afternoon
My poller reads from a source where the array that I wish to be the source of the Elasticsearch output plugin in not the parent and not the only property.
How can I either filter appropriately OR instruct the Elasticsearch output plugin to ignore other properties and pull from the array that is nested?
I thank you
Possibly some combination of a prune filter to remove unwanted fields, and a mutate filter to move the interesting array to the top level. Without seeing an example of the data it is hard to say.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.