Use time_format and types on multi_format parse #9
Description
I currently parse one tag with a simple filter but I need to add a different pattern to the filter and I'm planning to migrate to a multi_format plugin.
My question is if it's possible to use the time_format and types fields on each the pattern like this:
<filter kubernetes.var.log.containers.traefik-ingress-**.log>
@type parser
key_name log
reserve_data yes
<parse>
@type multi_format
<pattern>
format regexp
expression /^(?<ip>[^-]*) - - \[(?<datetime>[^\]]*)\] "(?<method>[^ ]*) (?<path>[^ ]*) (?<http_version>[^"]*)" (?<status_code>[^ ]*) (?<body_bytes>[^ ]*) "(?<referer>[^"]*)" "(?<user_agent>[^"]*)" (?<seq>[^ ]*) "(?<domain>[^ ]*)" "(?<dest_url>[^ ]*)" (?<response_time>[^ ms]*)/
time_key datetime
time_format %d/%b/%Y:%H:%M:%S %z
types status_code:integer,body_bytes:integer,seq:integer,response_time:integer
</pattern>
<pattern>
format regexp
expression /^\[(?<datetime>[^\]]*)\] - (?<data>[^ ]*)/
</pattern>
</parse>
</filter>