Edge Delta Regex Filter

Configure the Edge Delta Regex Filter Node.

Overview

This node identifies logs based on a regex pattern. By default the node will identify and pass only those logs that match the specified pattern to the node output. However, you can configure it to not pass logs that match the regex pattern. It searches the body log field for matches but you can specify a particular field.

Example Configuration

nodes:
  - name: filter_with_regex
    type: regex_filter
    pattern: 'Error: \w+'

Required Parameters

name

A descriptive name for the node. This is the name that will appear in Visual Pipelines and you can reference this node in the yaml using the name. It must be unique across all nodes. It is a yaml list element so it begins with a - and a space followed by the string. It is a required parameter for all nodes.

nodes:
  - name: <node name>
    type: <node type>

type: regex_filter

The type parameter specifies the type of node being configured. It is specified as a string from a closed list of node types. It is a required parameter.

nodes:
  - name: <node name>
    type: <node type>

pattern

The pattern parameter specifies a Golang regex pattern that the regex node will look for. It is a string that should be wrapped in quotes to handle escapes. A pattern is required for a regex filter node.

nodes:
  - name: <node name>
    type: regex_filter
    pattern: <regex pattern>

Optional Parameters

field_path

The field_path parameter specifies a path in which to search for the regex match. If not specified the node searches the body field. It uses periods that do not indicate nesting. This means that when referencing resources in the UI form or in a YAML file you should use the following format:

item.resource["k8s.namespace.name"]

A field_path is optional.

nodes:
  - name: <node name>
    type: regex_filter
    field_path: <path>

negate

The negate parameter inverses the filtering logic of the node. By default the node will identify and pass only those logs that match the specified pattern. With negate set to true, the node will block logs that match the specified pattern from being passed to the node output. It is a specified with a Boolean, the default value is false and it is optional.

nodes:
  - name: <node name>
    type: regex_filter
    pattern: <regex pattern>
    negate: true