Hi,
I'm having trouble trying to parse log lines like this (but much longer):
"timestamp":"2016-02-10 00:10:33","level":"ERROR"
So everything is in double quotes.
I just want a simple way to get the fields separated and without quotes.
Could someone point me in the right direction?
Thanks
Is this JSON data? Use the json filter (or codec).
Unfortunately it's not proper JSON , but I might be able to use that, thanks.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.