perses
diff --git a/‎splunk/README.md‎
Lines changed: 202 additions & 0 deletions b/‎splunk/README.md‎
Lines changed: 202 additions & 0 deletions
diff --git a/‎splunk/cue.mod/module.cue‎
Lines changed: 13 additions & 0 deletions b/‎splunk/cue.mod/module.cue‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎splunk/go.mod‎
Lines changed: 29 additions & 0 deletions b/‎splunk/go.mod‎
Lines changed: 29 additions & 0 deletions
diff --git a/‎splunk/jest.config.ts‎
Lines changed: 10 additions & 0 deletions b/‎splunk/jest.config.ts‎
Lines changed: 10 additions & 0 deletions
@@ -0,0 +1,202 @@
+# Splunk Plugin for Perses
+
+This plugin provides Splunk datasource and query support for [Perses](https://github.com/perses/perses).
+
+## Overview
+
+The Splunk plugin enables Perses to connect to Splunk instances and query data using Splunk Processing Language (SPL). It supports both time series visualizations and log queries.
+
+## Features
+
+- **Splunk Datasource**: Connect to Splunk Enterprise or Splunk Cloud instances
+- **Time Series Queries**: Execute SPL queries for time series data visualization
+- **Log Queries**: Retrieve and display log data from Splunk
+- **Variable Support**: Use Perses variables in your SPL queries
+- **Flexible Authentication**: Support for direct URL or proxy-based connections
+
+## Installation
+
+This plugin is part of the Perses plugins repository. To use it:
+
+1. Build the plugin:
+
+```bash
+cd plugins/splunk
+npm install
+npm run build
+```
+
+2. Configure Perses to load the plugin (see [Perses Plugin Documentation](https://perses.dev))
+
+## Configuration
+
+### Datasource Configuration
+
+The Splunk datasource can be configured in two ways:
+
+#### Direct URL
+
+```yaml
+kind: Datasource
+metadata:
+  name: my-splunk
+spec:
+  plugin:
+    kind: SplunkDatasource
+    spec:
+      directUrl: https://splunk.example.com:8089
+```
+
+#### Proxy Configuration
+
+```yaml
+kind: Datasource
+metadata:
+  name: my-splunk
+spec:
+  plugin:
+    kind: SplunkDatasource
+    spec:
+      proxy:
+        kind: HTTPProxy
+        spec:
+          url: https://splunk.example.com:8089
+          allowedEndpoints:
+            - endpointPattern: /services/search/jobs
+              method: POST
+            - endpointPattern: /services/search/jobs/([a-zA-Z0-9_.-]+)/results
+              method: GET
+```
+
+## Query Types
+
+### Time Series Query
+
+Use `SplunkTimeSeriesQuery` for visualizing metrics over time:
+
+```yaml
+kind: TimeSeriesQuery
+spec:
+  plugin:
+    kind: SplunkTimeSeriesQuery
+    spec:
+      query: 'search index=main | timechart count by host'
+      datasource:
+        kind: SplunkDatasource
+        name: my-splunk
+```
+
+### Log Query
+
+Use `SplunkLogQuery` for retrieving log data:
+
+```yaml
+kind: LogQuery
+spec:
+  plugin:
+    kind: SplunkLogQuery
+    spec:
+      query: 'search index=main error | head 1000'
+      datasource:
+        kind: SplunkDatasource
+        name: my-splunk
+      maxResults: 1000
+```
+
+## SPL Query Examples
+
+### Time Series Examples
+
+```spl
+# Count events over time
+search index=main | timechart count
+
+# Average response time by service
+search index=web | timechart avg(response_time) by service
+
+# Error rate over time
+search index=main error | timechart count
+```
+
+### Log Query Examples
+
+```spl
+# Recent errors
+search index=main error | head 100
+
+# Specific application logs
+search index=app sourcetype=application:log level=ERROR
