What can explain ElasticSearch 2.4 not accepting to create watchers via curl?

ujjain · March 1, 2018, 1:23pm

[root@elk01 ~]# curl -XPUT 'http://127.0.0.1:9200/_watcher/watch/log_error_watch' -d '{
  "trigger" : {
    "schedule" : { "interval" : "10s" }
  },
  "input" : {
    "search" : {
      "request" : {
        "indices" : [ "logs" ],
        "body" : {
          "query" : {
            "match" : { "message": "error" }
          }
        }
      }
    }
  }
}'
{"error":{"root_cause":[{"type":"invalid_index_name_exception","reason":"Invalid index name [_watcher], must not start with '_', '-', or '+'","index_uuid":"_na_","index":"_watcher"}],"type":"invalid_index_name_exception","reason":"Invalid index name [_watcher], must not start with '_', '-', or '+'","index_uuid":"_na_","index":"_watcher"},"status":400}
[root@elk01 ~]#

We are using Kibana 4.6 and ES 2.4 and looking to set up alerting on our data from Heartbeat, Metricbeat and Filebeat.

system · March 29, 2018, 1:23pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
"reason": "Invalid index name [_watcher], must not start with '_'", Elasticsearch elastic-stack-alerting	7	12356	January 9, 2017
Invalid index name [_watcher], must not start with '_', '-', or '+'" Elasticsearch	5	3482	December 4, 2019
Watcher API Not Available Elasticsearch elastic-stack-alerting	4	629	May 28, 2021
Error creating a watch unexpected token [START_OBJECT]" Elasticsearch elastic-stack-alerting	4	3753	July 6, 2017
Watcher on elasticsearch logs Elasticsearch elastic-stack-alerting	4	440	November 30, 2018

What can explain ElasticSearch 2.4 not accepting to create watchers via curl?

Related topics