Hi All -
Am trying to chop a message and convert the string to Date using Ingest node , however able to get the date string from the message .. but the format is string in Elastic. Any help here would be much appreciated [ Am not using Logstash ]
Original Message : 2019-12-24 09:43 +00:00: Serving page: /signin
event_created is extracted successfully as : 2019-12-24 09:43
JSON
curl -X PUT "localhost:9200/_ingest/pipeline/fields_extraction?pretty" -H 'Content-Type: application/json' -d'
{
"description" : "parsing the input log to fields",
"processors" : [
{
"dissect": {
"field": "message",
"pattern" : "%{event_created} +%{extracted_timezone}: %{log_output}",
"ignore_failure" : true
}
},
{
"date": {
"field" : "event_created",
"target_field" : "event_created",
"formats" : ["yyyy-MM-dd hh:mm"],
"timezone" : "London",
"ignore_failure" : true
}
}
]
}'