Recently I came up with the next question.
Imagine the next, I have an application which writes the logs. Each log is simple JSON object with the depth of N. Developers don't think about the values they put it the logs, we can find
SSN fields there on any of levels.
All the logs are put to the Redis queue, then logstash reads from Redis and puts them to the ES.
Is there any option right now, where I can configure logstash in the way, that it will parse the JSON object, iterate over it and will obscure the value of the "sensitive" field (meaning change 5 symbols to
*, for example)?
I have tried to search something in this direction, but without any success right now.