Logstash elasticsearch input plugin query size not working

alxsss · June 1, 2020, 2:37pm

Hello, I am trying to get latest timestamp from an index by using elasticsearch input plugin with query as

input {
elasticsearch {
hosts => "${ES_HOST}:9200"
index=>"myindex"
query => '{ "query": { "match_all": { } }, "sort": [ {"@timestamp":{"order":"desc"}}],"size":1 }'
size=>1
}
}

However, I get all documents in the index.

Is this a known issue, since the same query returns only one result in kibana?

system · June 29, 2020, 2:44pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Elasticsearch input plugin size Logstash	8	1408	August 31, 2021
Logstash 5.4 elasticsearch input size not working Logstash	1	466	January 9, 2018
Logstash-elasticsearch input plugin, size not working as expeted Logstash	2	788	February 11, 2019
Elasticsearch Input Seems To Not Use Provided Query - It Just Dumps All docs in Index Logstash	2	547	September 14, 2017
Logstash-plugin elasticsearch: apply excuting searches in logstash Logstash	2	568	July 6, 2017

Logstash elasticsearch input plugin query size not working

Related topics