Index Joined sql data in Elasticsearch via logstash

sharko · September 20, 2019, 12:49pm

Hello ,

I am trying to index already joined sql data into elastic search via logstash

the data I read look like this

{"family": "ABC", "person":{"name":"aaa","surname":"bbb"}} 
{"family": "ABC", "person":{"name":"ccc","surname":"ddd"}}

I want it to be indexed like this considering that family is my "document_id"

{ 
   "family":"ABC",
   "person":[ 
      { 
         "name":"aaa",
         "surname":"bbb"
      },
      { 
         "name":"ccc",
         "surname":"ddd"
      }
   ]
}

and if I receive a new event for family ABC the new person goes to the list

What will be the logstash filter??

Any help will be appreciated

Thanks

system · October 18, 2019, 12:49pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash Pipeline for Nested data from sql Logstash	3	317	June 24, 2022
Searching for data from multiple index ( join) Elasticsearch	6	514	February 7, 2020
Index sql statements into elasticsearch Elasticsearch	6	326	June 21, 2020
Logstash Elasticsearch filer query to filter data from existing data Logstash	2	216	December 14, 2021
Re-index SQL modified data through logstash Logstash	1	226	June 27, 2019

Index Joined sql data in Elasticsearch via logstash

Related topics