handsetdetection / logstash-filter-handsetdetection Goto Github PK

Just upgraded our stack to LS 6.3 and handsetdetection no longer installs

The front page configuration example shows

filter {
grok {
match => {
"message" => "%{COMBINEDAPACHELOG}"
}
}
handsetdetection {
username => "xxxxxxxxxx"
password => "xxxxxxxxxxxxxxxx"
site_id => 000000
detection_type => ultimate
match => {
"agent" => "user-agent"
}
filter => [
"general_vendor", "general_model", "general_type"
]
}
}

Following this will throw an error concerning detection_type unknown. This is because the value, ultimate, should be enclosed in quotes:
detection_type => "ultimate"

Installed the plugin to my test LS on my local windows machine and I'm getting this error when starting Logstash:

Pipeline aborted due to error {:exception=>#<IO::EAGAINWaitReadable: Unknown error - errno backtraces disabled; run with -Xerrno.backtrace=true to enable>, :backtrace=>[], :level=>:error}

I'm going to turn on backtrace and will post that asap

Hey guys,
quick one, the install command should be:

bin/logstash-plugin install logstash-filter-handsetdetection

When using the field handset_detection.specs.general_aliases for a visualisation it gives skewed data compared to handset_detection.specs.general_model as shown here: http://imgur.com/a/fW1YX

As there are no Alias for Windows PC, iPhone, OS X PC or iPad then it seems like we don't get any traffic from those devices. Looking at the general_model though, it's hard to make out which Samsung devices are being used as the model number is not commonly used (hence the reason for the alias).

Perhaps if there is no general_alias then it can default to general_model?

Just installed and have the following error on install:

$sudo bin/logstash-plugin install logstash-filter-handsetdetection
Validating logstash-filter-handsetdetection
Installing logstash-filter-handsetdetection
Plugin version conflict, aborting
ERROR: Installation Aborted, message: Bundler could not find compatible versions for gem "logstash-core":
  In snapshot (Gemfile.lock):
    logstash-core (= 5.0.0)

  In Gemfile:
    logstash-core-plugin-api (>= 0) java depends on
      logstash-core (= 5.0.0) java

    logstash-filter-handsetdetection (>= 0) java depends on
      logstash-core (< 3.0.0, >= 2.0.0) java

    logstash-core (>= 0) java

Running `bundle update` will rebuild your snapshot from scratch, using only
the gems in your Gemfile, which may resolve the conflict.