2022.07

2022.07

  • Imply
  • Ingest
  • Query
  • Visualize
  • Administer
  • Deploy

›Alerts & Reports

Overview

  • Pivot overview
  • Datasources
  • SQL

Data cubes

  • About data cubes
  • Managing data cubes
  • Visualizations
  • Dimensions
  • Measures
  • Custom dimensions and measures
  • Time compare
  • Filter by measure
  • Annotations
  • Data export

Dashboards

  • Viewing dashboards
  • Creating dashboards
  • Managing dashboards

Alerts & Reports

  • Alerts
  • Scheduled reports

User access

  • Access control
  • User management in Pivot
  • Manage users with LDAP
  • Manage users with OIDC

Advanced features

  • Feature Flags
  • Customizing the Pivot UI
  • Generating links into Pivot
  • Monitor queries
  • Explain
  • CrossTab
  • Pivot server config
  • Plywood Expressions

Pivot API

  • Pivot API overview
  • Pivot users API
  • Pivot UserAuth API
  • Pivot roles API
  • Pivot connections API
  • Pivot data cubes API
  • Pivot dashboards API
  • Pivot alerts API
  • Pivot reports API

Alerts

Use alerts to track events in your data. An alert monitors for when one or more measures matches configurable conditions. You can choose how you want to be notified when an alert gets triggered.

Create a new alert

You cannot currently trigger an alert when no new data has been ingested. You also cannot trigger an alert when the conditions you specify do not match any rows in your data.

Follow these steps to create a new alert:

  1. Click the New alert icon on the Data cube page: New alert icon on the data cube view
  2. The Create new alert page appears. If you click the New alert icon from the data cube view, some of the alert's configurable fields are pre-populated with values from the data cube. You can modify all fields before saving the alert:
FieldDescription
Alert nameEnter a name for your new alert. This name is also the alert's title in the alerts view. The name also appears in emails or webhook notifications.
SeverityThe severity can be any of the following: success, info, error, or warning. The severity you select affects the alert's color and icon in the UI.
Data cubeSpecify the data cube that has the data you want the alert to monitor.
Check everyThis controls how often you want the alert to run.
Time frameThe time frame controls how much data the alert can monitor every time it runs. Setting this field to one day, for instance, results in the alert querying data for the previous day (defined from the moment the alert is evaluated). A best practice is to make Time frame equal to or greater than Check every. By default, Time frame and Check every are equal.
FiltersYou can define one or more filters to delimit the alert data gathered during alert evaluation. You cannot define a static time filter.
Look atSelect "Overall values" if you want to evaluate against a measure, and "Dimension values" to evaluate against a dimension.
ComparisonSelect "None" if you want the alert to trigger based on an absolute condition, such as when a certain measure is greater than a certain value. For a relative condition, such as when a measure changes by a certain value, You must first specify a comparison period.
ConditionsWhen the conditions you specify here are true, your alert is triggered. You can specify one or more conditions. If you specify more than one, you can select whether all conditions must be true to trigger the alert or whether at least one condition must be true to trigger the alert.
MeasureSpecify the measure to which your conditions apply.
Condition bodyThe condition body contains an operator (> or <), a value, and possibly another field, based on whether you select a time period in the comparison field or not.

Edit an alert

You can edit an Alert configuration by clicking on the ellipsis button for an alert in the alerts listing view.

Alternatively, you can edit an alert by clicking the alert's name. Then, click Edit alert.

Receive an alert

Only users — not roles — can receive alert emails. Additionally, depending on your Pivot configuration, the Delivery options view might not be available. If you are running Pivot in default-user mode, and you don't support either email or webhooks, this view is hidden.

To specify the method by which to send your alert and also who should receive it:

  1. Click Delivery options on the Create new alert page.

new alert delivery setup

  1. On the new page that appears, complete the following fields:
FieldDescription
RecipientsChoose a list of users or roles you want to have read access to this alert. Read access enables you to see an alert, and possibly receive emails about the alert (if your email is specified in the Email field). Read access doesn't let you modify the alert.
AdminsChoose a list of users or roles you want to have write access to this alert. Write access enables you to see an alert and its feed, and possibly receive emails about the alert (if your email is specified in the Email field). Write access also lets you edit the alert.
EmailUsers with a check in the checkbox next to their email address receive an email every time the alert is triggered.
WebhooksWebhooks let you get notified about triggered alerts by a third-party service. Pivot alerts have built-in support for both Slack and custom webhooks. For Slack webhooks, the payload is predefined. You only need a webhook URL. (See Configure a Slack webhook URL.) For custom webhooks, you can customize what is sent and how it is sent to the service you want to connect with your alert configuration.

Configure an alert email in on-prem Pivot

You can send an email to an alert's chosen recipients when an alert is triggered. To send an email, you must first configure Pivot to send emails.

You can send both default and custom alert emails.

The default template for an alert email is in the Pivot configuration file.

