abdallah/ses-sns-sqs-to-graylog.py

## ses-sns-sqs-to-graylog.py
import boto3
import json
import requests
from datetime import datetime
import sys

HOST = 'MY.HOST.ADDRESS'
PORT = 12201 # change if you create graylog input with different port
queue_url = 'https://sqs.ZONE.amazonaws.com/ACCOUNT/QUEUENAME'

sqs = boto3.client('sqs')

response = sqs.get_queue_attributes(
    QueueUrl=queue_url,
    AttributeNames=['ApproximateNumberOfMessages']
)
number_of_messages = int(response['Attributes']['ApproximateNumberOfMessages'])

for i in range(1, number_of_messages + 1):
    data = sqs.receive_message(QueueUrl=queue_url)
    if 'Messages' in data:
        body = json.loads(data['Messages'][0]['Body'])
        receipt_handle = data['Messages'][0]['ReceiptHandle']
        msg = json.loads(body['Message'])
        version = "1.1"
        host = "localhost"
        short_message = "Type: {}; Source: {}; Destination: {}".format(msg['notificationType'], msg['mail']['source'],
                                                                       msg['mail']['destination'][0])
        full_message = msg
        timestamp = datetime.strptime(msg['mail']['timestamp'].strip('Z'), '%Y-%m-%dT%H:%M:%S.%f').timestamp()
        to_gelf = {
            "version": version,
            "host": "localhost",
            "short_message": short_message,
            "full_message": full_message,
            "timestamp": timestamp,
            "level": 1
        }
        r = requests.post('http://{}:{}/gelf'.format(HOST,PORT), json=to_gelf)
        if r.ok:
            sqs.delete_message(QueueUrl=queue_url, ReceiptHandle=receipt_handle)
sys.exit(0)
	import boto3
	import json
	import requests
	from datetime import datetime
	import sys

	HOST = 'MY.HOST.ADDRESS'
	PORT = 12201 # change if you create graylog input with different port
	queue_url = 'https://sqs.ZONE.amazonaws.com/ACCOUNT/QUEUENAME'

	sqs = boto3.client('sqs')

	response = sqs.get_queue_attributes(
	QueueUrl=queue_url,
	AttributeNames=['ApproximateNumberOfMessages']
	)
	number_of_messages = int(response['Attributes']['ApproximateNumberOfMessages'])

	for i in range(1, number_of_messages + 1):
	data = sqs.receive_message(QueueUrl=queue_url)
	if 'Messages' in data:
	body = json.loads(data['Messages'][0]['Body'])
	receipt_handle = data['Messages'][0]['ReceiptHandle']
	msg = json.loads(body['Message'])
	version = "1.1"
	host = "localhost"
	short_message = "Type: {}; Source: {}; Destination: {}".format(msg['notificationType'], msg['mail']['source'],
	msg['mail']['destination'][0])
	full_message = msg
	timestamp = datetime.strptime(msg['mail']['timestamp'].strip('Z'), '%Y-%m-%dT%H:%M:%S.%f').timestamp()
	to_gelf = {
	"version": version,
	"host": "localhost",
	"short_message": short_message,
	"full_message": full_message,
	"timestamp": timestamp,
	"level": 1
	}
	r = requests.post('http://{}:{}/gelf'.format(HOST,PORT), json=to_gelf)
	if r.ok:
	sqs.delete_message(QueueUrl=queue_url, ReceiptHandle=receipt_handle)
	sys.exit(0)