Hi, I want to copy all fields of an event to a field of a new event in a logstash filter This { " agent ": " Mozilla / 5.0(compatible; MSIE 9.0)", " ip ": " 192.168.24.44 ", " request ": " / index.html " " response ": { " status ": 200, " by…

Copy complete event to a field of a new event

HansPeterSloot (HansPeterSloot) January 28, 2022, 4:04pm 6

I have no idea.
But I found this:

Looks very much the same.

If have created a script and pointed have the path variable point to it.

In this script I created a new event with

def filter(event)

docs = []
new_event = LogStash::Event.new

*<code>*

docs.push(new_event)

return docs

and fill this event with correct format

To no avail

I cannot remove the fields in a hardcoded way because the formats of the events differ.

Regards Hans

Topic		Replies	Views
Copy Field from a new processed document to an old Document Logstash	1	251	November 1, 2020
Create new event in logstash filter Logstash	2	3320	July 6, 2017
Copying field in from one event to other in logstash Logstash	9	911	April 1, 2019
How to nest all fields in an event under a new field in logstash? Logstash	2	753	November 26, 2019
Move all fields to a subfield? Logstash	3	1403	April 27, 2020