logstash-filter-elasticsearch 3.9.0 → 3.9.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +9 -0
- data/CONTRIBUTORS +1 -0
- data/README.md +1 -1
- data/docs/index.asciidoc +50 -38
- data/logstash-filter-elasticsearch.gemspec +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 886cfa121f2af1a9efdcfff9f3f2e97be3456be2aecbb668b89d3517d8087ffc
|
4
|
+
data.tar.gz: 0f0a568d1bf012cd0845a6d9cb5782a6460a32332a493790b84f010e68c06fcd
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 3e15a05bd9d013a2145ce983b2699f94c619276d93a675d49695ef8b8cf1d48ef88e6dfb4edac975d11a85bc57c0e769566b35ec44b8b2776fca8e35300af65d
|
7
|
+
data.tar.gz: 667279291114a2a93cbbd211e6ec7ff7533eada83dbfc73377d0a67b759ae773e7787f9b1a11518e9101302653cf5b8b356936a211521f9f635cc58646826730
|
data/CHANGELOG.md
CHANGED
@@ -1,3 +1,12 @@
|
|
1
|
+
## 3.9.3
|
2
|
+
- [DOC] Update links to use shared attributes [#144](https://github.com/logstash-plugins/logstash-filter-elasticsearch/pull/144)
|
3
|
+
|
4
|
+
## 3.9.2
|
5
|
+
- [DOC] Fixed links to restructured Logstash-to-cloud docs [#142](https://github.com/logstash-plugins/logstash-filter-elasticsearch/pull/142)
|
6
|
+
|
7
|
+
## 3.9.1
|
8
|
+
- [DOC] Document the permissions required in secured clusters [#140](https://github.com/logstash-plugins/logstash-filter-elasticsearch/pull/140)
|
9
|
+
|
1
10
|
## 3.9.0
|
2
11
|
- Add support to define a proxy with the proxy config option [#134](https://github.com/logstash-plugins/logstash-filter-elasticsearch/pull/134)
|
3
12
|
|
data/CONTRIBUTORS
CHANGED
@@ -11,6 +11,7 @@ Contributors:
|
|
11
11
|
* Adrian Solom (addrians)
|
12
12
|
* Colin Surprenant (colinsurprenant)
|
13
13
|
* Andres Rodriguez (roaksoax)
|
14
|
+
* Luca Belluccini (lucabelluccini)
|
14
15
|
|
15
16
|
Note: If you've sent us patches, bug reports, or otherwise contributed to
|
16
17
|
Logstash, and you aren't on the list above and want to be, please let us know
|
data/README.md
CHANGED
@@ -1,6 +1,6 @@
|
|
1
1
|
# Logstash Plugin
|
2
2
|
|
3
|
-
[![Travis Build Status](https://travis-ci.
|
3
|
+
[![Travis Build Status](https://travis-ci.com/logstash-plugins/logstash-filter-elasticsearch.svg)](https://travis-ci.com/logstash-plugins/logstash-filter-elasticsearch)
|
4
4
|
|
5
5
|
This is a plugin for [Logstash](https://github.com/elastic/logstash).
|
6
6
|
|
data/docs/index.asciidoc
CHANGED
@@ -24,7 +24,8 @@ Search Elasticsearch for a previous log event and copy some fields from it
|
|
24
24
|
into the current event. Below are two complete examples of how this filter might
|
25
25
|
be used.
|
26
26
|
|
27
|
-
The first example uses the legacy 'query' parameter where the user is limited to
|
27
|
+
The first example uses the legacy 'query' parameter where the user is limited to
|
28
|
+
an Elasticsearch query_string.
|
28
29
|
Whenever logstash receives an "end" event, it uses this elasticsearch
|
29
30
|
filter to find the matching "start" event based on some operation identifier.
