Hello. I am trying to get some info from a message field using regular expressions. Concretely I want to get what's after certain keywords. This is the regex: (?<="title" :)(.+?)(?=,)|((?<="description" :)(.+?)(?=,)) Now the problem is that when I run this on the kibana grok debugger it does not r…

Grok regex with or

Badger November 9, 2020, 9:26pm 4

The ruby filter is documented here. Examples of using scan in a ruby filter can be found here and here.

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.