /dev/null
+++ b/metadata/default.meta
@@ -0,0 +1,35 @@
+
+# Application-level permissions
+
+[]
+access = read : [ * ], write : [ admin, power ]
+
+### EVENT TYPES
+
+[eventtypes]
+export = system
+
+
+### PROPS
+
+[props]
+export = system
+
+
+### TRANSFORMS
+
+[transforms]
+export = system
+
+
+### LOOKUPS
+
+[lookups]
+export = system
+
+
+### VIEWSTATES: even normal users should be able to create shared viewstates
+
+[viewstates]
+access = read : [ * ], write : [ * ]
+export = system
diff --git a/metadata/local.meta b/metadata/local.meta
index 9877d1e..f0b7d23 100644
--- a/metadata/local.meta
+++ b/metadata/local.meta
@@ -1,296 +1,185 @@
-[history/.dummy_history]
-version = 8.1.3
-modtime = 1645763231.031979000
-
-[ui-prefs/search]
-version = 8.1.3
-modtime = 1648635270.790950000
-
-[datamodels/Network_Event_Counts]
-version = 8.1.3
-modtime = 1645788247.977885000
-
-[models/Network_Event_Counts]
-version = 8.1.3
-modtime = 1645788247.996401000
-
-[datamodels/Flow_Destination_Ip_Count]
-version = 8.1.3
-modtime = 1645789767.094934000
-
-[models/Flow_Destination_Ip_Count]
-version = 8.1.3
-modtime = 1645789767.107829000
-
-[datamodels/Network_Info]
-version = 8.1.3
-modtime = 1645790531.851743000
-
-[models/Network_Info]
-version = 8.1.3
-modtime = 1645790531.888746000
-
-[ui-prefs/dashboards]
-version = 8.1.3
-modtime = 1645792807.587785000
-
-[views/accuknox_clone]
-export = none
-owner = admin
-version = 8.1.3
-modtime = 1645793103.927844000
-
-[datamodels/System_Event_Counts]
-version = 8.1.3
-modtime = 1646027355.880424000
-
-[models/System_Event_Counts]
-version = 8.1.3
-modtime = 1646027356.027237000
-
-[datamodels/Network_Event_Counts2]
-version = 8.1.3
-modtime = 1646027505.900770000
-
-[models/Network_Event_Counts2]
-version = 8.1.3
-modtime = 1646027505.906616000
-
-[views/accuknox]
-access = read : [ * ], write : [ admin, power ]
-export = none
-owner = admin
-version = 8.1.3
-modtime = 1648633476.298804000
-
-[datamodels/KubeArmor_Severity]
-version = 8.1.3
-modtime = 1646410156.048369000
-
-[models/KubeArmor_Severity]
-version = 8.1.3
-modtime = 1646410156.052409000
-
-[datamodels/Flow_Summary_Between_Pods]
-version = 8.1.3
-modtime = 1646411972.820079000
-
-[models/Flow_Summary_Between_Pods]
-version = 8.1.3
-modtime = 1646411972.824598000
-
-[datamodels/Flow7_Summary]
-version = 8.1.3
-modtime = 1646412865.821860000
-
-[models/Flow7_Summary]
-version = 8.1.3
-modtime = 1646412865.825404000
-
-[views/cilium_logs]
-version = 8.1.3
-modtime = 1646897915.433275000
-
-[views/kubearmor_logs]
-version = 8.1.3
-modtime = 1648632528.841927000
-
-[datamodels/KubeArmor_Event_Counts]
-version = 8.1.3
-modtime = 1646496967.339257000
-
-[models/KubeArmor_Event_Counts]
-version = 8.1.3
-modtime = 1646496967.349327000
-
-[datamodels/Actio_Block_KubeArmor_Count]
-version = 8.1.3
-modtime = 1648376011.747053000
-
-[models/Actio_Block_KubeArmor_Count]
-version = 8.1.3
-modtime = 1648376011.815344000
-
-[datamodels/Action_Audit_KubeArmor]
-version = 8.1.3
-modtime = 1646497421.584003000
-
-[models/Action_Audit_KubeArmor]
-version = 8.1.3
-modtime = 1646497421.596010000
-
-[datamodels/KubeArmor_Policy_Report]
-version = 8.1.3
-modtime = 1646498279.426898000
-
-[models/KubeArmor_Policy_Report]
-version = 8.1.3
-modtime = 1646498279.435109000
-
-[datamodels/Policy_Rule_Type_OperationKubeArmor]
-version = 8.1.3
-modtime = 1646498907.211878000
-
-[models/Policy_Rule_Type_OperationKubeArmor]
-version = 8.1.3
-modtime = 1646498907.215219000
-
-[datamodels/L7_Summary]
-version = 8.1.3
-modtime = 1646500082.257837000
-
-[models/L7_Summary]
-version = 8.1.3
