11.6. Aushape exported fields
These are the Aushape fields exported by the OpenShift Container Platform cluster logging available for searching from Elasticsearch and Kibana.
Audit events converted with Aushape. For more information, see Aushape.
| Parameter | Description |
|---|---|
|
| Audit event serial number. |
|
| Name of the host where the audit event occurred. |
|
| The error aushape encountered while converting the event. |
|
| An array of JSONPath expressions relative to the event object, specifying objects or arrays with the content removed as the result of event size limiting. An empty string means the event removed the content, and an empty array means the trimming occurred by unspecified objects and arrays. |
|
| An array log record strings representing the original audit event. |
aushape.data Fields
Parsed audit event data related to Aushape.
| Parameter | Description |
|---|---|
|
| type: nested |
|
| type: string |
|
| type: nested |
|
| type: nested |
|
| type: nested |
