You only need the ./bin/run and ./bin/.env to use kibanalert. Here's how:
cd ./bin
cp env.sample .env
Fill out the details of .env.
Type ./run to start kibanalert.
I assume you use the following index mappings:
PUT /kibanalert/_mapping
{
"properties": {
"alert_id": {
"type": "keyword"
},
"date": {
"type": "date"
},
"reason": {
"type": "text"
},
"rule_id": {
"type": "keyword"
},
"service_name": {
"type": "text"
}
}
}
And that alerts populate index with this document template:
{
"alert_id": "{{alert.id}}",
"rule_id": "{{rule.id}}",
"reason": "{{context.reason}}",
"service_name": "{{context.serviceName}}",
"date": "{{date}}"
}
The source code can be found in the ~/src directory. Use the ~/src/env.sample as template for your ~/src/.env. Run the command cd ~/src/ && go run run.go to run the application. You can also use cd ~/src/ && go build run.go && mv run ~/bin to make a new binary file.