Index Joined sql data in Elasticsearch via logstash

sharko · September 20, 2019, 12:49pm

Hello ,

I am trying to index already joined sql data into elastic search via logstash

the data I read look like this

{"family": "ABC", "person":{"name":"aaa","surname":"bbb"}} 
{"family": "ABC", "person":{"name":"ccc","surname":"ddd"}}

I want it to be indexed like this considering that family is my "document_id"

{ 
   "family":"ABC",
   "person":[ 
      { 
         "name":"aaa",
         "surname":"bbb"
      },
      { 
         "name":"ccc",
         "surname":"ddd"
      }
   ]
}

and if I receive a new event for family ABC the new person goes to the list

What will be the logstash filter??

Any help will be appreciated

Thanks

system · October 18, 2019, 12:49pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Joining incoming Data with existing Elasticsearch documents Logstash	2	462	July 6, 2017
Periodically indexing SQL data to ES using Logstash Elasticsearch	5	750	November 8, 2017
Logstash: Index complex structure from jdbc input Logstash	13	1288	September 5, 2018
JOIN different data sources Logstash	6	3279	July 6, 2017
Join two index using input elasticsearch/exec plugin in logstash Logstash	1	241	June 23, 2020

Index Joined sql data in Elasticsearch via logstash

Related topics