JigSawFr/http.yaml

## http.yaml
#########################################################################
# Title:            CrowdSec : Pushover Notification (API)              #
# Author(s):        JigSawFr                                            #
# URL:              https://github.com/crowdsecurity/crowdsec           #
#########################################################################
#                             MIT License                               #
#########################################################################

type: http          # Don't change
name: http_default  # Must match the registered plugin in the profile

# One of "trace", "debug", "info", "warn", "error", "off"
log_level: info

# group_wait:         # Time to wait collecting alerts before relaying a message to this plugin, eg "30s"
# group_threshold:    # Amount of alerts that triggers a message before <group_wait> has expired, eg "10"
# max_retry:          # Number of attempts to relay messages to plugins in case of error
# timeout:            # Time to wait for response from the plugin before considering the attempt a failure, eg "10s"

#-------------------------
# plugin-specific options

# The following template receives a list of models.Alert objects
# The output goes in the http request body
format: |
  {
   "token": "<APP_TOKEN>",
   "user": "<USER_TOKEN>",
   "message": "{{range . -}}{{$alert := . -}}{{range .Decisions -}}<b>{{.Value}}</b> will get <b>{{.Type}}</b> for next <b>{{.Duration}}</b> for triggering <b>{{.Scenario}}</b>.\r\n https://www.shodan.io/host/{{.Value}}{{end -}}{{end -}}",
   "html": "1",
   "title": "Scenario triggered on IDS/IPS !"
  }

url: https://api.pushover.net/1/messages.json

method: POST
headers:
  Content-Type: "application/json"
	#########################################################################
	# Title: CrowdSec : Pushover Notification (API) #
	# Author(s): JigSawFr #
	# URL: https://github.com/crowdsecurity/crowdsec #
	#########################################################################
	# MIT License #
	#########################################################################

	type: http # Don't change
	name: http_default # Must match the registered plugin in the profile

	# One of "trace", "debug", "info", "warn", "error", "off"
	log_level: info

	# group_wait: # Time to wait collecting alerts before relaying a message to this plugin, eg "30s"
	# group_threshold: # Amount of alerts that triggers a message before <group_wait> has expired, eg "10"
	# max_retry: # Number of attempts to relay messages to plugins in case of error
	# timeout: # Time to wait for response from the plugin before considering the attempt a failure, eg "10s"

	#-------------------------
	# plugin-specific options

	# The following template receives a list of models.Alert objects
	# The output goes in the http request body
	format: \|
	{
	"token": "<APP_TOKEN>",
	"user": "<USER_TOKEN>",
	"message": "{{range . -}}{{$alert := . -}}{{range .Decisions -}}<b>{{.Value}}</b> will get <b>{{.Type}}</b> for next <b>{{.Duration}}</b> for triggering <b>{{.Scenario}}</b>.\r\n https://www.shodan.io/host/{{.Value}}{{end -}}{{end -}}",
	"html": "1",
	"title": "Scenario triggered on IDS/IPS !"
	}

	url: https://api.pushover.net/1/messages.json

	method: POST
	headers:
	Content-Type: "application/json"