-modtime = 1646500082.261877000
-
-[datamodels/Events_from_Cilium_and_KubeArmor]
-version = 8.1.3
-modtime = 1646627211.784810000
-
-[models/Events_from_Cilium_and_KubeArmor]
-version = 8.1.3
-modtime = 1646627211.797423000
-
-[datamodels/Counts_of_Event_from_Hosts]
-version = 8.1.3
-modtime = 1646627935.064430000
-
-[models/Counts_of_Event_from_Hosts]
-version = 8.1.3
-modtime = 1646627935.075840000
-
-[datamodels/Events_from_All_Nodes]
-version = 8.1.3
-modtime = 1646628982.835610000
-
-[models/Events_from_All_Nodes]
-version = 8.1.3
-modtime = 1646628982.849938000
-
-[datamodels/Events_from_All_Pods]
-version = 8.1.3
-modtime = 1646630828.377650000
-
-[models/Events_from_All_Pods]
-version = 8.1.3
-modtime = 1646630828.382641000
-
-[datamodels/Events_from_Ip_Source]
-version = 8.1.3
-modtime = 1646653113.622149000
-
-[models/Events_from_Ip_Source]
-version = 8.1.3
-modtime = 1646653113.626298000
-
-[datamodels/Policy_Summary]
-version = 8.1.3
-modtime = 1646805644.450929000
-
-[models/Policy_Summary]
-version = 8.1.3
-modtime = 1646805644.456767000
-
-[datamodels/KubeArmor_Operation_Count]
-version = 8.1.3
-modtime = 1646806053.285873000
-
-[models/KubeArmor_Operation_Count]
-version = 8.1.3
-modtime = 1646806053.291942000
-
-[datamodels/Policy_Result]
-version = 8.1.3
-modtime = 1646807352.410111000
-
-[models/Policy_Result]
-version = 8.1.3
-modtime = 1646807352.420096000
-
-[datamodels/Cilium_Events_Per_Month]
-version = 8.1.3
-modtime = 1646810401.417446000
-
-[models/Cilium_Events_Per_Month]
-version = 8.1.3
-modtime = 1646810401.433888000
-
-[datamodels/KubeArmor_Events_Per_Month]
-version = 8.1.3
-modtime = 1646810644.548322000
-
-[models/KubeArmor_Events_Per_Month]
-version = 8.1.3
-modtime = 1646810644.567468000
-
-[datamodels/KA_Policy]
-version = 8.1.3
-modtime = 1648197030.186214000
-
-[models/KA_Policy]
-version = 8.1.3
-modtime = 1648197030.190816000
-
-[datamodels/PolicyTags_Summary]
-version = 8.1.3
-modtime = 1648197707.677311000
-
-[models/PolicyTags_Summary]
-version = 8.1.3
-modtime = 1648197707.696793000
-
-[datamodels/Threat_Report_From_Tags]
-version = 8.1.3
-modtime = 1648287658.979369000
-
-[models/Threat_Report_From_Tags]
-version = 8.1.3
-modtime = 1648287658.984616000
-
-[savedsearches/Threat%20Report]
-version = 8.1.3
-modtime = 1648287660.266962000
-
-[datamodels/KubeArmor_ALerts_Per_Hour]
-version = 8.1.3
-modtime = 1648625910.382240000
-
-[models/KubeArmor_ALerts_Per_Hour]
-version = 8.1.3
-modtime = 1648625910.385425000
-
-[datamodels/KubeArmor_Alerts_Per_Day]
-version = 8.1.3
-modtime = 1648626591.220434000
-
-[models/KubeArmor_Alerts_Per_Day]
-version = 8.1.3
-modtime = 1648626591.222822000
-
-[datamodels/Cilium_Alerts_Per_Day]
-version = 8.1.3
-modtime = 1648626808.326032000
-
-[models/Cilium_Alerts_Per_Day]
-version = 8.1.3
-modtime = 1648626808.328991000
-
-[datamodels/kubearmorAlerts_Summary]
-version = 8.1.3
-modtime = 1648632394.295432000
-
-[models/kubearmorAlerts_Summary]
-version = 8.1.3
-modtime = 1648632394.298303000
-
-[views/kubearmor_alerts]
-version = 8.1.3
-modtime = 1648634248.429961000
-
-[datamodels/Alert_Summary_Based_on_Tags]
-version = 8.1.3
-modtime = 1648633991.993706000
-
-[models/Alert_Summary_Based_on_Tags]
-version = 8.1.3
-modtime = 1648633991.997490000
+[app/ui]
+version = 9.0.1
+modtime = 1664077404.528416000
+
+[app/launcher]
+version = 9.0.1
+modtime = 1664077404.545696500
+
+[views/kubearmor_alerts]
+owner = abhinav
+version = 9.0.1
+modtime = 1664384508.035452000
+
+[datamodels/KA_TOTAL_ALERTS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664079741.706064500