+
+# Search with filters
+search index=main host=server01 status=500
+```
+
+## Development
+
+### Prerequisites
+
+- Node.js version 22 or greater
+- npm version 10 or greater
+
+### Running in Development Mode
+
+1. In the main Perses repository, enable dev mode in `config.yaml`:
+
+```yaml
+plugin:
+  enable_dev: true
+```
+
+2. Start the Perses backend:
+
+```bash
+./scripts/api_backend_dev.sh
+```
+
+3. Login with percli:
+
+```bash
+percli login http://localhost:8080
+```
+
+4. Start the plugin development server:
+
+```bash
+percli plugin start /path/to/plugins/splunk
+```
+
+## API Endpoints
+
+The plugin uses the following Splunk REST API endpoints:
+
+- `/services/search/jobs` - Create search jobs
+- `/services/search/jobs/{sid}` - Get job status
+- `/services/search/jobs/{sid}/results` - Get search results
+- `/services/search/jobs/{sid}/events` - Get search events
+- `/services/search/jobs/export` - Export search results
+- `/services/data/indexes` - Get index information
+
+## Authentication
+
+Splunk authentication can be configured through:
+
+- HTTP headers (Authorization token)
+- Proxy settings with credentials
+- Direct URL with embedded credentials (not recommended for production)
+
+Refer to the [Splunk REST API documentation](https://docs.splunk.com/Documentation/Splunk/latest/RESTREF/RESTprolog) for more details on authentication methods.
+
+## License
+
+This plugin is licensed under the Apache License, Version 2.0. See the [LICENSE](../../LICENSE) file for details.
+
+## Contributing
+
+Contributions are welcome! Please refer to the main [Perses contributing guidelines](https://github.com/perses/perses/blob/main/CONTRIBUTING.md).
+
+## Support
+
+For issues and questions:
+
+- [Perses GitHub Issues](https://github.com/perses/perses/issues)
+- [Perses Documentation](https://perses.dev)
@@ -0,0 +1,13 @@
+module: "github.com/perses/plugins/splunk@v0"
+language: {
+	version: "v0.14.0"
+}
+source: {
+	kind: "git"
+}
+deps: {
+	"github.com/perses/perses/cue@v0": {
+		v:       "v0.53.0-beta.3"
+		default: true
+	}
+}
@@ -0,0 +1,29 @@
+module github.com/perses/plugins/splunk
+
+go 1.25.1
+
+require github.com/perses/perses v0.53.0-beta.3
+
+require (
+	github.com/beorn7/perks v1.0.1 // indirect
+	github.com/cespare/xxhash/v2 v2.3.0 // indirect
+	github.com/go-jose/go-jose/v4 v4.1.3 // indirect
+	github.com/jpillora/backoff v1.0.0 // indirect
+	github.com/kr/text v0.2.0 // indirect
+	github.com/muhlemmer/gu v0.3.1 // indirect
+	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f // indirect
+	github.com/prometheus/client_golang v1.23.2 // indirect
+	github.com/prometheus/client_model v0.6.2 // indirect
+	github.com/prometheus/common v0.67.2 // indirect
+	github.com/prometheus/procfs v0.17.0 // indirect
+	github.com/zitadel/oidc/v3 v3.45.0 // indirect
+	github.com/zitadel/schema v1.3.1 // indirect
+	go.yaml.in/yaml/v2 v2.4.3 // indirect
+	golang.org/x/net v0.46.0 // indirect
+	golang.org/x/oauth2 v0.33.0 // indirect
+	golang.org/x/sys v0.37.0 // indirect
+	golang.org/x/text v0.30.0 // indirect
+	google.golang.org/protobuf v1.36.10 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
+)
@@ -0,0 +1,10 @@
+import type { Config } from '@jest/types';
+import shared from '../jest.shared';
+
+const jestConfig: Config.InitialOptions = {
+  ...shared,
+
+  setupFilesAfterEnv: [...(shared.setupFilesAfterEnv ?? []), '<rootDir>/src/setup-tests.ts'],
+};
+
+export default jestConfig;