Basic-parsing XML into logsash

ushadatt · September 11, 2015, 7:32am

I want to parse my XML document through logstash so that each document gets parsed differently..How to achieve this? For example: book id 101 becomes one document with parsed fields and book102 becomes another document with parsed fields?

<?xml version="1.0"?>
<catalog>
   <book id="bk101">
      <author>Gambardella, Matthew</author>
      <title>XML Developer's Guide</title>
      <genre>Computer</genre>
      <price>44.95</price>
      <publish_date>2000-10-01</publish_date>
      <description>An in-depth look at creating applications 
      with XML.</description>
   </book>
   <book id="bk102">
      <author>Ralls, Kim</author>
      <title>Midnight Rain</title>
      <genre>Fantasy</genre>
      <price>5.95</price>
      <publish_date>2000-12-16</publish_date>
      <description>A former architect battles corporate zombies, 
      an evil sorceress, and her own childhood to become queen 
      of the world.</description>
   </book>

warkolm · September 11, 2015, 7:46am

Have you looked at the XML filter documentation?
https://www.elastic.co/guide/en/logstash/current/plugins-filters-xml.html

ushadatt · September 11, 2015, 7:55am

Yeah. But I am new to logstash so needed a basic example to work on.. if you could suggest a basic example or some link..it will be a great help

warkolm · September 11, 2015, 9:56am

Try http://www.sixtree.com.au/articles/2014/intro-to-elk-and-capturing-application-logs/

Topic		Replies	Views
Log stash xml parse Logstash	2	429	May 8, 2017
Parsing xml document using xpath Logstash	6	6102	July 6, 2017
Create separate documents from xml file Logstash	3	330	September 10, 2018
Help with parsing XML content Logstash	16	19663	July 6, 2017
Logstash XML Logstash	14	1275	August 29, 2019

Basic-parsing XML into logsash

Related topics