Skip to content

Commit 43e1a4d

Browse files
navnit-elasticnavnit-elastic
authored
crowdstrike: add support for http proxy configuration (elastic#15880)
add support for HTTP proxy configuration for Event Streams. add support for proxy header configuration for REST APIs.
1 parent e8e17d1 commit 43e1a4d

File tree

6 files changed

+43
-1
lines changed

6 files changed

+43
-1
lines changed

packages/crowdstrike/changelog.yml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,9 @@
11
# newer versions go on top
2+
- version: "2.8.0"
3+
changes:
4+
- description: Add support for HTTP proxy configuration for Event Streams. Add support for proxy header configuration for CrowdStrike APIs.
5+
type: enhancement
6+
link: https://github.com/elastic/integrations/pull/15880
27
- version: "2.7.0"
38
changes:
49
- description: Add support for DataProtectionDetectionSummaryEvent events in FDR and Falcon datasets.

packages/crowdstrike/data_stream/alert/agent/stream/cel.yml.hbs

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,9 @@ resource.tracer:
77
{{#if proxy_url}}
88
resource.proxy_url: {{proxy_url}}
99
{{/if}}
10+
{{#if proxy_headers}}
11+
resource.proxy_headers: {{proxy_headers}}
12+
{{/if}}
1013
{{#if ssl}}
1114
resource.ssl: {{ssl}}
1215
{{/if}}

packages/crowdstrike/data_stream/falcon/agent/stream/streaming.yml.hbs

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,12 @@ auth:
55
client_secret: {{client_secret}}
66
token_url: {{token_url}}
77
crowdstrike_app_id: {{app_id}}
8+
{{#if proxy_url}}
9+
proxy_url: {{proxy_url}}
10+
{{/if}}
11+
{{#if proxy_headers}}
12+
proxy_headers: {{proxy_headers}}
13+
{{/if}}
814
redact:
915
fields: ~
1016
program: |

packages/crowdstrike/data_stream/host/agent/stream/cel.yml.hbs

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,9 @@ resource.tracer:
77
{{#if proxy_url}}
88
resource.proxy_url: {{proxy_url}}
99
{{/if}}
10+
{{#if proxy_headers}}
11+
resource.proxy_headers: {{proxy_headers}}
12+
{{/if}}
1013
{{#if ssl}}
1114
resource.ssl: {{ssl}}
1215
{{/if}}

packages/crowdstrike/data_stream/vulnerability/agent/stream/cel.yml.hbs

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,9 @@ resource.tracer:
77
{{#if proxy_url}}
88
resource.proxy_url: {{proxy_url}}
99
{{/if}}
10+
{{#if proxy_headers}}
11+
resource.proxy_headers: {{proxy_headers}}
12+
{{/if}}
1013
{{#if ssl}}
1114
resource.ssl: {{ssl}}
1215
{{/if}}

packages/crowdstrike/manifest.yml

Lines changed: 23 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
name: crowdstrike
22
title: CrowdStrike
3-
version: "2.7.0"
3+
version: "2.8.0"
44
description: Collect logs from Crowdstrike with Elastic Agent.
55
type: integration
66
format_version: "3.4.0"
@@ -68,6 +68,21 @@ policy_templates:
6868
- type: streaming
6969
title: Collect CrowdStrike Falcon Logs via Event Stream
7070
description: Collecting CrowdStrike Falcon Logs via Event Stream.
71+
vars:
72+
- name: proxy_url
73+
type: text
74+
title: Proxy URL
75+
multi: false
76+
required: false
77+
show_user: false
78+
description: URL to proxy connections in the form of http[s]://<user>:<password>@<server name/ip>:<port>. Ensure your username and password are in URL encoded format.
79+
- name: proxy_headers
80+
type: yaml
81+
title: Proxy headers
82+
multi: false
83+
required: false
84+
show_user: false
85+
description: This specifies the headers to be sent to the proxy server.
7186
- type: cel
7287
title: Collect CrowdStrike logs via API
7388
description: Collecting CrowdStrike logs via API.
@@ -108,6 +123,13 @@ policy_templates:
108123
required: false
109124
show_user: false
110125
description: URL to proxy connections in the form of http[s]://<user>:<password>@<server name/ip>:<port>. Please ensure your username and password are in URL encoded format.
126+
- name: proxy_headers
127+
type: yaml
128+
title: Proxy headers
129+
multi: false
130+
required: false
131+
show_user: false
132+
description: This specifies the headers to be sent to the proxy server.
111133
- name: ssl
112134
type: yaml
113135
title: SSL Configuration

0 commit comments

Comments
 (0)