Hi,
We have been using logstash fingerprint plugin since quite sometime. We now have a specific requirement of creating fingerprint hashkey using multiple fields of Elasticsearch indexes, but we are stuck in two cases as detailed below,
If concatenate_sources = False,
Even if we provide multiple fields, it seems to use only last field to generate hashkey.
If concatenate_source = True,
If using multiple fields, duplicate data is eliminated when data is consumed from a single file in s3. If similar duplicate data is consumed from multiple S3 files, it fails to eliminate duplicacy.
Please suggest how to successfully eliminate duplicacy while reading data from several files in S3 bucket