Skip to content

Commit dead305

Browse files
nazargesyknazargesyk
committed
gis-1809 update elastic-esql-query mapping
1 parent b026dda commit dead305

File tree

1 file changed

+0
-16
lines changed

1 file changed

+0
-16
lines changed

uncoder-core/app/translator/mappings/platforms/elasticsearch_esql/aws_cloudtrail.yml

Lines changed: 0 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -39,19 +39,3 @@ field_mapping:
3939
userIdentity.type: aws.cloudtrail.user_identity.type
4040
userIdentity.userName: user.name
4141
vpcEndpointId: aws.cloudtrail.vpc_endpoint_id
42-
overrides:
43-
- field: event.outcome
44-
value: failure
45-
regexes:
46-
- (\(\(aws.cloudtrail.error_message.keyword:.* event.action:\"ConsoleLogin\"\)\))
47-
- (\(\(aws.cloudtrail.error_code.keyword:.* event.action:\"ConsoleLogin\"\)\))
48-
- (\(\(aws.cloudtrail.error_message.keyword:.* aws.cloudtrail.response_elements.keyword:\*Failure\*\)\))
49-
- (\(\(aws.cloudtrail.error_code.keyword:.* aws.cloudtrail.response_elements.keyword:\*Failure\*\)\))
50-
- (\(\(event.action:\"ConsoleLogin\".* aws.cloudtrail.error_message.keyword:\*\)\))
51-
- (\(\(event.action:\"ConsoleLogin\".* aws.cloudtrail.error_code.keyword:\*\)\))
52-
- (\(\(aws.cloudtrail.response_elements.keyword:\*Failure\*.* aws.cloudtrail.error_message.keyword:\*\)\))
53-
- (\(\(aws.cloudtrail.response_elements.keyword:\*Failure\*.* aws.cloudtrail.error_code.keyword:\*\)\))
54-
- field: event.outcome
55-
value: success
56-
literals:
57-
- 'NOT (event.outcome:failure)'

0 commit comments

Comments
 (0)
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy