Pre-Index a field during Index Creation

mrashid · July 28, 2019, 10:36am

I can understand that its possible to preindex a field during index creation as mentioned in the following page :
https://www.elastic.co/guide/en/elasticsearch/reference/master/index-modules-index-sorting.html

In my case I am creating index automatically every day by using date as one parameter. So how do I sort one field in an index which is created automatically by the already configured logstash output file ?

Logstash config :

output {
if [filteredValues] {
 file {
   path => "/etc/logstash/output.json"
   codec => line { format => "CI-ID : %{filteredValues}"}
   write_behavior => overwrite
 }
}
if "lastFailedBuild" in [source] {
  elasticsearch {
hosts => ["xxxxxxxxxxxxx:9200"]
manage_template => false
index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}-failurelogs"
document_type => "%{[@metadata][type]}"
  }
}else if "lastUnsuccessfulBuild" in [source] {
elasticsearch {
hosts => ["xxxxxxxxxx:9200"]
manage_template => false
index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}-failurelogs"
document_type => "%{[@metadata][type]}"
  }

}else {
  elasticsearch {
hosts => ["xxxxxxxxxxxxxxxxx:9200"]
manage_template => false
index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}-successlogs"
document_type => "%{[@metadata][type]}"
  }
}

Thanks in advance.

system · August 25, 2019, 10:36am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Elasticsearch index not getting created when add_field is used Logstash	9	606	September 4, 2020
How to create index as per file creation date? Logstash	4	1377	October 31, 2019
Creation Index Elasticsearch	2	334	June 23, 2018
Create index dynamically Logstash	1	248	December 9, 2019
Logstash does not create logstash-* indices in ES Logstash	1	334	October 7, 2019

Pre-Index a field during Index Creation

Related topics