Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
AbstractEcsLoggingTest should log keys as nested objects, not with dotted key names
See original GitHub issueI’ve noticed AbstractEcsLoggingTest checks for keys like process.thread.name while I think the key should be something like `“process”: { “thread”: { “name”: “co.elastic.logging.logback.EcsEncoderTest”}}" instead of something like
{"@timestamp":"2019-11-18T13:42:33.333Z","log.level":"DEBUG","message":"test","service.name":"test","process.thread.name":"main","log.logger":"co.elastic.logging.logback.EcsEncoderTest","log.origin":{"file.name":"AbstractEcsEncoderTest.java","function":"debug","file.line":47}}
Issue Analytics
- State:
- Created 4 years ago
- Reactions:2
- Comments:15 (1 by maintainers)
Top Results From Across the Web
How to output nested object keys separated by a dot - JS
The problem is you should make your recursiveKeys as it is with 3 steps: Determine the key result named keyRes; Check if the...
Read more >Nested field type | Elasticsearch Guide [8.5]
The nested type is a specialised version of the object data type that allows arrays of objects to be indexed in a way...
Read more >Free Intermediate JavaScript Course - Nested Objects
Advance your JS skills in this free course by learning higher order functions, closures, and how to interact with the DOM.
Read more >Working with nested data
Extract a list of nested keys or values from a top-level field. ... multiple JSON objects corresponding to different metrics, you can ......
Read more >thefoot/dot-object-expander
A recursive object parser that expands keys with dot notation. ... versions of MongoDB drivers do not support dot notation in key names....
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Update: Converting dotted fields to nested objects is now possible both in Beats with the
expand_keysoption of thedecode_json_fieldsprocessor and as of 7.15.0, it will also be possible with thedot_expanderElasticsearch ingest node processor. This issue contains a POC for a ingest node pipeline that auto-detects and properly parses ECS JSON: https://github.com/elastic/integrations/issues/1454If we can live with the fact of having nested json with no exception. Then, is there a way to achieve this without filebeat? (Waiting for the fix).