github.com/crowdsecurity/crowdsec@v1.6.1/pkg/parser/tests/base-grok-external-data/test.yaml

github.com/crowdsecurity/crowdsec@v1.6.1/pkg/parser/tests/base-grok-external-data/test.yaml (about)

     1  #these are the events we input into parser
     2  lines:
     3    - Line:
     4        Labels:
     5          #this one will be checked by a filter
     6          type: testlog
     7        Raw: xxheader VALUE1 trailing stuff
     8    - Line:
     9    #see tricky case : first one is nginx via syslog, the second one is local nginx :)
    10        Labels:
    11          #this one will be checked by a filter
    12          type: testlog
    13        Raw: xxheader VALUE2 trailing stuff
    14  #these are the results we expect from the parser
    15  results:
    16  
    17    - Meta:
    18        log_type: parsed_testlog
    19        is_it_in_file: true
    20      Parsed:
    21        extracted_value: VALUE1
    22        
    23      Process: true
    24      Stage: s00-raw
    25    - Meta:
    26        log_type: parsed_testlog
    27        is_it_in_file: false
    28      Parsed:
    29        extracted_value: VALUE2
    30      Process: true
    31      Stage: s00-raw
    32