elasticsearch logstash grok logstash-grok

Grok pattern for Logstash using HTTP POST request as input

I'm using Logstash to process my logs and store them to Elastic Search. I'm using http as input plugin for my logstash.

My http post request is:

$http.post(url, {type: 'reference error', message: 'y is not defined'});

I would like to store the type and message key as different fields in Elastic Search.

Currently all of the post data is stored as a single field like:

"message":"{\"type\":\"ReferenceError\",\"message\":\"y is not defined\"}"

I think this can be done using grok filter but I have not been able to find a way to do this.

Any help is highly appreciated. Thanks.

Solution

If you use the json codec, the information should be split out into fields for you automatically.

What is the difference between CONTAINS and WITHIN on Elasticsearch GeoShape queries?
Grafana - Elasticsearch dashboard variable does not provide any results
How to log using serilog to elasticsearch with Elastic.Serilog.Sinks in .net application
What's "EIO: i/o error, write" in node.js and how do I eliminate it?
Kibana has strict security requirements enabled that your current browser does not meet
What's the difference between search-as-you-type and context suggester?
Convenient time string parsing in python
ElasticSearch in Spring with @Query
What is the best practice for ensuring idempotency for downloading a binary with Ansible?
Logstash install error: can't get unique system GID (no more available GIDs)
Can't configure elastic search with spring boot in docker network
`index_prefixes` in OpenSearch?
How to get latest values for each group with an Elasticsearch query?
What does it mean when an Elasticsearch index has yellow health?
Is it possible to transfer data from Redshift to Elasticsearch?
How elastic queries work with contradicting statements
Can filebeat dissect a log line with spaces?
How to undo setting Elasticsearch Index to readonly?
Date range filter not getting excluded from date histogram under global aggregations in elastic query
"United States" not ["United","States"]
Get all field names in an index elasticsearch python
How to really reindex data in elasticsearch
elasticsearch match_phrase returns same score for fields with exact and not exact match
inner_hits aggregations in ElasticSearch
Sorting a reverse nested back to parent aggregation
Elasticsearch: how to list roles assigned to the current SSO user via role mappings
How to setup password for elasticsearch users?
OpenSearch prevent script_score from running more than once
Elasticsearch intermittently killed
Elasticsearch: Job for elasticsearch.service failed