Adding field creates an array not a static string

Badger · December 9, 2020, 5:15pm

Are you expecting that each configuration file will automatically get run in a separate pipeline? That does not happen unless you configure it that way using pipelines.yml. If you point path.config (or -f) at a directory that contains more than one configuration file then they are combined. So if you have two files

input { http { ... } }
filter { mutate { ... } }
output { stdout {... } }

and

input { file { ... } }
filter { csv { ... } }
output { elasticsearch {... } }

that is equivalent to

input {
    http { ... }
    file { ... }
}
filter {
    mutate { ... }
    csv { ... }
}
output {
    stdout {... }
    elasticsearch {... }
}

Topic		Replies	Views
Add an array using Mutate's add_field Logstash	5	8899	October 29, 2019
Logstash creating an array when I add a string field that not exist yet Logstash	1	859	February 20, 2018
Mutate Add_field Logstash	2	1293	September 30, 2016
Logstash mutate add_field Logstash	9	1958	July 6, 2017
Logstash converts singleton array to string Logstash	2	802	September 7, 2021

Adding field creates an array not a static string

Related topics