|
30
31
|
Then it copies the `@timestamp` field from the "start" event into a new field on
|
@@ -110,6 +111,12 @@ Authentication to a secure Elasticsearch cluster is possible using _one_ of the
|
|
110
111
|
* <<plugins-{type}s-{plugin}-cloud_auth>>
|
111
112
|
* <<plugins-{type}s-{plugin}-api_key>>
|
112
113
|
|
114
|
+
[id="plugins-{type}s-{plugin}-autz"]
|
115
|
+
==== Authorization
|
116
|
+
|
117
|
+
Authorization to a secure Elasticsearch cluster requires `read` permission at index level and `monitoring` permissions at cluster level.
|
118
|
+
The `monitoring` permission at cluster level is necessary to perform periodic connectivity checks.
|
119
|
+
|
113
120
|
[id="plugins-{type}s-{plugin}-options"]
|
114
121
|
==== Elasticsearch Filter Configuration Options
|
115
122
|
|
@@ -168,19 +175,11 @@ Example:
|
|
168
175
|
* Value type is <<password,password>>
|
169
176
|
* There is no default value for this setting.
|
170
177
|
|
171
|
-
Authenticate using Elasticsearch API key. Note that this option also requires
|
172
|
-
|
173
|
-
Format is `id:api_key` where `id` and `api_key` are as returned by the Elasticsearch https://www.elastic.co/guide/en/elasticsearch/reference/current/security-api-create-api-key.html[Create API key API].
|
174
|
-
|
175
|
-
[id="plugins-{type}s-{plugin}-proxy"]
|
176
|
-
===== `proxy`
|
178
|
+
Authenticate using Elasticsearch API key. Note that this option also requires
|
179
|
+
enabling the `ssl` option.
|
177
180
|
|
178
|
-
|
179
|
-
|
180
|
-
|
181
|
-
Set the address of a forward HTTP proxy.
|
182
|
-
An empty string is treated as if proxy was not set, and is useful when using
|
183
|
-
environment variables e.g. `proxy => '${LS_PROXY:}'`.
|
181
|
+
Format is `id:api_key` where `id` and `api_key` are as returned by the
|
182
|
+
Elasticsearch {ref}/security-api-create-api-key.html[Create API key API].
|
184
183
|
|
185
184
|
[id="plugins-{type}s-{plugin}-ca_file"]
|
186
185
|
===== `ca_file`
|
@@ -190,6 +189,28 @@ environment variables e.g. `proxy => '${LS_PROXY:}'`.
|
|
190
189
|
|
191
190
|
SSL Certificate Authority file
|
192
191
|
|
192
|
+
[id="plugins-{type}s-{plugin}-cloud_auth"]
|
193
|
+
===== `cloud_auth`
|
194
|
+
|
195
|
+
* Value type is <<password,password>>
|
196
|
+
* There is no default value for this setting.
|
197
|
+
|
198
|
+
Cloud authentication string ("<username>:<password>" format) is an alternative for the `user`/`password` pair.
|
199
|
+
|
200
|
+
For more info, check out the
|
201
|
+
{logstash-ref}/connecting-to-cloud.html[Logstash-to-Cloud documentation].
|
202
|
+
|
203
|
+
[id="plugins-{type}s-{plugin}-cloud_id"]
|
204
|
+
===== `cloud_id`
|
205
|
+
|
206
|
+
* Value type is <<string,string>>
|
207
|
+
* There is no default value for this setting.
|
208
|
+
|
209
|
+
Cloud ID, from the Elastic Cloud web console. If set `hosts` should not be used.
|
210
|
+
|
211
|
+
For more info, check out the
|
212
|
+
{logstash-ref}/connecting-to-cloud.html[Logstash-to-Cloud documentation].
|
213
|
+
|
193
214
|
[id="plugins-{type}s-{plugin}-docinfo_fields"]
|
194
215
|
===== `docinfo_fields`
|
195
216
|
|
@@ -263,14 +284,26 @@ Field substitution (e.g. `index-name-%{date_field}`) is available
|
|
263
284
|
|
264
285
|
Basic Auth - password
|
265
286
|
|
287
|
+
[id="plugins-{type}s-{plugin}-proxy"]
|
288
|
+
===== `proxy`
|
289
|
+
|
290
|
+
* Value type is <<uri,uri>>
|
291
|
+
* There is no default value for this setting.
|
292
|
+
|
293
|
+
Set the address of a forward HTTP proxy.
|
294
|
+
An empty string is treated as if proxy was not set, and is useful when using
|
295
|
+
environment variables e.g. `proxy => '${LS_PROXY:}'`.
|
296
|
+
|
266
297
|
[id="plugins-{type}s-{plugin}-query"]
|
267
298
|
===== `query`
|
268
299
|
|
269
300
|
* Value type is <<string,string>>
|
270
301
|
* There is no default value for this setting.
|
271
302
|
|
272
|
-
Elasticsearch query string.
|
273
|
-
|
303
|
+
Elasticsearch query string. More information is available in the
|
304
|
+
{ref}/query-dsl-query-string-query.html#query-string-syntax[Elasticsearch query
|
305
|
+
string documentation].
|
306
|
+
|
274
307
|
|
275
308
|
[id="plugins-{type}s-{plugin}-query_template"]
|
276
309
|
===== `query_template`
|
@@ -278,8 +311,8 @@ for more info at: https://www.elastic.co/guide/en/elasticsearch/reference/master
|
|
278
311
|
* Value type is <<string,string>>
|
279
312
|
* There is no default value for this setting.
|
280
313
|
|
281
|
-
File path to elasticsearch query in DSL format.
|
282
|
-
|
314
|
+
File path to elasticsearch query in DSL format. More information is available in
|
315
|
+
the {ref}/query-dsl.html[Elasticsearch query documentation].
|
283
316
|
|
284
317
|
[id="plugins-{type}s-{plugin}-result_size"]
|
285
318
|
===== `result_size`
|
@@ -321,27 +354,6 @@ Tags the event on failure to look up previous log event information. This can be
|
|
321
354
|
|
322
355
|
Basic Auth - username
|
323
356
|
|
324
|
-
[id="plugins-{type}s-{plugin}-cloud_auth"]
|
325
|
-
===== `cloud_auth`
|
326
|
-
|
327
|
-
* Value type is <<password,password>>
|
328
|
-
* There is no default value for this setting.
|
329
|
-
|
330
|
-
Cloud authentication string ("<username>:<password>" format) is an alternative for the `user`/`password` pair.
|
331
|
-
|
332
|
-
For more info, check out the https://www.elastic.co/guide/en/logstash/current/connecting-to-cloud.html#_cloud_auth[Logstash-to-Cloud documentation]
|
333
|
-
|
334
|
-
[id="plugins-{type}s-{plugin}-cloud_id"]
|
335
|
-
===== `cloud_id`
|
336
|
-
|
337
|
-
* Value type is <<string,string>>
|
338
|
-
* There is no default value for this setting.
|
339
|
-
|
340
|
-
Cloud ID, from the Elastic Cloud web console. If set `hosts` should not be used.
|
341
|
-
|
342
|
-
For more info, check out the https://www.elastic.co/guide/en/logstash/current/connecting-to-cloud.html#_cloud_id[Logstash-to-Cloud documentation]
|
343
|
-
|
344
|
-
|
345
357
|
|
346
358
|
[id="plugins-{type}s-{plugin}-common-options"]
|
347
359
|
include::{include_path}/{type}.asciidoc[]
|
@@ -1,7 +1,7 @@
|
|
1
1
|
Gem::Specification.new do |s|
|
2
2
|
|
3
3
|
s.name = 'logstash-filter-elasticsearch'
|
4
|
-
s.version = '3.9.
|
4
|
+
s.version = '3.9.3'
|
5
5
|
s.licenses = ['Apache License (2.0)']
|
6
6
|
s.summary = "Copies fields from previous log events in Elasticsearch to current events "
|
7
7
|
s.description = "This gem is a Logstash plugin required to be installed on top of the Logstash core pipeline using $LS_HOME/bin/logstash-plugin install gemname. This gem is not a stand-alone program"
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: logstash-filter-elasticsearch
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.9.
|
4
|
+
version: 3.9.3
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Elastic
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2021-01-26 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
requirement: !ruby/object:Gem::Requirement
|