Here is the default subject line: subject: '[{{{severity}}}] {{{title}}} was triggered on {{{triggerDate}}}

Here is the default markup:

<!doctype html>
  <html>
    <head>
      <meta name="viewport" content="width=device-width">
      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
      <title>{{title}}</title>
      <style>
        html {
          font-family: sans-serif;
        }

        h2 {
          font-weight: initial;
          color: #1c1c1c;
        }

        dt {
          float: left;
          clear: left;
          width: 100px;
          color: #969696;
        }

        dd {
          margin: 0 0 0 100px;
          padding: 0 0 0.5em 0;
          height: 18px;
        }

        a {
          text-decoration: none;
          color: white;
          background-color: #258bdd;
          padding: 11px 16px 9px 16px;
          font-size: 13px;
        }

        table {
          border-collapse: collapse;
          font-size: 0.8rem;
        }

        td, th {
          border-bottom: 1px solid rgb(232, 232, 232);
          padding: 10px 20px;
        }

        th {
          color: #969696
        }

        td {
          text-align: left;
        }

        tr:nth-child(even) td {
          background-color: rgb(250,250,250);
        }

        tr:nth-child(odd) td {
          background-color: rgb(245,245,245);
        }

      </style>
    </head>
    <body>
      <dl>
        <dt>Data cube</dt>
        <dd>{{dataCubeTitle}}</dd>

        <dt>Time frame</dt>
        <dd>{{timeFrame}}</dd>

        <dt>Filter</dt>
        <dd>{{filter}}</dd>

        <dt>Condition</dt>
        <dd>{{condition}}</dd>
        {{^summaries.1}}
          <dt>Event</dt>
          <dd>{{summaries.0.event}}</dd>
        {{/summaries.1}}
      </dl>

      {{#summaries.1}}
        <table>
          <thead>
            <td scope="col">{{splitTitle}}</td>
            <td scope="col">Event</td>
          </thead>
          <tbody>
            {{#summaries}}
            <tr>
              <td>{{value}}</td>
              <td>{{event}}</td>
            </tr>
            {{/summaries}}
          </tbody>
        </table>
      {{/summaries.1}}


      {{#link}}
      <p>
        <a href="{{link}}">View</a>
      </p>
      {{/link}}
    </body>
  </html>

You can use the following interpolation properties in both the email's subject and body:

PropertyDescription
titleThe alert's title
linkA link to a Pivot data cube view for the report instance. This requires the linkHostName config setting to be configured.

Configure Imply Hybrid to send alert emails

Before you can send an email alert in Imply Hybrid (formerly Imply Cloud), you must configure Imply Hybrid to send email.

To configure Imply Hybrid to send email using Amazon Simple Email Service (Amazon SES):

  1. Verify your email address. See Verifying email addresses in Amazon SES for more information.
  2. Move out of the Amazon SES sandbox. See Moving out of the Amazon SES sandbox for more information.
  3. Add the ses:SendRawEmail permission to your imply-cloud-instance-poc IAM role for permission to call the Amazon SES API.

Configure a Slack webhook URL

A user needs the ManageAlertsWebhooks permission to modify an alert's webhooks.

You can send info to a Slack webhook:

  1. Generate a webhook URL by following steps 1 to 3 of this tutorial.
  2. Then, paste the URL into a new webhook as shown below:

alert new webhook

  1. You can also define a webhook as custom and customize its payload. This payload contains a variety of keys that are interpolated as follows:
FieldDescription
TitleThe Alert name you specified when creating or editing the alert
SummaryA brief summary of what triggered the alert
LinkA relative link to the event that triggered the alert, relative to the installation
TriggerDateThe timestamp for when the trigger fired, in seconds
ColorThe color related to the alert's type: Blue for info, green for success, red for error, and yellow for warning
SeverityThe alert's type, as defined in its configuration
FooterThe alert's sender, which is either Imply or the user who sent the notification
dimensionNameIf your alert checks a measure that is grouped by a dimension, then dimensionName is in the payload. dimensionName is the dimension by which your data is grouped.
dimensionValueIf your alert checks a measure that is grouped by a dimension, dimensionValue is the specific value dimension that triggers the alert.

Here is Slack's default payload:

{
  "attachments": [
    {
      "fallback": "<title>",
      "color": "<color>",
      "title": "<title>",
      "title_link": "<link>",
      "text": "<summary>",
      "ts": <triggerDate>
    }
  ]
}
Last updated on 4/20/2022
← Managing dashboardsScheduled reports →
  • Create a new alert
  • Edit an alert
  • Receive an alert
  • Configure an alert email in on-prem Pivot
  • Configure Imply Hybrid to send alert emails
  • Configure a Slack webhook URL
2022.07
Key links
Try ImplyApache Druid siteImply GitHub
Get help
Stack OverflowSupportContact us
Learn more
Apache Druid forumsBlog
Copyright © 2022 Imply Data, Inc