Logstash Extract Elasticsearch Nested Fields

tusharnemade · June 14, 2021, 4:52pm

I also tried below :

specifying "[appEvents][0][attribute_num][filesPendingForUpload]"

input {
  elasticsearch {
    hosts => "10.10.101.1:9200"
    size => 10000
    index => "backupindex"
  }
}



output {
  csv {
    fields => ["userId", "timeStamp", "[backupSettings][backgroundUploading]", "[backupSettings][connectionType]", "[backupSettings][contactBackup]", "[backupSettings][contactPermission]", "[backupSettings][photoBackup]", "[backupSettings][photoQuality]", "[backupSettings][storagePermission]", "[backupSettings][videoBackup]", "[appEvents][0][attribute_num][filesPendingForUpload]"]
    path => "/tmp/exp.csv"
  }
}

specifying "[appEvents][attribute_num][filesPendingForUpload]"

Both did not helped me ... IN CSV , field was blank.

Topic		Replies	Views
Elastic Json parse into logstash Logstash	30	1277	November 22, 2018
Logstash mutate filter, rename - "Exception in filterworker", "exception"=>#<IndexError: string not matched> Logstash	6	3172	July 6, 2017
Missing fields in Kibana Logstash	7	1534	May 15, 2020
Put value of nested field into new field Logstash	11	5242	April 17, 2018
Porting a relational structure to Elasticsearch - Nested or Parent/Child Elasticsearch	10	3861	July 5, 2017

Logstash Extract Elasticsearch Nested Fields

Related topics