How to notify MS Teams when a new Data Leaks finding is published

This guide allows your Engineers to set up a notification when a new Data Leak finding is published via MS Teams.

Written by Steve Cossell

Overview

This guide shows how to configure UpGuard to post notifications into a MS Teams channel when a new Data Leak finding is published. Although we have used the Data Leak notification type here, you should be able to use this guide for other notification types. Please contact UpGuard Support if you need any assistance with your integration.

Prerequisites

You will need to generate a MS Teams Incoming Webhook URL. Navigate to your Teams interface and locate the channel you want to post notifications into. Here we are going to post UpGuard notifications into the "engineering" channel.

Click on the "..." drop down menu next to the channel and select Connectors:

  • Locate the Incoming Webhook type of connector and click Add:

On the preview window, click Add again to start configuring the webhook:

  • Next set a descriptive name for the new webhook and optionally set a logo. Here we're going to call our webhook UpGuard Data Leaks and we've inserted the UpGuard logo.

  • Clicking Create will generate a webhook URL, which you should keep handy for the integration setup steps below.

  • Clicking Done will complete the webhook setup and you should now see this new webhook in your list of connectors, under the Configured section.

Adding the Integration in UpGuard

  • Navigate to Account Settings on the left panel, then click the Integrations tab. Click New Integration to start creating a new integration.

  • Select the trigger type. In this case, we are going to select the When a new data leak is published trigger. Click Confirm and Next:

  • Next, give your integration a descriptive name. Click Confirm and Next to continue:

  • You will need to enter the destination details. For an MS Teams integration, you should enter in the Incoming Webhook URL you saved from above into the Webhook URL field. For HTTP Headers field, set 'Content-Type: application/json' as the payload will be in JSON format. Click Confirm and Next to move to the Payload screen.

  • To begin with, you can enter your example Payload template like this:

    { 
    "text": " Click here to view: "
    }
  • Under the payload editor, click Send test message to confirm that your integration is configured correctly. You should see a test post matching the sample appear in your MS Teams channel within a few seconds.

  • Click Confirm and Next to complete the integration setup and remember to enable the integration before clicking Finish.

Other Common MS Teams Payloads


New Data Leaks Finding: Below you'll find an example of what the payload template should look like when trying to retrieve new Data Leaks findings. This template will provide notifications for when a new Data Leak finding is published, along with a URL that leads to the finding in more detail.

{ 
"text": "New UpGuard Data Leaks finding: Click here to investigate: "
}

 

See also: