logstash-output-elasticsearch 2.6.2-java → 2.7.0-java

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 0e498531e88fe7f64902a58f2b8c78692e53fe50
-  data.tar.gz: 649251ac66818877c41c3fd09415fcabcbaf4887
+  metadata.gz: 74f2ac96bc6550963861463f730f02b3f7db5b6e
+  data.tar.gz: 05c1c72ec132dac8ef7284b08a2180d9e72e2bb4
 SHA512:
-  metadata.gz: 37f1ad94ed0a96818dd4abe9290d5b40b43a61956fda40e2f68552579b0a6f7764b3ed1f3cef3fa6e228a0bbe63960a1f37a8d6fd172d10320d52d053f6fe1f2
-  data.tar.gz: 65d29533998b3a822c3a98a9867fd987158c89180060e4685797bcb94891356669827354fe86a245dbe736d9f516b7c2664c1f01cd97ef465f1199ac3fe82078
+  metadata.gz: f38466236f48b6162e57e7cbe5b1eebe175847a53dd98690291f74a7db328f75cff86d2abe8a22707cb662c2c7f3db04d53a38a09042a278b7e263828812cdc0
+  data.tar.gz: 0bf1bdf857e923e3103045fa7e1bb9f5df585a3c775db9ef632c2fa9a88eeefbff357e12ee89a024d6b7247191a803dddadfaee846382ddbedfdbfac8b49f7ee

data/CHANGELOG.md

@@ -1,3 +1,6 @@
+## 2.7.0
+ - Add `pipeline` configuration option for setting an ingest pipeline to run upon indexing
+
 ## 2.6.2
  - Fix bug where update index actions would not work with events with 'data' field
 

data/README.md

@@ -68,7 +68,7 @@ gem "logstash-filter-awesome", :path => "/your/local/logstash-filter-awesome"
 - Install plugin
 ```sh
 # Logstash 2.3 and higher
-bin/logstah-plugin install --no-verify
+bin/logstash-plugin install --no-verify
 
 # Prior to Logstash 2.3
 bin/plugin install --no-verify
@@ -91,7 +91,7 @@ gem build logstash-filter-awesome.gemspec
 - Install the plugin from the Logstash home
 ```sh
 # Logstash 2.3 and higher
-bin/logstah-plugin install --no-verify
+bin/logstash-plugin install --no-verify
 
 # Prior to Logstash 2.3
 bin/plugin install --no-verify

data/lib/logstash/outputs/elasticsearch/common.rb

@@ -134,12 +134,20 @@ module LogStash; module Outputs; class ElasticSearch;
         :_routing => @routing ? event.sprintf(@routing) : nil
       }
 
-      params[:parent] = event.sprintf(@parent) if @parent
+      if @pipeline
+        params[:pipeline] = @pipeline
+      end
+
+     if @parent
+        params[:parent] = event.sprintf(@parent)
+      end
+
       if @action == 'update'
         params[:_upsert] = LogStash::Json.load(event.sprintf(@upsert)) if @upsert != ""
         params[:_script] = event.sprintf(@script) if @script != ""
         params[:_retry_on_conflict] = @retry_on_conflict
       end
+
       params
     end
 

data/lib/logstash/outputs/elasticsearch/common_configs.rb

@@ -156,6 +156,9 @@ module LogStash; module Outputs; class ElasticSearch
       # See the https://www.elastic.co/guide/en/elasticsearch/guide/current/partial-updates.html[partial updates]
       # for more info
       mod.config :retry_on_conflict, :validate => :number, :default => 1
+
+      # Set which ingest pipeline you wish to execute for an event
+      mod.config :pipeline, :validate => :string, :default => nil
     end
   end
 end end end

data/logstash-output-elasticsearch.gemspec

@@ -1,7 +1,7 @@
 Gem::Specification.new do |s|
 
   s.name            = 'logstash-output-elasticsearch'
-  s.version         = '2.6.2'
+  s.version         = '2.7.0'
   s.licenses        = ['apache-2.0']
   s.summary         = "Logstash Output to Elasticsearch"
   s.description     = "This gem is a Logstash plugin required to be installed on top of the Logstash core pipeline using $LS_HOME/bin/logstash-plugin install gemname. This gem is not a stand-alone program"

