Add extra fields for doc_as_upsert

amjad.hussain · July 31, 2017, 7:51pm

I have written one Logstash script for update.
This script will update or insert if the record is not present in elasticsearch.
I am using doc_as_upsert as true for that.

input {

file {
path => "C:/PADS_ELK/Logstash/logstash-5.4.1/data/input.txt"
start_position => "beginning"
}

}

filter{

csv{
columns => ["col1","col2","col3"]
separator => ","
}

ruby {
add_field => {
"col3" => "%{[@timestamp]}"
"updated_by" => "batch"
}

	code => "if event.get('col1').to_i < 1000
				event.set('col1','1000')
	 		  end
	 		if event.get('col2').to_i < 10
 	          event.set('col2','10')
 	   end"   	
				
  remove_field => ["message", "path","@version","@timestamp","type","host"]		 							   
		}

}

output {

stdout { codec => rubydebug }
elasticsearch{
hosts => ["localhost:9200"]
index => "my_index"
action => "update"
document_type => "my_type"
document_id => "%{col1}%{col2}%{col3}"
doc_as_upsert => "true"
}
}

For updating the records, it is fine. But, I want to add one more field if this is insert. How can I do that?

system · August 28, 2017, 8:04pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash and CSV - append to field while upsert Logstash	4	936	October 2, 2020
Doc_as_upsert along with script in Elasticsearch output plugin Logstash	1	1202	February 22, 2021
Logstash Update or Insert - logic for updating if existing Logstash	4	14376	April 13, 2017
Upsert / Update if exist, create if not Logstash	3	9856	September 7, 2019
Upsert logstash output - Version not upcounting Elasticsearch	1	989	April 11, 2017

Add extra fields for doc_as_upsert

Related topics