Datastream with upsert

djkprojects · March 22, 2023, 3:15pm

Hello,

We are pulling data from MS SQL database into Elastic via Logstash which is working fine however some records get updated and so we want to update the existing entries in Elastic accordingly.

The data is stored as a datastream but it looks that these don't support doc_as_upsert and action parameters in elasticsearch output.

We can't find any documentation that confirms that so the question is are we missing something here or it is not supported? If the latter how can we go about it using logstash?

leandrojmp · March 22, 2023, 3:28pm

Data streams are append-only, this is described in the documentation about data streams, so they do not support doc_as_upsert, the only action from logstash that it supports is create .

You will need to use normal indices with a rollover alias as explained in this documentation or use time-based indices.

system · April 19, 2023, 3:29pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Elasticsearch Data Streams: Update Strategies, Concerns, and Alternatives Elasticsearch datastreams	6	311	February 7, 2024
Updating the datastream from logstash Elasticsearch datastreams	1	13	September 12, 2024
Modify documents of a datastream index Elasticsearch datastreams	5	1286	May 31, 2021
"doc_as_upsert" overwrites logs instead of appending the logs Logstash	2	707	July 9, 2022
Couchdb_changes index only doc field from event Logstash	32	4250	July 6, 2017

Datastream with upsert

Related Topics