Slack app for pulling Google Cloud Support case information via the Cloud Support API and pushing it to Slack. The goal is to help reduce the overall time to resolution for cases of all priorities by putting case updates in Slack where they will be more easily noticed by their devs and engineers.
The app currently supports the following commands:
- /google-cloud-support track-case [case_number] -- case updates will be posted to this channel
- /google-cloud-support add-comment [case_number] [comment] -- adds a comment to the case
- /google-cloud-support change-priority [case_number] [priority, e.g. P2] -- changes the priority of the case
- /google-cloud-support stop-tracking [case_number] -- case updates will no longer be posted to this channel
- /google-cloud-support list-tracked-cases -- lists all cases being tracked in this channel
- /google-cloud-support list-tracked-cases-all -- lists all cases being tracked in the workspace
- /google-cloud-support case-details [case_number] -- pull all of the case data as json
- /google-cloud-support sitrep -- report of all active cases in the org
Before proceeding, you will need Premium Support to use the Cloud Support API and by association the slackbot
Setting up your first Slack app can be a daunting task, which is why we are providing a step-by-step guide.
To get access to the API, you will need to send your Techincal Account Manager the following:
- The org id where you have Premium Support enabled
- A project id where the API will be allow listed
- The name of a service account in the project from step 2, with the service account having the following roles at the org level:
- Tech Support Editor
- Org Viewer
- The email addresses of the people that will be enabling the API in the project
Your Techincal Account Manager will file a request with the Support API team to give you access. The team typically processes these requests within 24 hours
In the first phase of our Google Cloud setup, we will verify that our network is setup properly, create a lightweight VM to house our bot, and enable our Cloud Support API and create ourselves an API key. Go to Google Cloud. These steps need to be carried out in the project you specified in Part 1 of this setup guide.
From VPC network > Firewall rules, verify rules exist to allow SSH and HTTP.
- If your project doesn't have a VPC, you will need to create one from VPC networks. Select Automatic for your Subnet creation mode, and allow-ssh from Firewall rules
- If it doesn't exist, create the following firewall rule:
- Name:
default-allow-http - Priority:
1000 - Direction:
Ingress - Action on match:
Allow - Targets:
Specified target tags - Target tags:
http-server - Source filter:
IP ranges - Source IP ranges:
0.0.0.0/0 - Protocols and Ports:
Specified protocols and ports - tcp:
80
- Name:
- If an SSH firewall rule doesn't exist, create the following firewall rule:
- Name:
default-allow-ssh - Priority:
65534 - Direction:
Ingress - Action on match:
Allow - Targets:
All instances in the network - Source filter:
IP ranges - Source IP ranges:
0.0.0.0/0 - Protocols and Ports:
Specified protocols and ports - tcp:
22
- Name:
Note that if you had to create the SSH firewall rule in Step 3, you will want to disable it after you complete the entire setup
Go to Compute Engine > VM instances and perform the following:
- Click + Create Instance
- Under Machine Configuration, set the Machine type field to e2-micro. This should suffice for most implementations. If your team makes heavy use of the Cloud Support and the bot, you may need to upgrade the machine type
- Under Identity and API access > Service Account, select your service account that was allow listed for the Cloud Support API
- Under Firewall, select Allow HTTP traffic. If this option isn't available and you create the firewall rule in the Networking steps, then you will want to contact your Networking team about policies that may be preventing HTTP traffic
- Click to expand Management, security, disks, networking, sole tenancy
- Select the Networking tab
- Under Network interfaces, click the network interface box
- Set Network to the VPC where you have your firewall rules
- Under External IP, select Create IP address. Choose whichever name and network service tier you prefer
- Click Create
From APIs & Services > Library ...
- Search for and enable the Cloud Logging API
- Search for and enable the Cloud Support API
From APIs & Services > Credentials
- Click +Create and select API key
- Copy your key and choose to Restrict Key
- Under Application restrictions, you may select IP addresses to restrict usage the VM you created
- Under API restrictions, select Restrict Key and from the Select APIs dropdown, click Google Cloud Support API
Go to Slack Apps to do the following:
- Click Create New App and select From scratch. Name your app
Google Cloud Support Botand select your workspace - Under Settings > Basic Information, scroll down to Display Information and upload the google_cloud_support_buddy_big.png or an icon of your choosing.
- Go to Features > Slash Commands and create the following command:
- Command:
/google-cloud-support - Request URL:
http://<your_vm_external_ip>/google-cloud-support - Short description:
Track and manage your Google Cloud support cases in Slack. Use /google-cloud-support help for the list of commands - Usage Hint:
[command] [parameter 1] [parameter 2] [parameter 3]
- Command:
- Go to Features > OAuth & Permissions. Scroll down to Scopes and add the chat:write scope. Add the commands scope if it isn't listed already listed
- At the top of the Features > OAuth & Permissions page, under OAuth Tokens for Your Workspace, click Install to Workspace. Copy the token. You may need Slack admin approval to install the app.
Return to Google Cloud and from Compute Engine > VM instances, perform the following:
- SSH into the VM that you created in part 2 of this setup guide
- Run the following commands:
sudo apt-get updatesudo apt-get -y install subversionsudo apt-get -y install python3-pipsudo apt-get -y install nginxcd /sudo svn export https://github.com/GoogleCloudPlatform/professional-services/trunk/tools/google-cloud-support-slackbotcd /google-cloud-support-slackbot- Use sudo to open the
defaultfile with your editor of choice, and replace <STATIC_IP> with the external ip address of your VM. Then save and close the file sudo mv default /etc/nginx/sites-available/- Use sudo to open the
.envfile with your editor of choice. Enter your API Key, Slack Token, and numeric org id in their respective locations. Then save and close the file sudo chmod +x google-cloud-support-slackbot.py
- Close the SSH session
- From Compute Engine > VM instances, click your VM name to go to your VM instance details
- Stop the VM
- Once the VM is stopped, click the 'EDIT' button
- Scroll down to the Custom metadata section and add the following key-value pair:
- key:
startup-script - value:
cd /google-cloud-support-slackbot
pip3 install -r requirements.txt
/google-cloud-support-slackbot/google_cloud_support_slackbot.py
- key:
- Scroll to the bottom of the page and click 'Save'
- Start your VM
With that you should be all setup! And as a reminder, if you had to create the SSH firewall rule, it is recommended that you go back and disable it. If you ever need to SSH into the machine you can always enable the rule again as needed.
As the Cloud Support API continues to expand and we collect more feedback for requested features, we will release newer versions of the bot and move the previous version into the archive folder. To replace your current bot with the latest version you will only need to do the following:
- SSH into your VM instance
- Run the following commands:
cd /google-cloud-support-slackbotsudo svn export --force https://github.com/GoogleCloudPlatform/professional-services/trunk/tools/google-cloud-support-slackbot/google_cloud_support_slackbot.pysudo chmod +x google-cloud-support-slackbot.py
- Close your SSH session
- Stop and Start your VM