Hello, a beginner question. I've a search query that produces a single JSON even such as this:
{
Error/type/0 : type_value0
Error/type/1 : type_value1
Error/type/2 : type_value2
Error/desc/0 : desc_value0
Error/desc/1 : desc_value1
Error/desc/2 : desc_value2
Error/logfile/0 : file_value0
Error/logfile/1 : file_value1
Error/logfile/2 : file_value2
}
I want to transform this into a table like this (end output):
# type desc logfile
0 type_value0 desc_value0 file_value0
1 type_value1 desc_value1 file_value1
2 type_value2 desc_value2 file_value2
I'm thinking splitting the input JSON event into multiple small events could help me get to the end result. Or may be there is a better way.
How do I achieve this?
Thanks in advance for your help.
↧