data/spec/integration/outputs/pipeline_spec.rb

@@ -0,0 +1,75 @@
+require_relative "../../../spec/es_spec_helper"
+
+describe "Ingest pipeline execution behavior", :integration => true, :version_5x => true do
+  subject! do
+    require "logstash/outputs/elasticsearch"
+    settings = {
+      "hosts" => "#{get_host_port()}",
+      "pipeline" => "apache-logs"
+    }
+    next LogStash::Outputs::ElasticSearch.new(settings)
+  end
+
+  let(:ftw_client) { FTW::Agent.new }
+  let(:ingest_url) { "http://#{get_host_port()}/_ingest/pipeline/apache-logs" }
+  let(:apache_logs_pipeline) { '
+    {
+      "description" : "Pipeline to parse Apache logs",
+      "processors" : [
+        {
+          "grok": {
+            "field": "message",
+            "pattern": "%{COMBINEDAPACHELOG}"
+          }
+        }
+      ]
+    }'
+  }
+
+  before :each do
+    # Delete all templates first.
+    require "elasticsearch"
+
+    # Clean ES of data before we start.
+    @es = get_client
+    @es.indices.delete_template(:name => "*")
+
+    # This can fail if there are no indexes, ignore failure.
+    @es.indices.delete(:index => "*") rescue nil
+
+    # delete existing ingest pipeline
+    req = ftw_client.delete(ingest_url)
+    ftw_client.execute(req)
+
+    # register pipeline
+    req = ftw_client.put(ingest_url, :body => apache_logs_pipeline)
+    ftw_client.execute(req)
+
+    #TODO: Use esclient
+    #@es.ingest.put_pipeline :id => 'apache_pipeline', :body => pipeline_defintion
+
+    subject.register
+    subject.receive(LogStash::Event.new("message" => '183.60.215.50 - - [01/Jun/2015:18:00:00 +0000] "GET /scripts/netcat-webserver HTTP/1.1" 200 182 "-" "Mozilla/5.0 (compatible; EasouSpider; +http://www.easou.com/search/spider.html)"'))
+    subject.flush
+    @es.indices.refresh
+
+    #Wait or fail until everything's indexed.
+    Stud::try(20.times) do
+      r = @es.search
+      insist { r["hits"]["total"] } == 1
+    end
+  end
+
+  it "indexes using the proper pipeline" do
+    results = @es.search(:index => 'logstash-*', :q => "message:\"netcat\"")
+    insist { results["hits"]["total"] } == 1
+    insist { results["hits"]["hits"][0]["_source"]["response"] } == "200"
+    insist { results["hits"]["hits"][0]["_source"]["bytes"] } == "182"
+    insist { results["hits"]["hits"][0]["_source"]["verb"] } == "GET"
+    insist { results["hits"]["hits"][0]["_source"]["request"] } == "/scripts/netcat-webserver"
+    insist { results["hits"]["hits"][0]["_source"]["auth"] } == "-"
+    insist { results["hits"]["hits"][0]["_source"]["ident"] } == "-"
+    insist { results["hits"]["hits"][0]["_source"]["clientip"] } == "183.60.215.50"
+    insist { results["hits"]["hits"][0]["_source"]["junkfieldaaaa"] } == nil
+  end
+end

data/spec/integration/outputs/templates_spec.rb

@@ -73,7 +73,7 @@ describe "index template expected behavior", :integration => true do
   end
 
   it "make [geoip][location] a geo_point" do
-    results = @es.search(:body => { "filter" => { "geo_distance" => { "distance" => "1000km", "geoip.location" => { "lat" => 0.5, "lon" => 0.5 } } } })
+    results = @es.search(:body => { "query" => { "bool" => { "must" => { "match_all" => {} }, "filter" => { "geo_distance" => { "distance" => "1000km", "geoip.location" => { "lat" => 0.5, "lon" => 0.5 } } } } } })
     insist { results["hits"]["total"] } == 1
     insist { results["hits"]["hits"][0]["_source"]["geoip"]["location"] } == [ 0.0, 0.0 ]
   end

