A simple WebUI for displaying latest events from Falco. It works as output for Falcosidekick.
Events are stored in a Redis
server with Redisearch
module (> v2).
-a string
Listen Address (default "0.0.0.0")
-d Enable dark mode as default
-p int
Listen Port (default 2802)
-r string
Redis server address (default "localhost:6379")
-x Allow CORS for development
docker run -d -p 2802:2802 falcosecurity/falcosidekick-ui
git clone /~https://github.com/falcosecurity/falcosidekick-ui.git
cd falcosidekick-ui
go run .
#or
make falcosidekick-ui && ./falcosidekick-ui
The UI is reachable by default at http://localhost:2802/
.
The base URL for the API is
http://localhost/api/v1/
.
Route | Method | Query Parameters | Usage |
---|---|---|---|
/docs |
GET |
none | Get Swagger Docs |
/ |
GET |
none | Display WebUI |
/ |
POST |
none | Add event |
/healthz |
GET |
none | Healthcheck |
/configuration |
GET |
none | Get Configuration |
/outputs |
GET |
none | Get list of Outputs of Falcosidekick |
/event/count |
GET |
pretty , priority , rule , filter , tags , since , limit , page |
Count all events |
/event/count/priority |
GET |
pretty , priority , rule , filter , tags , since , limit , page |
Count events by priority |
/event/count/rule |
GET |
pretty , priority , rule , filter , tags , since , limit , page |
Count events by rule |
/event/count/source |
GET |
pretty , priority , rule , filter , tags , since , limit , page |
Count events by source |
/event/count/tags |
GET |
pretty , priority , rule , filter , tags , since , limit , page |
Count events by tags |
/event/search |
GET |
pretty , priority , rule , filter , tags , since , limit , page |
Search events |
/ws (not yet implemented) |
GET |
none | Create Websocket |
All responses are in JSON format.
Argument list:
pretty
: return well formated JSONpriority
: filter by priorityrule
: filter by rulefilter
: filter by termsource
: filter by sourcetags
: filter by tagssince
: filter by since (in 'second', 'min', 'day', 'week', 'month', 'year')limit
: limit number of results (default: 100)page
: page of results
docker run -d -p 6379:6379 redislabs/redisearch:2.2.4
Requirements:
go
>= 1.18nodejs
>= v14yarn
>= 1.22
make falcosidekick-ui
make lint
make lint-full
Requirement:
make docs
- Thomas Labarussias (/~https://github.com/Issif)
- Frank Jogeleit (/~https://github.com/fjogeleit)