+
+[models/KA_TOTAL_ALERTS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664079741.741518700
+
+[datamodels/KA_TOTAL_BLOCKED_ALERTS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664079976.346042600
+
+[models/KA_TOTAL_BLOCKED_ALERTS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664079976.367474700
+
+[datamodels/KA_TOTAL_AUDITED_ALERTS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664080390.146263100
+
+[models/KA_TOTAL_AUDITED_ALERTS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664080390.181978100
+
+[datamodels/KA_NAMESPACE_BREAKDOWN_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664193126.002143700
+
+[models/KA_NAMESPACE_BREAKDOWN_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664193126.026591000
+
+[datamodels/KA_PODS_BREAKDOWN_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664193408.517740400
+
+[models/KA_PODS_BREAKDOWN_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664193408.534477600
+
+[datamodels/KA_OPERATION_BREAKDOWN_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664209113.754592000
+
+[models/KA_OPERATION_BREAKDOWN_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664209113.778905500
+
+[datamodels/KA_SEVERITY_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664209381.407813200
+
+[models/KA_SEVERITY_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664209381.433333600
+
+[datamodels/KA_SEVERITY_NAMESPACE_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664209778.221172600
+
+[models/KA_SEVERITY_NAMESPACE_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664209778.266872900
+
+[datamodels/KA_POLICY_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664213217.161471800
+
+[models/KA_POLICY_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664213217.178222000
+
+[datamodels/KA_TAGS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664213408.727654200
+
+[models/KA_TAGS_F]
+access = read : [ * ], write : [ admin ]
+export = none
+owner = abhinav
+version = 9.0.1
+modtime = 1664213408.746540500
+
+[nav/default]
+version = 9.0.1
+modtime = 1664213816.738071100
+
+[views/kubearmor_logs]
+owner = abhinav
+version = 9.0.1
+modtime = 1664289106.138466800
+
+[app/install/install_source_checksum]
+version = 9.0.1
+modtime = 1664281443.039102200
+
+[props/_json1]
+owner = abhinav
+version = 9.0.1
+modtime = 1664282650.921840600
+
+[views/namespace_drilldown]
+owner = abhinav
+version = 9.0.1
+modtime = 1664340526.062012700
+
+[views/tag_drilldown]
+owner = abhinav
+version = 9.0.1
+modtime = 1664341464.633729100
+
+[views/accuknox]
+owner = abhinav
+version = 9.0.1
+modtime = 1664347514.998856000
diff --git a/static/AccuknoxLogo.jpeg b/static/AccuknoxLogo.jpeg
deleted file mode 100644
index 5eb1a09..0000000
Binary files a/static/AccuknoxLogo.jpeg and /dev/null differ
diff --git a/static/appIcon.png b/static/appIcon.png
index 1ce68ca..7d5304b 100644
Binary files a/static/appIcon.png and b/static/appIcon.png differ
diff --git a/static/appIconAlt.png b/static/appIconAlt.png
index 1ce68ca..7d5304b 100644
Binary files a/static/appIconAlt.png and b/static/appIconAlt.png differ
diff --git a/static/appIconAlt_2x.png b/static/appIconAlt_2x.png
index 0757d1f..147d22a 100644
Binary files a/static/appIconAlt_2x.png and b/static/appIconAlt_2x.png differ
diff --git a/static/appIcon_2x.png b/static/appIcon_2x.png
index 0757d1f..147d22a 100644
Binary files a/static/appIcon_2x.png and b/static/appIcon_2x.png differ
diff --git a/static/appsIcon.png b/static/appsIcon.png
deleted file mode 100644
index 15078a2..0000000
Binary files a/static/appsIcon.png and /dev/null differ