metadata

@@ -1,39 +1,30 @@
 --- !ruby/object:Gem::Specification
 name: logstash-output-elasticsearch
 version: !ruby/object:Gem::Version
-  version: 2.6.2
+  version: 2.7.0
 platform: java
 authors:
 - Elastic
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-04-20 00:00:00.000000000 Z
+date: 2016-04-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: concurrent-ruby
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - '>='
-      - !ruby/object:Gem::Version
-        version: '0'
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+  name: concurrent-ruby
   prerelease: false
   type: :runtime
-- !ruby/object:Gem::Dependency
-  name: elasticsearch
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
-        version: 1.0.13
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '0'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
@@ -42,18 +33,18 @@ dependencies:
     - - ~>
       - !ruby/object:Gem::Version
         version: '1.0'
+  name: elasticsearch
   prerelease: false
   type: :runtime
-- !ruby/object:Gem::Dependency
-  name: stud
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
-        version: 0.0.17
+        version: 1.0.13
     - - ~>
       - !ruby/object:Gem::Version
-        version: '0.0'
+        version: '1.0'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
@@ -62,74 +53,74 @@ dependencies:
     - - ~>
       - !ruby/object:Gem::Version
         version: '0.0'
+  name: stud
   prerelease: false
   type: :runtime
-- !ruby/object:Gem::Dependency
-  name: cabin
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 0.0.17
     - - ~>
       - !ruby/object:Gem::Version
-        version: '0.6'
+        version: '0.0'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
         version: '0.6'
+  name: cabin
   prerelease: false
   type: :runtime
-- !ruby/object:Gem::Dependency
-  name: logstash-core-plugin-api
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '0.6'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
         version: '1.0'
+  name: logstash-core-plugin-api
   prerelease: false
   type: :runtime
-- !ruby/object:Gem::Dependency
-  name: ftw
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: 0.0.42
+        version: '1.0'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
         version: 0.0.42
+  name: ftw
   prerelease: false
   type: :development
-- !ruby/object:Gem::Dependency
-  name: logstash-codec-plain
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 0.0.42
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+  name: logstash-codec-plain
   prerelease: false
   type: :development
-- !ruby/object:Gem::Dependency
-  name: manticore
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
-        version: 0.5.4
-    - - <
-      - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
@@ -138,50 +129,59 @@ dependencies:
     - - <
       - !ruby/object:Gem::Version
         version: 1.0.0
+  name: manticore
   prerelease: false
   type: :runtime
-- !ruby/object:Gem::Dependency
-  name: logstash-devutils
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 0.5.4
+    - - <
+      - !ruby/object:Gem::Version
+        version: 1.0.0
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+  name: logstash-devutils
   prerelease: false
   type: :development
-- !ruby/object:Gem::Dependency
-  name: longshoreman
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+  name: longshoreman
   prerelease: false
   type: :development
-- !ruby/object:Gem::Dependency
-  name: flores
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+  name: flores
   prerelease: false
   type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 description: This gem is a Logstash plugin required to be installed on top of the Logstash core pipeline using $LS_HOME/bin/logstash-plugin install gemname. This gem is not a stand-alone program
 email: info@elastic.co
 executables: []
@@ -210,6 +210,7 @@ files:
 - spec/integration/outputs/create_spec.rb
 - spec/integration/outputs/index_spec.rb
 - spec/integration/outputs/parent_spec.rb
+- spec/integration/outputs/pipeline_spec.rb
 - spec/integration/outputs/retry_spec.rb
 - spec/integration/outputs/routing_spec.rb
 - spec/integration/outputs/secure_spec.rb
@@ -243,7 +244,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.4.8
+rubygems_version: 2.4.5
 signing_key:
 specification_version: 4
 summary: Logstash Output to Elasticsearch
@@ -255,6 +256,7 @@ test_files:
 - spec/integration/outputs/create_spec.rb
 - spec/integration/outputs/index_spec.rb
 - spec/integration/outputs/parent_spec.rb
+- spec/integration/outputs/pipeline_spec.rb
 - spec/integration/outputs/retry_spec.rb
 - spec/integration/outputs/routing_spec.rb
 - spec/integration/outputs/secure_spec.rb